GS700TPS Smart Switch Software Administration Manual NETGEAR, Inc.
© 2009 by NETGEAR, Inc. All Rights reserved Trademarks NETGEAR and the NETGEAR logo are registered trademarks of NETGEAR, Inc. in the United States and/or other countries. Microsoft, Windows, and Windows NT are registered trademarks and Vista is a trademark of Microsoft Corporation. Other brand and product names are trademarks or registered trademarks of their respective holders.
GS700TPS Smart Switch Software Administration Manual determined by turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of the following measures: • • • • Reorient or relocate the receiving antenna. Increase the separation between the equipment and receiver. Connect the equipment into an outlet on a circuit different from that which the receiver is connected. Consult the dealer or an experienced radio/TV technician for help.
FCC Requirements for Operation in the United States FCC Information to User: This product does not contain any user-serviceable components and is to be used with approved antennas only. Any product changes or modifications will invalidate all applicable regulatory certifications and approvals FCC Guidelines for Human Exposure: This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment.
Contents About This Manual Who Should Use this Book ................................................................................................ x How to Use This Book ....................................................................................................... x Conventions, Formats, and Scope ................................................................................... xi How to Use This Manual ...........................................................................................
GS700TPS Smart Switch Software Administration Manual Chapter 3 Managing System Settings Using the System Settings Utility ....................................................................................3-1 Management ...................................................................................................................3-1 System Information ..................................................................................................3-1 IP Configuration ..................................
GS700TPS Smart Switch Software Administration Manual Advanced .................................................................................................................4-8 VLAN ............................................................................................................................4-14 Basic ......................................................................................................................4-14 Advanced .............................................................
GS700TPS Smart Switch Software Administration Manual Advanced ...............................................................................................................6-10 Traffic Control ...............................................................................................................6-15 Storm Control .........................................................................................................6-15 Port Security ................................................................
GS700TPS Smart Switch Software Administration Manual Factory Default .........................................................................................................8-2 Upload ............................................................................................................................8-3 Upload ......................................................................................................................8-3 Download .............................................................
About This Manual The NETGEAR® GS700TPS Smart Switch Software Administration Manual describes how to install, configure, operate, and troubleshoot the GS700TPS Gigabit Stackable PoE Smart Switch using its included software. This book describes the software configuration procedures and explains the options available within those procedures. Who Should Use this Book The information in this manual is intended for readers with intermediate to advanced system management skills.
GS700TPS Smart Switch Software Administration Manual • Chapter 6, “Managing Security” describes how to configure security. • Chapter 7, “Monitoring the Switch” describes how to configure switch monitoring. • Chapter 8, “Maintenance” describes the firmware upgrade procedure and reset functions. • Chapter 9, “Online Help” describes how to obtain online help and support. • Appendix A, “Default Settings” gives GS700TPS Smart Switch specifications and lists default feature values.
GS700TPS Smart Switch Software Administration Manual Danger: This is a safety warning. Failure to take heed of this notice may result in personal injury or death. • Scope. This manual is written for the GS700TPS Smart Switch according to these specifications: Product Version GS700TPS Gigabit Stackable PoE Smart Switch Manual Publication Date June 2009 . Note: Product updates are available on the NETGEAR, Inc. website at http://www.netgear.com/support.
GS700TPS Smart Switch Software Administration Manual How to Print this Manual To print this manual, select one of the following options: • Printing a Page from HTML. Each page in the HTML version of the manual is dedicated to a major topic. Select File > Print from the browser menu to print the page contents. • Printing from PDF. Your computer must have the free Adobe Acrobat reader installed in order to view and print PDF files. The Acrobat reader is available on the Adobe Web site at http://www.adobe.
Chapter 1 Getting Started with Switch Management This section provides an overview of switch management, including the methods you can choose to start managing your NETGEAR GS700TPS Gigabit Stackable PoE Smart Switch. It also leads you through the steps necessary to get started, using the SmartWizard Discovery utility.
GS700TPS Smart Switch Software Administration Manual Note: For complete hardware installation instructions, refer to the GS700TPS Smart Switch Hardware Installation Manual included on your Resource CD, or go to http://www.netgear.com/support. Switch Management Interface Your NETGEAR GS700TPS Gigabit Stackable PoE Smart Switch contains an embedded web server and management software for managing and monitoring switch functions. This switch operates as a simple switch without using the management software.
GS700TPS Smart Switch Software Administration Manual Table 1-1.
GS700TPS Smart Switch Software Administration Manual 5. Click Discover for the SmartWizard Discovery utility to find your GS700TPS Gigabit Stackable PoE Smart Switch. You should see a screen similar to that shown below. Figure 1-1 6. Note the displayed IP address assigned by the DHCP server. You will need this value to access the switch directly from a web browser (without using the SmartWizard Discovery utility). 7. Select your switch by highlighting the name of the switch. Then click Web Access.
GS700TPS Smart Switch Software Administration Manual 8. Use your web browser to manage your switch. The default password is password. Then use this screen to proceed to management of the switch covered in Chapter 2, “Introduction to the Web Browser Interface”.
GS700TPS Smart Switch Software Administration Manual 6. Click Configuration Setting. A screen similar to that shown below appears. Figure 1-3 7. Select Disable to disable DHCP. 8. The default IP address is 192.168.0.239 and the default subnet mask is 255.255.255.0. If you want different values, enter the switch IP address, gateway IP address and subnet mask. 9. Type your password and click Set. Please ensure that your PC and the GS700TPS Gigabit Stackable PoE Smart Switch are in the same subnet.
GS700TPS Smart Switch Software Administration Manual NIC Setting on the Host that Accesses the GS700TPS Gigabit Stackable PoE Smart Switch The settings of your Network Interface Card (NIC) under MS Windows OS are made with entries into Windows screens similar to the ones shown below. For comparison, the settings screens of the switch are also shown although they do not appear in the Windows view. Figure 1-4 You need Windows Administrator privileges to change these settings. 1.
GS700TPS Smart Switch Software Administration Manual Web Access For Web access, you can either: • Select Web Access using the SmartWizard Discovery utility (see “Network with a DHCP Server” or “Network without a DHCP Server”). • Access the switch directly, without using the SmartWizard Discovery utility. You must work from the same network segment that contains the switch (i.e., the subnet mask values of switch and PC host must be the same) and you must point your browser using the switch IP address.
GS700TPS Smart Switch Software Administration Manual Additional Utilities Alternatively, from the main screen shown on Figure 1-1 you can access these additional functions: • “Password Change” • “Firmware Upgrade” Password Change You can set a new password of up to 20 ASCII characters. 1. Click Password Change from the Switch Setting section. The Password Change screen appears. You can set a new password. You must enter the old and new passwords and confirm the new one. 2.
GS700TPS Smart Switch Software Administration Manual If you click Firmware Upgrade from the main screen (see Figure 1-1), after you have selected the switch to upgrade, the following screen appears: Figure 1-6 1. Enter the following values into the appropriate places in the form: • Product Assigned Firmware: The location of the new firmware. If you do not know the location, click Browse to locate the file. • Upgrade Password: Enter your password; the default password is password. 2.
Chapter 2 Introduction to the Web Browser Interface This section introduces the web browser interface that enables you to configure and manage your NETGEAR GS700TPS Gigabit Stackable PoE Smart Switch. Your GS700TPS Smart Switch provides a built-in browser interface that enables you to configure and manage it remotely using a standard Web browser such as Microsoft Internet Explorer or Netscape Navigator. Online Help is also provided for many of the basic functions and features of the switch.
GS700TPS Smart Switch Software Administration Manual 2. Enter the password (the factory default is password) and click Login. The home screen of the GS700TPS Smart Switch browser interface displays. The Navigation Menu As shown below, logging in brings you to the view of the web browser interface. Figure 2-2 The NETGEAR GS700TPS web browser interface contains the following views: Main Navigation Area – Located on the top of the NETGEAR GS700TPS web browser interface and marked as 1 in Figure 2-2.
GS700TPS Smart Switch Software Administration Manual For further description of the functions, refer to the appropriate section of this manual: • Chapter 3, “Managing System Settings” describes how to configure the System functions. • Chapter 4, “Configuring Switching Settings” describes how to configure the Switch functions. • Chapter 5, “Configuring QoS” describes how to configure QoS functions. • Chapter 6, “Managing Security” describes how to configure Security functions.
GS700TPS Smart Switch Software Administration Manual Table 2-1. Device Management Buttons Button Name Description CURRENT MEMBERS Displays current members of a LAG. DELETE Deletes information from tables or information windows. GO Selects the specified interface. REFRESH Refreshes the screen with current data. TAGGED PORT MEMBERS Displays tagged port members of a VLAN. TEST Tests copper cables. UNTAGGED PORT MEMBERS Displays untagged port members of a VLAN.
GS700TPS Smart Switch Software Administration Manual To access the help file for a screen: 1. Click the encircled red Question Mark icon, shown in the example below. Figure 2-3 Using Screen and Table Options The NETGEAR GS700TPS web browser interface contains screens and tables for configuring devices.
GS700TPS Smart Switch Software Administration Manual Selecting an Entry To select an entry: 1. Check the entry’s Select box. The selected entry is highlighted and the information appears in the first row, which contains the editable fields. Figure 2-4 To select all entries: 1. Check the Select box in the first row to select all entries in the table. Fields that are unique are grayed out and displayed as read-only fields.
GS700TPS Smart Switch Software Administration Manual To add an entry by creating a new entry in the table: 1. Enter the fields for the new entry in the provided fields in the first row. Figure 2-6 2. Click ADD to update the device. The new entry is displayed. Figure 2-7 Modifying an Entry An entry may be modified by editing its values in the first row. To modify an entry: 1. Select the entry to be modified. Its contents are displayed in the first row. Figure 2-8 2. Modify the fields in the first row.
GS700TPS Smart Switch Software Administration Manual Deleting an Entry To delete entries from a table: 1. Select the entries to be deleted. 2. Click DELETE to update the device. Special Table Options The NETGEAR web browser interface tables have a unique GUI design which includes the following options: • Gold Buttons • Quick Boxes • Interface View and Selection Gold Buttons Gold Buttons provide flexibility in viewing and configuring VLANs/LAGs on a port level.
GS700TPS Smart Switch Software Administration Manual Quick Boxes Quick Boxes provide users with flexibility in configuring VLANs for all ports (on a stacking unit level) or LAGs. Clicking on the quick box toggles between the various options that exist for this field. A quick box appears to the right of the arrow on the left-hand side of the gold button. The following example displays quick box basic usage options. To mark or unmark all Unit 1ports: 1.
GS700TPS Smart Switch Software Administration Manual Interface View and Selection A port or LAG interface may be selected from a table by using the interface selection row, located above the row of column headers. Clicking on the Unit No. or LAGS displays the ports in the unit or the LAGs: Figure 2-12 To display all ports in a stacking unit: 1. Click the unit number in the interface selection row. The screen displays a table of all ports in the selected stacking unit.
GS700TPS Smart Switch Software Administration Manual To display the LAG table: 1. Click LAGS in the interface selection row. The screen displays a table of all LAGs. Figure 2-14 To select an interface: 1. Enter the number of the interface in the GO TO INTERFACE box. 2. Click GO to select the interface, as in the following example. Figure 2-15 2-11 Introduction to the Web Browser Interface v1.
Chapter 3 Managing System Settings Using the System Settings Utility The navigation pane at the top of the web browser interface contains a System tab that enables you to manage your GS700TPS Smart Switch displaying configurable features under the following main menu options: • “Management” • “Device View” • “Stacking” • “PoE” • “SNMP” • “LLDP” The description that follows in this chapter describes configuring and managing system settings in the GS700TPS Smart Switch.
GS700TPS Smart Switch Software Administration Manual To configure system parameters: 1. Click System > Management > System Information. The System Information screen displays: Figure 3-1 The System Information screen contains the following fields: • System Name – Enter the user-defined device name. The field may contain 0-160 characters. • System Location – Enter the location where the system is currently running. The field may contain 0-160 characters.
GS700TPS Smart Switch Software Administration Manual • Idle Timeout – Enter the amount of time (minutes) that elapses before an idle station is timed out. Idle stations that are timed out must login to the system. The field range is 5 30 minutes. The field default value is 10 minutes. • Base MAC Address – Displays the MAC Address. If the device is in stack mode, the Base MAC Address of the master unit is displayed. • Serial Number – Displays the device serial number.
GS700TPS Smart Switch Software Administration Manual IP Configuration The IP Configuration screen contains fields for assigning IP addresses. IP addresses are either defined as static or are retrieved using the Dynamic Host Configuration Protocol (DHCP). The DHCP assigns dynamic IP addresses to devices on a network. DHCP ensures that network devices can have a different IP address every time the device connects to the network.
GS700TPS Smart Switch Software Administration Manual • Gateway – Enter the default gateway IP address. The following option is available: – • Delete – Deletes the default gateway IP address. Management VLAN ID – Select an existing VLAN to be defined as the management VLAN. By default, the default VLAN defined on the device is VLAN1. 2. Select the method of assigning the IP address by selecting either Get Dynamic IP from DHCP Server or Static IP Address. 3.
GS700TPS Smart Switch Software Administration Manual The Time Configuration screen contains the following fields: • Clock Source – Select the source used to set the system clock. The possible field values are: – Local – Indicates system time is set locally. This is the default value. – SNTP – Indicates system time is set via an SNTP server. The Date and Time fields are disabled once you select the SNTP server. • Date – Enter the local system date. The field format is DD/MMM/YY (Day/Month/Year).
GS700TPS Smart Switch Software Administration Manual To configure SNTP servers: 1. Click System > Management > Time > SNTP Server Configuration. The SNTP Server Configuration screen displays: Figure 3-4 The SNTP Server Configuration screen contains the following fields: • SNTP Server 1 – Enter the primary SNTP server IP address. The Primary SNTP server is the first server used to retrieve the system time. • Delete – Removes the currently configured SNTP Server 1.
GS700TPS Smart Switch Software Administration Manual • • Short-Reach Reason — Displays the reason the port was not tested. Reasons may include that the LinkType is not supported, that the Link Speed is not supported or that the Port Link is down. The possible field values are: – LinkType — Indicates the LinkType is not supported. – LinkUp — Indicates that a cable is not connected to the port. Cable Length — Displays the cable length tested.
GS700TPS Smart Switch Software Administration Manual During the Stacking setup, one device is selected as the Stacking Master. All other devices are named as stack members, and assigned a unique Unit ID. The Stack Master provides a Single point of control and management as well as a single interface in which to control and manage the stack. The device software is downloaded separately for each of the stack members. All units in the stack must be running the same software version.
GS700TPS Smart Switch Software Administration Manual Understanding Stack Topology Stacked devices operate in a Ring or Chain topology. The Ring topology connects all stacked devices in a circle. Each stacked device accepts data and sends it to the device to which it is physically connected. The packet continues through the stack until it reaches the destination port. The system automatically discovers the optimal path by which to send traffic.
GS700TPS Smart Switch Software Administration Manual Removing and Replacing Stacking Members Stacking member 1 and stacking member 2 are Stacking Master enabled units. Unit Numbers 1 and 2 are designated as either Master Unit or Secondary Master Unit. The Stacking Master assignment is performed during the configuration process.
GS700TPS Smart Switch Software Administration Manual to a topology failure, the stacking member is no longer connected to the stack. The device can be booted, but it cannot be managed through the Stacking Master. The network manager can either reset the device defaults, or correct the topology failure, and then reconnect the unit to the stack. Configuration files are changed only through explicit user configuration.
GS700TPS Smart Switch Software Administration Manual Switching the Stacking Master The Secondary Master replaces the Stacking Master if one of the following events occur: • The Stacking Master fails or is removed from the stack. • Links from the Stacking Master to the stacking members fails. • A soft switchover is performed via the web interface. Switching between the Stacking Master and the Secondary Master results in a limited service loss. Any dynamic tables are relearned if a failure occurs.
GS700TPS Smart Switch Software Administration Manual To configure Basic stacking: 1. Click System > Stacking > Basic > Stack Configuration. The Basic Stack Configuration screen displays: Figure 3-6 The Basic Stack Configuration screen contains the following fields: • Master Election – Select the mode by which the Stacking Master is elected. When the stack is powered up and completes the boot-up process, the Master unit is elected within 0.5 seconds. Master election is based on MAC address selection.
GS700TPS Smart Switch Software Administration Manual Advanced The Stacking Advanced menu contains the following options: • “Stack Configuration” • “Stack Management” Stack Configuration The Advanced Stack Configuration screen allows network managers to define the stacking master election mode. A unique Unit No. (1-6) identifies a stack member. The configuration is saved and managed by the master unit.
GS700TPS Smart Switch Software Administration Manual 2. Select the Master Election mode. 3. If you selected Force Master, select either 1 or 2 from the stack list. 4. Click APPLY to update the device. 5. Reset the device for the new settings to take effect. See “Reset” for detailed instructions on resetting the device. Stack Management The Stack Management screen allows network managers to assign specific Unit numbers to stacking members or enable the software to automatically assign Unit numbers.
GS700TPS Smart Switch Software Administration Manual 2. Select the entry whose Unit ID number is to be changed. 3. Select the Unit No. After Reset from the list. 4. Click APPLY to update the device. 5. Reset the device for the new settings to take effect. See “Reset” for detailed instructions on resetting the device. To switch the stack masters: 1. Open the Stack Configuration screen. 2. Select Force Master. 3.
GS700TPS Smart Switch Software Administration Manual The PoE menu contains the following options: • “Basic” • “Advanced” Basic The PoE Basic menu contains the following option: • “PoE Configuration” PoE Configuration The Basic PoE Configuration screen contains system PoE information for enabling PoE on the device, monitoring the current power usage, and enabling PoE traps. To configure PoE on the device: 1. Click System > PoE > Basic > PoE Configuration.
GS700TPS Smart Switch Software Administration Manual – Faulty – Indicates the power supply unit is functioning, but an error has occurred. For example, a power overload or a short circuit. • Nominal Power – Displays the actual amount of power the device can supply. The field value is displayed in Watts. • Consumed Power – Displays the amount of the power used by the device. The field value is displayed in Watts.
GS700TPS Smart Switch Software Administration Manual To configure PoE on the device: 1. Click System > PoE > Advanced > PoE Configuration. The Advanced PoE Configuration screen displays: Figure 3-10 The Advanced PoE Configuration screen contains the following fields: • Unit no. – Displays the stacking Unit no. • Power Status – Displays the online power source status. The possible field values are: – On – Indicates the power supply unit is functioning.
GS700TPS Smart Switch Software Administration Manual 3. Select the Traps mode from the list in the provided field. 4. Click APPLY to update the device. PoE Port Configuration The PoE Port Configuration screen contains PoE class and power consumption information per interface, while allowing the network manager to define the interface PoE Operation Status and Priority Level. 1. Click System > PoE > Advanced > PoE Port Configuration.
GS700TPS Smart Switch Software Administration Manual – • • Disabled – Disables the Device Discovery protocol and stops the power supply to the powered devices using the PoE module. Priority Level – Select the port priority if the power supply is low. The field default is low. For example, if the power supply is running at 99% usage, and port 1 is prioritized as high, but port 3 is prioritized as low, port 1 receives power and port 3 may be denied power.
GS700TPS Smart Switch Software Administration Manual – Testing – Indicates the powered device is being tested. For example, a powered device is tested to confirm it is receiving power from the power supply. – Searching – Indicates the device is currently searching for a powered device. Searching is the default PoE operational status. – Fault – Indicates the device has detected a fault on the powered device when the port is forced on.
GS700TPS Smart Switch Software Administration Manual • Privacy – Protects against the disclosure of message content. Cipher Block-Chaining (CBC) is used for encryption. Either authentication is enabled on an SNMP message, or both authentication and privacy. However, privacy cannot be enabled without authentication. • Timeliness – Protects against message delay or message redundancy. The SNMP agent compares the incoming message to the message time information.
GS700TPS Smart Switch Software Administration Manual To configure SNMP communities: 1. Click System > SNMP > SNMPv1/v2 > Community Configuration. The Community Configuration screen displays: Figure 3-12 The SNMPv1/v2 Community Configuration screen contains the following fields: • Management Station IP – Enter the management station IP address for which the Basic SNMP community is defined. • Management Station IP Mask – Enter the management station IP mask for which the Basic SNMP community is defined.
GS700TPS Smart Switch Software Administration Manual 3. Enter the Management Station IP, Management Station IP Mask and Community String in the provided fields in the first row. 4. Select the Access Mode from the list in the provided field in the first row. 5. Click APPLY to update the device. To add a new SNMP community: 1. Click System > SNMP > SNMPv1/v2 > Community Configuration. The Community Configuration screen displays. 2.
GS700TPS Smart Switch Software Administration Manual To configure SNMPv1/v2 trap station management: 1. Click System > SNMP > SNMPv1/v2 > Trap Configuration. The SNMPv1/v2 Trap Configuration screen displays: Figure 3-13 The SNMPv1/v2 Trap Configuration screen contains the following fields: • Recipients IP – Enter the IP address to which the traps are sent. • Notification Type – (Configurable only if the Notification Version is SNMPv2.) Select the type of notification sent.
GS700TPS Smart Switch Software Administration Manual To add a new SNMP trap: 1. Click System > SNMP > SNMPv1/v2 > Trap Configuration. The SNMPv1/v2 Trap Configuration screen displays. 2. Enter the fields in the first row. 3. Click ADD to update the device. To remove an SNMP trap: 1. Click System > SNMP > SNMPv1/v2 > Trap Configuration. The SNMPv1/v2 Trap Configuration screen displays. 2. Select the entry to be removed. 3. Click DELETE to remove the entry.
GS700TPS Smart Switch Software Administration Manual Engine ID The SNMPv3 Engine ID screen allows network managers to define the SNMP Engine ID or to assign the default Engine ID to SNMP. To define the Local Engine ID: 1. Click System > SNMP > SNMPv3 > Engine ID. The SNMPv3 Engine ID screen displays: Figure 3-14 The SNMPv3 Engine ID screen contains the following fields: • Local Engine ID (10-64 Hex Characters) – Enter the local device Engine ID. The field value is a hexadecimal string.
GS700TPS Smart Switch Software Administration Manual View Name The SNMPv3 View Name screen allows network managers to define SNMPv3 View Names. SNMPv3 views provide or block access to device features or portions of features. To define SNMPv3 view names: 1. Click System > SNMP > SNMPv3 > View Name. The SNMPv3 View Name screen displays: Figure 3-15 The SNMPv3 View Name screen contains the following field: • View Name – Enter the user-defined view name.
GS700TPS Smart Switch Software Administration Manual View Content The View Content screen allows the network manager to assign view attributes to views created in the “View Content” screen. Views provide or block access to device features or portions of features. For example, a view can be defined to provide a view that SNMP group A has Read Only (R/O) access to Multicast groups, while SNMP group B has Read-Write (R/W) access to Multicast groups. Feature access is granted via the MIB name or MIB Object ID.
GS700TPS Smart Switch Software Administration Manual 4. Select either Included or Excluded from the View Type provided field in the first row. 5. Click APPLY to update the device. To add a new SNMP OID entry: 1. Click System > SNMP > SNMPv3 > View Content. The SNMPv3 View Content screen displays. 2. Select the View Name from the list in the provided field in the Views table. 3. Enter the Object ID Subtree in the provided field in the first row. 4.
GS700TPS Smart Switch Software Administration Manual To define SNMPv3 communities: 1. Click System > SNMP > SNMPv3 > Community Configuration. The SNMPv3 Community Configuration screen displays: Figure 3-17 The SNMPv3 Community Configuration screen contains the following fields: • Management Station IP – Enter the management station IP address for which the SNMP community is defined. • Management Station IP Mask – Enter the management station IP mask for which the Advanced SNMP community is defined.
GS700TPS Smart Switch Software Administration Manual 3. Select the Group Name from the list in the provided field in the first row. 4. Click ADD to update the device. To remove an SNMPv3 community: 1. Click System > SNMP > SNMPv3 > Community Configuration. The SNMPv3 Community Configuration screen displays. 2. Select the community entry. 3. Click DELETE to remove the entry.
GS700TPS Smart Switch Software Administration Manual • • – SNMPv2 – SNMPv2c is defined for the group. – SNMPv3 – SNMPv3 is defined for the group. Security Level – Select the security level attached to the group. Security levels apply to SNMPv3 only. The possible field values are: – No Authentication – Neither the Authentication nor the Privacy security levels are assigned to the group. – Authentication – Authenticates SNMP messages and ensures that the SNMP message’s origin is authenticated.
GS700TPS Smart Switch Software Administration Manual To remove an SNMPv3 group: 1. Click System > SNMP > SNMPv3 > Group Configuration. The SNMPv3 Groups screen displays. 2. Select the group entry. 3. Click DELETE to remove the entry. User Configuration The SNMPv3 User Configuration screen provides information for creating users, assigning the user a group, an Engine Id, and Authentication attributes. To define SNMP users: 1. Click System > SNMP > SNMPv3 > User Configuration.
GS700TPS Smart Switch Software Administration Manual – MD5 Password – Indicates the HMAC-MD5-96 password is used for authentication. The user must enter a password. – SHA Password – Users are authenticated using the HMAC-SHA-96 authentication level. The user must enter a password. – MD5 Key – Users are authenticated using the HMAC-MD5 algorithm. – SHA Key – Users are authenticated using the HMAC-SHA-96 authentication level. • Password (1-32 Characters) – Enter the password for the group member.
GS700TPS Smart Switch Software Administration Manual 6. Click ADD to update the device. To remove an SNMPv3 user: 1. Click System > SNMP > SNMPv3 > Users Configuration. The SNMPv3 User Configuration screen displays. 2. Select the user entry. 3. Click DELETE to remove the entry. Global Trap Configuration The SNMPv3 Global Trap Settings screen contains parameters for defining SNMP notification parameters. To configure SNMP notification global parameters: 1.
GS700TPS Smart Switch Software Administration Manual • Authentication Notifications – Select the SNMP authentication failure notification status on the device. The possible field values are: – Disable – Disables the device from sending authentication failure notifications. – Enable – Enables the device to send authentication failure notifications. This is the default value. 2. Select either Enable or Disable in the SNMP Notifications provided field. 3.
GS700TPS Smart Switch Software Administration Manual The SNMPv3 Trap Configuration screen contains the following fields: • Recipients IP – Enter the IP address to which the traps are sent. • Notification Type – Select the type of notification sent. The possible field values are: – Traps – Indicates traps are sent. – Informs – Indicates informs are sent. • User Name – Enter the user name. The field range is up to 30 alphanumeric characters.
GS700TPS Smart Switch Software Administration Manual 2. Enter the Recipients IP address in the provided field in the first row. 3. Select either Traps or Informs in the Notification Type provided field in the first row. 4. Enter the User Name in the provided field in the first row. 5. Select the Security Level from the list in the provided field in the first row. 6. Enter the UDP Port in the provided field in the first row. 7. Select the Filter Name from the list in the provided field in the first row. 8.
GS700TPS Smart Switch Software Administration Manual To define the SNMPv3 Trap Filter Name: 1. Click System > SNMP > SNMPv3 > Trap Filter Name. The SNMPv3 Trap Filter Name screen displays: Figure 3-22 The SNMPv3 Trap Filter Name screen contains the following field: • Filter Name – Enter the trap filter name. 2. Select the trap filter entry. 3. Enter the trap Filter Name in the provided field in the first row. 4. Click APPLY to update the device. To add a new trap filter name: 1.
GS700TPS Smart Switch Software Administration Manual Trap Filter Content The SNMPv3 Trap Filter Content screen permits filtering traps based on OIDs. Each OID is linked to a device feature or a portion of a feature. The SNMPv3 Trap Filter Content screen also allows network managers to filter notifications. To define SNMPv3 Trap Filter settings: 1. Click System > SNMP > SNMPv3 > Trap Filter Content.
GS700TPS Smart Switch Software Administration Manual 5. Select the Filter Type from the list in the provided field in the first row. 6. Click APPLY to update the device. To add a new trap filter content entry: 1. Click System > SNMP > SNMPv3 > Trap Filter Content. The SNMPv3 Trap Filter Content screen displays. 2. Select the Filter Name from the list in the provided field. 3. Enter the Object ID Subtree in the provided field in the first row. 4.
GS700TPS Smart Switch Software Administration Manual The LLDP menu enables configuration of LLDP parameters and contains the following options: • “Basic” • “Advanced” Basic The LLDP Basic menu contains the following option: • “LLDP Configuration” LLDP Configuration The Basic LLDP Configuration screen allows network managers to assign global LLDP and LLDP-MED (LLDP - Media Endpoint Discovery) parameters. To configure LLDP settings: 1. Click System > LLDP > Basic > LLDP Configuration.
GS700TPS Smart Switch Software Administration Manual • LLDPDU Handling – Select LLDPDU (LLDP Data Unit) packet handling when LLDP is disabled. The possible field values are: – Flooding – Indicates LLDPDU packets are flooded to all ports in the system. – Filtering – Indicates LLDPDU packets are filtered. This is the default. • TLV Advertised Interval – Enter the rate in seconds at which LLDP advertisement updates are sent. The possible field range is 5 - 32768 seconds. The default value is 30 seconds.
GS700TPS Smart Switch Software Administration Manual Advanced The LLDP Advanced menu contains the following options: • “LLDP Configuration” • “LLDP Port Settings” • “LLDP-MED Network Policy” • “LLDP-MED Port Settings” • “Local Information” • “Neighbors Information” • “LLDP Statistics” LLDP Configuration The Advanced LLDP Configuration screen allows network managers to assign global LLDP and LLDP-MED (LLDP - Media Endpoint Discovery) parameters. To configure LLDP settings: 1.
GS700TPS Smart Switch Software Administration Manual Figure 3-26 The Advanced LLDP Configuration screen contains the following fields: LLDP Properties • • LLDP – Select the LLDP global status on the device. The possible field values are: – Disable – Disables LLDP on the device. This is the default value. – Enable – Enables LLDP on the device. LLDPDU Handling – Select LLDPDU (LLDP Data Unit) packet handling when LLDP is disabled.
GS700TPS Smart Switch Software Administration Manual • Hold Multiplier – Enter the amount of time that LLDP packets are held before the packets are discarded, measured in multiples of the TLV Advertised Interval. The possible field range is 2 - 10. The field default is 4. For example, if the TLV Advertised Interval is 30 seconds and the Hold Multiplier is 4, then the LLDP packets are discarded after 120 seconds.
GS700TPS Smart Switch Software Administration Manual Figure 3-27 The LLDP Port Settings screen contains the following fields: • Interface – Displays the specific interface for which LLDP parameters are defined. • Admin Status – Select the LLDP packet transmitting and receiving status of the interface. The possible field values are: • • – Tx Only – Enables transmitting LLDP packets only. – Rx Only – Enables receiving LLDP packets only. – Tx & Rx – Enables transmitting and receiving LLDP packets.
GS700TPS Smart Switch Software Administration Manual – • Disable – Disables topology change notification on the interface. Optional TLVs – Select whether optional TLVs are advertised from the interface. – Enable – Enables optional TLVs on the interface. This is the default value. – Disable – Disables optional TLVs on the interface. 2. Select the Interface to configure. 3. Select the Admin Status from the list in the provided field in the first row. 4.
GS700TPS Smart Switch Software Administration Manual Figure 3-28 Figure 3-29 The LLDP-MED Network Policy screen contains the following fields: • Network Policy Number – Select the network policy number. The field range is 1 - 32. • Application – Select the application for which the network policy is defined. The possible field values are: – Voice – Indicates the network policy is defined for a Voice application.
GS700TPS Smart Switch Software Administration Manual – Softphone Voice – Indicates the network policy is defined for a Softphone Voice application. – Video Conferencing – Indicates the network policy is defined for a Video Conferencing application. – Streaming Video – Indicates the network policy is defined for a Streaming Video application. – Video Signaling – Indicates the network policy is defined for a Video Signaling application.
GS700TPS Smart Switch Software Administration Manual 5. Select the User Priority from the list in the provided field in the first row. 6. Select the DSCP Value from the list in the provided field in the first row. 7. Click ADD to update the device. To remove a network policy entry: 1. Click System > LLDP > Advanced > LLDP-MED Network Policy. The LLDP-MED Network Policy screen displays. 2. Select the Network Policy entry. 3. Click DELETE to remove the entry.
GS700TPS Smart Switch Software Administration Manual • • Notification – Select the notification status for the selected port. The possible field values are: – Enable – Enables notification on the selected port. – Disable – Disables notification on the selected port. Network Policies – Click on the gold button to select the network policy numbers to apply to the selected port. 2. Select the Port from the list in the provided field. 3.
GS700TPS Smart Switch Software Administration Manual The LLDP-MED Local Information screen contains the following fields: Device Information • Chassis ID Subtype – Displays the chassis ID type. For example, MAC address. • Chassis ID – Displays the chassis identification of the device transmitting the LLDP frame. • System Name – Displays the administratively assigned device name. • System Description – Describes the device.
GS700TPS Smart Switch Software Administration Manual • Interface Number – Displays the port number. MAC/PHY Details • • Auto-Negotiation Supported – Displays the port speed auto-negotiation support status. The possible values are: – True – Indicates auto-negotiation is supported on the port. – False – Indicates auto-negotiation is not supported on the port. Auto-Negotiation Enabled – Displays the port speed auto-negotiation active status.
GS700TPS Smart Switch Software Administration Manual • VLAN ID – Displays the network policy VLAN ID. • VLAN Type – Displays the VLAN type for which the network policy is defined. The possible field values are: – Tagged – Indicates the network policy is defined for tagged VLANs. – Untagged – Indicates the network policy is defined for untagged VLANs. • User Priority – Displays the network policy user priority. • DSCP – Displays the network policy DSCP. 3.
GS700TPS Smart Switch Software Administration Manual • Port ID SubType – Displays the port ID subtype. For example, MAC address. • Port ID – Displays the port identification of the port transmitting the LLDP frame. • System Name – Displays the administratively assigned device name. • Time To Live – Displays the amount of time (in seconds) in which the information received in the LLDPDU from the remote device remains valid. 2. Click REFRESH to refresh the Neighbors Information screen.
GS700TPS Smart Switch Software Administration Manual The Neighbors Information window contains the following fields: Port Details • Local Port – Displays the port number. • MSAP Entry – Displays the device’s Media Service Access Point (MSAP) entry number. Basic Details • Chassis ID SubType – Displays the chassis ID subtype. For example, MAC address. • Chassis ID – Displays the chassis identification of the device transmitting the LLDP frame. • Port ID SubType – Displays the port ID subtype.
GS700TPS Smart Switch Software Administration Manual • Auto-Negotiation Enabled – Displays the port speed auto-negotiation active status. The possible values are: – True – Indicates Auto-negotiation is enabled on the port. – False – Indicates Auto-negotiation is not enabled on the port. • Auto-Negotiation Advertised Capabilities – Displays the port speed auto-negotiation capabilities. For example, 1000BASE-T half duplex mode, 100BASE-TX full duplex mode.
GS700TPS Smart Switch Software Administration Manual • Supported – Displays the supported Port and Protocol VLAN IDs. • Enabled – Displays the Enabled Port and Protocol VLAN IDs. VLAN IDs • VID – Displays the Port and Protocol VLAN ID. • VLAN Names – Displays the advertised VLAN names. Protocol IDs • Protocol ID – Displays the advertised protocol IDs. MED Details • Capabilities Supported – Displays the MED capabilities enabled on the port.
GS700TPS Smart Switch Software Administration Manual Location Information • Civic – Displays the device’s civic or street address location. For example, 123 45th St E. The field value length range is 6 - 160 characters. • Coordinates – Displays the device’s location map coordinates - latitude, longitude and altitude. • ECS ELIN – Displays the device’s Emergency Call Service (ECS) Emergency Location Identification Number (ELIN). The field range is 10 - 25.
GS700TPS Smart Switch Software Administration Manual Figure 3-34 The LLDP Statistics screen contains the following fields: • Last Update – Indicates the last time the LLDP statistics were updated. The date and time are displayed inthe following format, day-month-year hour:minute:second. • Total Inserts – Indicates the total number of new entries since the last time the table was last updated. • Total Deletes – Indicates the total number of deleted entries since the table was last updated.
GS700TPS Smart Switch Software Administration Manual • • Rx TLVs – Indicates the total amount of Type Length Value received on the port, including: – Discarded – Indicates the total number of TLVs discarded on the port. – Unrecognized – Indicates the total number of TLV which were not recognized by the port. Rx Age-outs Total – Indicates the total amount of LLDP entries that were aged out on the port. 2. Select a stacking member in the Unit No. field.
Chapter 4 Configuring Switching Settings Configuring Switching Settings The navigation pane at the top of the web browser interface contains a Switching tab that enables you to manage your GS700TPS Smart Switch with features under the following main headings: • “Ports” • “LAG” • “VLAN” • “Voice VLAN” • “STP” • “Multicast” • “Address Table” The description that follows in this chapter describes configuring and managing switching settings in the GS700TPS Smart Switch.
GS700TPS Smart Switch Software Administration Manual Port Configuration The Port Configuration screen contains fields for defining port parameters enabled on the ports. To configure port parameters: 1. Click Switching > Ports > Port Configuration. The Port Configuration screen displays: Figure 4-1 The Port Configuration screen contains the following fields: • Port – Displays the port number. • Port Description – Enter a user-defined port description. • Status – Select the port’s operational status.
GS700TPS Smart Switch Software Administration Manual • • • • • • Reactivate Suspended – Select the reactivation status for a port disabled through the locked port security option. The possible field values are: – Enable – Enables reactivation. – Disable – Disables reactivation. Port Speed – Select the data transmission rate for the port. The port type determines which speed setting options are available. Port speeds can only be configured when auto negotiation is disabled.
GS700TPS Smart Switch Software Administration Manual – • • Disable – Disables Flow control. MDI/MDIX – Select the MDI/MDIX status of the port. Hubs and switches are deliberately wired opposite the way end stations are wired, so that when a hub or switch is connected to an end station, a straight through Ethernet cable can be used and the pairs will match up properly.
GS700TPS Smart Switch Software Administration Manual • The device supports up to eight LAGs with eight ports in each LAG. • LACP LAGs support up to 16 ports, with eight ports active at any given time. The LAG menu contains the following options: • “Basic” • “Advanced” Basic The LAG Basic menu contains the following options: • “LAG Configuration” • “LAG Membership” LAG Configuration The Basic LAG Configuration screen contains fields for configuring LAG parameters.
GS700TPS Smart Switch Software Administration Manual • • • • • • • Status – Select the current link operation. The possible field values are: – Up – Indicates the LAG is currently linked and forwarding traffic. – Down – Indicates the LAG is currently not linked. Reactivate Suspended – Select the action to apply to a suspended LAG. The possible field values are: – Enable – Reactivates the suspended LAG. – Disable – Does not reactivate the suspended LAG. Type – Displays the LAG type.
GS700TPS Smart Switch Software Administration Manual 3. Enter or modify the fields in the first row. 4. Click APPLY to update the device. LAG Membership The Basic LAG Membership screen allows network managers to assign ports to LAGs. To assign ports to LAGs: 1. Click Switching > LAG > Basic > LAG Membership. The Basic LAG Membership screen displays: Figure 4-3 The Basic LAG Membership screen contains the following fields: • LAG ID – Select the LAG ID. • LAG Name – Displays the user-defined LAG name.
GS700TPS Smart Switch Software Administration Manual 6. Click CURRENT MEMBERS. The Current Members window opens and displays the member ports included in the LAG: Figure 4-4 Advanced The LAG Advanced menu contains the following options: • “LAG Configuration” • “LAG Membership” • “LACP Configuration” • “LACP Port Configuration” Configuring Switching Settings 4-8 v1.
GS700TPS Smart Switch Software Administration Manual LAG Configuration The Advanced LAG Configuration screen contains fields for configuring LAG parameters. The system supports 8 LAGs, and each LAG can contain up to 8 ports. To define LAG parameters: 1. Click Switching > LAG > Advanced > LAG Configuration. The Advanced LAG Configuration screen displays: Figure 4-5 The Advanced LAG Configuration screen contains the following fields: • Interface – Displays the LAG number.
GS700TPS Smart Switch Software Administration Manual • • • • Speed – Select the data transmission rate for the LAG. The LAG type determines what speed setting options are available. LAG speeds can only be configured when auto negotiation is disabled. The possible field values are: – 10M – Indicates the LAG is currently operating at 10 Mbps. – 100M – Indicates the LAG is currently operating at 100 Mbps. – 1000M – Indicates the LAG is currently operating at 1000 Mbps.
GS700TPS Smart Switch Software Administration Manual LAG Membership The Advanced LAG Membership screen allows network managers to assign ports to LAGs. To assign ports to LAGs: 1. Click Switching > LAG > Advanced > LAG Membership. The Advanced LAG Membership screen displays: Figure 4-6 The Advanced LAG Membership screen contains the following fields: • LAG ID – Select the LAG ID. • LAG Name – Displays the user-defined LAG name. • LAG Type – Select the LAG type.
GS700TPS Smart Switch Software Administration Manual 6. Click CURRENT MEMBERS. The Current Members window opens and displays the member ports included in the LAG: Figure 4-7 LACP Configuration Aggregated links can be set up manually or automatically established by enabling LACP on the relevant links. Aggregated ports can be linked into link-aggregation port-groups. Each group is comprised of ports with the same speed.
GS700TPS Smart Switch Software Administration Manual 3. Click APPLY to update the device. LACP Port Configuration The LACP Port Configuration screen provides information and parameters for configuring the LACP Priority and Timeout fields on interfaces. To configure LACP port priority: 1. Click Switching > LAG > Advanced > LACP Port Configuration.
GS700TPS Smart Switch Software Administration Manual – Short – Indicates a short timeout value (3 seconds). This is the default. 2. Select the interface. 3. Enter the LACP Priority and select the Timeout in the provided fields in the first row. 4. Click APPLY to update the device. VLAN VLANs are logical subgroups with a Local Area Network (LAN) which combine user stations and network devices into a single unit, regardless of the physical LAN segment to which they are attached.
GS700TPS Smart Switch Software Administration Manual VLAN Configuration The Basic VLAN Configuration screen provides information and parameters for configuring and working with VLANs. The maximum number of active VLANs is 128. To define VLAN properties: 1. Click Switching > VLAN > Basic > VLAN Configuration. The Basic VLAN Configuration screen displays: Figure 4-10 The Basic VLAN Configuration screen contains the following fields: • VLAN ID – Enter the VLAN ID. The field range is 2-4093.
GS700TPS Smart Switch Software Administration Manual To remove a VLAN: Note: Prior to deleting a VLAN, ensure all multicast group configuration entries associated with the VLAN are deleted. Refer to “Multicast Group Configuration” for deleting multicast group entries. 1. Click Switching > VLAN > Basic > VLAN Configuration. The Basic VLAN Configuration screen displays. 2. Select the VLAN entry. 3. Click DELETE to remove the entry.
GS700TPS Smart Switch Software Administration Manual The Advanced VLAN Configuration screen contains the following fields: • VLAN ID – Enter the VLAN ID. The field range is 2-4093. • VLAN Name – Enter the user-defined VLAN name. • Type – Displays the VLAN type. The possible field values are: – Static – Indicates the VLAN is user-defined. – Default – Indicates the default VLAN ID is 1. It cannot be modified by the user. 2. Select the VLAN entry. 3.
GS700TPS Smart Switch Software Administration Manual VLAN Membership The VLAN Membership screen contains a table that maps ports to VLANs. Ports are assigned VLAN membership by toggling through the Port Control settings. To define VLAN group membership: 1. Click Switching > VLAN > Advanced > VLAN Membership. The VLAN Membership screen displays: Figure 4-12 The VLAN Membership screen contains the following fields: • VLAN ID – Select the VLAN ID to be displayed and configured.
GS700TPS Smart Switch Software Administration Manual – Remove All – Removes all the interfaces participating in the VLAN. 2. Select the VLAN ID from the list in the provided field. 3. Select the Group Operation from the list in the provided field. 4. Click APPLY to update the device. To tag or untag selected ports or LAGs: 1. Click Switching > VLAN > Advanced > VLAN Membership. The VLAN Membership screen displays. 2. Click a gold button to display the ports or LAGs. 3.
GS700TPS Smart Switch Software Administration Manual To view VLAN untagged port members: 1. Click Switching > VLAN > Advanced > VLAN Membership. The VLAN Membership screen displays. 2. Click UNTAGGED PORT MEMBERS. The VLAN Untagged Ports screen opens: Figure 4-14 Port PVID Configuration The Port PVID Configuration screen contains parameters for assigning Port VLAN ID (PVID) values to interfaces. All ports must have a defined PVID. If no value is defined, the default VLAN PVID is used.
GS700TPS Smart Switch Software Administration Manual Once the PVID is changed from 1 to another VLAN ID on an interface, the default VLAN on that interface is automatically removed. To configure Port PVID parameters: 1. Click Switching > VLAN > Advanced > Port PVID Configuration. The Port PVID Configuration screen displays: Figure 4-15 The Port PVID Configuration screen contains the following fields: • Interface – Displays the interface (port number or LAG number) to which the PVID tag is assigned.
GS700TPS Smart Switch Software Administration Manual Voice VLAN Voice VLAN allows you to enhance VoIP service by configuring ports to carry IP Voice traffic from IP phones on a specific VLAN. VoIP traffic has a preconfigured OUI prefix in the source MAC address. Network managers can configure VLANs on which voice IP traffic is forwarded. Non-VoIP traffic is dropped from the Voice VLAN in auto Voice VLAN secure mode.
GS700TPS Smart Switch Software Administration Manual Figure 4-16 The Voice VLAN Basic Properties screen contains the following fields: • VoiceVLAN Status – Select the VoiceVLAN status on the device. The possible field values are: – Disable – Disables Voice VLAN on the device. This is the default value. – Enable – Enables Voice VLAN on the device. • VoiceVLAN ID – Select the Voice VLAN ID number.
GS700TPS Smart Switch Software Administration Manual 3. If you selected Enable in the VoiceVLAN Status field, select the VoiceVLAN ID, Class of Service, Remark CoS and enter the Voice VLAN Aging Time in the provided fields. 4. Click APPLY to update the device.
GS700TPS Smart Switch Software Administration Manual • Class of Service – Select the CoS tag to add to incoming packets not containing a VPT received on the Voice VLAN. The possible field values are 0-7, where zero is the lowest priority, and seven is the highest priority. • Remark CoS – Enable or disable reassigning the CoS tag value to packets received on the Voice VLAN. The possible field values are: • – Disable – Disables remarking the packet CoS tag value. This is the default value.
GS700TPS Smart Switch Software Administration Manual Figure 4-18 The Voice VLAN Port Setting screen contains the following fields: • Interface – Displays the interface for which the Voice VLAN settings are applied. • Voice VLAN Mode – Select the Voice VLAN mode. The possible field values are: • – None – Maintains the current Voice VLAN port/LAG settings. This is the default value.
GS700TPS Smart Switch Software Administration Manual – • Disable – Disables port/LAG security on the Voice VLAN. This is the default value. Membership – Displays the Voice VLAN member status. The possible field values are: – Active – Indicates the Voice VLAN membership is active for the interface. – Not Active – Indicates the Voice VLAN membership is not active for the interface. 2. Select the interface. 3.
GS700TPS Smart Switch Software Administration Manual • – 00-03-6B – Assigned to Cisco IP Phones. – 00-E0-75 – Assigned to Polycom/Veritel IP Phones. – 00-D0-1E – Assigned to Pingtel IP Phones. – 00-01-E3 – Assigned to Siemens IP Phones. – 00-60-B9 – Assigned to NEC/Philips IP Phones. – 00-0F-E2 – Assigned to H3C IP Phones. Description – Enter an OUI description up to 32 characters. 2. Select the OUI entry. 3. Enter the Telephony OUI(s) and Description in the provided fields in the first row.
GS700TPS Smart Switch Software Administration Manual when alternate routes exist between hosts. Loops in an extended network can cause bridges to forward traffic indefinitely, resulting in increased traffic and reducing network efficiency. The STP menu contains the following options: • “Basic” • “Advanced” Basic The STP Basic menu contains the following options: • “STP Configuration” STP Configuration The Basic STP Configuration screen contains parameters for configuring STP on the device.
GS700TPS Smart Switch Software Administration Manual • • Spanning Tree State – Select the STP state on the device. The possible field values are: – Disable – Disables STP on the device. – Enable – Enables STP on the device. This is the default value. STP Operation Mode – Specifies the STP mode enabled on the device. The possible field values are: – STP – Enables Classic STP on the device. – RSTP – Enables Rapid STP on the device. This is the default value.
GS700TPS Smart Switch Software Administration Manual • Max Age (Sec) – Displays the device Maximum Age Time. The Maximum Age Time is the amount of time in seconds a bridge waits before sending configuration messages. The default Maximum Age Time is 20 seconds. • Forward Delay (Sec) – Displays the device Forward Delay Time. The Forward Delay Time is the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets. The default is 15 seconds.
GS700TPS Smart Switch Software Administration Manual Figure 4-21 The Advanced STP Configuration screen contains the following fields: STP Configuration • • Spanning Tree State – Select the STP state on the device. The possible field values are: – Disable – Disables STP on the device. – Enable – Enables STP on the device. This is the default value. STP Operation Mode – Select the STP mode on the device. The possible field values are: – STP – Enables STP on the device.
GS700TPS Smart Switch Software Administration Manual – Flooding – Indicates BPDUs are flooded to all ports in the system. This is the default. – Bridging – Indicates BPDUs are bridged to all ports in the VLAN. Status • Bridge Identifier – Displays the Bridge priority and MAC address. • Time Since Topology Change – Displays the amount of time that has elapsed since the bridge was initialized or reset, and the last topographic change that occurred.
GS700TPS Smart Switch Software Administration Manual CST Configuration The Common Spanning Tree (CST) describes the topology connecting STP/RSTP Bridges and MSTP regions. To configure CST on the device: 1. Click Switching > STP > Advanced > CST Configuration. The CST Configuration screen displays: Figure 4-22 The CST Configuration screen contains the following fields: CST Configuration • Bridge Priority – Enter the bridge priority value.
GS700TPS Smart Switch Software Administration Manual • Forward Delay – Enter the device Forward Delay Time. The Forward Delay Time is the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets. The default is 15 seconds. • Spanning Tree Maximum Hops – Specifies the total number of hops that occur in a specific region before the BPDU is discarded. Once the BPDU is discarded, the port information is aged out. The possible field range is 1-40.
GS700TPS Smart Switch Software Administration Manual CST Port Configuration The CSP Port Configuration screen contains parameters for assigning Common Spanning Tree (CST) values to interfaces. To configure CST ports on the device: 1. Click Switching > STP > Advanced > CST Port Configuration. The CST Port Configuration screen displays: Figure 4-23 The CST Port Configuration screen contains the following fields: • Interface – Displays the port or LAG for which the STP information is displayed.
GS700TPS Smart Switch Software Administration Manual – • Disable – Disables Fast Link on the interface. This is the default. Port State – Displays the current STP state of a port. If enabled, the port state determines what forwarding action is taken on traffic. Possible port states are: – Forwarding – Indicates STP is enabled on the port, and the port is forwarding packets based on the STP topology. – Disabled – Indicates STP is currently disabled on the port.
GS700TPS Smart Switch Software Administration Manual information displays the same field information as the ports, but represents the LAG RSTP information. To define RSTP on the device: 1. Click Switching > STP > Advanced > RSTP. The Rapid STP screen displays: Figure 4-24 The Rapid STP screen contains the following fields: • Interface – Displays the port or LAG on which Rapid STP is enabled or disabled. • Role – Displays the port role assigned by the STP algorithm to provide to STP paths.
GS700TPS Smart Switch Software Administration Manual – • • • • Disabled – Indicates the port is not participating in the Spanning Tree. Mode – Displays the current STP mode. The STP mode is selected in the STP Configuration screen. The possible field values are: – STP – Indicates Classic STP is enabled on the device. – RSTP – Indicates Rapid STP is enabled on the device. Fast Link Operational Status – Displays the Fast Link status for the interface.
GS700TPS Smart Switch Software Administration Manual 2. Select the interface. 3. Select the Point-to-Point Admin Status from the list in the provided field in the first row. 4. To configure and test the data link, check Activate Protocol Migration in the provided field in the first row. 5. Click APPLY to update the device. MST Configuration Multiple Spanning Tree (MST) allows the user to group and associate VLANs to spanning tree instances.
GS700TPS Smart Switch Software Administration Manual • Bridge Identifer – Indicates the bridge ID of the selected instance. • Designated Root – Indicates the priority and MAC address of the bridge with the lowest path cost to the instance ID. • Root Path Cost – Indicates the selected instance’s path cost. • Root Port – Indicates the selected instance’s root port. 2. Select the MST ID and enter Priority field 3. Click APPLY to update the device.
GS700TPS Smart Switch Software Administration Manual • Interface – Displays the Port or LAG for which the MSTP settings are displayed. • Port Priority – Defines the interface priority for the specified instance. The field range is 0-240. The default value is 128. • Port Path Cost – Indicates the port contribution to the Spanning Tree instance. The range should always be 1-200,000,000. The field default is 100. • Port ID – Indicates the port priority and interface number of the source port.
GS700TPS Smart Switch Software Administration Manual – Backup – Provides a backup path to the designated port path toward the Spanning Tree leaves. Backup ports occur only when two ports are connected in a loop by a point-to-point link or when a LAN has two or more connections connected to a shared segment. – Disabled – Indicates the port is not participating in the Spanning Tree. – Master – Indicates the port provides connectivity from the MSTP region to the outlying CIST root.
GS700TPS Smart Switch Software Administration Manual ports also receive the Multicast, causing increased network traffic. Multicast forwarding filters enable forwarding of Layer 2 packets to port subsets, defined in the Multicast filter database. The device supports forwarding L2 Multicast Packets. Multicast forwarding is enabled by default, and not configurable by user.
GS700TPS Smart Switch Software Administration Manual The Basic IGMP Snooping Configuration screen contains the following fields: IGMP Snooping Configuration • IGMP Snooping Status – Select the IGMP Snooping status on the device. The possible field values are: – – Disable – Disables IGMP Snooping on the device. This is the default value. Enable – Enables IGMP Snooping on the device. Interface Settings • VLAN ID – Displays the VLAN ID. • Status – Select the IGMP Snooping status on the VLAN.
GS700TPS Smart Switch Software Administration Manual IGMP Snooping Configuration To configure Advanced IGMP Snooping: 1. Click Switching > Multicast > Advanced > IGMP Snooping Configuration. The Advanced IGMP Snooping Configuration screen displays: Figure 4-28 The Advanced IGMP Snooping Configuration screen contains the following fields: IGMP Snooping Configuration • • Status – Select the IGMP Snooping status on the device.
GS700TPS Smart Switch Software Administration Manual – • Disable – Disables IGMP Snooping on the VLAN. Auto Learn – Select the Auto Learn status on the device. If Auto Learn is enabled, the devices automatically learns where other Multicast groups are located. The possible field values are: – Enable – Enables auto learn. – Disable – Disables auto learn. • Host Timeout – Enter the amount of time in seconds the host waits to receive a message before timing out. The default value is 260 seconds.
GS700TPS Smart Switch Software Administration Manual Multicast Group Configuration The Multicast Group Configuration screen contains fields for creating, deleting and modifying Multicast service groups. The Multicast Group Configuration table contains up to 32 Multicast service groups. To configure Multicast groups: 1. Click Switching > Multicast > Advanced > Multicast Group Configuration.
GS700TPS Smart Switch Software Administration Manual Multicast Group Membership The Multicast Group Membership screen displays the ports and LAGs attached to the selected VLAN and the Multicast service group. The Port and LAG tables also reflect the manner in which the port or LAGs joined the Multicast group. To configure Multicast group membership: 1. Click Switching > Multicast > Advanced > Multicast Group Membership.
GS700TPS Smart Switch Software Administration Manual Multicast Group • Interface – Displays the ports and LAGs for which the Multicast settings are displayed. • Interface Status – Select the interface status. The possible field values are: – Static – Indicates the interface is joined to the Multicast group statically. – Forbidden – Indicates the interface is forbidden to join the Multicast group. – Excluded – Indicates the interface is not included in the Multicast group. 2.
GS700TPS Smart Switch Software Administration Manual Multicast Forward All The Multicast Forward All screen contains fields for attaching ports or LAGs to a device that is attached to a neighboring Multicast router/switch. Once IGMP Snooping is enabled, Multicast packets are forwarded only to the appropriate port or VLAN. To define Multicast forward all settings: 1. Click Switching > Multicast > Advanced > Multicast Forward All.
GS700TPS Smart Switch Software Administration Manual • Interface Status – Select the interface status. The possible field values are: – Static – Indicates the interface is added to the Multicast forward group statically. – Forbidden – Indicates the interface is forbidden to join the mulitcast group. – Excluded – Indicates the interface is not included in the Multicast group. 2. Select the VLAN ID from the list in the provided fields. 3.
GS700TPS Smart Switch Software Administration Manual Address Table The Basic Address Table screen displays the MAC Address table according to the defined categories. To query the Basic Address Table: 1. Click Switching > Address Table > Basic > Address Table. The Basic Address Table screen displays: Figure 4-32 The Basic Address Table screen contains the following fields: • Search By – Display the MAC Address list according to selected category and query field.
GS700TPS Smart Switch Software Administration Manual 4. Click GO to execute the query. To delete all addresses from the Basic Address Table: 1. Click Switching > Address Table > Basic > Address Table. The Basic Address Table screen displays. 2. Click CLEAR ALL to delete all entries in the address table.
GS700TPS Smart Switch Software Administration Manual • Interface – Enter the interface to which the entry refers. • Status – Select the MAC Address duration period status within the table. The possible field values are: – Permanent – Indicates the MAC address is permanent. – Delete on Reset – Indicates the MAC address is deleted when the device is reset. – Delete on Timeout – Indicates the MAC address is deleted when the Address Aging Interval expires.
GS700TPS Smart Switch Software Administration Manual • Address Aging – Enter the amount of time the MAC address remains in the Dynamic MAC Address table before it is timed out if no traffic from the source is detected. The range is 10 - 630 seconds. The default value is 300 seconds. 2. Enter the Address Aging in the provided field in the first row. 3. Click APPLY to update the device. Address Table The Advanced Address Table screen displays the MAC Address table according to the defined categories.
GS700TPS Smart Switch Software Administration Manual • VLAN ID – Displays the VLAN ID number to which the entry refers. • MAC Address – Displays the MAC address to which the entry refers. • Interface – Displays the interface to which the entry refers. 2. Select the Search By key from the list in the provided field. 3. Enter the value to be searched for in the provided box. 4. Click GO to execute the query. To delete all addresses from the Advanced Address Table: 1.
Chapter 5 Configuring QoS Configuring the Basic and Advanced QoS Settings The navigation pane at the top of the web browser interface contains a QoS tab that enables you to manage your GS700TPS Smart Switch with features under the following main heading: • “CoS” The description that follows in this chapter describes configuring and managing QoS settings in the GS700TPS Smart Switch. CoS Quality of Service (QoS) provides the ability to implement QoS and priority queuing within a network.
GS700TPS Smart Switch Software Administration Manual • Weighted Round Robin – Ensures that a single application does not dominate the device forwarding capacity. Weighted Round Robin (WRR) forwards entire queues in a round robin order. All queues can participate in WRR, except SP queues. If the traffic flow is minimal, and SP queues do not occupy the whole bandwidth allocated to a port, the WRR queues can share the bandwidth with the SP queues.
GS700TPS Smart Switch Software Administration Manual The CoS Global Configuration screen contains the following: • • • QoS Status – Select whether QoS is enabled or disabled on the device. The possible values are: – Enable – Enables QoS globally. This is the default value. – Disable – Disables QoS globally. QoS Mode – Select whether basic or advanced mode is enabled on the device. The possible values are: – Basic – Indicates that basic QoS mode is enabled on the device.
GS700TPS Smart Switch Software Administration Manual To configure CoS interface parameters: 1. Click QoS > CoS > Basic > CoS Interface Configuration. The CoS Interface Configuration screen displays: Figure 5-2 The CoS Interface Configuration screen contains the following fields: • Interface – Displays the interface for which the default CoS parameters are defined. • Default CoS – Select the default CoS value for incoming packets to the selected interface for which a VLAN priority (VPT) is not defined.
GS700TPS Smart Switch Software Administration Manual 4. Check or uncheck the Restore Defaults box in the interface entry row. 5. Click APPLY to update the device. Queue The Queue screen contains fields for defining the QoS queue forwarding types. To set the queue settings: 1. Click QoS > CoS > Basic > Queue. The Queue screen displays: Figure 5-3 The Queue screen contains the following fields: • Strict Priority – Select to specify traffic scheduling based strictly on the queue priority.
GS700TPS Smart Switch Software Administration Manual The Bandwidth screen allows the network manager to define Ingress Rate Limit and Egress Shaping Rates. To define bandwidth settings: 1. Click QoS > CoS > Basic > Bandwidth. The Bandwidth screen displays: Figure 5-4 The Bandwidth screen contains the following fields: • Interface – Displays the ports for which the bandwidth settings are displayed. • Ingress Rate Limit Status – Select whether rate limiting is defined on the interface.
GS700TPS Smart Switch Software Administration Manual • Egress Shaping Rates Status – Select whether egress shaping is defined on the interface. The possible field values are: – Enable – Enables egress shaping rate on the interface. – Disable – Disables egress shaping rate on the interface. This is the default value. • Egress Shaping Rates CIR – Enter the Egress Shaping Committed Information Rate (CIR) in kilobits per second. The possible field range is 64 to 1000000.
GS700TPS Smart Switch Software Administration Manual To map CoS values to queues: 1. Click QoS > CoS> Advanced > CoS to Queue Mapping. The CoS to Queue Mapping screen displays: Figure 5-5 The CoS to Queue Mapping screen contains the following fields: CoS to Queue Mapping • CoS – Displays the CoS priority tag values, where 0 is the lowest and 7 is the highest. • Queue – Select the traffic forwarding queue to which the CoS priority is mapped.
GS700TPS Smart Switch Software Administration Manual DSCP to Queue Mapping The DSCP To Queue Mapping screen contains fields for mapping DSCP values to traffic queues for various PHBs (Per-Hop Behaviors). These include the CS (Class Selector), AF (Assured Forwarding) and EF (Expedited Forwarding). For example, a packet with a DSCP tag value of 1 can be assigned to the High queue. To map DSCP values to queues: 1. Click QoS > CoS> Advanced > DSCP To Queue Mapping.
GS700TPS Smart Switch Software Administration Manual Restore Default Mapping • Restore Defaults – Restore the DSCP Mapping device factory default values. The possible field values are: – Checked – Restores the factory default settings for DSCP mapping values. – Unchecked – Maintains the current DSCP mapping settings. 2. Select the Queue values for each DSCP In value in the provided fields. 3. Check or uncheck the Restore Defaults box in the provided field. 4. Click APPLY to update the device.
GS700TPS Smart Switch Software Administration Manual • IPv6 ACL – Select a user-defined IPv6 ACL from the list. • And/Or – Indicates the criteria used to match class maps with an IP ACL address. Matches both IPv4 or IPv6 and/Or MAC to the packet. • MAC ACL – Select a user-defined MAC ACL from the list. 2. Enter the a new Class-Map Name in the provided field in the first row. 3. Select the IPv4 ACL or IPV6 ACL in the provided field in the first row. 4. Click APPLY to update the device.
GS700TPS Smart Switch Software Administration Manual To define policies: 1. Click QoS > CoS> Advanced > Policy Table screen. The Policy Table screen displays: Figure 5-8 The Policy Table screen contains the following fields: • Policy Name – Define the user-defined policy name. • Class Map – Select a class map for the class. • Action – Define the action assigned to incoming packets exceeding the CIR. – Type – Set the packets’ DSCP, Queue, or CoS tag.
GS700TPS Smart Switch Software Administration Manual 11. Click DELETE to remove the entry. Policy Binding The Policy Binding screen contains information for attaching policies on interfaces. 1. Click QoS > CoS> Advanced > Policy Binding screen. The Policy Binding screen displays: Figure 5-9 The Policy Binding screen contains the following fields: Policy Binding Table • Policy Name – Displays the user-defined policy name.
Chapter 6 Managing Security Setting Security Configuration Options The navigation pane at the top of the web browser interface contains a Security tab that enables you to manage your GS700TPS Smart Switch with features under the following main menu options: • “Management Security” • “Port Authentication” • “Traffic Control” • “ACL” The description that follows in this chapter describes configuring and managing security settings in the GS700TPS Smart Switch.
GS700TPS Smart Switch Software Administration Manual Change Password The Change Password screen contains parameters for configuring device passwords. Authentication on this device uses only a password, not a username. To change the device password: 1. Click Security > Management Security > User Configuration > Change Password. The Change Password screen displays: Figure 6-1 The Change Password screen contains the following fields: • User Name – Displays the User Name.
GS700TPS Smart Switch Software Administration Manual To configure RADIUS servers: 1. Click Security > Management Security > RADIUS. The RADIUS screen displays: Figure 6-2 The RADIUS screen contains the following fields: • Host IP Address – Enter the RADIUS Server IP address. • Authentication Port – Enter the authentication port number. The authentication port is used to verify the RADIUS Server authentication. The field default is 1812.
GS700TPS Smart Switch Software Administration Manual • Active – Select the priority in which the system performs authentication with a RADIUS Server. The system performs authentication initially with the RADIUS Primary Server, and if it fails, it performs authentication with the RADIUS Backup Server. The possible values are: – Primary – Defines the RADIUS Primary Server. – Backup – Defines the RADIUS Backup Server. 2. Select the RADIUS Server entry. 3.
GS700TPS Smart Switch Software Administration Manual Figure 6-3 The RADIUS Accounting Server Configuration screen contains the following fields: • Accounting Mode – Select the RADIUS accounting method. The possible field values are: – None – Indicates RADIUS accounting is disabled. This is the default. – 802.1x – Indicates 802.1X authentication sessions are recorded. – Login – Indicates device management (Web login and logout) sessions are recorded. – Both – Indicates both 802.
GS700TPS Smart Switch Software Administration Manual The TACACS+ protocol ensures network integrity through encrypted protocol exchanges between the client and TACACS+ server. The user-assigned TACACS+ parameters are applied to newly defined TACACS+ servers. If values are not defined, the system defaults are applied to the new TACACS+ servers. To configure TACACS+ Settings: 1. Click Security > Management Security > TACACS+.
GS700TPS Smart Switch Software Administration Manual – Backup – Defines the TACACS+ as the Backup Server. 2. Select the TACACS+ server entry. 3. Enter the Host IP Address, Key String, Authentication Port and Timeout for Reply in the provided fields in the first row. 4. Select the Single Connection status and Active server from the lists in the provided fields in the first row. 5. Click APPLY to update the device. To add a new TACACS+ server entry: 1. Click Security > Management Security > TACACS+.
GS700TPS Smart Switch Software Administration Manual To configure the Authentication List method: 1. Click Security > Management Security > Authentication List. The Authentication List screen displays: Figure 6-5 The Authentication List screen contains the following fields: • 1,2,3 – Select the order in which authentication is applied. The possible field values are: – TACACS+ – Authenticates the user at the TACACS+ server. For more information, see “TACACS+”.
GS700TPS Smart Switch Software Administration Manual Basic The Port Authentication Basic menu contains the following option: • “802.1X Configuration” 802.1X Configuration The Basic 802.1X Configuration screen allows network managers to configure network authentication parameters. In addition, the Guest VLAN option is enabled from the Basic 802.1X Configuration screen. To define the 802.1X configuration: 1. Click Security > Port Authentication > Basic > 802.1X Configuration. The Basic 802.
GS700TPS Smart Switch Software Administration Manual – • None – Indicates no authentication method is used to authenticate the port. Guest VLAN – Select whether the Guest VLAN is enabled or disabled on the device. The default VLAN cannot be defined as a Guest VLAN. The possible field values are: – Disable – Disables the Guest VLAN on the device. This is the default value. – Enable – Enables using a Guest VLAN for unauthorized ports.
GS700TPS Smart Switch Software Administration Manual To define the 802.1X configuration: 1. Click Security > Port Authentication > Advanced > 802.1X configuration. The Advanced 802.1X Configuration screen displays: Figure 6-7 The Advanced 802.1X Configuration screen contains the following fields: • • • • Port Based Authentication State – Enable port-based authentication on the device. The possible field values are: – Disable – Disables port-based authentication on the device.
GS700TPS Smart Switch Software Administration Manual • EAPOL Handling – Select the method of handling EAPOL (Extensible Authentication Protocol Over LAN) packets when 802.1X authentication is disabled. The possible field values are: – Filtering – Indicates EAPOL packets are filtered. – Flooding – Indicates EAPOL packets are flooded to all ports. 2. Select Disable or Enable for the Port Based Authentication State in the provided field. 3.
GS700TPS Smart Switch Software Administration Manual To configure port-based authentication global properties: 1. Click Security > Port Authentication > Advanced > Port Authentication. The Port Authentication screen displays Figure 6-8 The Port Authentication screen contains the following fields: • Interface – Displays the interfaces. • User Name – Displays the supplicant (client) user name, once the user is authenticated. • Port Control – Select the port authorization state.
GS700TPS Smart Switch Software Administration Manual • • Guest VLAN – Select whether the Guest VLAN is enabled or disabled on the port. The default VLAN cannot be defined as a Guest VLAN. The possible field values are: – Enable – Enables using a Guest VLAN for the unauthorized port. If a Guest VLAN is enabled, the unauthorized port automatically joins the VLAN selected in the VLAN List field. – Disable – Disables the Guest VLAN on the port. This is the default value.
GS700TPS Smart Switch Software Administration Manual 3. Select the Port Control state, Guest VLAN mode and Periodic Reauthentication status in the provided fields in the first row. 4. If you selected Enable as the Periodic Reauthentication status, enter the Reauthentication Period in the provided field in the first row. 5. Enter the Quiet Period, Resending EAP time, Max EAP Requests, Supplicant Timeout and Server Timeout in the provided field in the first row. 6. Click APPLY to update the device.
GS700TPS Smart Switch Software Administration Manual To configure Storm Control: 1. Click Security > Traffic Control > Storm Control. The Storm Control screen displays: Figure 6-9 The Storm Control screen contains the following fields: • Interface – Displays the port number for which the storm control information is displayed. • Broadcast Control – Select whether storm control is enabled or disabled on the interface according to Broadcast mode.
GS700TPS Smart Switch Software Administration Manual – • Broadcast Only – Counts Broadcast traffic only. This mode is enabled by default. Broadcast Rate Threshold – Enter the maximum rate (kilobits per second) at which broadcast packets are forwarded. FE (Fast Ethernet) ports have a range of 70 - 100000 and GE (Gigabit Ethernet) ports have a range of 3500 - 1000000. The default value for both FE and GE ports is 3500. 2. Select the interface. 3.
GS700TPS Smart Switch Software Administration Manual To define port security: 1. Click Security > Traffic Control > Port Security. The Port Security screen displays: Figure 6-10 The Port Security screen contains the following fields: • Interface – Displays the port or LAG name. • Status – Select the port security status. The possible field values are: • – Locked – Indicates the port is currently locked. – Unlocked – Indicates the port is currently unlocked. This is the default value.
GS700TPS Smart Switch Software Administration Manual • Max Entries – Enter the maximum number of MAC addresses that can be learned on the port. The Max Entries field is enabled only if the Limited Dynamic Lock mode is selected. The range is 1-128 entries. The default value is 1. • Action – Select the action to be applied to packets arriving on a locked port. The possible field values are: • • – Forward – Forwards packets from an unknown source without learning the MAC address.
GS700TPS Smart Switch Software Administration Manual unprotected ports, but not to other protected ports. Undefined ports are perceived as unprotected and can send traffic to any port; whether protected or unprotected. The default configuration is unprotected. To define protected ports: 1. Click Security > Traffic Control > Protected Ports > Protected Ports Membership.
GS700TPS Smart Switch Software Administration Manual ACL Access Control Lists (ACL) allow network managers to define classification actions and rules for specific ingress ports. Packets entering an ingress port, with an active ACL, are either admitted or denied entry and the ingress port is disabled. If they are denied entry, the user can disable the port.
GS700TPS Smart Switch Software Administration Manual Figure 6-12 The MAC Configuration screen contains the following fields: MAC ACL • Current number of ACL – Displays the current number of user-defined ACLs. MAC ACL Table • Name – Enter the user-defined MAC based ACL name. • Number of Rules – Displays the current number of rules in the ACL. 2. Select the ACL entry. 3. Enter the new ACL Name in the provided field in the first row. 4. Click APPLY to update the device.
GS700TPS Smart Switch Software Administration Manual MAC Rules The MAC Rules screen allows a MAC Rule to be defined within a configured ACL. Rules can be added only if the ACL is not bound to an interface. To define MAC Rules: 1. Click Security > ACL > MAC Rules. The MAC Rules screen displays: Figure 6-13 The MAC Rules screen contains the following fields: MAC Rules • ACL Name – Select the ACL Name from the list. MAC Rules Table • Priority – Enter the rule priority.
GS700TPS Smart Switch Software Administration Manual – Permit – Permits access to the device. – Deny – Denies access to packets originating from the blocked MAC address. – Shutdown – Drops packets that meet the ACL criteria, and disable the port to which the packet was addressed. 2. Select the ACL Name from the list in the provided field. 3. Select the rule entry. 4. Enter the provided fields in the first row. 5. Click APPLY to update the device. To add a MAC rule: 1.
GS700TPS Smart Switch Software Administration Manual To bind interfaces to an ACL: 1. Click Security > ACL > MAC Binding Configuration. The MAC Binding Configuration screen displays: Figure 6-14 The MAC Binding Configuration screen contains the following fields: MAC Binding Configuration • ACL Name – Select the ACL Name for viewing and modifying ACL bound interfaces. Port Selection Table • Select the interfaces for which the ACLs are bound. 2. Select the interfaces to which the ACLs are bound. 3.
GS700TPS Smart Switch Software Administration Manual To view or rename IPv4 Based ACLs: 1. Click Security > ACL > IPv4 ACL. The IPv4 ACL screen displays: Figure 6-15 The IPv4 ACL screen contains the following fields: IPv4 ACL • Current number of ACL – Displays the current number of user-defined ACLs. IPv4 ACL Table • Name – Enter the user-defined IP based ACL name. • Number of Rules – Displays the current number of rules in the ACL.
GS700TPS Smart Switch Software Administration Manual Figure 6-16 The IPv4 Rules screen contains the following fields: IPv4 Rules • ACL Name – Select the ACL Name from the list IPv4 Rules Table • Priority – Enter the rule priority. When the packet is matched to a rule, user groups are either granted permission or denied device management access. The rule number is essential to matching packets to rules, as packets are matched on a first-fit basis.
GS700TPS Smart Switch Software Administration Manual 2. Select the ACL Name from the list in the provided field. 3. Select the rule entry. 4. Enter the provided fields in the first row. 5. Click APPLY to update the device. To add an IPv4 rule: 1. Click Security > ACL > IPv4 Rules. The IPv4 Rules screen displays. 2. Select the ACL Name from the list in the provided field. 3. Click ADD to create a new entry or duplicate an existing entry. 4. Select the added entry. 5.
GS700TPS Smart Switch Software Administration Manual To bind IPv4 interfaces to an ACL: 1. Click Security > ACL > IPv4 Binding Configuration. The IPv4 Binding Configuration screen displays: Figure 6-17 The IPv4 Binding Configuration screen contains the following fields: IPv4 Binding Configuration • ACL Name – Select the ACL Name for viewing and modifying ACL bound interfaces. Port Selection Table • Select the interfaces for which the ACLs are bound. 2.
GS700TPS Smart Switch Software Administration Manual Figure 6-18 The IPv6 ACL screen contains the following fields: IPv6 ACL • Current number of ACL – Displays the current number of user-defined ACLs. IPv6 ACL Table • Name – Enter the user-defined IP based ACL name. • Number of Rules – Displays the current number of rules in the ACL. 2. Select the ACL entry. 3. Enter the new ACL Name in the provided field in the first, editable row. 4. Click APPLY to update the device.
GS700TPS Smart Switch Software Administration Manual IPv6 Rules The IPv6 Rules screen allows an IPv6 Rule to be defined within a configured ACL. Rules can be added only if the ACL is not bound to an interface. To define IPv6 Rules: 1. Click Security > ACL > IPv6 Rules. The IPv6 Rules screen displays: Figure 6-19 The IPv6 Rules screen contains the following fields: IPv6 Rules • ACL Name – Select the ACL Name from the list. IPv6 Rules Table • Priority – Enter the rule priority.
GS700TPS Smart Switch Software Administration Manual • Destination Port – Enter the destination port that is matched to packets. • DSCP – Match the packet DSCP value to the ACL. Either the DSCP value or the IP Precedence value is used to match packets to ACLs. The possible field range is 0-63. • IP Prec. – Match the packet IP Precedence value to the ACL. • Action – Select the action applied to packets with IP addresses that have been filtered.
GS700TPS Smart Switch Software Administration Manual IPv6 Binding Configuration The IPv6 Binding Configuration screen contains information for mapping ACLs to IPv6 interfaces. When an ACL is bound to an interface, all the ACE rules that have been defined are applied to the selected interface. Whenever an ACL is assigned on a port, LAG or, VLAN, flows from that ingress interface that do not match the ACL are matched to the default rule, which is Drop unmatched packets. To bind interfaces to an ACL: 1.
GS700TPS Smart Switch Software Administration Manual 4. Select the interfaces to bind to the selected ACL Name by one of the following methods. a. Click on the port or LAG gold bar to display the associated interfaces, and then select the interfaces to bind by clicking on the boxes below the interfaces. or b. Click on the port’s or LAG’s quick box to select all the associated interfaces. 5. Click APPLY to update the device. Binding Table To view the ACL Binding Table: 1.
Chapter 7 Monitoring the Switch Setting Monitoring Options The navigation pane at the top of the web browser interface contains a Monitoring tab that enables you to manage your GS700TPS Smart Switch with features under the following main menu options: • “Logs” • “RMON” • “Port Mirroring” The description that follows in this chapter describes configuring and managing monitoring settings in the GS700TPS Smart Switch.
GS700TPS Smart Switch Software Administration Manual Table 7-1. Severity Levels Severity Severity Level Severity Level Description Informational 6 Device information is provided. Debug Detailed log information is provided. 7 This section provides information for managing logs. The logs enable viewing device events in real time, and recording the events for later usage. Logs record and manage events and report errors and informational messages.
GS700TPS Smart Switch Software Administration Manual – Enable – Enables device logs. This is the default value. 2. Select either Enable or Disable as the Logging State in the provided field. 3. Click APPLY to update the device. Log Filter The Log Filter screen contains fields for defining which events are recorded to which logs. Log messages are listed from the highest severity to the lowest severity level. To configure log filters: 1. Click Monitoring > Logs > Log Filter.
GS700TPS Smart Switch Software Administration Manual • – Warning – Indicates the lowest level of a system warning. The system is functioning, but an operational problem has occurred. – Notice – Indicates the system is functioning properly, but a system notice is logged. – Informational – Provides device information. – Debug – Provides debugging messages. Log File – Select the minimum message severity level to appear in the log file.
GS700TPS Smart Switch Software Administration Manual To view the Memory Log screen: 1. Click Monitoring > Logs > Memory Log. The Memory Log screen displays: Figure 7-3 The Memory Log screen contains the following fields: • Log Index – Displays the log number. • Log Time – Displays the time at which the log was generated. • Severity – Displays the log severity and urgency level. The following are the available log severity levels: – Emergency – Indicates the device is not functioning.
GS700TPS Smart Switch Software Administration Manual • Description – Displays the log message text. 2. Click REFRESH or CLEAR LOGS to refresh or reset the Memory Logs screen. Flash Log The Flash Log screen contains information about log entries saved to the log file in Flash, including the time the log was generated, the log severity, and a description of the log message. The message log is available after reboot. To view the message logs in Flash: 1. Click Monitoring > Logs > Flash Log.
GS700TPS Smart Switch Software Administration Manual • – Emergency – Displays the highest warning level. If the device is down or not functioning properly, an emergency log message is saved to the specified logging location. – Alert – Indicates the device needs immediate attention. Alert is the second highest warning level. An alert log is saved, if there is a serious device malfunction; for example, all device features are down. – Critical – Indicates the device is in a critical state.
GS700TPS Smart Switch Software Administration Manual The Server Log screen contains the following fields: • Server IP – Enter the server’s IP address to which logs can be sent. • UDP Port – Enter the UDP port to which the server logs are sent. The possible range is 1 - 65535. The default value is 514. • Facility – Select an application from which device logs are sent to the remote server. Only one facility can be assigned to a single server.
GS700TPS Smart Switch Software Administration Manual 6. Enter an optional server Description in the provided field in the first row. 7. Select the Minimum Severity level message sent to the server from the list in the provided field in the first row. 8. Click APPLY to update the device. To add a remote log server: 1. Click Monitoring > Logs > Server Log. The Server Log screen displays. 2. Enter the Server IP address in the provided field in the first row. 3.
GS700TPS Smart Switch Software Administration Manual Statistics The RMON Basic Statistics screen contains fields for viewing information about device utilization and errors that occurred on the device. To view RMON Basic Statistics: 1. Click Monitoring > RMON > Basic > Statistics. The RMON Basic Statistics screen displays: Figure 7-6 The RMON Basic Statistics screen contains the following fields: • Interface – Displays the port or LAG for which statistics are displayed.
GS700TPS Smart Switch Software Administration Manual • Received Packets – Displays the number of packets received on the interface, including bad packets, Multicast, and Broadcast packets, since the device was last refreshed. • Broadcast Packets Received – Displays the number of good broadcast packets received on the interface since the device was last refreshed. This number does not include Multicast packets.
GS700TPS Smart Switch Software Administration Manual To view RMON Advanced Statistics: 1. Click Monitoring >RMON > Advanced > Statistics. The RMON Advanced Statistics screen displays: Figure 7-7 The RMON Advanced Statistics screen contains the following fields: RMON Interface Statistics • • Interface – Select the device for which statistics are displayed. The possible field values are: – Port – Select the specific port for which RMON statistics are displayed.
GS700TPS Smart Switch Software Administration Manual • Broadcast Packets Received – Displays the number of good broadcast packets received on the interface since the device was last refreshed. This number does not include Multicast packets. • Multicast Packets Received – Displays the number of good Multicast packets received on the interface since the device was last refreshed.
GS700TPS Smart Switch Software Administration Manual • Interface – Displays the port or LAG for which statistics are displayed. • Drop Events – Displays the number of dropped events that have occurred on the interface since the device was last refreshed. • Received Bytes – Displays the number of octets received on the interface since the device was last refreshed. This number includes bad packets and FCS octets, but excludes framing bits.
GS700TPS Smart Switch Software Administration Manual To configure RMON history information: 1. Click Monitoring > RMON > Advanced > History Control. The RMON History Control screen displays: Figure 7-8 The RMON History Control screen contains the following fields: • History Entry No. – Displays the entry number for the History Control Table screen. • Source Interface – Enter the interface from which the history samples were taken.
GS700TPS Smart Switch Software Administration Manual 3. Click ADD to update the device. To remove a history control entry: 1. Click Monitoring >RMON > Advanced > History Control. The RMON History Control screen displays. 2. Select the history control entry. 3. Click DELETE to remove the history control entry. History Table The RMON History Table screen contains interface specific statistical network samples. Each table entry represents all counter values compiled during a single sample.
GS700TPS Smart Switch Software Administration Manual • Drop Events – Displays the number of dropped events that have occurred on the interface since the device was last refreshed. • Received Bytes – Displays the number of octets received on the interface since the device was last refreshed. This number includes bad packets and FCS octets, but excludes framing bits.
GS700TPS Smart Switch Software Administration Manual Events Control The RMON Events Control screen contains fields for defining RMON events. To configure RMON events control: 1. Click Monitoring > RMON > Advanced > Events Control. The RMON Events Control screen displays: Figure 7-10 The RMON Events Control screen contains the following fields: • Event Entry Interface – Displays the event. • Community – Enter the community to which the event belongs.
GS700TPS Smart Switch Software Administration Manual To add an events control entry: 1. Click Monitoring > RMON > Advanced > Events Control. The RMON Events Control screen displays. 2. Enter the Community, Description and Owner in the provided field in the first row. 3. Select the event Type from the list in the provided field in the first row. 4. Click ADD to update the device. To remove an events control entry: 1. Click Monitoring > RMON > Advanced > Events Control.
GS700TPS Smart Switch Software Administration Manual • Description – Displays the log entry description. 2. To refresh the RMON Events Log screen, click REFRESH. Alarms The RMON Alarms screen contains fields for setting network alarms. Network alarms occur when a network problem or event, is detected. Rising and falling thresholds generate events. To set RMON alarms: 1. Click Monitoring > RMON > Advanced > Alarms.
GS700TPS Smart Switch Software Administration Manual • Rising Event – Enter the event number by which rising alarms are reported. • Falling Threshold – Enter the falling counter value that triggers the falling threshold alarm. The falling threshold is graphically presented on top of the graph bars. Each monitored variable is designated a color. • Falling Event – Enter the event number by which falling alarms are reported. • Startup Alarm – Select the trigger that activates the alarm generation.
GS700TPS Smart Switch Software Administration Manual 2. Select the Counter Name from the list of MIB variable values in the provided field in the first row. 3. Enter the Interface in the provided field in the first row. 4. Select the Sample Type from the list in the provided field in the first row. 5. Select the Startup Alarm from the list in the provided field in the first row. 6.
GS700TPS Smart Switch Software Administration Manual Port Mirroring To define port mirroring: 1. Click Monitoring > Port Mirroring > Port Mirroring. The Port Mirroring screen displays: Figure 7-13 The Port Mirroring screen contains the following fields: Destination Port • Destination Port – Enter the port to which port traffic is copied. Source Port Table • Source Port – Enter the port from which the packets are mirrored. • Type – Select the port mode configuration for port mirroring.
GS700TPS Smart Switch Software Administration Manual To add a source port entry: 1. Click Monitoring > Port Mirroring > Port Mirroring. The Port Mirroring screen displays. 2. Enter the Source Port in the provided field in the first row. 3. Select the port mirroring Type from the list in the provided field in the first row. 4. Click ADD to update the device. To remove a source port entry: 1. Click Monitoring > Port Mirroring > Port Mirroring. The Port Mirroring screen displays. 2.
Chapter 8 Maintenance Using the Maintenance Options The navigation pane at the top of the web browser interface contains a Maintenance tab that enables you to manage your GS700TPS Smart Switch with features under the following main menu options: • “Reset” • “Upload” • “Download” • “File Management” • “Troubleshooting” The description that follows in this chapter describes configuring and managing maintenance options in the GS700TPS Smart Switch.
GS700TPS Smart Switch Software Administration Manual To reset the device: 1. Click Maintenance > Reset > Device Reboot. The Device Reboot screen displays: Figure 8-1 The Device Reboot screen contains the following fields: • • Reboot Unit Number – Select the unit to be reset. The possible field values are: – 1, 2, 3, 4, 5, 6 – Reboots the stacking member associated with the selected unit number. – All – Reboots all stacking members.
GS700TPS Smart Switch Software Administration Manual To restore stacking defaults, press the reset button on the front panel of your device. To reset the device to the factory defaults: 1. Click Maintenance > Reset > Factory Default. The Factory Default screen displays: Figure 8-2 2. Check the confirmation box. 3. Click APPLY to reset the device to the factory defaults. Upload The Upload menu contains the following option: • “Upload” Upload System Files can be backed up using the Upload screen.
GS700TPS Smart Switch Software Administration Manual To back up files: 1. Click Maintenance > Upload. The Upload screen displays: Figure 8-3 The Upload screen contains the following fields: • File Type – Enter the type of file to be uploaded. The possible field values are: – Firmware – Upload the Firmware File. – Configuration – Upload the Configuration File. • via TFTP – Select to upload the Firmware or Configuration File to the TFTP Server.
GS700TPS Smart Switch Software Administration Manual Download The Download menu contains the following option: • “Download” Download System files can be downloaded using the Download screen. To download system files: 1. Click Maintenance > Download. The Download screen displays: Figure 8-4 The Download screen contains the following fields: • File Type – Enter the file type to be downloaded. The possible field values are: – Firmware – Downloads the Firmware file.
GS700TPS Smart Switch Software Administration Manual 2. Select Firmware, Boot File or Configuration as the download File Type from the provided field. 3. Select whether to download via TFTP or via HTTP. 4. If you selected via HTTP, enter the file name in the provided box. 5. If you selected via TFTP, enter the TFTP Server IP address in the provided field. 6. If you selected via TFTP, enter the Remote Filename in the provided field. 7. Click APPLY to download the file.
GS700TPS Smart Switch Software Administration Manual • After Reset – Select the image file that is active after the specific unit is reset. The possible field values are: – Image 1 – Activates Image file 1 after the device is reset. – Image 2 – Activates Image file 2 after the device is reset. 2. Select the unit entry. 3. Select the image file to be active in the After Reset provided field in the first row. 4. Click APPLY to update the device.
GS700TPS Smart Switch Software Administration Manual To test cables: 1. Click Maintenance > Troubleshooting > Cable Test. The Cable Test screen displays: Figure 8-6 The Cable Test screen contains the following fields: • Interface – Enter the port to which the cable is connected. • Test Result – Displays the cable test results. Possible values are: – No Cable – Indicates a cable is not connected to the port. – Open Cable – Indicates a cable is connected on only one side.
GS700TPS Smart Switch Software Administration Manual • Cable Length – Displays the approximate cable length. This test can only be performed when the port is up and operating at 100Mbps or 1 Gbps. 2. On the row containing the interface to be tested, click TEST to test the cable connected to the interface. 8-9 Maintenance v1.
Chapter 9 Online Help Online Help The navigation pane at the top of the web browser interface contains a Help tab that provides access to informational services including support and an online user guide in PDF format. The Help menu contains the following options: • “Support” • “User Guide” The description that follows in this chapter covers these features. c Support The Support screen provides access to the NETGEAR online support site at www.netgear.com. To access the Support screen: 1.
GS700TPS Smart Switch Software Administration Manual User Guide The User Guide screen provides access to the online User Guide. To view the User Guide screen: 1. Click Help > Online Help > User Guide. The User Guide screen displays: Figure 9-2 2. Click APPLY to open a window and display the User Guide in PDF format. 9-2 Online Help v1.
Appendix A Default Settings This appendix provides default settings for the NETGEAR Model GS700TPS Smart Switch. You can always configure the switch to default settings by using the Factory Reset function from a Web browser. Table A-1. Default Settings Feature GS700TPS Default Setting Port Speed Auto-negotiation Port Duplex Auto-negotiation Flow Control (half duplex) Disabled Flow Control (full duplex) Disabled IP Configuration DHCP enabled Password password VLAN 802.
GS700TPS Smart Switch Software Administration Manual A-2 Default Settings v1.
Index A F ACE 24, 28, 33 Firmware Download 5 ACL 21 binding 24, 28, 33 Firmware Upload 4 B G Bandwidth Settings 5 getting started 1 Flash Logs 6 Boot File Download 5 C H History Table Page 16 changing the password 9 configuration monitoring 1 network parameters 6 QoS 1 security 1 switch 1 system settings 1 Configuration Download 5 Configuration Upload 4 I IGMP Snooping 44 installing 3, 5 interfaces switch management 2 Web browser 1 IP address default 8 CoS 3 CPU 44 D defaults IP address 8
GS700TPS Smart Switch Software Administration Manual M map CoS 7 Memory Logs 4 menus 2 Multicast Forward All Page 51 Multicast Groups 48, 49 N SNMP groups 34 SNMP v3 23 stacking 8 STP 28 subnet mask 8 switch device 8 switch configuration 1 switch monitoring 1 navigation menu 2 system configuration 8 network alarms 20 System Logs 1 network parameters 5 system requirements 1 NIC settings 7 P password changing 9 T TACACS+ 5 TDR 7 PoE 17 Terminal Access Controller Access Control System (TACACS+) 5
