User Manual
Table Of Contents
- M4200 and M4300 Series ProSAFE Managed Switches
- Contents
- 1. Getting Started
- 2. Configure System Information
- Initial Setup
- Configure the Initial IPv4 Management VLAN
- Configure the Initial IPv6 Management VLAN
- Configure the Initial Service Port Settings
- View or Define System Information
- View the Fan Status
- View the Temperature Sensor Information
- View the Device Status
- View the System CPU Status
- Configure the CPU Thresholds
- View and Clear Switch Statistics
- View USB Device Information
- View Slot Information
- Configure a Loopback Interface
- Configure Management Interfaces
- Management VLAN Overview
- Time
- Configure DNS Settings
- Configure the Switch Database Management Template Preference
- Configure Green Ethernet Settings
- Configure DHCP Server Settings
- DHCP L2 Relay
- Manage the DHCPv6 Server
- Configure PoE
- Configure SNMP
- Configure LLDP
- Configure LLDP Global Settings
- Configure the LLDP Interface
- View LLDP Statistics
- View LLDP Local Device Information
- View LLDP Remote Device Information
- View LLDP Remote Device Inventory
- Configure LLDP-MED Global Settings
- Configure LLDP-MED Interface
- View LLDP-MED Local Device Information
- View LLDP-MED Remote Device Information
- View LLDP-MED Remote Device Inventory
- Configure Link Dependency
- Configure ISDP
- Timer Schedule
- Initial Setup
- 3. Stacking
- M4300 Series Switch Stacking Overview
- Firmware Synchronization and Upgrade
- Stack Configuration Maintenance
- Stack Master Election
- Stack Factory Defaults Reset Behavior
- Stack NSF
- Configure a Stack
- Run Stack Port Diagnostics
- Configure Stack Firmware Synchronization
- View NSF Summary Data
- View NSF Checkpoint Statistics
- 4. Configure Switching Information
- Configure VLANs
- Configure Basic VLAN Settings
- Reset the VLAN Configuration to Default Setting
- Configure an Internal VLAN
- Configure VLAN Trunking
- Configure VLAN Membership
- View VLAN Status
- Configure Port PVID Settings
- Configure a MAC-Based VLAN
- Configure Protocol-Based VLAN Groups
- Configure Protocol-Based VLAN Group Membership
- Configure an IP Subnet-Based VLAN
- Configure a Port DVLAN
- Configure a Voice VLAN
- Configure GARP Switch Settings
- Configure GARP Port
- Auto-VoIP
- iSCSI Overview
- Spanning Tree Protocol
- Multicast
- View the MFDB Table
- View the MFDB Statistics
- IGMP Snooping
- Configure IGMP Snooping
- Configure IGMP Snooping for Interfaces
- Configure IGMP Snooping for VLANs
- Configure a Multicast Router
- Configure a Multicast Router VLAN
- IGMP Snooping Querier Overview
- Configure IGMP Snooping Querier
- Configure IGMP Snooping Querier for VLANs
- Configure MLD Snooping
- Configure a MLD Snooping Interface
- Configure MLD VLAN Settings
- Enable or Disable a Multicast Router on an Interface
- Configure Multicast Router VLAN Settings
- Configure MLD Snooping Querier
- Configure MLD Snooping Querier VLAN Settings
- Configure MVR
- MAC Address Table
- Port Settings
- Link Aggregation Groups
- Multiple Registration Protocol Overview
- Loop Protection
- Configure VLANs
- 5. Routing
- 6. OSPF and OSPFv3
- Configure OSPF
- Configure Basic OSPF Settings
- Configure the OSPF Default Route Advertise Settings
- Configure OSPF Settings
- Configure the OSPF Common Area ID
- Configure the OSPF Stub Area
- Configure the OSPF NSSA Area
- Configure the OSPF Area Range
- Configure the OSPF Interface
- View and Clear OSPF Statistics for an Interface
- View and the OSPF Neighbor Table and Clear OSPF Neighbors
- View the OSPF Link State Database
- Configure the OSPF Virtual Link
- Configure the OSPF Route Redistribution
- View the NSF OSPF Summary
- Configure OSPFv3
- Configure Basic OSPFv3 Settings
- Configure OSPFv3 Default Route Advertise Settings
- Configure the Advanced OSPFv3 Settings
- Configure the OSPFv3 Common Area
- Configure an OSPFv3 Stub Area
- Configure the OSPFv3 NSSA Area
- Configure the OSPFv3 Area Range
- Configure the OSPFv3 Interface
- View and Clear OSPFv3 Interface Statistics
- View the OSPFv3 Neighbor Table and Clear OSPFv3 Neighbors
- View the OSPFv3 Link State Database
- Configure the OSPFv3 Virtual Link
- Configure OSPFv3 Route Redistribution
- View the NSF OSPFv3 Summary
- Configure OSPF
- 7. Multicast Routing
- Multicast Overview
- Configure Multicast IGMP Settings
- Configure PIM Settings
- Configure the Multicast PIM Global Settings
- Configure PIM SSM Settings
- Configure PIM Interface
- View the PIM Neighbor
- View the PIM Candidate Rendezvous Point
- View the PIM Neighbor
- Configure the PIM Candidate Rendezvous Point
- Configure the PIM Bootstrap Router Candidate
- Configure the PIM Static Rendezvous Point
- Configure Multicast Static Routes
- Configure the Multicast Admin Boundary
- Configure IPv6 Multicast Settings
- View the IPv6 Multicast Mroute Table
- Configure the IPv6 PIM Global Settings
- Configure IPv6 PIM SSM
- Configure the IPv6 PIM Interface
- View the IPv6 PIM Neighbor
- Configure the IPv6 PIM Candidate Rendezvous Point
- Configure the IPv6 PIM Bootstrap Router Candidate Settings
- Configure the IPv6 PIM Static Rendezvous Point
- Configure IPv6 MLD Global Settings
- Configure the IPv6 MLD Routing Interface
- View IPv6 MLD Routing Interface Statistics
- View the IPv6 MLD Groups
- View and Clear IPv6 MLD Traffic
- Configure the IPv6 MLD Proxy Interface
- View IPv6 MLD Proxy Interface Statistics
- View the IPv6 MLD Proxy Membership
- Configure IPv6 Multicast Static Routes
- 8. Configure Quality of Service
- 9. Manage Device Security
- Manage User Accounts and Passwords
- Manage the RADIUS Server Settings
- Manage the TACACS Settings
- Configure Authentication Lists
- View Login Sessions
- Manage HHTP, HTTPS, and SSH Access
- Configure Telnet Access
- Configure Console Port Access
- Configure Denial of Service Settings
- Configure Access Control Settings
- Manage Port Authentication
- Control Traffic With MAC Filtering
- Configure Port Security and Private Groups
- Protect Ports
- Set Up Private VLANs
- Manage the Storm Control Settings
- Configure DHCP Snooping
- Configure IP Source Guard Interfaces
- Configure Dynamic ARP Inspection
- Set Up Captive Portals
- Set Up and Manage Access Control Lists
- Use the ACL Wizard to Create a Simple ACL
- Configure an ACL Based on Destination MAC Address
- Use the ACL Wizard to Complete the Destination MAC ACL
- Configure a Basic MAC ACL
- Configure MAC ACL Rules
- Configure MAC Binding
- View and Delete MAC ACL Bindings in the MAC Binding Table
- Configure an IP ACL
- Configure Rules for an IP ACL
- Configure Rules for an Extended IP ACL
- Configure an IPv6 ACL
- Configure IPv6 Rules
- Configure IP ACL Interface Bindings
- View and Delete IP ACL Bindings in the IP ACL Binding Table
- Configure VLAN ACL Bindings
- 10. Monitor the System
- 11. Maintenance and Troubleshooting
- A. Default Settings
- B. Configuration Examples
- C. Acronyms and Abbreviations
Manage Device Security
522
M4200 and M4300 Series ProSAFE Managed Switches Web Management User Manual
If ICMPv6 DoS prevention is enabled, the switch drops IPv6 ICMP ping packets with a
size greater than the configured maximum ICMPv6 packet size. Its range is 0 to 16376.
The default value is 512.
11. Select the Denial of Service First Fragment Disable or Enable radio button.
This enables First Fragment DoS prevention, which causes the switch to check DoS
options on first fragment IP packets when switch are receiving fragmented IP packets.
Otherwise, switch ignores the first fragment IP packages.The factory default is Disable.
12. Select the Denial of Service ICMP Fragment Disable or Enable radio button.
Enabling ICMP Fragment DoS prevention causes the switch to drop ICMP Fragmented
packets. The factory default is Disable.
13. Select the Denial of Service SIP=DIP Disable or Enable radio button.
Enable SIP=DIP DoS prevention causes the switch to drop packets with a source IP
address equal to the destination IP address. The factory default is Disable.
14. Select the Denial of Service SMAC=DMAC Disable or Enable radio button.
Enabling SMAC=DMAC DoS prevention causes the switch to drop packets with a source
MAC address equal to the destination MAC address. The factory default is Disable.
15. Select the Denial of Service TCP FIN&URG&PSH Disable or Enable radio button.
Enabling TCP FIN & URG & PSH DoS prevention causes the switch to drop packets with
TCP Flags FIN, URG, and PSH set and TCP Sequence Number=0. The factory default is
Disable.
16. Select the Denial of Service TCP Flag&Sequence Disable or Enable radio button.
Enabling TCP Flag DoS prevention causes the switch to drop packets with TCP control
flags set to 0 and TCP sequence number set to 0. The factory default is Disable.
17. Select the Denial of Service TCP Fragment Disable or Enable radio button.
Enabling TCP Fragment DoS prevention causes the switch to drop packets as follows:
First TCP fragments with a TCP payload: IP_Payload_Length - IP_Header_Size <
Min_TCP_Header_Size.
The factory default is Disable.
18. Select the Denial of Service TCP Offset Disable or Enable radio button.
Enabling TCP Offset DoS prevention causes the switch to drop packets with a TCP
header Offset=1. The factory default is Disable.
19. Select the Denial of Service TCP Port Disable or Enable radio button.
Enabling TCP Port DoS prevention causes the switch to drop packets with TCP source
port equal to TCP destination port. The factory default is Disable.
20. Select the Denial of Service TCP SYN Disable or Enable radio button.
Enabling
TCP SYN DoS prevention causes the switch to drop packets with
TCP flags
SYN set. The factory default is Disable.