Owner's Manual

ManualsBrandsNetgear ManualsHubsNetgear GS748TR

202-10303-01

May, 2008

NETGEAR, Inc.

4500 Great America Parkway

Santa Clara, CA 95054 USA

GS700TR Smart Switch

Software Administration

Manual

Summary of content (276 pages)

PAGE 1
GS700TR Smart Switch Software Administration Manual NETGEAR, Inc.
PAGE 2
© 2007, 2008 by NETGEAR, Inc. All rights reserved. FullManual. Technical Support Please refer to the support information card that shipped with your product. By registering your product at http://www.netgear.com/register, we can provide you with faster expert technical support and timely notices of product and software upgrades. NETGEAR, INC. Support Information Phone: 1-888-NETGEAR, for US & Canada only. For other countries, see your Support information card. E-mail: support@netgear.
PAGE 3
Equipment and Electronic Office Machines aimed at preventing radio interference in such residential areas. When used near a radio or TV receiver, it may become the cause of radio interference. Read instructions for correct handling.
PAGE 4
iv v1.
PAGE 5
Contents GS700TR Smart Switch Software Administration Manual About This Manual Audience ..........................................................................................................................xiii Organization ....................................................................................................................xiii Additional Documentation ................................................................................................xiv Conventions, Formats and Scope ......
PAGE 6
GS700TR Smart Switch Software Administration Manual Defining System Information ....................................................................................2-3 Network Connectivity ......................................................................................................2-3 Time ................................................................................................................................2-5 Time Configuration .............................................................
PAGE 7
GS700TR Smart Switch Software Administration Manual Chapter 3 Configuring Switching Information Configuring and Viewing Device Port Information ..........................................................3-1 Port Configuration ....................................................................................................3-1 Flow Control .............................................................................................................3-3 Creating LAGs ...........................................
PAGE 8
GS700TR Smart Switch Software Administration Manual Multicast Router Configuration ...............................................................................3-42 Multicast Router VLAN Configuration ....................................................................3-43 Configuring IGMP Snooping Queriers ..........................................................................3-45 IGMP Snooping Querier Configuration ..................................................................
PAGE 9
GS700TR Smart Switch Software Administration Manual Configuring Differentiated Services ..............................................................................5-10 Defining DiffServ ....................................................................................................5-10 Diffserv Configuration ............................................................................................. 5-11 Class Configuration ............................................................................
PAGE 10
GS700TR Smart Switch Software Administration Manual MAC Binding Configuration ....................................................................................6-42 MAC Binding Table .................................................................................................6-43 IP ACL ....................................................................................................................6-44 IP Rules ........................................................................................
PAGE 11
GS700TR Smart Switch Software Administration Manual Viewing the Dual Image Status ..................................................................................... 8-11 Ping ..............................................................................................................................8-12 TraceRoute ...................................................................................................................8-13 Contents xi v1.
PAGE 12
GS700TR Smart Switch Software Administration Manual xii Contents v1.
PAGE 13
About This Manual The NETGEAR® GS700TR Smart Switch™ Software Administration Manual describes how to configure and operate the Gigabit Smart Switch using its included software features by using the Web-based graphical user interface (GUI). The book describes the software configuration procedures and explains the options available within those procedures.
PAGE 14
GS700TR Smart Switch Software Administration Manual • Chapter 4, “Configuring Routing” on page 4-1 describes how to configure the layer 3 routing features. • Chapter 5, “Configuring Quality of Service” on page 5-1 describes how to manage the GS700TR Smart Switch software ACLs, and how to configure the Differentiated Services and Class of Service features.
PAGE 15
GS700TR Smart Switch Software Administration Manual • Formats. This manual uses the following formats to highlight special messages: Note: A note provides more information about a feature or technology. Tip: This format is used to highlight a procedure that will save time or resources. Warning: A caution provides information about critical aspects of the configuration, combination of settings, events, or procedures that can adversely affect network connectivity, security, and so on.
PAGE 16
GS700TR Smart Switch Software Administration Manual How to Use This Manual The HTML version of this manual includes the following: • Buttons, at a time and , for browsing forwards or backwards through the manual one page • A button that displays the table of contents and an button. Double-click on a link in the table of contents or index to navigate directly to where the topic is described in the manual. • A model. • Links to PDF versions of the full manual and individual chapters.
PAGE 17
GS700TR Smart Switch Software Administration Manual • Click the print icon in the upper left of your browser window. Tip: If your printer supports printing two pages on a single sheet of paper, you can save paper and printer ink by selecting this feature. Revision History Part Number Version Date Number 202-10303-01 1.0 May, 2008 Description Product update: New software and new user Interface About This Manual xvii v1.
PAGE 18
GS700TR Smart Switch Software Administration Manual xviii About This Manual v1.
PAGE 19
Chapter 1 Getting Started This chapter provides an overview of starting your NETGEAR GS700TR Gigabit Smart Switch and accessing the user interface. It also leads you through the steps to use the SmartWizard Discovery utility.
PAGE 20
GS700TR Smart Switch Software Administration Manual Follow these steps: 1. Power on the switch. 2. Configure network information. 3. The switch comes up with a default IP address of 192.168.0.239. After the switch is connected to the network, you can use the default IP address for remote access to the switch by using a Web browser and logging in to the web interface.
PAGE 21
GS700TR Smart Switch Software Administration Manual SmartWizard Discovery in a Network with a DHCP Server To install the switch in a network with a DHCP server, use the following steps: 1. Connect the GS700TR Smart Switch to a DHCP network. 2. Power on the switch by connecting its AC-DC power adapter. 3. Install the SmartWizard Discovery utility on your computer. 4. Start the SmartWizard Discovery utility. 5. Click Discover for the SmartWizard Discovery utility to find your GS700TR Gigabit Smart Switch.
PAGE 22
GS700TR Smart Switch Software Administration Manual Figure 1-2 Use your web browser to manage your switch. The default password is password. Then use this page to proceed to management of the switch covered in “Using the Web Interface” on page 1-9.
PAGE 23
GS700TR Smart Switch Software Administration Manual 4. Start the SmartWizard Discovery utility. 5. Click Discover for the SmartWizard Discovery utility to find your GS700TR Gigabit Smart Switch. You should see a screen similar to Figure 1-1 on page 1-3. 6. Click Configuration Setting. A screen similar to Figure 1-3 appears. Figure 1-3 7. Choose the Disable radio box to disable DHCP. 8. Enter your chosen switch IP address, gateway IP address and subnet mask, and then type your password and click Set.
PAGE 24
GS700TR Smart Switch Software Administration Manual Figure 1-4 To modify your NIC settings: 1. On your PC, access the MS Windows operating system TCP/IP Properties. 2. Set IP address and subnet mask appropriately. The subnet mask value should be identical to that set in the switch. The PC IP address must be different from that of the switch but lie in the same subnet. 3.
PAGE 25
GS700TR Smart Switch Software Administration Manual Password Change To set a new password: 1. Click Password Change from the Switch Setting section. The Password Change screen appears. You can set a new password. In this process, you are required to enter the old password and to confirm the new one. Note: Password Change is only available at the application level, i.e. when the switch is not at the boot level 2. Click Set to enable the new password. You can set a new password of up to 20 ASCII characters.
PAGE 26
GS700TR Smart Switch Software Administration Manual Figure 1-5 2. Enter the following values into the appropriate places in the form: • Firmware Path. The location of the new firmware. If you do not know the location, you can click Browse to locate the file. • Password. Enter your password; the default password is ‘password’. • Upgrade State. Shows upgrading in progress. 3. Click Start to begin loading the upgrade. The system software is automatically loaded.
PAGE 27
GS700TR Smart Switch Software Administration Manual • Web User Interface • Simple Network Management Protocol (SNMP) Each of the standards-based management methods allows you to configure and monitor the components of the GS700TR Smart Switch software. The method you use to manage the system depends on your network size and requirements, and on your preference. The GS700TR Smart Switch Software Administration Manual describes how to use the Web-based interface to manage and monitor the system.
PAGE 28
GS700TR Smart Switch Software Administration Manual Figure 1-1 shows the layout of the GS700TR Smart Switch software Web interface. Each Web page contains three main areas: navigation tree on the left, the configuration status and options, and the tabs at the top that provide access to all the configuration functions of the switch and remain constant.
PAGE 29
GS700TR Smart Switch Software Administration Manual Folder HTML Page Figure 1-8 Configuration and Monitoring Options The panel directly under the tabs and to the right of the navigation menu displays the configuration information or status for the page you select. On pages that contain configuration options, you can input information into fields or select options from dropdown menus. Each page contains access to the HTML-based help that explains the fields and configuration options for the page.
PAGE 30
GS700TR Smart Switch Software Administration Manual Warning: Submitting changes makes them effective during the current boot session only. You must save any changes if you want them to be retained across a power cycle (reboot). Note: To save configuration changes across a reboot, use the Maintenance > Save Config > Save Configuration page. For more information, see “Save All Applied Changes” on page 8-1. Device View The Device View is a Java® applet that displays the ports on the switch.
PAGE 31
GS700TR Smart Switch Software Administration Manual Figure 1-10 If you click the graphic but do not click a specific port, the main menu appears, as Figure 1-11 shows. This menu contains the same option as the navigation tabs at the top of the page. Figure 1-11 Getting Started 1-13 v1.
PAGE 32
GS700TR Smart Switch Software Administration Manual Help Page Access Every page contains a link to the online help , which contains information to assist in configuring and managing the switch. The online help pages are context sensitive. For example, if the IP Addressing page is open, the help topic for that page displays if you click Help. Figure 1-7 on page 1-10 shows the location of the Help link on the Web interface.
PAGE 33
GS700TR Smart Switch Software Administration Manual To use SNMPv3 Authentication for this user, set a password of eight or more alphanumeric characters. 3. To enable authentication, use the Authentication Protocol menu to select either MD5 or SHA for the authentication protocol. 4. To enable encryption, use the Encryption Protocol menu to select DES for the encryption scheme. Then, enter an encryption code of eight or more alphanumeric characters in the Encryption Key field. 5. Click Apply.
PAGE 34
GS700TR Smart Switch Software Administration Manual Table 1-4. Types of Interface Interface Description Example Physical The physical ports are gigabit Ethernet interfaces and are numbered sequentially starting from one. g1, g2, g3 Link Aggregation Group (LAG) LAG interfaces are logical interfaces that are only used for bridging functions. l1, l2, l3 LAG1, LAG2 VLAN Routing VLAN routing interfaces are only used for routing functions. r1, r2, r3 1-16 Getting Started v1.
PAGE 35
Chapter 2 Configuring System Information Use the features in the System tab to define the switch’s relationship to its environment.
PAGE 36
GS700TR Smart Switch Software Administration Manual Figure 2-1 Table 2-1. System Description Fields Field Description System Name Enter the name you want to use to identify this switch. You may use up to 31 alpha-numeric characters. The factory default is blank. System Location Enter the location of this switch. You may use up to 31 alpha-numeric characters. The factory default is blank. System Contact Enter the contact person for this switch. You may use up to 31 alphanumeric characters.
PAGE 37
GS700TR Smart Switch Software Administration Manual Table 2-1. System Description Fields (continued) Field Description Boot Version The bootcode version of the switch. Software Version The software version of the switch. Defining System Information 1. Open the System Information page. 2. Define the following fields: System Name, System Location, and System Contact. 3. Click Apply. The system parameters are applied, and the device is updated.
PAGE 38
GS700TR Smart Switch Software Administration Manual Figure 2-2 2. To access the switch over a network, you must first configure it with IP information (IP address, subnet mask, and default gateway). You can configure the IP information using any of the following options: • Dynamic IP Address (DHCP) • Dynamic IP Address (BOOTP) • Static IP Address Table 2-2. Network Connectivity Fields Field Description IP Address The IP address of the network interface. The factory default value is 192.168.0.239.
PAGE 39
GS700TR Smart Switch Software Administration Manual Table 2-2. Network Connectivity Fields (continued) Field Description Default Gateway The default gateway for the IP interface. The factory default value is 192.168.0.1. Management VLAN ID Specifies the management VLAN ID of the switch. The range is 1-4078. The management VLAN is used for management of the switch. This field is configurable for administrative users and read-only for other users. 3.
PAGE 40
GS700TR Smart Switch Software Administration Manual • T1: Time at which the original request was sent by the client. • T2: Time at which the original request was received by the server. • T3: Time at which the server sent a reply. • T4: Time at which the client received the server's reply. The device can poll Unicast and Broadcast server types for the server time. Polling for Unicast information is used for polling a server for which the IP address is known.
PAGE 41
GS700TR Smart Switch Software Administration Manual Time Configuration Use the Time Configuration page to view and adjust SNTP parameters. To display the Time Configuration page: 1. Click System > Management > Time > SNTP Global Configuration in the navigation menu. 2. Use the Time option to set the time locally on the switch. Select the Clock Source as Local by checking the radio button to configure the local time.
PAGE 42
GS700TR Smart Switch Software Administration Manual Figure 2-3 To configure the time through SNTP: 1. Select the Clock Source as SNTP by checking the radio button. 2. When the Clock Source is set to ‘SNTP’, the Date and Time fields are grayed out (disabled). The switch gets the date and time from the network. 3.
PAGE 43
GS700TR Smart Switch Software Administration Manual Figure 2-4 Table 2-3. Time Configuration Fields Field Description Clock Source Use this field to configure time locally or through SNTP. The default is Local. Date Specifies the duration of the box in days, months and years since the last reboot. This is the default behavior unless you enter a new Date and Time. The Time and Date will subsequently be changed to match the Time you entered.
PAGE 44
GS700TR Smart Switch Software Administration Manual SNTP Global Status Use the SNTP Global Status page to view information about the system’s SNTP client. To access the SNTP Global Status page: 1. Click System > Management > Time > SNTP Global Configuration in the navigation menu. Figure 2-5 Table 2-4. SNTP Global Configuration Fields Field Description Version Specifies the SNTP Version the client supports. Supported Mode Specifies the SNTP modes the client supports.
PAGE 45
GS700TR Smart Switch Software Administration Manual Table 2-4. SNTP Global Configuration Fields (continued) Field Description Last Attempt Status Specifies the status of the last SNTP request or unsolicited message for both unicast and broadcast modes. If no message has been received from a server, a status of Other is displayed. These values are appropriate for all operational modes: • Other: None of the following enumeration values.
PAGE 46
GS700TR Smart Switch Software Administration Manual 3. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 4. If you change any of the settings on the page, click Apply to send the updated configuration to the switch. Configuration changes take effect immediately. SNTP Server Configuration Use the SNTP Server Configuration page to view and modify information for adding and modifying Simple Network Time Protocol SNTP servers.
PAGE 47
GS700TR Smart Switch Software Administration Manual Table 2-5. SNTP Server Configuration Fields (continued) Field Description Port Enter a port number from 1 to 65535. The default is 123. Priority Specifies the priority of this server entry in determining the sequence of servers to which SNTP requests are sent. Enter a priority from 1 to 3, with 1 being the default and the highest priority. Servers with lowest numbers have priority. Version Enter the protocol version number. The range is 1-4. 2.
PAGE 48
GS700TR Smart Switch Software Administration Manual Table 2-6. SNTP Server Status Fields Field Description Address Specifies all the existing Server Addresses. If no Server configuration exists, a message saying “No SNTP server exists” flashes on the screen. Last Update Time Specifies the local date and time (UTC) that the response from this server was used to update the system clock. Last Attempt Time Specifies the local date and time (UTC) that this SNTP server was last queried.
PAGE 49
GS700TR Smart Switch Software Administration Manual • First Fragment: TCP Header size smaller then configured value. • TCP Fragment: IP Fragment Offset = 1. • TCP Flag: TCP Flag SYN set and Source Port < 1024 or TCP Control Flags = 0 and TCP Sequence Number = 0 or TCP Flags FIN, URG, and PSH set and TCP Sequence Number = 0 or TCP Flags SYN and FIN set. • L4 Port: Source TCP/UDP Port = Destination TCP/UDP Port. • ICMP: Limiting the size of ICMP Ping packets.
PAGE 50
GS700TR Smart Switch Software Administration Manual Table 2-7. Denial of Service Configuration Fields Field Description Denial of Service SIP=DIP Enable or disable this option by selecting the corresponding line on the pulldown entry field. Enabling SIP=DIP DoS prevention causes the switch to drop packets that have a source IP address equal to the destination IP address. The factory default is disabled.
PAGE 51
GS700TR Smart Switch Software Administration Manual Configuring DNS You can use these pages to configure information about DNS servers the network uses and how the switch/router operates as a DNS client. DNS Global Configuration Use this page to configure global DNS settings and to view DNS client status information. To access this page: 1. Click System > Management > DNS > DNS Configuration. Figure 2-9 Configuring System Information 2-17 v1.
PAGE 52
GS700TR Smart Switch Software Administration Manual Table 2-8. DNS Global Configuration Fields Field Description DNS Status Select Enable or Disable to set the administrative status of DNS Client. The default is Enable. DNS Default Name Enter the default domain name for DNS client messages. When the system is performing a lookup on an unqualified hostname, this field is provided as the domain name (e.g., if default domain name is .com and the user enters hotmail, then hotmail is changed to hotmail.
PAGE 53
GS700TR Smart Switch Software Administration Manual 2. To create a new DNS server, enter an IP address in standard IPv4 dot notation in the DNS Server Address and click Add. The server appears in the list below. The precedence is set in the order created. 3. To remove a DNS server from the list, select the check box next to the item you want to remove and click Delete. If no DNS server is specified, the check box is global and will delete all the DNS servers listed. 4.
PAGE 54
GS700TR Smart Switch Software Administration Manual Table 2-10. DNS Host Configuration Fields Field Description Host Name Specify the static host name to be added. Its length cannot exceed 158 characters. This field is mandatory for the user. IP Address To add a new DNS server to the list, enter the DNS server IP address in numeric notation. 2. To create a new DNS server, enter an IP address in standard IPv4 dot notation in the IP Address field and click Add. The server appears in the list below.
PAGE 55
GS700TR Smart Switch Software Administration Manual 4. Enter a name and click Add, or click Cancel to cancel and redisplay the list. 5. To remove a hostname, select the box and click Delete. 6. If you change any of the settings on the page, click Apply to send the updated configuration to the switch. Configuration changes take effect immediately.
PAGE 56
GS700TR Smart Switch Software Administration Manual Use this page when you are using the SNMPv1 and SNMPv2c protocol. If you want to use SNMPv3, you should use the User Accounts page. Figure 2-13 2-22 Configuring System Information v1.
PAGE 57
GS700TR Smart Switch Software Administration Manual Table 2-12. SNMP V1/V2 Community Configurable Data Field Description Management Station IP Taken together, the Management Station IP and the Management Station IP Mask denote a range of IP addresses from which SNMP clients may use that community to access this device. If either (Management Station IP or Management Station IP Mask) value is 0.0.0.0, access is allowed from any IP address.
PAGE 58
GS700TR Smart Switch Software Administration Manual Table 2-13. Command Buttons Field Description Add Add the currently selected receiver configuration to the switch. Delete Delete the currently selected receiver configuration. Cancel Cancel the configuration on the screen. Reset the data on the screen to the latest value of the switch. Apply Sends the updated configuration to the switch. Configuration changes take effect immediately.
PAGE 59
GS700TR Smart Switch Software Administration Manual Table 2-14. SNMP Trap Configuration Field Description Recipients IP Enter the address in x.x.x.x format or a hostname starting with an alphabetical character to receive SNMP traps from this device. Length of address cannot exceed 158 characters. Version Select the trap version to be used by the receiver from the pulldown menu. • SNMP v1 - Uses SNMP v1 to send traps to the receiver. • SNMP v2 - Uses SNMP v2 to send traps to the receiver.
PAGE 60
GS700TR Smart Switch Software Administration Manual Figure 2-15 The fields available on the Trap Flags page depends on the packages installed on your system. Figure 2-15 and the following table show the fields that are available on a system with all packages installed. Table 2-16. Trap Flags Configuration Fields Field Description Authentication Enable or disable activation of authentication failure traps by selecting the corresponding button. The factory default is enabled.
PAGE 61
GS700TR Smart Switch Software Administration Manual Figure 2-16 Table 2-17. SNMP v3 User Configuration Field Description SNMP v3 Access Mode The SNMPv3 access privileges for the user account. The admin account always has Read/Write access, and all other accounts have Read Only access. Authentication Protocol Specify the SNMPv3 Authentication Protocol setting for the selected user account. The valid Authentication Protocols are None, MD5, or SHA.
PAGE 62
GS700TR Smart Switch Software Administration Manual 3. Click Apply to send the updated configuration to the switch. Configuration changes take effect immediately. LLDP The IEEE 802.1AB defined standard, Link Layer Discovery Protocol (LLDP), allows stations residing on an 802 LAN to advertise major capabilities and physical descriptions. This information is viewed by a network manager to identify system topology and detect bad configurations on the LAN.
PAGE 63
GS700TR Smart Switch Software Administration Manual Figure 2-17 Table 2-18. LLDP Global Configuration Fields Field Description Transmit Interval Specifies the interval at which frames are transmitted. The default is 30 seconds, and the valid range is 1-32768 seconds. Transmit Hold Multiplier Specifies multiplier on the transmit interval to assign to Time-to-Live (TTL). The default is 4, and the range is 2-10. Re-Initialization Delay Specifies delay before a re-initialization.
PAGE 64
GS700TR Smart Switch Software Administration Manual Figure 2-18 Table 2-19. LLDP Interface Configuration Fields Field Description Interface Specifies the port to be affected by these parameters. Transmit Enables or disables the transmission of LLDP protocol data units (PDUs). The default is disabled. Receive Enables or disables the ability of the port to receive LLDP PDUs. The default is disabled.
PAGE 65
GS700TR Smart Switch Software Administration Manual 3. To update the page with the latest data, click Refresh. LLDP Statistics Use the LLDP Statistics page to view the global and interface LLDP statistics. To display the LLDP Statistics page: 1. Click System > LLDP > Statistics in the navigation tree. Figure 2-19 Table 2-20.
PAGE 66
GS700TR Smart Switch Software Administration Manual Table 2-20. LLDP Statistics Fields (continued) Field Description Port Statistics Interface Displays the Unit and Port to which the statistics on that line apply. Transmit Total Displays the total number of LLDP frames transmitted on the indicated port. Receive Total Displays the total number of valid LLDP frames received on the indicated port. Discards Displays the number of LLDP frames received on the indicated port and discarded for any reason.
PAGE 67
GS700TR Smart Switch Software Administration Manual Figure 2-20 Table 2-21. LLDP Local Device Information Fields Field Description Local Interface Select the interface with the information to display. Chassis ID Subtype Identifies the type of data displayed in the Chassis ID field Chassis ID Identifies the 802 LAN device's chassis. Port ID Subtype Identifies the type of data displayed in the Port ID field. Port ID Identifies the physical address of the port.
PAGE 68
GS700TR Smart Switch Software Administration Manual Remote Device Information Use the LLDP Remote Device Information page to view the data that a specified interface has received from other LLDP-enabled systems. To display the LLDP Remote Device Information page: 1. Click System > LLDP > Remote Device Information in the navigation tree. Figure 2-21 Table 2-22.
PAGE 69
GS700TR Smart Switch Software Administration Manual 2. Click Refresh to update the information on the screen with the most current data. LLDP-MED The Link Layer Discovery Protocol-Media Endpoint Discovery (LLDP-MED) is an enhancement to LLDP that features: • Auto-discovery of LAN policies (such as VLAN, Layer 2 Priority and Diffserv settings), enabling plug and play networking. • Device location discovery for creation of location databases.
PAGE 70
GS700TR Smart Switch Software Administration Manual Figure 2-22 Table 2-23. LLDP Global Configuration Fields Field Description Fast Start Repeat Count Specifies the number of LLDP PDUs that will be transmitted when the protocol is enabled. The range is from 1 to 10. The default value is 3. Device Class Specifies local device's MED Classification. The following three represent the actual endpoints: • Class I Generic [IP Communication Controller etc.] • Class II Media [Conference Bridge etc.
PAGE 71
GS700TR Smart Switch Software Administration Manual Figure 2-23 Table 2-24. LLDP-MED Interface Configuration Fields Field Description Interface Selects the port that you want to configure LLDP-MED on. You can select All to configure all interfaces with the same properties. Link Status Specifies the link status of the ports as Up/Down. MED Status Specifies the transmit and/or receive LLDP-MED mode is enabled or disabled on this interface.
PAGE 72
GS700TR Smart Switch Software Administration Manual LLDP-MED Local Device Information This page displays information on LLPD-MED information advertised on the selected local interface. To display this page: 1. Click System > LLDP > LLDP-MED > Local Device Information in the navigation tree. Figure 2-24 Table 2-25. LLPD-MED Local Device Information Fields Field Description Interface Selects the LLDP-enabled port to display information about.
PAGE 73
GS700TR Smart Switch Software Administration Manual LLDP-MED Remote Device Information This page displays information on LLPD-MED information received from remote clients on the selected local interface. To display this page: 1. Click System > LLDP > LLDP-MED > Remote Device Information in the navigation tree. Figure 2-25 Table 2-26. LLPD-MED Local Device Information Fields Field Description Local Interface Specifies the list of all the ports on which LLDP-MED is enabled.
PAGE 74
GS700TR Smart Switch Software Administration Manual Table 2-26. LLPD-MED Local Device Information Fields (continued) Field Description Network Policy Information Specifies if network policy TLV is present in the LLDP frames: • Media Application Type: Specifies the application type. Types of application types are unknown, voicesignaling, guestvoice, guestvoicesignalling, softphonevoice, videoconferencing, streamingvideo, vidoesignalling.
PAGE 75
GS700TR Smart Switch Software Administration Manual 2. Click Refresh to refresh the page with the most current data from the switch. DHCP Filtering DHCP Filtering is a useful feature that can be employed as a security measure against unauthorized DHCP servers. A known attack is when an unauthorized DHCP server responds to a client that is requesting an IP address. The server configures the gateway for the client to be equal to the IP address of the server.
PAGE 76
GS700TR Smart Switch Software Administration Manual 4. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. Interface Configuration Use the DHCP Filtering Interface Configuration page to view and configure each port as a trusted or untrusted port. Any DHCP responses received on a trusted port are forwarded. If a port is configured as untrusted, any DHCP (or BootP) responses received on that port are discarded.
PAGE 77
GS700TR Smart Switch Software Administration Manual Figure 2-28 4. To display a list of both physical ports and logical interfaces, click ALL. 5. To go to an interface in the list that you want to do modifications to, type the interface number in the Go To Interface field and click Go, as shown in Figure 2-29. Figure 2-29 Configuring System Information 2-43 v1.
PAGE 78
GS700TR Smart Switch Software Administration Manual Table 2-27. DHCP Filtering Interface Configuration Fields Field Description Interface Selects the interface for which data is to be displayed or configured. Trust Mode Enables or disables DHCP Filtering on the selected interface. • Enable: Any DHCP responses received on this port are forwarded. • Disable: Any DHCP (or BootP) responses received on this port are discarded. 6.
PAGE 79
GS700TR Smart Switch Software Administration Manual • “BOOTP/DHCP Status” on page 2-46 BOOTP/DHCP Relay Configuration Use the BOOTP/DHCP Relay page to configure and display a BOOTP/DHCP relay agent. To display the page: 1. Click System > Services > DHCP Relay in the navigation tree. Figure 2-30 Table 2-28. BOOTP/DHCP Relay Agent Configuration Fields Field Description Maximum Hop Count Enter the maximum number of hops a client request can take before being discarded.
PAGE 80
GS700TR Smart Switch Software Administration Manual Table 2-28. BOOTP/DHCP Relay Agent Configuration Fields (continued) Field Description Minimum Wait Time (secs) Enter a time in seconds. This value is compared to the time stamp in the client's request packets, which should represent the time since the client was powered up. Packets are only forwarded when the time stamp exceeds the minimum wait time. Circuit ID Option Mode Select Enable or Disable from the dropdown menu.
PAGE 81
Chapter 3 Configuring Switching Information • “Configuring and Viewing Device Port Information” on page 3-1 • “Creating LAGs” on page 3-4 • “Managing VLANs” on page 3-9 • “Voice VLAN” on page 3-15 • “Configuring Spanning Tree Protocol” on page 3-18 • “Configuring IGMP Snooping” on page 3-33 • “Viewing Multicast Forwarding Database Information” on page 3-36 • “Configuring IGMP Snooping Queriers” on page 3-45 • “Searching and Configuring the Forwarding Database” on page 3-49 Configuring and
PAGE 82
GS700TR Smart Switch Software Administration Manual Figure 3-1 Table 3-1. Port Configuration Fields Field Description Port Select the port from the menu to display or configure data for that port. If you select All, the changes you make to the Port Configuration page apply to all physical ports on the system. Description Enter the description string to be attached to a port. The string can be up to 64 characters in length. Port Type For most ports this field is blank.
PAGE 83
GS700TR Smart Switch Software Administration Manual Table 3-1. Port Configuration Fields (continued) Field Description Link Trap This object determines whether or not to send a trap when link status changes. The factory default is enabled: • Enable: Specifies that the system sends a trap when the link status changes. • Disable: Specifies that the system does not send a trap when the link status changes.
PAGE 84
GS700TR Smart Switch Software Administration Manual Figure 3-2 Table 3-2. Switch Configuration Fields Field Description Global Flow Control (IEEE 802.3x) Mode Enables or disables IEEE 802.3x flow control on the system. The factory default is disabled. • Select Enable so that the switch can communicate with higher speed switches. • Select Disable so that the switch does not send pause packets if the port buffers become full. 2. If you change the mode, click Apply to apply the changes to the system.
PAGE 85
GS700TR Smart Switch Software Administration Manual Note: The GS700TR switches support a maximum of six LAGs. Static LAGs are supported. When a port is added to a LAG as a static member, it neither transmits nor receives LAGPDUs.
PAGE 86
GS700TR Smart Switch Software Administration Manual Table 3-3. LAG (Port Channel) Configuration Fields Field Description LAG Name Enter the name you want assigned to the LAG. You may enter any string of up to 15 alphanumeric characters. A valid name has to be specified in order to create the LAG Description Enter the Description string to be attached to a LAG. It can be up to 64 characters in length.
PAGE 87
GS700TR Smart Switch Software Administration Manual To access the LAG Membership page: 1. Click Switching > LAG > Basic > LAG Membership in the navigation tree. Figure 3-4 Table 3-4. LAG Membership Fields Field Description LAG ID Identifies the LAG (port channel) with the interface naming convention. LAG Name Enter the name you want assigned to the LAG. You may enter any string of up to 15 alphanumeric characters. A valid name has to be specified in order to create the LAG.
PAGE 88
GS700TR Smart Switch Software Administration Manual Figure 3-5 Table 3-5. LACP Configuration Fields Field Description LACP System Priority Specifies the device’s link aggregation priority relative to the devices at the other ends of the links on which link aggregation is enabled. A higher value indicates a lower priority. You can change the value of the parameter globally by specifying a priority from 0 to 65535. The default value is 32768. 2.
PAGE 89
GS700TR Smart Switch Software Administration Manual Figure 3-6 Table 3-6. LACP Port Configuration Fields Field Description Interface Select the interface for which data is to be displayed or configured. LACP Priority Specifies port priority value. The field range is 0 to 255. The default value is 128. Timeout Displays the administrative LACP timeout. The possible values are: • Long. Specifies a long timeout value. • Short. Specifies a short timeout value. 2.
PAGE 90
GS700TR Smart Switch Software Administration Manual A VLAN is a set of end stations and the switch ports that connect them. You may have many reasons for the logical division, such as department or project membership. The only physical requirement is that the end station and the port to which it is connected both belong to the same VLAN. Each VLAN in a network has an associated VLAN ID, which appears in the IEEE 802.1Q tag in the Layer 2 header of packets transmitted on a VLAN.
PAGE 91
GS700TR Smart Switch Software Administration Manual Table 3-7. VLAN Configuration Fields Field Description VLAN ID Specify the VLAN Identifier for the new VLAN. (You can only enter data in this field when you are creating a new VLAN.) The range of the VLAN ID is (1 to 4078). VLAN Name Use this optional field to specify a name for the VLAN. It can be up to 32 alphanumeric characters long, including blanks. The default is blank. VLAN ID 1 is always named “Default.
PAGE 92
GS700TR Smart Switch Software Administration Manual Figure 3-8 Figure 3-9 3-12 Configuring Switching Information v1.
PAGE 93
GS700TR Smart Switch Software Administration Manual Table 3-8. VLAN Membership Configuration Fields Field Description VLAN ID Select the VLAN Identifier for which you want to display or configure data. Group Operation Use this field to select all the ports and configure them. Possible values are: • Untag All: Select all the ports on which all frames transmitted from this VLAN will be untagged. All the ports will be included in the VLAN.
PAGE 94
GS700TR Smart Switch Software Administration Manual Figure 3-10 Table 3-9. Port VLAN ID Configuration Fields Field Description Interface Select the physical interface for which you want to display or configure data. Port VLAN ID (PVID) Specify the range of Port VLAN IDs you want assigned to untagged or priority tagged frames received on this port. The factory default is 1. Acceptable Frame Types Specify how you want the port to handle untagged and priority tagged frames.
PAGE 95
GS700TR Smart Switch Software Administration Manual Table 3-9. Port VLAN ID Configuration Fields (continued) Field Description Ingress Filtering Specify how you want the port to handle tagged frames: • Enable: A tagged frame will be discarded if this port is not a member of the VLAN identified by the VLAN ID in the tag. In an untagged frame, the VLAN is the Port VLAN ID specified for the port that received this frame. • Disable: All frames are forwarded in accordance with the IEEE 802.1Q VLAN standard.
PAGE 96
GS700TR Smart Switch Software Administration Manual Figure 3-11 Table 3-10. Voice VLAN Properties Fields Field Description Voice VLAN Status Select to Enable or Disable Voice VLAN on the switch. The default is Disable. Voice VLAN ID Set the Voice VLAN Identifier to be used for voice traffic for the switch. Class of Service Set the CoS tag value to be reassigned for packets received on the Voice VLAN when Remark CoS is enabled.
PAGE 97
GS700TR Smart Switch Software Administration Manual 1. Click Switching > Voice VLAN > Advanced > Port Setting in the navigation tree. Figure 3-12 Table 3-11. Voice VLAN Port Setting Fields Field Description Interface Select the interface for which data is to be displayed or configured. Voice VLAN Mode Select to Enable or Disable Voice VLAN on the selected interface. The default is Enable. Membership Displays the current operational status of the Voice VLAN on the interface. 2.
PAGE 98
GS700TR Smart Switch Software Administration Manual Figure 3-13 Table 3-12. Voice VLAN OUI Fields Field Description Telephony OUI(s) VOIP OUI prefix to be added in the format AA:BB:CC. Description Enter the description for the OUI. 2. Click Add to add a new Telephony OUI entry. 3. Click Delete to delete the selected entry. 4. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 5.
PAGE 99
GS700TR Smart Switch Software Administration Manual Multiple Spanning Tree Protocol (MSTP) supports multiple instances of Spanning Tree to efficiently channel VLAN traffic over different interfaces. Each instance of the Spanning Tree behaves in the manner specified in IEEE 802.1w, Rapid Spanning Tree (RSTP), with slight modifications in the working but not the end effect (chief among the effects, is the rapid transitioning of the port to ‘Forwarding’).
PAGE 100
GS700TR Smart Switch Software Administration Manual Figure 3-14 Table 3-13. Spanning Tree Switch Configuration/Status Fields Field Description Spanning Tree State Enables or disables Spanning Tree operation on the switch. STP Operation Mode Specifies the Force Protocol Version parameter for the switch. Options are: • STP (Spanning Tree Protocol): IEEE 802.1d • RSTP (Rapid Spanning Tree Protocol): IEEE 802.1w • MSTP (Multiple Spanning Tree Protocol): IEEE 802.
PAGE 101
GS700TR Smart Switch Software Administration Manual Table 3-13. Spanning Tree Switch Configuration/Status Fields (continued) Field Description BPDU Flooding Enables or disables BPDU Flooding. When this feature is enabled, BPDU packets arriving at this port are flooded to other ports if STP is disabled. Bridge Identifier The bridge identifier for the CST. It is made up using the bridge priority and the base MAC address of the bridge.
PAGE 102
GS700TR Smart Switch Software Administration Manual Figure 3-15 Table 3-14. Spanning Tree CST Configuration/Status Fields Field Description Bridge Priority When switches or bridges are running STP, each is assigned a priority. After exchanging BPDUs, the switch with the lowest priority value becomes the root bridge. Specifies the bridge priority value for the Common and Internal Spanning Tree (CST). The valid range is 0-61440. The bridge priority is a multiple of 4096.
PAGE 103
GS700TR Smart Switch Software Administration Manual Table 3-14. Spanning Tree CST Configuration/Status Fields (continued) Field Description Bridge Forward Delay (secs) Specifies the switch forward delay time, which indicates the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets. The value must be greater or equal to (Bridge Max Age / 2) + 1. The time range is from 4 seconds to 30 seconds. The default value is 15.
PAGE 104
GS700TR Smart Switch Software Administration Manual Figure 3-16 Table 3-16. Spanning Tree CST Port Configuration/Status Fields Field Description Interface Select one of the physical or port channel interfaces associated with the VLAN(s) associated with the CST. STP Status Spanning Tree Protocol Administrative Mode associated with the port or port channel. Possible values are Enable or Disable. Fast Link Specifies if the specified port is an Edge Port with the CST.
PAGE 105
GS700TR Smart Switch Software Administration Manual Table 3-16. Spanning Tree CST Port Configuration/Status Fields (continued) Field Description Port ID The port identifier for the specified port within the CST. It is made up from the port priority and the interface number of the port. Hello Timer Specifies the switch Hello time, which indicates the amount of time in seconds a port waits between configuration messages. The valid range is 1-10, and the default value is 2.
PAGE 106
GS700TR Smart Switch Software Administration Manual Table 3-17. Spanning Tree CST Port Status Fields Field Description Interface Select a physical or port channel interface to configure. The port is associated with the VLAN(s) associated with the CST. Port Role Each MST Bridge Port that is enabled is assigned a Port Role for each spanning tree. The port role will be one of the following values: Root Port, Designated Port, Alternate Port, Backup Port, Master Port or Disabled Port.
PAGE 107
GS700TR Smart Switch Software Administration Manual 1. Click Switching > STP > Advanced > RSTP in the navigation tree. Figure 3-18 Table 3-18. Rapid STP Field Description Interface The physical or port channel interfaces associated with VLANs associated with the CST. Role Each MST Bridge Port that is enabled is assigned a Port Role for each spanning tree. The port role will be one of the following values: Root Port, Designated Port, Alternate Port, Backup Port, Master Port, or Disabled Port.
PAGE 108
GS700TR Smart Switch Software Administration Manual To display the Spanning Tree MST Configuration page: 1. Click Switching > STP > Advanced > MST Configuration in the navigation tree. Use this page to create and configure a new MST or select an existing MST to display or configure. Figure 3-19 Table 3-19. Spanning Tree MST Configuration Field Description MST ID This is only visible when the select option of the MST ID select box is selected. The ID of the MST being created.
PAGE 109
GS700TR Smart Switch Software Administration Manual Table 3-19. Spanning Tree MST Configuration (continued) Field Description Root Path Cost Displays the path cost to the Designated Root for this MST instance. Root Port Indicates the port to access the Designated Root for this MST instance. 2. Click Add to create a new MST which you have configured. 3. Click Delete to delete the selected MST instance. All VLANs associated with the instance are associated with the CST. 4.
PAGE 110
GS700TR Smart Switch Software Administration Manual Figure 3-21 Note: If no MST instances have been configured on the switch, the page displays a “No MSTs Available” message and does not display the fields shown in Table 3-20 on page 3-30. Figure 3-22 Table 3-20. Spanning Tree MST Port Status Fields Field Description Select MST Select an existing MST instance from the pulldown list of MST IDs in the Status table at the top of the screen.
PAGE 111
GS700TR Smart Switch Software Administration Manual Table 3-20. Spanning Tree MST Port Status Fields (continued) Field Description Port Path Cost Set the Path Cost to a new value for the specified port in the selected MST instance. It takes a value in the range of 1 to 200000000. Auto-calculated Port Path Cost Displays whether the path cost is automatically calculated (Enabled) or not (Disabled).
PAGE 112
GS700TR Smart Switch Software Administration Manual 2. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 3. Click Refresh to update the screen with the latest MST information. 4. If you make any configuration changes, click Apply to apply the new settings to the switch. Configuration changes take effect immediately.
PAGE 113
GS700TR Smart Switch Software Administration Manual Configuring IGMP Snooping Internet Group Management Protocol (IGMP) Snooping is a feature that allows a switch to forward multicast traffic intelligently on the switch. Multicast IP traffic is traffic that is destined to a host group. Host groups are identified by class D IP addresses, which range from 224.0.0.0 to 239.255.255.255.
PAGE 114
GS700TR Smart Switch Software Administration Manual 1. Click Switching > Multicast > IGMP Snooping > IGMP Snooping Configuration in the navigation tree. Figure 3-24 Table 3-22. IGMP Snooping Configuration Fields Field Description IGMP Snooping Status Select the administrative mode for IGMP Snooping for the switch. The default is Disable. Multicast Control Frame Count Shows the number of multicast control frames that have been processed by the CPU.
PAGE 115
GS700TR Smart Switch Software Administration Manual 2. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 3. If you make any configuration changes, click Apply to apply the new settings to the switch. Configuration changes take effect immediately. IGMP Snooping Interface Configuration Use the IGMP Snooping Interface Configuration page to configure IGMP snooping settings on specific interfaces.
PAGE 116
GS700TR Smart Switch Software Administration Manual Table 3-23. IGMP Snooping Interface Configuration Fields (continued) Field Description Host TImeout Specify the amount of time you want the switch to wait for a report for a particular group on a particular interface before it deletes that interface from the group. Enter a value between 1 and 3600 seconds. The default is 260 seconds.
PAGE 117
GS700TR Smart Switch Software Administration Manual • “IGMP Snooping Table” on page 3-37 • “MFDB Table” on page 3-38 • “MFDB Statistics” on page 3-39 • “IGMP Snooping VLAN Configuration” on page 3-40 • “Multicast Router Configuration” on page 3-42 • “Multicast Router VLAN Configuration” on page 3-43 IGMP Snooping Table Use the IGMP Snooping Table page to view all of the entries in the Multicast Forwarding Database that were created for IGMP snooping. To access the IGMP Snooping Table page: 1.
PAGE 118
GS700TR Smart Switch Software Administration Manual Table 3-24. MFDB IGMP Snooping Table Fields (continued) Field Description Type This displays the type of the entry. Static entries are those that are configured by the end user. Dynamic entries are added to the table as a result of a learning process or protocol. Description The text description of this multicast table entry. Possible values are Management Configured, Network Configured and Network Assisted.
PAGE 119
GS700TR Smart Switch Software Administration Manual Table 3-25. MFDB Table Fields Field Description MAC Address The MAC Address to which the multicast MAC address is related. To search by MAC address, enter the address with the MFDB table entry you want displayed. Enter six two-digit hexadecimal numbers separated by colons, for example 00:0f:43:67:89:AB. Then click Go. If the address exists, that entry will be displayed. An exact match is required.
PAGE 120
GS700TR Smart Switch Software Administration Manual 1. Click Switching > Multicast > IGMP Snooping > MFDB Statistics in the navigation tree. Figure 3-28 Table 3-26. Multicast Forwarding Database Statistics Fields Field Description Max MFDB Table Entries Shows the maximum number of entries that the Multicast Forwarding Database table can hold.
PAGE 121
GS700TR Smart Switch Software Administration Manual To access the IGMP Snooping VLAN Configuration page: 1. Click Switching > Multicast > IGMP Snooping > IGMP Snooping VLAN Configuration in the navigation tree. Figure 3-29 Table 3-27. IGMP Snooping VLAN Configuration Fields Field Description VLAN ID List of VLAN IDs for which IGMP Snooping is enabled. Fast Leave Admin Mode Enable or disable the IGMP Snooping Fast Leave Mode for the specified VLAN ID.
PAGE 122
GS700TR Smart Switch Software Administration Manual Table 3-27. IGMP Snooping VLAN Configuration Fields (continued) Field Description Maximum Response Time Enter the amount of time in seconds that a switch will wait after sending a query on an interface because it did not receive a report for a particular group in that interface. This value must be less than the IGMP Query Interval time value. The range is 1 to (Group Membership Interval -1) seconds.
PAGE 123
GS700TR Smart Switch Software Administration Manual 2. Figure 3-30 Table 3-28. Multicast Router Configuration Fields Field Description Interface This lists all physical interfaces. Select the interface for which you want Multicast Router to be enabled. Multicast Router Enable or disable Multicast Router on the selected interfaces. • Enable: The port is a multicast router interface. • Disable: The port does not have a multicast router configured. 3.
PAGE 124
GS700TR Smart Switch Software Administration Manual To access the IGMP Snooping Multicast Router VLAN Configuration page: 1. Click Switching > Multicast > IGMP Snooping > Multicast Router VLAN Configuration in the navigation tree. Figure 3-31 Table 3-29. Multicast Router VLAN Configuration Fields Field Description Interface Select the physical or LAG interface for which you want Multicast Router to be enabled. VLAN ID Enter the VLAN ID to configure as enabled or disabled for multicast routing.
PAGE 125
GS700TR Smart Switch Software Administration Manual Configuring IGMP Snooping Queriers IGMP snooping requires that one central switch or router periodically query all end-devices on the network to announce their multicast memberships. This central device is the 'IGMP querier'. The IGMP query responses, known as IGMP reports, keep the switch updated with the current multicast group membership on a port-by-port basis.
PAGE 126
GS700TR Smart Switch Software Administration Manual Table 3-30. IGMP Snooping Querier Configuration Fields Field Description Querier Admin Mode Select the administrative mode for IGMP Snooping for the switch from the menu. The default is Disable. Snooping Querier Address Specify the Snooping Querier Address to be used as source address in periodic IGMP queries. This address is used when no address is configured on the VLAN on which the query is being sent.
PAGE 127
GS700TR Smart Switch Software Administration Manual Figure 3-33 Table 3-31. IGMP Snooping Querier VLAN Configuration Fields Field Description VLAN ID Specifies VLAN ID for which the IGMP Snooping Querier is to be enabled. Select New Entry to create a new VLAN ID for IGMP Snooping. You can also set pre-configurable Snooping Querier parameters. Querier Election Participate Enable or disable Querier Participate Mode.
PAGE 128
GS700TR Smart Switch Software Administration Manual IGMP Snooping Querier VLAN Status Use this page to view the operational state and other information for IGMP snooping queriers for VLANs on the network. To access this page: 1. Click Switching > Multicast > IGMP Snooping Querier > Querier VLAN Status in the navigation tree. Figure 3-34 3-48 Configuring Switching Information v1.
PAGE 129
GS700TR Smart Switch Software Administration Manual Table 3-32. IGMP Snooping Querier VLAN Status Fields Field Description VLAN ID Specifies the VLAN ID on which the IGMP Snooping Querier is administratively enabled and for which VLAN exists in the VLAN database. Operational State Specifies the operational state of the IGMP Snooping Querier on a VLAN: • Querier: The snooping switch is the querier in the VLAN.
PAGE 130
GS700TR Smart Switch Software Administration Manual • “MAC Address Table” on page 3-53 • “Static MAC Address” on page 3-55 Searching the MAC Address Table Use the search function of the MAC Address Table page to display information about unicast entries for which the switch has forwarding and/or filtering information. To access this page: 1. Click Switching > Address Table > Basic > Address Table in the navigation tree. 2.
PAGE 131
GS700TR Smart Switch Software Administration Manual • Interface: Select Interface from the menu, enter the interface ID in g1, g2... format. Then click Go. If any entries with learned on that interface exist, they are displayed. Figure 3-35 Table 3-33. MAC Address Table Fields Field Description VLAN ID Specifies the VLAN ID on which the IGMP Snooping Querier is administratively enabled and for which VLAN exists in the VLAN database.
PAGE 132
GS700TR Smart Switch Software Administration Manual 3. Click Clear to clear Dynamic MAC Addresses in the table. 4. Click Refresh to redisplay the page to show the latest MAC Addresses. 5. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. Dynamic Address Configuration Use the Advanced > Dynamic Addresses page to set the amount of time to keep a learned MAC address entry in the forwarding database.
PAGE 133
GS700TR Smart Switch Software Administration Manual Note: IEEE 802.1d recommends a default of 300 seconds, which is the factory default. 2. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 3. Click Apply to apply to send the updated configuration to the switch. Configuration changes take effect immediately.
PAGE 134
GS700TR Smart Switch Software Administration Manual Figure 3-37 Table 3-35. MAC Address Table Fields Field Description VLAN ID The VLAN ID associated with the MAC Address. MAC Address A unicast MAC Address for which the switch has forwarding and/or filtering information. The MAC address is in the format of 6 two-digit hexadecimal numbers that are separated by colons. For example, 00:0f:5e:45:67:89 is the MAC Address. Interface The port upon which this address was learned.
PAGE 135
GS700TR Smart Switch Software Administration Manual 4. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. Static MAC Address Use the Static MAC Address Configuration page to view static MAC addresses configured on an interface. To access the Static MAC Address Configuration page: 1. Click Switching > Address Table > Advanced > Static MAC Address in the navigation tree. Figure 3-38 Table 3-36.
PAGE 136
GS700TR Smart Switch Software Administration Manual 4. After you enter the MAC address and VLAN ID of the statically configured MAC address to delete, click Delete to remove the MAC address from the port and apply the new settings to the system. The screen refreshes, and the MAC address no longer appears in the table on the page. 5. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 6.
PAGE 137
Chapter 4 Configuring Routing GS700TR Smart Switch supports IP routing. Use the links in the Routing navigation tree folder to manage routing on the system.
PAGE 138
GS700TR Smart Switch Software Administration Manual To access the IP Configuration page: 1. Click Routing > IP > IP Configuration in the navigation tree. Figure 4-1 Table 4-1. IP Configuration Fields Field Description Default Time to Live The default value inserted into the Time-To-Live field of the IP header of datagrams originated by the switch, if a TTL value is not supplied by the transport layer protocol. Routing Mode Select either the Enable or the Disable radio button.
PAGE 139
GS700TR Smart Switch Software Administration Manual Figure 4-2 shows the VLAN Routing Wizard page with the Unit and LAG fields expanded to show the ports. The page does not show the ports until you click the Unit or LAG link. Figure 4-2 Table 4-2. VLAN Routing Configuration Fields Field Description VLAN ID Enter the ID of a VLAN to configure for VLAN Routing.The range of the VLAN ID is (1 to 4078). VLAN Name A unique name for the VLAN.
PAGE 140
GS700TR Smart Switch Software Administration Manual IP Statistics The statistics reported on the IP Statistics page are as specified in RFC 1213. To display the page: 1. Click Routing > IP > Statistics in the navigation tree. Figure 4-3 Note: Figure 4-3 shows some, but not all, of the fields on the page. Table 4-3. IP Statistics Fields Field Description IpInReceives The total number of input datagrams received from interfaces, including those received in error.
PAGE 141
GS700TR Smart Switch Software Administration Manual Table 4-3. IP Statistics Fields (continued) Field Description IpInAddrErrors The number of input datagrams discarded because the IP address in their IP header's destination field was not a valid address to be received at this entity. This count includes invalid addresses (e.g., 0.0.0.0) and addresses of unsupported Classes (e.g., Class E).
PAGE 142
GS700TR Smart Switch Software Administration Manual Table 4-3. IP Statistics Fields (continued) Field Description IpReasmOKs The number of IP datagrams successfully re-assembled. IpReasmFails The number of failures detected by the IP re-assembly algorithm (for whatever reason: timed out, errors, etc.). Note that this is not necessarily a count of discarded IP fragments since some algorithms can lose track of the number of fragments by combining them as they are received.
PAGE 143
GS700TR Smart Switch Software Administration Manual Table 4-3. IP Statistics Fields (continued) Field Description IcmpOutErrors The number of ICMP messages which this entity did not send due to problems discovered within ICMP such as a lack of buffers. This value should not include errors discovered outside the ICMP layer such as the inability of IP to route the resultant datagram. In some implementations there may be no types of error which contribute to this counter's value.
PAGE 144
GS700TR Smart Switch Software Administration Manual Since a port can be configured to belong to more than one VLAN, VLAN routing might be enabled for all of the VLANs on the port, or for a subset. VLAN Routing can be used to allow more than one physical port to reside on the same subnet. It could also be used when a VLAN spans multiple physical networks, or when additional segmentation or security is required. This section shows how to configure GS700TR Smart Switch software to support VLAN routing.
PAGE 145
GS700TR Smart Switch Software Administration Manual Table 4-4. VLAN Routing Configuration Fields (continued) Field Description MAC Address The MAC Address assigned to the VLAN Routing Interface. IP Address Enter an IP Address of the VLAN Routing Interface. Subnet Mask Enter a Subnet Mask for the VLAN Routing Interface. Configuring Routing 4-9 v1.
PAGE 146
GS700TR Smart Switch Software Administration Manual Configuring Router Discovery The Router Discovery protocol is used by hosts to identify operational routers on the subnet. Router Discovery messages are of two types: “Router Advertisements” and “Router Solicitations.” The protocol mandates that every router periodically advertise the IP Addresses it is associated with. Hosts listen for these advertisements and discover the IP Addresses of neighboring routers.
PAGE 147
GS700TR Smart Switch Software Administration Manual Table 4-5. Router Discovery Configuration Fields Field Description Interface Select the router interface for which data is to be configured. To perform the same configuration on all interfaces, select the check box in the heading row. To configure a single interface, select the check box associated with the interface. The interface number appears in the Interface field in the table heading row.
PAGE 148
GS700TR Smart Switch Software Administration Manual Configuring and Viewing Routes From the Routing Table page, you can configure static and default routes and view the routes that the GS700TR has already learned. To display the page: 1. Click the Routing > Routing Table tab. Figure 4-6 Table 4-6. Route Configuration Fields Field Description Route Type Specifies whether the route is to be a Default route or a Static route.
PAGE 149
GS700TR Smart Switch Software Administration Manual Table 4-6. Route Configuration Fields Field Description Next Hop IP Address The outgoing router IP address to use when forwarding traffic to the next router (if any) in the path towards the destination. The next router is always one of the adjacent neighbors or the IP address of the local interface for a directly attached network. When creating a route, the next hop IP must be on the same network as the routing interface.
PAGE 150
GS700TR Smart Switch Software Administration Manual Table 4-7. Route Status Fields (continued) Field Description Next Hop IP Address The outgoing router IP address to use when forwarding traffic to the next router (if any) in the path towards the destination. The next router is always one of the adjacent neighbors or the IP address of the local interface for a directly attached network. Preference Shows the preference value for the configured next hop.
PAGE 151
GS700TR Smart Switch Software Administration Manual on the network, periodically refreshed to determine if an address still exists, or removed from the cache if the entry has not been identified as a sender of an ARP packet during the course of an ageout interval, usually specified via configuration.
PAGE 152
GS700TR Smart Switch Software Administration Manual Table 4-9. Routing VLANs ARP Cache Field Description Interface The routing interface associated with the ARP entry. IP Address Displays the associated IP address of a device on a subnet attached to one of the switch's existing routing interfaces. MAC Address Displays the unicast MAC address of the device. Type The type of the ARP entry. Possible values are: • Local.
PAGE 153
GS700TR Smart Switch Software Administration Manual Table 4-10. Global ARP Configuration Fields Field Description Age Time (secs) Enter the value you want the switch to use for the ARP entry ageout time. You must enter a valid integer, which represents the number of seconds it will take for an ARP entry to age out. The range is 15 to 21600 seconds. The default value is 1200 seconds. Response Time (secs) Enter the value you want the switch to use for the ARP response timeout.
PAGE 154
GS700TR Smart Switch Software Administration Manual Figure 4-9 Table 4-11. Static ARP Configuration Field Description IP Address Enter the IP address that you want to add. It must be the IP address of a device on a subnet attached to one of the switch's existing routing interfaces. MAC Address The unicast MAC address of the device. The format is six two-digit hexadecimal numbers separated by colons, for example 00:06:29:32:81:40. Table 4-12.
PAGE 155
GS700TR Smart Switch Software Administration Manual 6. Click Add to add an ARP Entry. 7. Click Delete to delete an ARP Entry. 8. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 9. If you change any of the settings on the page, click Apply to send the updated configuration to the switch. Configuration changes take effect immediately. ARP Entry Management Use this page to remove certain entries from the ARP Table.
PAGE 156
GS700TR Smart Switch Software Administration Manual Table 4-13. ARP Entry Management Fields Field Description Remove from Table Allows you to remove certain entries from the ARP Table. The choices listed specify the type of ARP Entry to be deleted: • All Dynamic Entries • All Dynamic and Gateway Entries • Specific Dynamic / Gateway Entry. Selecting this allows you to specify the required IP address. • Specific Static Entry. • None. Select if you do not want to delete any entry from the ARP Table.
PAGE 157
Chapter 5 Configuring Quality of Service This section gives an overview of Quality of Service (QoS) and explains the QoS features available from the Quality of Service navigation tree menu. This section contains the following subsections: • “Configuring Class of Service” on page 5-1 • “Configuring Differentiated Services” on page 5-10 In a typical switch, each physical port consists of one or more queues for transmitting packets on the attached network.
PAGE 158
GS700TR Smart Switch Software Administration Manual used to steer the packet to the appropriate outbound CoS queue through a mapping table. CoS queue characteristics that affect queue mapping, such as minimum guaranteed bandwidth, transmission rate shaping, etc., are user-configurable at the queue (or port) level. Eight queues per port are supported.
PAGE 159
GS700TR Smart Switch Software Administration Manual Figure 5-1 Table 5-1. Basic CoS Configuration Fields Field Description Global Select the Global option to apply the same trust mode to all CoS configurable interfaces. Global Trust Mode Specifies whether or not all interfaces trust a particular packet marking when the packet enters the port. The default value is trust 802.1p. The mode can only be one of the following: • Untrusted • 802.
PAGE 160
GS700TR Smart Switch Software Administration Manual Figure 5-2 Table 5-2. Interface Configuration Fields Field Description Interface Indicates the interface to be affected by the Interface Shaping Rate. Select the check box in the heading row to apply a trust mode or rate to all interfaces. Select the check box next to an individual port to apply a trust mode or rate to a specific interface.
PAGE 161
GS700TR Smart Switch Software Administration Manual Interface Queue Configuration Use the Interface Queue Configuration page to define what a particular queue does by configuring switch egress queues. User-configurable parameters control the amount of bandwidth used by the queue, the queue depth during times of congestion, and the scheduling of packet transmission from the set of all queues on a port. Each port has its own CoS queue-related configuration.
PAGE 162
GS700TR Smart Switch Software Administration Manual Table 5-3. Interface Queue Configuration Fields (continued) Field Description Minimum Bandwidth Enter a percentage of the maximum negotiated bandwidth for the selected queue on the interface. Specify a percentage from 0 to 100, in increments of 5. Scheduler Type Selects the type of queue processing from the dropdown menu. Options are Weighted and Strict.
PAGE 163
GS700TR Smart Switch Software Administration Manual 1. Click QoS > CoS > Advanced > 802.1p to Queue Mapping to display the page. Figure 5-4 Table 5-4. Current 802.1p Priority Mapping Table Fields Field Description Global Select the Global option to apply the same 802.1p priority mapping to all CoS configurable interfaces. Interface The menu contains all CoS configurable interfaces. Select an individual interface from the menu to override the global settings for 802.
PAGE 164
GS700TR Smart Switch Software Administration Manual DSCP to Queue Mapping Use the DSCP to Queue Mapping page to specify which internal traffic class to map the corresponding DSCP value. 5-8 Configuring Quality of Service v1.
PAGE 165
GS700TR Smart Switch Software Administration Manual To display the IP DSCP Mapping page: 1. Click the QoS > CoS tab, and then click the Advanced > DSCP to Queue Mapping link. Figure 5-5 Configuring Quality of Service 5-9 v1.
PAGE 166
GS700TR Smart Switch Software Administration Manual Table 5-5. IP DSCP Mapping Configuration Fields Field Description DSCP Lists the DSCP values to which you can map an internal traffic class. The values range from 0-63. Queue The traffic class is the hardware queue for a port. Higher traffic class values indicate a higher queue position. Before traffic in a lower queue is sent, it must wait for traffic in higher queues to be sent. Valid range is 0-7. 2.
PAGE 167
GS700TR Smart Switch Software Administration Manual Packets are classified and processed based on defined criteria. The classification criteria is defined by a class. The processing is defined by a policy's attributes. Policy attributes may be defined on a per-class instance basis, and it is these attributes that are applied when a match occurs. A policy can contain multiples classes. When the policy is active, the actions taken depend on which class matches the packet.
PAGE 168
GS700TR Smart Switch Software Administration Manual Figure 5-6 Table 5-6. DiffServ Configuration Fields Field Description DiffServ Admin Mode Turns admin mode on and off. While disabled, the DiffServ configuration is retained and can be changed, but it is not active. While enabled, Differentiated Services are active. Status Field Class Table Displays the current and maximum number of rows of the class table. Class Rule Table Displays the current and maximum number of rows of the class rule table.
PAGE 169
GS700TR Smart Switch Software Administration Manual Class Configuration Use the Class Configuration page to add a new Diffserv class name, or to rename or delete an existing class. The page also allows you to define the criteria to associate with a DiffServ class. As packets are received, these DiffServ classes are used to prioritize packets. You can have multiple match criteria in a class. The logic is a Boolean “logical-and” for this criteria. To display the page: 1.
PAGE 170
GS700TR Smart Switch Software Administration Manual To configure the class match criteria: 1. Click the class link. Figure 5-8 Table 5-8. Diffserv Class Configuration Fields Field Description Reference Class Selects a class to start referencing for criteria. If the specified class references another class, the Reference Class match criterion disappears from the match list to prevent you adding another class reference, since a specified class can reference at most one other class of the same type.
PAGE 171
GS700TR Smart Switch Software Administration Manual Table 5-8. Diffserv Class Configuration Fields Field Description Source IP Address Requires a packet’s source port IP address to match the address listed here. In the IP Address field, enter a valid source IP address in dotted decimal format. Source Mask Enter a valid subnet mask to determine which bits in the IP address are significant. Note that this is not a wildcard mask.
PAGE 172
GS700TR Smart Switch Software Administration Manual Policy Configuration Use the Policy Configuration page to associate a collection of classes with one or more policy statements. To display the page: 1. Click QoS > DiffServ tab and then click the Advanced > Policy Configuration link. Figure 5-9 Table 5-9. Policy Configuration Fields Field Description Policy Selector To create a new policy, enter a policy name into the Policy Selector field and click Add.
PAGE 173
GS700TR Smart Switch Software Administration Manual To configure the policy attributes: 1. Click the name of the policy. Figure 5-10 Configuring Quality of Service 5-17 v1.
PAGE 174
GS700TR Smart Switch Software Administration Manual Table 5-10. Policy Attributes Fields Field Description Assign Queue • Assigns the packets of this policy-class to a queue. Enter an integer from 0-7 in the Queue Id Value field. Policy Attribute Select a policy attribute, which can be one of the following: • Drop: Select this field to drop packets for this policy-class. There are no fields to configure.
PAGE 175
GS700TR Smart Switch Software Administration Manual Table 5-10. Policy Attributes Fields (continued) Field Description Simple Policy Use this attribute to establish the traffic policing style for the specified class. The simple form of the policy command uses a single data rate and burst size, resulting in two outcomes: confirm and violate.
PAGE 176
GS700TR Smart Switch Software Administration Manual Table 5-10. Policy Attributes Fields (continued) Field Description • Conform Action: Determines what happens to packets that are considered conforming (below the police rate). Select one of the following actions: - Send: (default) These packets are presented unmodified by DiffServ to the system forwarding element. - Drop: These packets are immediately dropped.
PAGE 177
GS700TR Smart Switch Software Administration Manual To display the page: 1. Click the QoS > DiffServ tab and then click the Advanced > Service Configuration link. Figure 5-11 Table 5-11. Service Configuration Fields Field Description Interface Selects the interface (physical, LAG, or All) to be affected from dropdown menus. Select the check box in the heading row to configure all interfaces with the same setting.
PAGE 178
GS700TR Smart Switch Software Administration Manual Figure 5-12 To go to an interface in the list: 1. Type the interface number in the Go To Interface field and click Go as shown in Figure 5-13. Figure 5-13 Service Statistics Use the Service Statistics page to display service-level statistical information about all interfaces that have DiffServ policies attached. 5-22 Configuring Quality of Service v1.
PAGE 179
GS700TR Smart Switch Software Administration Manual To display the page: 1. Click the QoS > DiffServ tab and then click the Advanced > Service Statistics link. Figure 5-14 Table 5-12. Service Statistics Fields Field Description Interface Shows the interface for which service statistics are to display. Direction Shows the direction of packets for which service statistics display, which is always In. Policy Name Displays the policy associated with the selected interface.
PAGE 180
GS700TR Smart Switch Software Administration Manual 5-24 Configuring Quality of Service v1.
PAGE 181
Chapter 6 Managing Device Security Use the features available from the Security tab to set management security parameters for port, user, and server security.
PAGE 182
GS700TR Smart Switch Software Administration Manual Figure 6-1 Table 6-1. User Accounts Fields Field Description Old Password Specify the current password for the account created by the user. The entered password will be displayed in asterisks (*). Passwords are one to 20 alphanumeric characters in length and are case sensitive. New Password Enter the optional new or changed password for the account. It will not display as it is typed, and only asterisks (*) will show on the screen.
PAGE 183
GS700TR Smart Switch Software Administration Manual • Access Control Port (802.1X) The RADIUS folder contains links to the following features: • “Global Configuration” on page 6-3 • “Server Configuration” on page 6-5 • “Accounting Server Configuration” on page 6-7 Global Configuration Use the RADIUS Configuration page to add information about one or more RADIUS servers on the network. To access the RADIUS Configuration page: 1.
PAGE 184
GS700TR Smart Switch Software Administration Manual Table 6-2. RADIUS Configuration Fields Field Description Current Server IP Address Shows the IP address of the current server. This field is blank if no servers are configured. If more than one RADIUS servers are configured, the current server is the server configured as the primary server. If no servers are configured as the primary server, the current server is the most recently added RADIUS server.
PAGE 185
GS700TR Smart Switch Software Administration Manual Server Configuration Use the RADIUS Server Configuration page to view and configure various settings for the current RADIUS server configured on the system. To access the RADIUS Server Configuration page: 1. Click Security > Management Security, and then click the RADIUS > Server Configuration link. Figure 6-3 Table 6-3. RADIUS Server Configuration Fields Field Description Server Address Enter the IP address of the RADIUS server to add.
PAGE 186
GS700TR Smart Switch Software Administration Manual 2. Click Refresh to update the page with the most current information. 3. To add a RADIUS server, enter information about the server into the appropriate fields and click Add. 4. To delete a configured RADIUS server, select the check box next to the server address, and then click Delete. 5. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 6.
PAGE 187
GS700TR Smart Switch Software Administration Manual Table 6-4. RADIUS Server Statistics Fields (continued) Field Description Unknown Types The number of RADIUS packets of unknown type which were received from this server on the authentication port. Packets Dropped The number of RADIUS packets received from this server on the authentication port and dropped for some other reason. 7. Click Clear Counters to clear the authentication server and RADIUS statistics to their default values. 8.
PAGE 188
GS700TR Smart Switch Software Administration Manual 1. Click Security > Management Security, and then click the RADIUS > Accounting Server Configuration in the navigation tree. Figure 6-4 Table 6-5. RADIUS Accounting Server Configuration Fields Field Description Accounting Server Address Enter the IP address of the RADIUS accounting server to add. Port Identifies the authentication port the server uses to verify the RADIUS accounting server authentication.
PAGE 189
GS700TR Smart Switch Software Administration Manual 4. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. To add a RADIUS Accounting server: 1. Enter information about the server into the appropriate fields and click Apply. Table 6-6. RADIUS Accounting Server Fields Field Description Accounting Server Address Select the IP address of the RADIUS accounting server for which to display statistics.
PAGE 190
GS700TR Smart Switch Software Administration Manual Configuring TACACS+ TACACS+ provides a centralized user management system, while still retaining consistency with RADIUS and other authentication processes. TACACS+ provides the following services: • Authentication: Provides authentication during login and via user names and user-defined passwords. • Authorization: Performed at login. Once the authentication session is completed, an authorization session starts using the authenticated user name.
PAGE 191
GS700TR Smart Switch Software Administration Manual Table 6-7. TACACS+ Configuration Fields Field Description Key String Specifies the authentication and encryption key for TACACS+ communications between the device and the TACACS+ server. The valid range is 0-128 characters. The key must match the key configured on the TACACS+ server. Connection Timeout The maximum number of seconds allowed to establish a TCP connection between the device and the TACACS+ server. The valid range is 1 -30. 2.
PAGE 192
GS700TR Smart Switch Software Administration Manual Table 6-8. TACACS+ Configuration Fields Field Description TACACS+ Server Use the dropdown menu to select the IP address of the TACACS+ server to view or configure. If fewer than five TACACS+ servers are configured on the system, the Add option is also available. Select Add to configure additional TACACS+ servers. Server Address Enter the IP address of the TACACS+ server to add.
PAGE 193
GS700TR Smart Switch Software Administration Manual Table 6-9. TACACS+ Configuration Fields (continued) Field Description Key String Defines the authentication and encryption key for TACACS+ communications between the device and the TACACS+ server. This key must match the encryption used on the TACACS+ server. The valid range is 0-128 characters. Connection Timeout The amount of time that passes before the connection between the device and the TACACS+ server times out.
PAGE 194
GS700TR Smart Switch Software Administration Manual Table 6-10. Authentication Profile Fields Field Description List Name The menu allows you to select an existing list to view or configure. If you are creating a new login authentication list, enter the name you want to assign. The name can be up to 15 alphanumeric characters in length and is not case sensitive. Click Apply to create the new list name.
PAGE 195
GS700TR Smart Switch Software Administration Manual Configuring Management Access From the Access page, you can configure HTTP and Secure HTTP access to the GS700TR. You can also configure Access Control Profiles and Access Rules.
PAGE 196
GS700TR Smart Switch Software Administration Manual Table 6-11. HTTP Configuration Fields Field Description Java Mode This select field is used to Enable or Disable the web Java Mode. This applies to both secure and un-secure HTTP connections. The currently configured value is shown when the web page is displayed. The default value is Enable. HTTP Session Soft Timeout This field is used to set the inactivity timeout for HTTP sessions. The value must be in the range of (0 to 60) minutes.
PAGE 197
GS700TR Smart Switch Software Administration Manual Figure 6-10 Table 6-12. Secure HTTP Configuration Fields Field Description HTTPS Admin Mode Enables or Disables the Administrative Mode of Secure HTTP. The currently configured value is shown when the web page is displayed. The default value is Disable. You can only download SSL certificates when the HTTPS Admin mode is disabled. SSL Version 3 Enables or Disables Secure Sockets Layer Version 3.0.
PAGE 198
GS700TR Smart Switch Software Administration Manual Table 6-12. Secure HTTP Configuration Fields (continued) Field Description HTTPS Session Hard Timeout Sets the hard timeout for HTTPS sessions. This timeout is unaffected by the activity level of the session. The value must be in the range of (1 to 168) hours. The default value is 24 hours. The currently configured value is shown when the web page is displayed. Maximum Number of HTTPS Sessions Sets the maximum allowable number of HTTPS sessions.
PAGE 199
GS700TR Smart Switch Software Administration Manual Table 6-13. Certificate Download Fields Field Description File Type Select the type of SSL certificate to download, which can be one of the following: • SSL Trusted Root Certificate PEM File: SSL Trusted Root Certificate File (PEM Encoded). • SSL Server Certificate PEM File: SSL Server Certificate File (PEM Encoded). • SSL DH Weak Encryption Parameter PEM File: SSL Diffie-Hellman Weak Encryption Parameter File (PEM Encoded).
PAGE 200
GS700TR Smart Switch Software Administration Manual 1. Click Security > Access, and then click the Access Control > Access Profile Configuration link. Figure 6-12 Table 6-14. Access Profile Configuration Fields Field Description Access Profile Name Enter the name of the access profile to be added. Maximum length is 32 characters. Activate Profile Select the check box to activate an access profile.
PAGE 201
GS700TR Smart Switch Software Administration Manual Table 6-15. Profile Summary Fields (continued) Field Description Source IP Address Shows the IP Address of the client that may or may not originate management traffic. Mask Shows the subnet mask associated with the IP address. Priority Shows the priority of the rule. The rules are validated against the incoming management request in the ascending order of their priorities.
PAGE 202
GS700TR Smart Switch Software Administration Manual Table 6-16. Access Rule Configuration Fields Field Description Rule Type Select Permit to allow access to the switch administrative pages for traffic that meets the criteria you configure for the rule. Any traffic that does not meet the rules is denied. Select Deny to prohibit access to the switch administrative pages for traffic that meets the criteria you configure for the rule.
PAGE 203
GS700TR Smart Switch Software Administration Manual The 802.1X network has three components: • Authenticators: Specifies the port that is authenticated before permitting system access. • Supplicants: Specifies the host connected to the authenticated port requesting access to the system services.
PAGE 204
GS700TR Smart Switch Software Administration Manual Table 6-17. Port Access Control—Port Configuration Fields Field Description Port Based Authentication State Select Enable or Disable 802.1X administrative mode on the switch. The default is Disable. This feature permits port-based authentication on the switch. Guest VLAN Select to Enable or Disable Guest VLAN Supplicant Mode. If enabled, when no 802.
PAGE 205
GS700TR Smart Switch Software Administration Manual Figure 6-15 Figure 6-16 Managing Device Security 6-25 v1.
PAGE 206
GS700TR Smart Switch Software Administration Manual Table 6-18. Port Authentication Port Configuration Fields Field Description Port Selects the Unit and Port to configure. Port Control Defines the port authorization state. The control mode is only set if the link status of the port is link up. The possible field values are: • Auto: Automatically detects the mode of the interface. • Authorized: Places the interface into an authorized state without being authenticated.
PAGE 207
GS700TR Smart Switch Software Administration Manual Table 6-18. Port Authentication Port Configuration Fields (continued) Field Description Max EAP Requests This input field allows you to enter the maximum requests for the selected port. The maximum requests value is the maximum number of times the authenticator state machine on this port will retransmit an EAPOL EAP Request/Identity before timing out the supplicant. The maximum requests value must be in the range of 1 to 10. The default value is 2.
PAGE 208
GS700TR Smart Switch Software Administration Manual Table 6-18. Port Authentication Port Configuration Fields (continued) Field Description Backend State This field displays the current state of the backend authentication state machine. Possible values are as follows: • Request • Response • Success • Fail • Timeout • Initialize • Idle EAPOL Flood Mode This field is used to Enable or Disable the EAPOL Flood mode per Interface.The default value is Disable. 2.
PAGE 209
GS700TR Smart Switch Software Administration Manual 1. Click Security > Port Authentication > Advanced > Port Summary in the navigation menu. Figure 6-17 Table 6-19. Port Summary Fields Field Description Port The port whose settings are displayed in the current table row. Control Mode Defines the port authorization state. The control mode is only set if the link status of the port is link up. The possible field values are: • Auto: Automatically detects the mode of the interface.
PAGE 210
GS700TR Smart Switch Software Administration Manual Table 6-19. Port Summary Fields (continued) Field Description Reauthentication Enabled Displays if reauthentication is enabled on the selected port. This is a configurable field. The possible values are 'true' and 'false'. If the value is 'true' reauthentication will occur. Otherwise, reauthentication will not be allowed. Port Status This field shows the authorization status of the specified port.
PAGE 211
GS700TR Smart Switch Software Administration Manual 1. Click Security > Traffic Control, and then click the MAC Filter > MAC Filter Configuration link. Figure 6-18 Table 6-20. Switch Configuration Fields Field Description MAC Filter This is the list of MAC address and VLAN ID pairings for all configured filters. To change the port mask(s) for an existing filter, select the entry you want to change.
PAGE 212
GS700TR Smart Switch Software Administration Manual 2. To delete a configured MAC Filter, select it from the menu, and then click Delete. 3. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 4. If you make changes to the page, click Apply to apply the changes to the system. MAC Filter Summary Use the MAC Filter Summary page to view the MAC filters that are configured on the system. To display the MAC Filter Summary page: 1.
PAGE 213
GS700TR Smart Switch Software Administration Manual Storm Control A broadcast storm is the result of an excessive number of broadcast messages simultaneously transmitted across a network by a single port. Forwarded message responses can overload network resources and/or cause the network to time out. The switch measures the incoming broadcast/multicast/unknown unicast packet rate per port and discards packets when the rate exceeds the defined value.
PAGE 214
GS700TR Smart Switch Software Administration Manual Table 6-22. Storm Control Fields Field Description Ingress Control Mode Select the mode of broadcast affected by storm control. • Disable — Do not use storm control. • Unknown Unicast — If the rate of unknown L2 unicast (destination lookup failure) traffic ingressing on an interface increases beyond the configured threshold, the traffic will be dropped.
PAGE 215
GS700TR Smart Switch Software Administration Manual Figure 6-21 Table 6-24. Port Security Configuration Fields Field Description Port Security Mode Enable or Disable the port security feature. Table 6-25. Port Security Violation Fields Field Description Port Identifies the port where a violation occurred. Last Violation MAC Displays the source MAC address of the last packet that was discarded at a locked port. VLAN ID Displays the VLAN ID corresponding to the Last Violation MAC address. 2.
PAGE 216
GS700TR Smart Switch Software Administration Manual Dynamic locking implements a ‘first arrival’ mechanism for Port Security. You specify how many addresses can be learned on the locked port. If the limit has not been reached, then a packet with an unknown source MAC address is learned and forwarded normally. Once the limit is reached, no more addresses are learned on the port. Any packets with source MAC addresses that were not already learned are discarded.
PAGE 217
GS700TR Smart Switch Software Administration Manual Table 6-26. Port Security Configuration Fields (continued) Field Description Max Allowed Dynamically Learned MAC Sets the maximum number of dynamically learned MAC addresses on the selected interface. Valid range is 0 to 600. Max Allowed Statically Locked MAC Sets the maximum number of statically locked MAC addresses on the selected interface. Valid range is 0 to 20.
PAGE 218
GS700TR Smart Switch Software Administration Manual Figure 6-23 Table 6-27. Port Security Settings Fields Field Description Convert Dynamic Address to Static Select the check box to convert a dynamically learned MAC address to a statically locked address. The Dynamic MAC Address entries are converted to Static MAC address entries in a numerically ascending order until the Static limit is reached. Table 6-28.
PAGE 219
GS700TR Smart Switch Software Administration Manual To display the Protected Ports Membership page: 1. Click the Security > Traffic Control > Protected Ports link. Figure 6-24 Table 6-29. Protected Ports Membership Fields Field Description Protected Port(s) The selection list consists of physical ports, protected as well as unprotected. The protected ports are highlighted in order to differentiate between them. No traffic forwarding is possible between two protected ports.
PAGE 220
GS700TR Smart Switch Software Administration Manual You first create an IPv4-based or MAC-based rule and assign a unique ACL ID. Then, you define the rules, which can identify protocols, source and destination IP and MAC addresses, and other packet-matching criteria. Finally, you use the ID number to assign the ACL to a port or to a VLAN interface.
PAGE 221
GS700TR Smart Switch Software Administration Manual To display the MAC ACL page: 1. Click Security > ACL. The MAC ACL page is under the Basic link. Figure 6-25 The MAC ACL table shows the number of ACLs currently configured in the switch and the maximum number of ACLs that can be configured. The current size is equal to the number of configured IPv4 ACLs plus the number of configured MAC ACLs. Table 6-30. MAC ACL Table Fields Field Description Name Enter a name for the MAC ACL..
PAGE 222
GS700TR Smart Switch Software Administration Manual MAC Rules Use the MAC Rules page to define rules for MAC-based ACLs. The access list definition includes rules that specify whether traffic matching the criteria is forwarded normally or discarded. A default 'deny all' rule is the last rule of every list. To display the MAC Rules page: 1. Click Security > ACL, then click the Basic > MAC Rules link. Figure 6-26 Table 6-31.
PAGE 223
GS700TR Smart Switch Software Administration Manual Table 6-31. MAC ACL Rule Configuration Fields (continued) Field Description Destination MAC Requires an Ethernet frame’s destination port MAC address to match the address listed here. Enter a MAC address in the appropriate field. The valid format is xx:xx:xx:xx:xx:xx. Destination MAC Mask If desired, enter the MAC Mask associated with the Destination MAC to match.
PAGE 224
GS700TR Smart Switch Software Administration Manual MAC Binding Configuration When an ACL is bound to an interface, all the rules that have been defined are applied to the selected interface. Use the MAC Binding Configuration page to assign MAC ACL lists to ACL Priorities and Interfaces. To display the MAC Binding Configuration page: 1. Click Security > ACL, then click the Basic > MAC Binding Configuration link. Figure 6-27 Table 6-32.
PAGE 225
GS700TR Smart Switch Software Administration Manual Table 6-32. MAC ACL Rule Configuration Fields (continued) Field Description Sequence Number An optional sequence number may be specified to indicate the order of this access list relative to other access lists already assigned to this interface and direction. A lower number indicates higher precedence order.
PAGE 226
GS700TR Smart Switch Software Administration Manual Table 6-33. MAC ACL Rule Configuration Fields Field Description Interface Shows the interface to which the MAC ACL is bound. Direction Specifies the packet filtering direction for ACL. The only valid direction is Inbound, which means the MAC ACL rules are applied to traffic entering the port. ACL Type Displays the type of ACL assigned to selected interface and direction.
PAGE 227
GS700TR Smart Switch Software Administration Manual Figure 6-29 The top table shows the current size of the ACL table versus the maximum size of the ACL table. The current size is equal to the number of configured IPv4 plus the number of configured MAC ACLs. The maximum size is 100. Table 6-34. IP ACL Configuration Fields Field Description IP ACL Enter an ACL ID.
PAGE 228
GS700TR Smart Switch Software Administration Manual IP Rules Use the IP Rules page to define rules for IP-based standard ACLs. The access list definition includes rules that specify whether traffic matching the criteria is forwarded normally or discarded. Note: There is an implicit “deny all” rule at the end of an ACL list. This means that if an ACL is applied to a packet and if none of the explicit rules match, then the final implicit “deny all” rule applies and the packet is dropped.
PAGE 229
GS700TR Smart Switch Software Administration Manual Table 6-35. IP ACL Rule Configuration Fields Field Description ACL ID The menu contains the existing IP ACLs configured on the page. To set up a new IP ACL, see “IP ACL”. Rule ID This field is only available if you select Create Rule from the Rule field. Enter a new Rule ID. After you click Apply, the new ID is created and you can configure the rule settings. You can create up to 10 rules for each ACL.
PAGE 230
GS700TR Smart Switch Software Administration Manual Note: There is an implicit “deny all” rule at the end of an ACL list. This means that if an ACL is applied to a packet and if none of the explicit rules match, then the final implicit “deny all” rule applies and the packet is dropped. To display the IP extended Rules page: 1. Click Security > ACL, then click the Advanced > IP Extended Rules link. Figure 6-31 2.To add an IP ACL rule, select the ACL ID to add the rule to, and then click Add.
PAGE 231
GS700TR Smart Switch Software Administration Manual Figure 6-32 Table 6-36. IP ACL Rule Configuration Fields Field Description ACL ID Identifies the ACL to which the rule is being added. Rule ID Enter a whole number in the range 1 to 10 that will be used to identify the rule. After you click Apply, the new ID is created and you can configure the rule settings. You can create up to 10 rules for each IP ACL.
PAGE 232
GS700TR Smart Switch Software Administration Manual Table 6-36. IP ACL Rule Configuration Fields (continued) Field Description Protocol Type Requires a packet’s protocol to match the protocol listed here. Select a type from the dropdown menu or enter the protocol number in the available field. Src IP Address Requires a packet’s source port IP address to match the address listed here. Enter an IP Address in the appropriate field using dotted-decimal notation.
PAGE 233
GS700TR Smart Switch Software Administration Manual Table 6-36. IP ACL Rule Configuration Fields (continued) Field Description Dst L4 Port Requires a packet’s TCP/UDP destination port to match the port listed here. Complete one of the following fields: • Destination L4 Keyword: Select the desired L4 keyword from a list of destination ports on which the rule can be based.
PAGE 234
GS700TR Smart Switch Software Administration Manual Figure 6-33 Table 6-37. IP ACL Binding Configuration Fields Field Description ACL ID Select an existing IP ACL. Direction Specifies the packet filtering direction for ACL. The only valid direction is Inbound, which means the IP ACL rules are applied to traffic entering the port.
PAGE 235
GS700TR Smart Switch Software Administration Manual IP Binding Table Use the IP Binding Table page to view or delete the IP ACL bindings. To display the IP Binding Table: 1. Click Security > ACL, then click the Advanced > Binding Table link. Figure 6-34 Table 6-38. IP ACL Binding Table Fields Field Description Interface Shows the interface to which the IP ACL is bound. Direction Specifies the packet filtering direction for ACL.
PAGE 236
GS700TR Smart Switch Software Administration Manual VLAN ACL Configuration Use this page to configure ACLs to apply to VLANs on your system rather than to ports. At the bottom of the page, the table displays any currently-configured ACLs for the selected VLAN. To display the VLAN ACL Configuration page: 1. Click Security > ACL, then click the Advanced > VLAN ACL Configuration link. Figure 6-35 The table at the bottom of the page displays any currently configured ACLs on the selected VLAN interface.
PAGE 237
GS700TR Smart Switch Software Administration Manual Table 6-39. VLAN-Based ACL Configuration Field Description MAC ACL The dropdown menu contains all configured MAC ACLs. Select the MAC ACL to apply to the interface. This field is only visible if you select MAC ACL as the ACL Type. Sequence Number Assigns the priority of this ACL. If more than one ACL is applied to an interface, then the match criteria for the highest sequence ACLs are checked first. A lower number indicates higher priority.
PAGE 238
GS700TR Smart Switch Software Administration Manual 1. Click Security > ACL, and then click the Advanced > ACL Interface/VLAN Summary link. Figure 6-36 The table at the bottom of the page displays any currently configured ACLs on the selected VLAN interface. Table 6-40. VLAN-Based ACL Configuration Field Description Summary Display Selector Select interface or VLAN to display summary. By default summary of Interfacebased ACL(s) is displayed. Port Displays the interfaces to which the IP ACL applies.
PAGE 239
Chapter 7 Monitoring the System Use the features available from the Monitoring tab to view a variety of information about the switch and its ports and to configure how the switch monitors events.
PAGE 240
GS700TR Smart Switch Software Administration Manual Figure 7-1 Table 7-1. Switch Statistics Fields Field Description ifIndex This object indicates the ifIndex of the interface table entry associated with the processor of this switch. Octets Received The total number of octets of data received by the processor (excluding framing bits but including FCS octets). Packets Received Without Errors The total number of packets (including broadcast packets and multicast packets) received by the processor.
PAGE 241
GS700TR Smart Switch Software Administration Manual Table 7-1. Switch Statistics Fields (continued) Field Description Receive Packets Discarded The number of inbound packets which were chosen to be discarded, even though no errors had been detected, in order to prevent their being delivered to a higher-layer protocol. A possible reason for discarding a packet could be to free up buffer space. Octets Transmitted The total number of octets transmitted out of the interface, including framing characters.
PAGE 242
GS700TR Smart Switch Software Administration Manual 2. Click Clear Counters to clear all the statistics counters, resetting all switch summary and detailed statistics to default values. The discarded packets count cannot be cleared. 3. Click Refresh to refresh the page with the most current data from the switch. Viewing Port Statistics The pages in the Ports folder contain a variety of information about the number and type of traffic transmitted from and received on the switch.
PAGE 243
GS700TR Smart Switch Software Administration Manual Table 7-2. Port Statistics Fields Field Description Interface Lists the ports on the system. Total Packets Received Without Errors The total number of packets received that were without errors. Packets Received With Error The number of inbound packets that contained errors preventing them from being deliverable to a higher-layer protocol.
PAGE 244
GS700TR Smart Switch Software Administration Manual Figure 7-3 Table 7-3. Port Detailed Statistics Fields Field Description Interface Use the dropdown menu to select the interface for which data is to be displayed or configured. MST ID Displays the created or existing MSTs. ifIndex This field indicates the ifIndex of the interface table entry associated with this port on an adapter. Port Type For most ports this field is blank.
PAGE 245
GS700TR Smart Switch Software Administration Manual Table 7-3. Port Detailed Statistics Fields (continued) Field Description Port Channel ID If the port is a member of a port channel, the port channel's interface ID and name are shown. Otherwise “Disable” is shown. Port Role Each MST Bridge Port that is enabled is assigned a Port Role for each spanning tree. The port role will be one of the following values: Root Port, Designated Port, Alternate Port, Backup Port, Master Port or Disabled Port.
PAGE 246
GS700TR Smart Switch Software Administration Manual Table 7-3. Port Detailed Statistics Fields (continued) Field Description Packets RX and TX 64 Octets The total number of packets (including bad packets) received or transmitted that were 64 octets in length (excluding framing bits but including FCS octets).
PAGE 247
GS700TR Smart Switch Software Administration Manual Table 7-3. Port Detailed Statistics Fields (continued) Field Description Packets Received 65-127 Octets The total number of packets (including bad packets) received that were between 65 and 127 octets in length inclusive (excluding framing bits but including FCS octets).
PAGE 248
GS700TR Smart Switch Software Administration Manual Table 7-3. Port Detailed Statistics Fields (continued) Field Description Fragments Received The total number of packets received that were less than 64 octets in length with ERROR CRC (excluding framing bits but including FCS octets). Undersize Received The total number of packets received that were less than 64 octets in length with GOOD CRC (excluding framing bits but including FCS octets).
PAGE 249
GS700TR Smart Switch Software Administration Manual Table 7-3. Port Detailed Statistics Fields (continued) Field Description Total Packets Transmitted (Octets) The total number of octets of data (including those in bad packets) transmitted on the network (excluding framing bits but including FCS octets). This object can be used as a reasonable estimate of ethernet utilization.
PAGE 250
GS700TR Smart Switch Software Administration Manual Table 7-3. Port Detailed Statistics Fields (continued) Field Description Total Transmit Errors The sum of Single, Multiple, and Excessive Collisions.
PAGE 251
GS700TR Smart Switch Software Administration Manual 2. Click Clear to clear all the counters. This resets all statistics for this port to the default values. 3. Click Refresh to refresh the data on the screen and display the most current statistics. EAP Statistics Use the EAP Statistics page to display information about EAP packets received on a specific port. To display the EAP Statistics page: 1. Click the Monitoring > Ports tab, and then click the EAP Statistics link. Figure 7-4 Table 7-4.
PAGE 252
GS700TR Smart Switch Software Administration Manual Table 7-4. EAP Statistics Fields Field Description Invalid Frames Received Displays the number of unrecognized EAPOL frames received on this port. Length Error Frames Received Displays the number of EAPOL frames with an invalid Packet Body Length received on this port. Response/ID Frames Received Displays the number of EAP Respond ID frames that have been received on the port.
PAGE 253
GS700TR Smart Switch Software Administration Manual • “Event Logs” on page 7-22 Memory Logs The in-memory log stores messages in memory based upon the settings for message component and severity. Use the Memory Logs page to set the administrative status and behavior of logs in the system buffer. To access the Memory Log page: 1. Click the Monitoring > Logs tab, and then click the Memory Log link. Figure 7-5 Table 7-5.
PAGE 254
GS700TR Smart Switch Software Administration Manual The Memory Log table also appears on the Memory Log page. Table 7-6. Memory Log Table Fields Field Description Total Number of Messages Shows the number of messages the system has logged in memory. Only the 64 most recent entries are displayed on the page. The rest of the page displays the Memory Log messages. The following example applies to the format of all logged messages which are displayed for the message log, persistent log, or console log.
PAGE 255
GS700TR Smart Switch Software Administration Manual FLASH Log Configuration The persistent log is a log that is stored in persistent storage, which means that the log messages are retained across a switch reboot. • The first log type is the system startup log. The system startup log stores the first N messages received after system reboot. This log always has the log full operation attribute set to stop on full and can store up to 32 messages. • The second log type is the system operation log.
PAGE 256
GS700TR Smart Switch Software Administration Manual Table 7-7. FLASH Log Configuration Fields Field Description Admin Status Enable or disable logging by selecting the corresponding check box. The default is Disable. • Enable: A log that is ‘Enabled’ logs messages. • Disable: A log that is ‘Disabled’ does not log messages. Severity Filter A log records messages equal to or above a configured severity threshold. Use the menu to select the severity of the logs.
PAGE 257
GS700TR Smart Switch Software Administration Manual Server Log Configuration Use the Server Log Configuration page to allow the switch to send log messages to the remote logging hosts configured on the system. To access the Server Log Configuration page: 1. Click the Monitoring > Logs tab, and then click the Server Log link. Figure 7-7 Table 7-9.
PAGE 258
GS700TR Smart Switch Software Administration Manual The Server Log Configuration page also contains the Server Configuration table. Table 7-10. Host Configuration Fields Field Description Host Address Enter the IP address or hostname of the host configured for syslog. Status Shows whether the remote logging host is currently active. Port Identifies the port on the host to which syslog messages are sent. The default port is 514. Specify the port in the text field.
PAGE 259
GS700TR Smart Switch Software Administration Manual Trap Logs Use the Trap Logs page to view information about the SNMP traps generated on the switch. To access the Trap Logs page: 1. Click the Monitoring > Logs tab, and then click the Trap Logs link. Figure 7-8 Table 7-11. Trap Log Statistics Field Description Number of Traps Since Last Reset The number of traps that have occurred since the switch last reboot. Trap Log Capacity The maximum number of traps stored in the log.
PAGE 260
GS700TR Smart Switch Software Administration Manual Table 7-12. Trap Logs Field Description Log The sequence number of this trap. System Up Time The time at which this trap occurred, expressed in days, hours, minutes and seconds since the last reboot of the switch. Trap Information identifying the trap. 2. Click Clear Counters to clear all the counters. This resets all statistics for the trap logs to the default values.
PAGE 261
GS700TR Smart Switch Software Administration Manual Table 7-13. Event Log Fields Field Description Entry The number of the entry within the event log. The most recent entry is first. Type Specifies the type of entry. Filename The GS700TR Smart Switch source code filename identifying the code that detected the event. Line The line number within the source file of the code that detected the event. Task ID The OS-assigned ID of the task reporting the event.
PAGE 262
GS700TR Smart Switch Software Administration Manual 1. Click Monitoring > Port Mirroring in the navigation menu. Figure 7-10 Table 7-14. Multiple Port Mirroring Fields Field Description Source Port Lists all the ports on the system. Select the check box next to a port to configure it as a source port. Destination Port After you select a source port, enter the port to which port traffic may be copied in g1, g2,...format. You can only configure one destination port on the system.
PAGE 263
Chapter 8 Maintenance The Maintenance tab contains links to the following pages that help you manage the switch: • “Save All Applied Changes” on page 8-1 • “System Reset” on page 8-2 • “Upload File From Switch” on page 8-3 • “Download File To Switch (TFTP)” on page 8-5 • “Dual Image Configuration” on page 8-9 • “Viewing the Dual Image Status” on page 8-11 • “Ping” on page 8-12 • “TraceRoute” on page 8-13 Save All Applied Changes When you click Apply, the changes are applied to the system an
PAGE 264
GS700TR Smart Switch Software Administration Manual Figure 8-1 2. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 3. Click Apply to save all changes applied to the system to NVRAM so that they are retained if the system reboots. System Reset Use the Device Reboot page to reboot the system. To access the Device Reboot page: 1. Click Maintenance > Reset > Device Reboot in the navigation tree. Figure 8-2 8-2 Maintenance v1.
PAGE 265
GS700TR Smart Switch Software Administration Manual 2. Click Cancel to cancel the configuration on the screen and reset the data on the screen to the latest value of the switch. 3. Click Apply to send the updated configuration to the switch. Configuration changes take place immediately. Reset Configuration to Defaults Use the Factory Default page to reset the system configuration to the factory default values.
PAGE 266
GS700TR Smart Switch Software Administration Manual To display the File Upload page: 1. Click Maintenance > Upload > File Upload in the navigation tree. Figure 8-4 Table 8-1. Upload File from Switch Fields Field Description File Type Specify the type of file you want to upload: • Code: Retrieves a stored code image. • Text Configuration: Retrieves the text configuration file startupconfig. • Error Log: Retrieves the system error (persistent) log, sometimes referred to as the event log.
PAGE 267
GS700TR Smart Switch Software Administration Manual Table 8-1. Upload File from Switch Fields (continued) Field Description Transfer File Name Enter a destination file name for the file to upload. You may enter up to 32 characters. The factory default is blank. Start File Transfer To initiate the file upload, check this box before clicking Apply. The last row of the table is used to display information about the progress of the file transfer.
PAGE 268
GS700TR Smart Switch Software Administration Manual Figure 8-5 Table 8-2. Download File to Switch Fields Field Description File Type Specify what type of file you want to download to the switch: • Code: The code is the system software image, which is saved in one of two flash sectors called images (image1 and image2). The active image stores the active copy; while the other image stores a second copy. The device boots and runs from the active image.
PAGE 269
GS700TR Smart Switch Software Administration Manual Table 8-2. Download File to Switch Fields (continued) Field Description Image Name Specify the code image you want to download, either image1 or image2. This field is only visible when Code is selected as the File Type. The factory default is image1. Transfer Mode Specifies the protocol to be used for the transfer. Server Address Type Specify either IPv4 or DNS address to indicate the format of the TFTP Server Address field.
PAGE 270
GS700TR Smart Switch Software Administration Manual 3. Verify the IP address of the TFTP server and ensure that the software image or other file to be downloaded is available on the TFTP server. 4. Complete the Server Address Type, TFTP Server IP Address and Remote File Name (full path without TFTP server IP address) fields. 5. Click the Start File Transfer check box, and then click Apply. 6. After you click Apply, the screen refreshes and a “File transfer operation started” message appears.
PAGE 271
GS700TR Smart Switch Software Administration Manual Table 8-3. HTTP File Download Fields Field Description File Type Specify the type of file you want to download: • Code: Choose this option to upgrade the operational software in flash (default). • Configuration: Choose this option to update the switch's configuration. If the file has errors the update will be stopped.
PAGE 272
GS700TR Smart Switch Software Administration Manual To display the Dual Image Configuration page: 1. Click Maintenance > File Management > Dual Image > Dual Image Configuration in the navigation menu. Figure 8-7 The Active Image page contains the following fields: Table 8-4. Dual Image Configuration Fields Field Description Image Name Select image1 or image2 from the dropdown menu to display or configure information about that software image. Current Active Displays name of current active image.
PAGE 273
GS700TR Smart Switch Software Administration Manual 5. Click Delete Image to remove the selected image from permanent storage on the switch.You cannot delete the active image. 6. Click Cancel to cancel the operation on the screen and reset the data on the screen to the latest value of the switch. 7. Click Apply to update the image description on the switch. Viewing the Dual Image Status The Dual Image feature allows the switch to have two GS700TR Smart Switch software images in the permanent storage.
PAGE 274
GS700TR Smart Switch Software Administration Manual Table 8-5. Dual Image Status Fields Field Description Unit Displays the unit ID of the switch. Image1 Ver Displays the version of the image1 code file. Image2 Ver Displays the version of the image2 code file. Current-active Displays the currently active image on this unit. Next-active Displays the image to be used on the next restart of this unit. Image1 Description Displays the description associated with the image1 code file.
PAGE 275
GS700TR Smart Switch Software Administration Manual Table 8-6. Ping Fields Field Description Hostname/IP Address Enter the IP address or the host name of the station you want the switch to ping. The initial value is blank. This information is not retained across a power cycle. Count Specify the number of pings to send. The valid range is 1 to 15. Interval Specify the number of seconds between pings sent. The valid range is 1 to 60. Size Specify the size of the ping packet to send.
PAGE 276
GS700TR Smart Switch Software Administration Manual Figure 8-10 Table 8-7. TraceRoute Fields Field Definition Hostname/IP Address Enter the IP address or the hostname of the station you want the switch to discover path for. Probes Per Hop Enter the number of times each hop should be probed. The valid range is 1 to 10. MaxTTL Enter the maximum time-to-live for a packet in number of hops. The valid range is 1 to 255. InitTTL Enter the initial time-to-live for a packet in number of hops.