ES3000 Ethernet Switch User Guide
ES3000 Ethernet Switch User Guide 72E-68446-01 Revision A May 2004
© 2004 by Symbol Technologies, Inc. All rights reserved. No part of this publication may be reproduced or used in any form, or by any electrical or mechanical means, without permission in writing from Symbol. This includes electronic or mechanical means, such as photocopying, recording, or information storage and retrieval systems. The material in this manual is subject to change without notice. The software is provided strictly on an “as is” basis.
Contents About This Guide Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . vii Notational Conventions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . vii Service Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .viii Chapter 1. Switch Management Overview About the ES3000 Ethernet Switch . . . . . . . . . . . . . . . . . . . .
iv ES3000 User Guide Supplying Power. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Establishing a RS-232 Serial Connection to the Ethernet Switch . . . . . . . . . . Administration of the ES3000 Ethernet Switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . Installing a SFP Fiber Transceiver. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-5 1-5 1-6 1-9 Chapter 2. Firmware Upgrades Chapter 3.
v Main Menu->Ports->Port Security->Radius. . . . . . . . . . . . . . . . . . . . . . . . . . . 3-35 Main Menu->Ports->Port Security ->802.1x . . . . . . . . . . . . . . . . . . . . . . . . . . 3-36 Main Menu->Ports->Power over Ethernet. . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-37 Main Menu->Ports->Link Aggregation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-40 Main Menu->Ports->Link Aggregation->LA Config . . . . . . . . . . . . . . . . . . . . .
vi ES3000 User Guide Chapter 4. Web Management Access General Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-2 Saving Web Interface Configuration Changes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-3 System Admin->Access->IP Configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-4 System Admin->Access->Management Access . . . . . . . . . . . . . . . . . . . . . . .
vii Spanning Tree->Forwarding DB->FDB by Port/MAC/VLAN . . . . . . . . . . . . . . 4-47 Spanning Tree->MSTP Configuration->MSTP Config . . . . . . . . . . . . . . . . . . . 4-48 Spanning Tree->MSTP Configuration->CIST Configuration . . . . . . . . . . . . . . 4-50 Spanning Tree->MSTP Configuration->CIST Basic Port Configuration. . . . . . 4-52 Spanning Tree->MSTP Configuration->CIST Advanced Port Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
viii ES3000 User Guide VLAN Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-74 Quality of Service Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-81 Diffserv Commands . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-84 802.1x Commands. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
About This Guide Introduction The ES3000 User Guide provides general instructions for configuring and using the ES3000 Ethernet Switch. This guide provides information general in nature for those who may be new to the E3000 Ethernet Switch device. Notational Conventions The following conventions are used in this document: • • Italics are used to highlight specific items in the general text, and to identify chapters and sections in this and related documents.
viii ES3000 User Guide • Sequential lists (those describing step-by-step procedures) appear as numbered lists. Service Information If a problem with is encountered with the equipment, contact the Symbol Customer Support. Refer to Appendix C for contact information. Before calling, have the model number and serial number at hand. If the problem cannot be solved over the phone, you may need to return your equipment for servicing. If that is necessary, you will be given specific directions.
Switch Management Overview 1.1 About the ES3000 Ethernet Switch The ES3000 Ethernet Switch comes in two versions. One version provides Power over Ethernet (PoE) in accordance with IEEE standard 802.3af. This allows compatible Ethernet devices to obtain power from the 10/100BaseT Ethernet wiring. IEEE 802.3af PoE senses the need for power before supplying power and will not damage non-PoE Ethernet devices. The other version of the ES3000 Switch does not provide power over Ethernet.
1-2 ES3000 User Guide 1.2 Management Access Overview The Symbol ES3000 Managed Switch provides user interface flexibility using: • • • An administration console A Web Browser interface External SNMP-based network-management application. The administration console and Web Browser interface are embedded in the switch firmware. 1.3 SNMP Access Use an external Simple Network Management Protocol (SNMP) -based application to manage the Symbol ES3000 Ethernet Switch.
Switch Management Overview virtual terminal protocol (Telnet), and a terminal connecting directly to the console port through a nullmodem serial cable. 1.4.2 SNMP Protocol SNMP is the standard management protocol for multi-vendor IP networks. SNMP supports transaction-based queries allowing the protocol to format messages and transmit information between reporting devices and data-collection programs. SNMP runs on top of the User Datagram Protocol (UDP), offering a connectionless-mode service. 1.
1-4 ES3000 User Guide 1.5.2 Package Contents Inspect the package contents and report any missing or damaged items to the Symbol sales representative. The package (for both the PoE and non-PoE Ethernet Switch models) should contain the following: • • • • • ES3000 Ethernet Switch Quick Installation Guide Rack-mounting brackets Power cord (optional) Null modem serial cable.
Switch Management Overview 1.5.3 Supplying Power To cable the ES3000 Ethernet Switch to receive power: 1. Connect the supplied AC power cord to the power connector on the rear of the Ethernet Switch. 2. Plug the cord into a standard AC outlet with a voltage range from 100VAC to 240VAC. The Ethernet Switch is ready to receive power. 1.5.4 Establishing a RS-232 Serial Connection to the Ethernet Switch The initial configuration of the Ethernet Switch is set using the serial port.
1-6 ES3000 User Guide 1.6 Administration of the ES3000 Ethernet Switch There are three management user interfaces on the switch: menu-driven, CLI, and Web. The menudriven and CLI interfaces are accessed using a direct serial connection or via Telnet over an Ethernet connection. The Web interface is accessible via HTTP over an Ethernet connection to the switch.
Switch Management Overview To use the ES3000 Command Line Interface (CLI) to configure the device: 1. Use HyperTerminal (or other communications utility) to secure a connection to the ES3000 Ethernet Switch. 2. Hit the return key to display the ES3000 logon screen. 3. Enter a user name of admin and password of symbol. Press Enter. 4. Select Execute CLI from the Main Menu. Press Enter.
1-8 ES3000 User Guide 2. Enter a user name of admin and password of symbol. Press OK. The Web interface General Information page displays. Refer to Chapter 3 for information on using the ES3000 serial interface to configure the device. Refer to Chapter 4 for instructions on using the Web interface to configure the device. Refer to Chapter 5 for instructions on using the CLI for device configuration.
Switch Management Overview 1.7 Installing a SFP Fiber Transceiver The ES3000 Ethernet Switch supports a SFP (small form factor pluggable) fiber channel transceiver used in fiber channel cable installations. To install the SFP Fiber Transceiver: 1. Remove the rubber plug protecting the optics on the transceiver. 2. Insert the transceiver into the fiber transceiver cage available on ports 25 and 26 on the ES3000 Ethernet Switch. 3.
1-10 ES3000 User Guide
Firmware Upgrades Symbol periodically releases new versions of the firmware that runs on the ES3000 Ethernet Switch. These software releases provide new features that can extend the useful life of the ES3000 Ethernet Switch. To upgrade software on the switch, boot the switch from a TFTP server instead of its own nonvolatile memory (NVRAM). To initiate the sequence, set the Next Boot From configuration parameter to Boot from Net, and reset.
2-2 ES3000 User Guide Symbol recommends using a RS-232 serial port connection to the switch during the software upgrade. When using a Telnet Session or Web interface, the connection to the switch is not available until the switch has completed its boot cycle and entered the Spanning Tree forwarding mode. This can take up to three minutes. To upgrade the switch firmware using the Web interface: 1. Go to Main Menu->Switch Tools Configuration->Software Upgrade Menu->TFTP Software Upgrade. 2.
Administration Console Access The administration console is an internal, character-oriented, VT-100/ANSI menu-driven user interface for management configuration activities. View the administration console from a terminal, PC, Apple Macintosh, or UNIX workstation connected to the switch console port. 3.1 Direct Access Management Method The direct access management method is required when initially setting up the switch.
3-2 ES3000 User Guide The following are Symbol recommended terminal-emulation programs: • • • HyperTerminal (which is built into the Microsoft Windows operating systems) ZTerm (Apple Macintosh) TIP (UNIX workstation) To set up the connection using a HyperTerminal on a PC (but other systems follow similar steps): 1. Click the Start button. Select Accessories and Communications. 2. Select HyperTerminal. The Connection Description screen displays. 3. Enter a name for the connection. Click OK. 4.
Administration Console Access 5.
3-4 ES3000 User Guide 6. Click OK. When the HyperTerminal window displays, a connection exists to the switch and a logon screen displays. If a login screen or main menu does not display, hit the return key.
Administration Console Access To use the arrow keys when attached to the User Interface via a Telnet Session to toggle forward and backward. Choose Properties from the terminal pull-down menu and verify the VT100 Arrows option is turned on. 3.2 User Interface The switch provides a menu-driven interface for managing the switch, as well as a Command Line Interface (CLI). The CLI uses text commands to manage the switch. The CLI is accessed through the CMI.
3-6 ES3000 User Guide 3.4 Main Menu Options The main menu displays the submenus available. Select Enter when a highlighted option confirms the choice of the specified submenu. The hotkey or letter within square bracket of each menu option can also be typed to directly choose the option.
Administration Console Access 3-7
3-8 ES3000 User Guide 3.5 General Information The General Information screen displays information on the operational state of the ES3000 Ethernet Switch. Use this information for general configuration information when accessing other menu items.
Administration Console Access 3.5.1 Main Menu->System Administration->System Configuration Use the System Configuration screen to access System Name, Contact Person, and System Location submenus required for configuring the device. The MAC address and Object ID also display, but these items are not user configurable.
3-10 ES3000 User Guide 3.5.2 Main Menu->System Admin.->Access Configuration There are three submenu options within the Access Configuration menu: • • • IP Config. Management Access Quit Use the IP Config menu to manage the IP related information for the ES3000 from the System IP Configuration menu. Use the Management Access menu to enable or disable the Web, SNMP and/or telnet interfaces from the Management Access menu.
Administration Console Access 3.5.3 Main Menu->Access->System IP Configuration Use the System IP Configuration menu to manage IP related information for the ES3000 supported system. • IP Assignment Mode • Manual - Manually enter IP related information • DHCP - The switch accepts DHCP broadcast from a DHCP server and automatically configures IP related information The default setting is DHCP.
3-12 ES3000 User Guide • Press Ctrl-W to save any changes to NVRAM. 3.5.4 Main Menu->Access->Management Access Use the Management Access screen to enable or disable the Web, SNMP, and/or telnet interfaces. The Management Access menu can also be used to change the user name and password. User names and passwords are case sensitive and can be up to 20 characters long. Using telnet, the user can only enable/disable the Web Interface.
Administration Console Access The configurable fields within the Management Access menu have the following values: Set Console UI Time Out: Session is disconnected when the time out occurs Set Telnet UI Time Out: Telnet session is disconnected when the time out occurs Change Local User Name: Defines the name of the local user Change Local Password: Changes the password of the local user Enable/Disable Telnet Server: Enables or disables the system accessibility via telnet.
3-14 ES3000 User Guide 3.5.5 Main Menu->System Admin->SNMP Configuration Menu Simple Network Management Protocol (SNMP) is a messaging protocol allowing communication between network managers and agents. An SNMP manager is part of a network management system (NMS), allowing an administrator to manage the network by making requests to agents. An SNMP agent provides an interface to a managed device containing managed objects in a management information base (MIB).
Administration Console Access The SNMP Configuration page has four options: • • • • System Information Authorized Managers Trap Receivers Trap Selection 3-15
3-16 ES3000 User Guide 3.5.6 Main Menu->SNMP Config.->System Information Use the System Information page to display system information to set the system name, location, and contact information. The MAC address and Object ID are also shown, but the MAC address and Object ID are not user configurable.
Administration Console Access 3.5.7 Main Menu->SNMP Config.->Authorized Managers Use the Authorized Managers page to list the SNMP managers and their associated information. There are two community strings in default mode, private and public. Read-only is allowed with public and read-write is granted to private. Change the two community strings as required. Four commands are available to set the Manager IP, community string, Status, Privilege, and IP address.
3-18 ES3000 User Guide 3.5.8 Main Menu->SNMP Config.->Trap Receiver Configuration When Authentication Traps is Enabled, the system generates an SNMP trap upon a host authorization failure. The failure occurs when a host attempts to gain access to the system but the host IP is not in the SNMP host table.
Administration Console Access 3.5.9 Main Menu->SNMP Config. ->Trap Selection Three commands are available to configure individual trap parameters: Enable/Disable Auth Fail Trap: Enables or disables the authentication failure trap. Add Link Down Trap Ports: Add individual port onto the trap list. Delete Link Down Trap Ports: Delete individual port from the trap list. 3.5.9.1 Port Link Down Trap When on, the system generates an SNMP trap upon a port link down.
3-20 ES3000 User Guide
Administration Console Access 3.5.10 Main Menu->System Admin. ->Tools Menu The Tools Menu has six options: • • • • • • Software Upgrade System Reboot Save Config. Upload/Download Config. SNTP Config System Log These individual menu options are discussed in detail in the sections that follow.
3-22 ES3000 User Guide 3.5.11 Main Menu->System Admin.->Tools->Software Upgrade If new improvements to the software on the switch become available, use the Software Upgrade menu to upgrade the switch to the new software version. Once the IP address of the TFTP and the name of the new software image file are properly configured, the user can upgrade the software with command on this menu. See Chapter 2, Firmware Upgrades when updating software.
Administration Console Access 3.5.12 Main Menu->System Admin.->Tools->System Reboot When the system reboots, reboot Status and reboot Type options display: Reboot Status: Stop The switch is powered down. Normal The switch conducts a warm reboot as normal when rebooted. Reboot Type: Normal Reboot with current runtime code and configuration. Factor-Default The switch runs as factor default after reboot. Symbol recommends Factor-Default if the previous configuration crashed.
3-24 ES3000 User Guide 3.5.13 Main Menu->System Admin.->Tools->Save Config. Save updated settings to Flash once changes to the screens within the console interface have been made. Use the Save Config screen as the central location to save changes made within the ES3000 Ethernet Switch menu-driven interface. Once updates have been saved to the system using the Save Config page, refer back to the target configuration screen to ensure the changes have been implemented by the ES3000 Ethernet Switch.
Administration Console Access 3.5.14 Main Menu->System Admin. ->Tools ->Upload/Download Config. There are four configurable functions within the Upload/Download Configuration page: Set TFTP Server IP Address user can enter the server IP address to get the TFTP server.
3-26 ES3000 User Guide 3.5.15 Main Menu->System Admin.->Tools->SNTP Config. There are configurable functions in the SNTP Configuration page: Set SNTP Server IP Simple Network Time Protocol, the user can enter SNTP server IP to gain access. Set SNTP Interval Set SNTP polling interval.
Administration Console Access 3.5.16 Main Menu->System Admin.->Tools->System Log The System Log is a tool for observing system behavior. Clear the system log by selecting Clear System Log. Symbol recommends referring to the System Log when contacting the Support Center to determine if an ES3000 event has been recorded.
3-28 ES3000 User Guide 3.5.17 Main Menu->Port Configuration Menu Use the Port Configuration menu to set the port characteristics related to link operations. All of the parameters on the Port Configuration page are toggle settings. To change, or toggle, between options, select Ctrl-M to move the curser to the ports field and strike the space bar when the appropriate option is highlighted. To modify ports 17 to 26, tab through ports 1 to 16.
Administration Console Access 3.5.18 Main Menu->Ports->Basic Port Config. Use the Basic Port Configuration menu to configure port status (link type, admin enable/disable, link up/down, mode, and flow control). To mirror other ports, select Port Mirroring.
3-30 ES3000 User Guide 3.5.19 Main Menu->Ports->Basic Port Config.->Port Status & Config. The Port Status & Configuration menu contains the following editable fields: Type The type of a port, this field is not user configurable. Admin field Enables or disables the port. Link The status of a port. The status is Up when a port is connected and active. Mode Provides the choice of Full-duplex, Half-duplex, or Auto negotiation as well as speed selection among 10Mbps, 100Mbps, 1000Mbps, or auto negotiation.
Administration Console Access port compliant with IEEE 802.3u. If the other port is not IEEE802.3u compliant, the port defaults to half-duplex (10 Mbps mode). Users can operate the communication speed and duplex mode manually. Flow Control Enables or disables Flow Control. Flow control is a protocol preventing packets from being dropped by reducing the amount of traffic to a level that can be accommodated.
3-32 ES3000 User Guide 3.5.20 Main Menu->Ports->Basic Port Config->Port Counters Use the Port Counters menu to select the port where information is required. Refer to the Total and Avg./s lists for individual port information. Reset the ES3000 to retrieve the latest information immediately. The Refresh mode is to set to a defined refresh interval.
Administration Console Access 3.5.21 Main Menu->Ports->Basic Port Config->Port Mirroring Port mirroring allows one port on the ES3000 to see all of the packets passing through any other port on the switch. Usually, a network analyzer is attached to the monitoring port so the network administrator can debug problems with the monitored port. The ES3000 has two gigabit Ethernet ports, ports 25 and 26. A 10/100BaseT port would not be able to keep up with the packet flow on a gigabit port.
3-34 ES3000 User Guide 3.5.22 Main Menu->Ports->Port Security Use the Port Security screen to enable or disable the Web, SNMP, and/or telnet interfaces or change the user name and password. User names and passwords are case sensitive and can be up to 20 characters long. When using telnet, the user can only enable/disable the Web interface. The user cannot enable/disable the telnet interface. There are two functions in the Port Security page: • • Radius 802.
Administration Console Access 3.5.23 Main Menu->Ports->Port Security->Radius Use the Radius menu option to configure the advanced security settings of the switch to limit the access to the management interfaces. There are two advanced security options beyond the basic password protection: RADIUS client authentication and 802.1X port authentication. If the user has a RADIUS server on the network, authentication of management access can be conducted through the RADIUS server.
3-36 ES3000 User Guide 3.5.24 Main Menu->Ports->Port Security ->802.1x Use the 802.1x menu to configure the NAS ID used for connection, the port to pass the security, the port control type, the operational or administrative control direction, the transmission period (30sec.), the supplicant requiring and server responding time, the maximum request times and the quiet period if there is no any activity on the ES3000. Configure the up re-authentication period when re-authentication status is Enabled.
Administration Console Access 3.5.25 Main Menu->Ports->Power over Ethernet Use Power-over-Ethernet (PoE) to eliminate using a 110/220 VAC power source to power access points and other devices on a wired LAN. If using a Power-over-Ethernet system, only a single CAT5 Ethernet cable carrying both power and data to each device is required. The single cable scheme provides greater flexibility in the placement of access points and network devices and can significantly decrease installation costs.
3-38 ES3000 User Guide Global Configuration Power Usage: Sets the power usage threshold for sending a trap. Management Method: The action to take when the power sink over the power budget, use one of the following: 1) Low priority port is shut down; 2) Deny next port connection. Detection Method: Enables or disables the power capacitor detection.
Administration Console Access 3-39
3-40 ES3000 User Guide 3.5.26 Main Menu->Ports->Link Aggregation Use the Link Aggregation menu to allow multiple links between switches to work as one virtual link (aggregate link). Trunks can be defined for similar port types only. For example, a 10/100 port cannot form a Port Trunk with a gigabit port. For 10/100 ports, trunks can only be formed within the same bank. A bank is a set of eight ports. Up to four trunks can be operating at the same time.
Administration Console Access 3.5.27 Main Menu->Ports->Link Aggregation->LA Config Use the LA Configuration menu to define multiple links between switches to work as one virtual link or aggregate link. Trunks can be defined for similar port types only. For example, a 10/100 port cannot form a Port Trunk with a gigabit port. Spanning Tree treats trunked ports as a single virtual port. Straight-though cables are required for all links in the trunk. Do not use crossover cables.
3-42 ES3000 User Guide 3.5.28 Main Menu->Ports->Link Aggregation->Set Port Priority The default system priority is the same in all ports. If configuring a port with different priority in the link aggregation, go to set port priority to configure the port priority.
Administration Console Access 3.5.29 Main Menu>VLANs A Virtual Local Area Network (VLAN) is a means to electronically separate ports on the same switch from a single broadcast domain into separate broadcast domains. By using a VLAN, users can group by logical function instead of physical location. There are 4096 VLANs supported on this switch. Two memberships are available for a VLAN member, tagged and untagged, abbreviated as T and U, respectively.
3-44 ES3000 User Guide 3.5.30 Main Menu->VLANs->VLANs by VLAN-ID Create a new VLAN, add new ports to an existing VLAN, remove ports from an existing VLAN, delete a VLAN, Set Management Status, and/or Set GVRP Status from the VLAN by VLAN-ID screen. Six commands are available: Create VLAN: Creates a new VLAN, a unique ID is required. Delete VLAN: Deletes a VLAN ID. The entire setup for the VLAN is erased. VLAN # 1 cannot be deleted under any circumstance. Config.
Administration Console Access To create a new VLAN Group: 1. 2. 3. 4. Select Create VLAN. Enter the VLAN ID and name in the provided fields. Add VLAN members if so desired. Click Apply. To delete a VLAN Group: 1. Select Delete VLAN. 2. Give the corresponding VLAN ID. To configure a VLAN Member: 1. Select Delete VLAN. 2. Give the corresponding VLAN ID.
3-46 ES3000 User Guide To set the GARP VLAN registration protocol (GVRP) message status (GARP refers to General Attribute Registration Protocol): 1. Select Set GVRP Status. 2. Choose E to enable and D to disable. To set Management Status: 1. Select Set Management Status. 2. Choose E to enable and D to disable. Adding a VLAN To create a VLAN: 1. Select Create VLAN. The Create VLAN screen displays. 2. Create the VLAN and set the VLAN ID. 3. Enter the egress port of members by typing p.
Administration Console Access 3.5.31 Main Menu->VLANs->VLAN Port Configuration Menu Use the VLAN Port Configuration screen to configure VLAN configurations for each port. The PVID is default to 1 for every port. Set Port VID: Sets PVID of a port. Set Frame Type: Sets the acceptable frame types, All or Tagged Only. When Tagged Only is selected, all non-tagged packet are dropped. Set GVRP Status: Enables or disables the GVRP of a port.
3-48 ES3000 User Guide 3.5.32 Main Menu->IGMP Snooping Configuration Menu The Internet Group Management Protocol (IGMP) is an Internet protocol allowing a host to report its multicast group membership to multicast routers. Multicasting allows one computer on the Internet to send information to other computers having identified themselves as interested in receiving the information.
Administration Console Access 3.5.33 Main Menu->IGMP Snooping->IGMP Snooping Config. Enable The system detects IGMP queries, report packets, and manage IP multicast traffic through the switch. Disable The switch forwards traffic and disregards any IGMP requests. Users can set up Host port aged time and router port aged time to snoop the network and the IGMP Snooping status report interval.
3-50 ES3000 User Guide 3.5.34 Main Menu->IGMP Snooping->VLAN Filter Table Use the VLAN Filter Table to define the VLAN not to be included in the set Vlan Filter. Enter the VLAN ID (1-4094) in the VLAN ID field. Ensure the Status field is set to Filter.
Administration Console Access 3.5.35 Main Menu->IGMP Snooping->Router Port Table The Router Port Table menu displays the ports in a VLAN ID connecting to the router. The user can snoop the package from the router side of the ports. Select Next Page to display additional VLAN IDs should they exist.
3-52 ES3000 User Guide 3.5.36 Main Menu->Spanning Tree Configuration Menu The ES3000 can be configured to use one of three spanning tree protocols. Spanning Tree Protocol (STP) is compatible with legacy equipment. Rapid Spanning Tree Protocol (RSTP) is signficantly faster than STP. Multiple Spanning Tree Protocol (MSTP) is based on RSTP and extends RSTP in a way that is useful for switches implementing VLANs.
Administration Console Access 3.5.37 Main Menu->Spanning Tree->Forwarding DB Use the Forwarding Database option to view the dynamic MAC addresses currently in the address database. When addresses are in the database, the packets intended for those addresses are forwarded directly to those ports. The Administrator can display addresses in the table by port, VLAN, and/or MAC address by entering the short key.
3-54 ES3000 User Guide Static Address Table: Use the Static Addresses Table to specify Media Access Control (MAC) addresses for specific ports not purged from the bridge table by the aging function. There are 3 entries in the table. Two commands are available to add and/or remove an entry. To add an entry, follow the pop-out prompt. 1. Enter MAC Address(xx:xx:xx:xx:xx:xx) > 00:12:34:99:ab:ef 2. Add new entry->Enter port number > 10 3.
Administration Console Access 3.5.38 Main Menu->Spanning Tree->MSTP Config. 3.5.39 Main Menu->Spanning Tree->Multiple Spanning Tree Configuration->MSTP Config. Rapid spanning tree (IEEE 802.1w) is supported to reduce the spanning tree established time. Each spanning tree establishment process takes several timeouts to avoid a loop, even the edge switch. The user can configure the switch to avoid the long latency due to timeouts if there is only a single connection to the switch.
3-56 ES3000 User Guide The upper half of the MSTP Config screen displays information about the Multiple Spanning Tree Configuration. Status: Global MSTP Status: Status of global multiple spanning tree protocol. Enabled indicates that MSTP is running while Disabled indicates MSTP is not running. Protocol Version: Three protocol versions are available, SPT (Spanning Tree), RSPT (Rapid Spanning Tree), MSPT (Multiple Spanning Tree).
Administration Console Access MST Region Version: Like MST Region Name, the MST Region Version name is required to be identical to other switches to have work cross-switch. MST Config Digest: Digest value of configuration data to increase the security. Command: Enable/Disable Global MSTP: Enables or disables the switch-wide MSTP. Set MSTP Protocol Version: Sets the protocol to be one among SPT (Spanning Tree), RSPT (Rapid Spanning Tree), and MSPT (Multiple Spanning Tree).
3-58 ES3000 User Guide 3.5.40 Main Menu->Spanning Tree->CIST Config. Status Hello Time: Time between configuration messages sent by the Spanning Tree algorithm Maximum Age: The time before a configuration message is discarded by the system Forward Delay: The time the system spends transitioning from the learning to the listening to the forwarding states Bridge Priority: Priority setting among other switches in the Spanning Tree Command Set Cist Bridge Priority: Sets the Cist bridge priority.
Administration Console Access Rapid Spanning Tree When a port running the standard STP is connected, it goes through the STP negotiation (listening -> learning -> forwarding or blocking) before it is available. If a client is trying to access a server through the switch running STP negotiation, it is not able to connect to it immediately. This can be a problem for some networks. RSPT solves the problem by setting the port directly to forwarding mode. Therefore, any server access request is forwarded.
3-60 ES3000 User Guide 3.5.41 Main Menu->Spanning Tree->MSTP Config->CIST Basic Port Config. Use the CIST Basic Port Config. menu to configure the port edge status, port P-TO-P status, and restart port migration to prevent the wrong link.
Administration Console Access 3.5.42 Main Menu -> Spanning Tree -> MSTP Config. -> CIST Advanced Port Config. Use the CIST Advanced Port Config. menu to set up the port edge status, port P-TO-P status, and restart port migration to prevent the wrong link.
3-62 ES3000 User Guide 3.5.43 Main Menu->Spanning Tree->MSTP Config.->MSTP Instance Config. A small tree instance can be considered in the MSTP. One Instance can have more than one VLAN. Use the MSTP Instance Config. menu to add or remove a VLAN, or remove the MST Instance as well as MST Instance and Instance Port configuration.
Administration Console Access 3.5.44 Main Menu->Spanning Tree->MSTP Config.->Designated Topology Info. The Designated Topology Info. page displays read-only topology information for each port.
3-64 ES3000 User Guide 3.5.45 Main Menu->Spanning Tree->MSTP Config.->Regional Topology Info. The Regional Topology Info. page displays regional topology information (read-only) for each port.
Administration Console Access 3.5.46 Main Menu->QoS (Quality of Service Configuration Menu) The ES3000 implements IEEE 802.1p Quality of Service (QoS) processing. QoS policies examine packets and classify them. The classification is used to drop packets or to assign markers to the packets. The markers are Class of Service (CoS) Priority, Type of Service (ToS) Precedence and Differentiated Services Code Points (DSCP).
3-66 ES3000 User Guide 3.5.47 Main Menu->QoS->Policy Config. Differentiated Service (DiffServ) uses a priority tag in the data packet (the Differentiated Service Code Point or DSCP) to determine the priority of the packet. The Policy Config menu maps the various DSCP tags to the two four queues on each port. The Classifier allows users to add different rules to distinguish traffic service.
Administration Console Access 3.5.48 Main Menu->QoS->Queue Config. Port Prioritization allows the user to specify which ports have greater precedence in situations where traffic can be buffered in the switch due to congestion. Traffic that comes in on ports with a setting of high is transmitted before those that come in on a port with a normal setting. The settings on this page only affect packets that do not already have VLAN priority tags.
3-68 ES3000 User Guide 3.5.49 Main Menu->QoS->Queue Config.->Queue Mapping The priority tag of each packet is divided into four queues on each output port within the Queue Mapping screen. The default setup each queue assuming two priorities sequentially. Configure the traffic class as needed. Quality of Service works only after the QoS status is Enabled by Set QoS Status.
Administration Console Access 3.5.50 Main Menu->QoS->Rate Limiting Use the Rate Limiting screen to configure the broadcast storm control to enable or disable traffic control in the networks. Rate limiting, or storm control, prevents ports on the ES3000 switch from being overwhelmed by a broadcast, unicast, or multicast storm. A storm results when packets flood the LAN, which degrades network performance.
3-70 ES3000 User Guide 3.5.51 Main Menu->QoS->Rate Limiting->Broadcast Storm Control Configuration Menu Use the Storm Control Configuration page to set the limitation of broadcast, multicast, and/or DLF (Destination Look Failure) packets delivered to the CPU. Each kind of packet determines the network load. When the load reaches a certain threshold, the CPU is busy handling packets and is unable to respond to other requests (configuration commands or SNMP requests). Available network bandwidth decreases.
Administration Console Access 3.5.52 Execute CLI The CLI (Command Line Interface) provides a means to configure the system for advanced users. Symbol recommends the CLI for adavanced users who do not need to navigae a menu-driven interface to configure the ES3000 Ethernet Switch. See Chapter 5 for detailed information.
3-72 ES3000 User Guide
Web Management Access The Symbol ES3000 Managed Switch provides a built-in browser interface for configuring and managing remotely using a standard Web browser such as Microsoft Internet Explorer or Netscape Navigator. The browser interface also allows for system monitoring of the Switch. The help page covers many of the basic functions and features of the switch and its Web interface. When configuring the switch for the first time, assign an IP address and subnet mask to the switch.
4-2 ES3000 User Guide 4.1 General Information The General Information screen is a welcome page displaying system information. There are no editable parameters on the screen. Use the General Information page to access the following submenus: System Admin Configure IP address information, management access and user information Ports Configure port security, PoE and link aggregation. VLANs Create VLANs, Set VLAN IDs and create/modify 802.1q trunk.
Web Management Access 4.2 Saving Web Interface Configuration Changes To save changes made within the Web interface, refer to System Admin->Tools->Save Configuration on page 4-14. Use the Save Configuration page to save all updates to the Web interface. Once updates are made, refer back to the target configuration page to ensure the updates have been implemented by the ES3000 Ethernet Switch.
4-4 ES3000 User Guide 4.2.1 System Admin->Access->IP Configuration The IP Configuration menu manages the IP related information of the system. To manually configure the IP address: 1. Enter a site-specific IP address, Gateway address and Net mask. 2. Click Apply to change the IP settings. 3. Save the Configuration to Flash and reset the system to implement the changes.
Web Management Access 4.2.2 System Admin->Access->Management Access Use the Management Access screen to enable or disable the Web, SNMP and/or telnet interfaces. Use the Management Access screen to change the user name and password. User names and passwords are case sensitive and can be up to 20 characters long. Enable/Disable the Web interface from the Management Access screen. The user cannot Enable/Disable the telnet interface from the Management Access screen.
4-6 ES3000 User Guide 4.2.3 System Admin->Access->User Name Password Change The user name and password can be up to 20 characters and are case sensitive. The password entered is encrypted on the screen and displays as a sequence of asterisks (*). Use the User Name Password Change screen to: • • Enable or Disable the password protection Change the user name and password Click Apply to activate the new password.
Web Management Access 4.2.4 System Admin->SNMP Configuration Simple Network Management Protocol (SNMP) is a messaging protocol allowing communication between network managers and agents. An SNMP manager is part of a network management system (NMS), allowing an administrator to manage the network by making requests to agents. An SNMP agent provides an interface to a managed device containing managed objects in a management information base (MIB).
4-8 ES3000 User Guide 4.2.5 System Admin->SNMP Configuration->SNMP Information Create up to ten different community strings with either READ or READ-WRITE privileges. Set the strings prior to setting host access, as the host table depends on the existence of community strings. The public string has GET privileges by default.
Web Management Access 4.2.6 System Admin->SNMP Configuration->Authorized Managers Use the SNMP Host Table to add and remove hosts from access rights granted to community groups. The permissions GET, SET, and TRAP are assigned to a community name. These permissions are assigned to individual machines by adding those machines and their IP address to the appropriate community string. Host Authorization can be Enabled or Disabled.
4-10 ES3000 User Guide 4.2.7 System Admin->SNMP Configuration->Trap Receiver Authentication Traps When enabled, the system generates an SNMP trap upon a host authorization failure. The failure occurs when a host tries to gain access to the system but the host IP is not in the SNMP host table.
Web Management Access 4-11
4-12 ES3000 User Guide 4.2.8 System Admin->Tools->Software Upgrade Use the Software Upgrade menu to upgrade the software for the switch through TFTP protocol, reboot the system with variety options and save configuration to Flash and View Statistic information. If new improvements to the software that runs the switch become available, use the Software Upgrade menu to upgrade the switch to the new software release.
Web Management Access 4.2.
4-14 ES3000 User Guide 4.2.10 System Admin->Tools->Save Configuration After making changes to the screens within the Web Interface, save the changed settings to Flash. If changes are not saved to NVRAM, they are lost during the next switch reset or reboot. Use the Save Configuration page as the central location to save changes made within the ES3000 Ethernet Switch Web interface.
Web Management Access 4.2.11 System Admin->Tools->SNTP Configuration Use the following editable functions in the SNTP Configuration page are required: Set SNTP Server IP Simple Network Time Protocol, user can enter SNTP server IP to get into it. Set SNTP Interval Set up SNTP polling interval (1min for example).
4-16 ES3000 User Guide 4.2.12 System Admin->Tools->System Log Menu Use the System Log Menu to trace the entry when and from where, then users can know the entry system history. Select Clear to clean the table.
Web Management Access 4.2.13 System Admin->Tools->TFTP Configuration File Upload/ Download There are fours functions in the page TFTP Configuration File Upload/Download page: Set TFTP Server IP Address enter the server IP address to get the TFTP server.
4-18 ES3000 User Guide 4.2.14 System Admin->Ports->Port Status and Configuration Configure the characteristics related to link operations. All of the parameters on the Port Status and Configuration page are toggle settings. To change, or toggle, between options, hit Ctrl-M to move the curser to the ports field and strike the space bar when the appropriate option is highlighted. To modify ports 17 to 26, tab through ports 1 to 16. The comments field is available to enter a description of the port.
Web Management Access Enabling the GBIC connector for a Gigabit Ethernet port disables the built-in 1000BASE-T port. GBIC ports do not support Auto Negotiation. Manually configure the GBIC port. The default values are 1000 Mbps, full duplex.
4-20 ES3000 User Guide 4.2.15 System Admin->Ports->Port Counters Use the Port Counters screen to select the target port for displaying port information. Selected a target port form the Select Port pull-down menu and click Apply to display counter information for that port. Refer to the Total list and the Average/sec list for data. Click Refresh now to update the data displayed for the selected port.
Web Management Access 4.2.16 System Admin->Ports->IP (Port) Mirroring Port mirroring allows one port on the ES3000 to see all of the packets passing through any other port on the switch. Usually, a network analyzer is attached to the monitoring port so the network administrator can debug problems with the monitored port. The ES3000 has two gigabit Ethernet ports, ports 25 and 26. A 10/100BaseT port would not be able to keep up with the packet flow on a gigabit port.
4-22 ES3000 User Guide 4.2.17 System Admin->Ports->Port Security ->Radius Configuration Use the Radius Configuration screen to configure switch advanced security settings to limit the access to management interfaces. There are two advanced security options beyond the basic password protection: RADIUS client authentication and 802.1X port authentication. If a RADIUS server is on the network, configure the authentication of management access through a RADIUS server.
Web Management Access 4.2.18 System Admin->Ports->Port Security ->802.1x Configuration Use the 802.1x screen to: • • • • • • • Create the NAS ID used for connection Configure the port to pass security to Set port control type Set the operational or administrative control direction Define the transmission period Configure the supplicant requiring and server responding time Set the maximum request times and the quiet period if there is no any activity.
4-24 ES3000 User Guide 4.2.19 System Admin->Ports->Power over Ethernet Use Power-over-Ethernet (PoE) to eliminate using a 110/220 VAC power source to power access points and other devices on a wired LAN. If using a Power-over-Ethernet system, only a single CAT5 Ethernet cable carrying both power and data to each device is required. The single cable scheme provides greater flexibility in the placement of access points and network devices and can significantly decrease installation costs.
Web Management Access 4.2.20 System Admin->Ports->Power over Ethernet->Port Configuration The Port Configuration page provides a port-by-port selection option for the PoE function. To set up administration, priority and/or limit, apply one or more ports simultaneously. There are 8 parameters for each port. 3 of the 8 parameters are user configurable, the other 5 are values assigned by the system to display information on the power supplied. Admin: The administration decision on providing power to a port.
4-26 ES3000 User Guide Down: Power is not allowed on this port. When Admin is set to Down, all other parameters are meaningless. The user can change the administration configuring Admin to either Enable or Disable. Status: The status of the port. When a power device is connected and power is provided, Powered is displayed for the port. Class: 4 classes are specified within IEEE 802.3af to help determine the maximum number of PDs the system can support. Class Usage PSE Output Max.
Web Management Access Example: The switch ports could require a PoE scheme similar to the following: Port Admin Priority Limit 1, 5 Down N/A N/A 2, 6 Up Critical 15.4W 3, 7 Up High 15.4W 4 Up Critical 7.0W 8 Up High 6.0W 1. The administrator needs to click ports 1 and 5 and choose Disable. 2. Select Apply to disable ports 1 and 5. 3. Continue selecting ports and defining their PoE priority. Click Apply when completed.
4-28 ES3000 User Guide 4.2.21 System Admin->Ports->Power over Ethernet->PoE Global Configuration Use the PoE Global Configuration page to modifying a global set up of PoE functions, including detection method, power management method, and power usage threshold. The first parameter is the power budget, pre-determined by the power supply and not configurable by user. The power supply in the ES3000 Ethernet Switch is 225W. 170W is dedicated to the powered devices as a power budget.
Web Management Access 4.2.22 PoE Determination Flowchart Power Budget: Maximum power allowed for powered devices. 170W for the ES3000 switch. Detection Method: The powered device detection method. Older devices could contain a capacitor. If this option is disabled (default), capacitor devices are not detected and powered. Newer devices are detected regardless if the Detection Method option is enabled or disabled.
4-30 ES3000 User Guide · Power Usage Threshold: • Low priority port will be shutdown. When a newly powered device is connected, the switch searches among its currently connected and powered devices. If any port has lower priority than the newly connected port, the switch discontinues the power supply to the lower priority port and provides power to the newly connected port.
Web Management Access 1. The flowchart assumes capacitor detection is enabled, otherwise, the path is No. 2. When selecting a priority-based power supply scheme, the "Yes" flow applies. Otherwise, the sequence of connections applies. 3. When the power consumption percentage is over the threshold, an SNMP trap is issued to corresponding receivers. The algorithm starts when a port is connected, 1. Port Connected. Port connection detected 2. Powered Device (resistor).
4-32 ES3000 User Guide 3. Powered Device (capacitor). If capacitor detection enabled is not selected for a global configuration, go to Power Not Provided (step 13). (this step is combined with next step to make the flow chart clearly). 4. Check the connected device requirement on power based on capacitor. If it is not a powered device, go to Power Not Provided (step 13). 5. Power Budget. Check the power budget. If there is enough power to support the new device, got to Over Power Threshold (step 10). 6.
Web Management Access 4.2.23 System Admin->Ports->Link Aggregation->System Priority Enter a number between 0-65535 to set up the system priority for the link aggregation. Click Apply to implement. Link Aggregation allows multiple links between switches to work as one virtual link aggregate link).
4-34 ES3000 User Guide 4.2.24 System Admin->Ports->Link Aggregation->Add Group Use Link Aggregation to configure multiple links between switches to work as one virtual link (aggregate link). Link Aggregation can be defined for similar port types only. A 10/100 port cannot form a Port Link Aggregation with a gigabit port. To define a trunk, click on the ports participating in the Link Aggregation. Spanning Tree treats trunked ports as a single virtual port.
Web Management Access 4.2.25 System Admin->Ports->Link Aggregation->Set Port Priority Use the Set Port Priority screen to specify the ports with greater precedence in situations where traffic could be buffered in the switch due to congestion. Traffic on ports with a high priority is transmitted before traffic with a low priority setting. The settings only affect packets that do not already have VLAN priority tags. To raise the priority of a given port, toggle the port setting from 0 to 255.
4-36 ES3000 User Guide 4.2.26 VLANs->VLAN Config->VLANs by VLAN-ID A Virtual Local Area Network (VLAN) is a means to electronically separate ports on the same switch from a single broadcast domain into separate broadcast domains. Users can group by logical function instead of physical location. Two memberships are available for a VLAN member, tagged (T) and untagged (U). If a port is an untagged member, the VLAN tag is striped from the frame before it is sent out of the port.
Web Management Access 4.2.27 VLANs->VLAN Config->Creating/Modify VLAN To create a VLAN, select the Create/Modify VLAN menu item. For advanced users, refer Chapter 5 for CLI command modes. To create a VLAN: 1. Specify a VLAN ID (between 2 - 4094) for the new target VLAN within the VLAN ID field. VLAN #1 cannot be deleted under any circumstance. 2. Define whether the new VLAN is the management VLAN or not. (Only 1 Management VLAN is permitted). 3. Assign the new VLAN a name within the VLAN Name field.
4-38 ES3000 User Guide 4. Add Ports as untagged or tagged members, or select the Forbidden checkbox for the target port to prevent dynamic membership via GVRP. If a port is added to multiple VLANs as a tagged member, that port becomes an 802.1Q trunk port. 5. By default, GVRP is enabled on all ports so dynamic VLAN membership can occur. Disable if desired. 6. By default, All Frames are allowed, meaning untagged and tagged. Select the Admit Tagged Only checkbox to drop untagged frames. 7.
Web Management Access 4.2.28 VLANs->VLAN Config->Create/Modify 802.1Q Trunk IEEE 802.1Q is the standard for encapsulating packets and marking them with VLAN information before sending them across a link between two switches. Use the Create/Modify 802.1Q Trunk screen to modify the encapsulation behavior on a port-by-port basis rather than on a VLAN-by-VLAN basis. It can also be used to control VLAN membership on a port-by-port basis.
4-40 ES3000 User Guide
Web Management Access 4.2.29 VLANs->VLAN Config->VLANs by Port Use the VLAN by Port screen to configure VLAN port information on a port-by-port basis. 1. Select Modify to configure VLAN information for the target port. 2. Configure trunk ports and VLAN membership as required. In the example below, Ports 25-26 are 802.1Q trunk ports with VLANs 1-2 as members.
4-42 ES3000 User Guide 4.2.30 IGMP Snooping->IGMP Snooping Config->IGMP Snooping Configuration Menu The Internet Group Management Protocol (IGMP) is an Internet protocol allowing a host to report its multicast group membership to multicast routers. Multicasting allows one computer on the Internet to send information to other computers having identified themselves as interested in receiving the information.
Web Management Access The page displays: IGMP Snooping Status: The global enabled or disabled status of IGMP snooping. The administrator can select Enabled or Disabled. When Enabled, the switch detects IGMP queries, reports, and manages multicast traffic through the switch for all VLANs. When Disabled, the switch forwards traffic and disregards IGMP requests. Host Port Age-Out Time: The length of time, in seconds, the switch keeps a host in a multicast group without receiving IGMP reports from the host.
4-44 ES3000 User Guide 4.2.31 IGMP Snooping->IGMP Snooping Config->VLAN Filter Table Use the VLAN Filter Table to define the VLAN not to be included in the set Vlan Filter. Enter the VLAN ID (1-4094) in the VLAN ID field. Ensure the Status field is set to Filter.
Web Management Access 4.2.32 IGMP Snooping->IGMP Snooping Config->Router Port Table The Router Port Table page displays the ports in VLANs connected to the router. User can snoop the package from router side in these ports.
4-46 ES3000 User Guide 4.2.33 Spanning Tree->Forwarding DB->Add Static FDB Entries The ES3000 can be configured to use one of three spanning tree protocols. Spanning Tree Protocol (STP) is compatible with legacy equipment. Rapid Spanning Tree Protocol (RSTP) is significantly faster than STP. Multiple Spanning Tree Protocol (MSTP) is based on RSTP and extends RSTP in a way useful for switches implementing VLANs.
Web Management Access 4.2.34 Spanning Tree->Forwarding DB->FDB by Port/MAC/VLAN When the number of hosts increase on a network, the Forwarding Database grows sharply. Looking for a MAC address can become time-consuming work. The system provides three different ways for an administrator to look over MAC addresses; by a specified Port, sorted by MAC address, and by a specified VLAN. A Set Age-Out time command is given to configure the time to remove a nonrecently-used entry.
4-48 ES3000 User Guide 4.2.35 Spanning Tree->MSTP Configuration->MSTP Config The ES3000 Ethernet switch is compliant with IEEE802.1D Spanning Tree Protocol (STP), IEEE 802.1w Rapid Spanning Tree, and IEEE 802.1s Multiple Spanning Tree. STP ensures only one path is active at a time between any two network nodes. There can more than one physical path between any two nodes, forming a loop, either created for redundancy or by accident. STP ensures only one physical path is active and the others are blocked.
Web Management Access 4-49
4-50 ES3000 User Guide 4.2.
Web Management Access 4-51
4-52 ES3000 User Guide 4.2.37 Spanning Tree->MSTP Configuration->CIST Basic Port Configuration Use the CIST Basic Port Configuration screen to set up the port, priority and path cost and enable/ disable the port STP status. Use the Port menu to define the target port. Use the Priority field to set the port priority. Click Apply once all changes have been made.
Web Management Access 4.2.38 Spanning Tree->MSTP Configuration->CIST Advanced Port Configuration Use the CIST Advanced Port Configuration screen to configure the port edge status, port P-TO-P status, and restart port migration to prevent the wrong link. Click Apply to implement the changes.
4-54 ES3000 User Guide 4.2.39 Spanning Tree->MSTP Configuration->MSTP Instance Configuration One instance can have more than one VLAN. Use the MSTP In stance Configuration page to add or remove a VLAN, or remove a MST and Instance Port configuration. Specify a single instance (a range of instances separated by a hyphen) or a series of instances separated by a comma. The range is from 2 to 64. For a VLAN ID, the range is from 1-7.
Web Management Access 4.2.40 Spanning Tree->MSTP Configuration->Designated Topology Information Use the Designated Topology Information page to display designated topology information for each port.
4-56 ES3000 User Guide 4.2.41 Spanning Tree->MSTP Configuration->Regional Topology Information Use the Regional Topology Information page to display regional topology information for each port.
Web Management Access 4.2.42 QoS->Policy Config->Create Classifier The ES3000 implements IEEE 802.1p Quality of Service (QoS) processing. QoS policies examine packets and classify them. The classification is used to drop packets or assign markers to the packets. The markers are Class of Service (CoS) Priority, Type of Service (ToS) Precedence and Differentiated Services Code Points (DSCP). For each port, the outgoing packets are placed in four output queues based on CoS priority or DSCP value.
4-58 ES3000 User Guide Nine parameters are available to classify a data packet, including the Source Mac Address, Destination Mac Address, VLAN ID, DSCP, Protocol, Source IP Address, Destination IP Address, Source Layer 4 Port Number, and Destination Layer 4 Port Number. Classifier Index: A unique ID to distinguish a classifier. The value can be any number between 1 and 65535. No default ID is given.
Web Management Access Destination MAC: The destination MAC address on a data packet. The format is same as source MAC address. VLAN ID: The ID of a VLAN. The value is between 1 and 4094. 0 is used to indicate no VLAN and 4095 is reserved for system use. DSCP: Differentiated Service Code Point has 6 bits and the value is between 0 and 63. Protocol: The protocol ID of an IP packet. It is a single byte with a value is between 0 and 255.
4-60 ES3000 User Guide ICMP is the basic ping command. When a ping command is issued, the packet sent is an ICMP echo packet. The packet waits for the ICMP echo reply packet to complete the ping process. The ICMP returns additional information to an echo reply if there is a ping failure (network or host unreachable etc.). Source IP Address: The Source IP Address only accepts IP version 4 addresses (four bytes long). The format is four numbers separated by three decimal points. For example, 61.31.38.225.
Web Management Access 4.2.43 QoS->Policy Configuration->Create In-Profile Action The In-Profile Action applies to the ingress data packets. Like the Classifier, it has a unique ID as index. The index is a number between 1 and 65535.
4-62 ES3000 User Guide The precedence and CoS (Class of Service) has three bits. The value is between 0 and 7. Higher values have priority. DSCP combines Precedence and ToS (Type of Service). DSCP is 6 bits long for the priority and the value ranges from 0 and 63. 4.2.44 QoS->Policy Configuration->Create Out-Profile Action Out-Profile Actions are similar to In-Profile Actions except they do not have policed-precedence nor policed-cos and they apply to egress traffic. Two actions are created as well.
Web Management Access 4.2.45 QoS->Policy Configuration->Create No-Match Action Committed Rate: The unit for 10/100Mbps port is 1Mbits and 1000Mbps ports is 8Mbits. When the data rate higher than committed rate, the data is sent as best effort. In other words, the packet is delivered when the bandwidth is available. Burst Size: The burst packet size. User may set it to 0.5Kbyte to 64Kbytes. No-Match Action resembles In-Profile Action.
4-64 ES3000 User Guide 4.2.46 QoS->Policy Configuration->Create Port List Use the Create Port List page to configure the QoS group by ID, and key in the port in the port list to have the same priority. Select the ports for any Classifier and Action. As shown in the following figure, we have two port lists available and creating the 3rd list which consists of ports 2, 4, 6, and 8 to 12. Any port can be defined in any port list. Click Apply to implement the changes.
Web Management Access 4.2.47 QoS->Policy Configuration->Create Policy Use the Create Policy screen to set up the QoS group by Policy ID, and key in the policy (1-65535) by classifier, in profile action, no match action, out profile action, and data path ID in the blank space. View the setting report by clicking Apply.
4-66 ES3000 User Guide 4.2.48 QoS->Policy Configuration->Policy Sequence Select Policy Sequence from the Policy Configuration menu to launch the Display Policy Sequence By Port page. Select Display by Index order to display the policy index for the selected port. Select Display by sequence order to display the selected port policy sequence.
Web Management Access Examples with Applied Policies When all policies are enabled, use a ping command to check the packet transmissions between switch 172.16.5.219 and host 172.16.5.56 The ping receives responses regardless of whether these policies are enabled or disabled. In other words, these policies are not applied to traffic to the CPU. The traffic between host 172.16.5.56 and switch 172.16.5.218 is verified (in this example).
4-68 ES3000 User Guide
Web Management Access 4.2.49 QoS->Queue Config->Queue Mapping The priority tag of each packet is divided into four queues on each output port. The default setup is each queue taking two priorities sequentially. The Administrator can configure the traffic class as needed. Enabled or disabled Queue Mapping within the QoS Status field. To provide quality of service, each packet carries a priority using a different approach. The IP packet has a ToS in the header.
4-70 ES3000 User Guide Priority Queue 0 0 1 0 2 1 3 1 4 2 5 2 6 3 7 3 An Administrator can modify the traffic mapping as required. Quality of Service works only after the QoS status is enabled. After the modification, set the QoS Status to Enabled and click Apply to implement the changes.
Web Management Access 4.2.50 QoS->Rate Limiting->Storm Control Configuration Rate limiting, or storm control, prevents ports on the ES3000 switch from being overwhelmed by a broadcast, unicast, or multicast storm. A storm results when packets flood the LAN, which degrades network performance. With rate limiting enabled, the switch monitors incoming traffic by counting packets over a period of time.
4-72 ES3000 User Guide There are three kinds of storm control; DLF, Broadcast, and Multicast. DLF: Destination Look Failure packets. DLF packets are broadcast to all ports except the incoming port. Broadcast: Packets are delivered to all ports except the incoming port as DLF packets. Multicast: Packets are delivered to all ports with group membership. When Enabled, the CPU drops packets beyond the specified threshold. Otherwise, the CPU processes these packet types without any limitations.
Command Line Interface 5.1 ES3000 Ethernet Switch Command Brief 5.1.1 Help Key Command Description abbreviated-commandentry Provides a list of commands that begin with a particular character string. (No space between command and question mark.) abbreviated-commandentry Completes a partial command name. Lists all commands available for a particular command mode complete-command Lists the keywords or arguments that you must enter next on the command line.
5-2 ES3000 User Guide
Command Line Interface 5.1.2 Command Hierarchy A specific value for each command mode displays at the prompt line. Use specific commands to enter or exit each command mode. The administrator can only enter command modes from specific modes and only exit to specific command modes.
5-4 ES3000 User Guide Command Mode Prompt Enter/Exit Command User EXEC(exec) Switch> Default mode, automatically enter logout or exit to quit CLI. Privileged EXEC(privExec) Switch# enable to enter from User EXEC mode logout to quit CLI; disable or exit to User EXEC Global Configuration(config) Switch(config)# configure to enter from Privileged EXEC mode. logout to quit CLI; end or exit to Privileged EXEC mode.
Command Line Interface The prompt displays the switch name, Switch, and the current CLI command mode: • • • • User EXEC-Switch> Privileged EXEC-Switch # Global Configuration-Switch (config)# Interface Configuration-Switch (config-if)# 5-5
5-6 ES3000 User Guide The ESW3000 command sets are organized into the tree hierarchy. The commands, that are not in the same level of the command tree are not available until the user has navigated down to that level. In a lower level of the command tree, the user can still enter the global configuration commands that are in the top level of the command tree. For example, the interface specific configuration commands are available only when the user has entered the interface configuration level.
Command Line Interface 5.2 Basic Commands help The help command is in each command mode and displays a brief message about using the CLI help system. help SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: The help command has no arguments or keywords. The help command has no default setting. All mode Nortel EXAMPLE: Switch#help Help can be requested at any point in a command by entering a question mark '?'.
5-8 ES3000 User Guide enable The enable command changes the command mode from User EXEC to privExec mode. enable SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: The enable command has no arguments or keywords. The enable command has no default setting. User EXEC Cisco EXAMPLE: Switch>enable Switch# configure The configure command moves to the Global Configuration (config) command mode and identifies the source for the configuration commands.
Command Line Interface interface The interface command moves to the Interface Configuration (config-if) command mode. interface SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: The interface command has no arguments or keywords. The interface command has no default setting.
5-10 ES3000 User Guide end Use the end command to exit configuration mode. end SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: The end command has no argument. The end command has no default setting. All command modes Cisco exit The exit command quits to the previous mode. exit SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The exit command has no arguments or keywords. The exit command has no default setting.
Command Line Interface ping Use the ping command to display ping test information. ping SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: IP address The ping command has no default setting. All command modes Nortel Switch Tools Configuration -> Ping Execution EXAMPLE: Switch# ping 172.16.3.152 Type Ctrl-C to abort. Reply Received From :172.16.3.152, TimeTaken : 6.45 msecs Reply Received From :172.16.3.152, TimeTaken : 0.65 msecs Reply Received From :172.16.3.152, TimeTaken : 0.
5-12 ES3000 User Guide copy tftp image Use the copy tftp image command to download image or config files. copy tftp image SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: IP address < file name > file name The copy tftp image command has no default setting. Privileged EXEC EXAMPLE: Switch# copy tftp 172.16.3.152 image. img image Downloading Image From Remote Server. Type Ctrl-C to abort. Receive 1654949 bytes Writing image to Flash...Please wait a minute.
Command Line Interface EXAMPLE: Switch# copy running-config tftp 172.16.3.152 config.txt Please wait a minute. 2581 bytes data transferred! Switch# copy tftp 172.16.3.152 config.txt running-config Please wait a minute. 2581 bytes data transferred! Switch# copy running-config startup-config Use this command to save the config to NVRAM. copy running-config startup-config SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The command has no default setting.
5-14 ES3000 User Guide 5.3 Web Browser Commands ip http server Use this command to enable or disable access to the Web server embedded in the system. ip http server no ip http server SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The ip http server command has no argument. The feature is enabled by default.
Command Line Interface show ip http server Use the show ip http server command to display telnet. show ip http server SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show ip http server command has no arguments or keywords. The show ip http server command has no default setting.
5-16 ES3000 User Guide 5.4 SNMP Commands snmp-server agent Use the snmp-server agent command to enable or disable the access to the SNMP agent embedded in the system.
Command Line Interface snmp-server location To set the system location string.
5-18 ES3000 User Guide EXAMPLE: !Set system Contact Information "MIS_1" Switch(config)# snmp-server contact MIS_1 Switch(config)# !Clean system Contact Information to default Switch(config)# no snmp-server contact Switch(config)# snmp-server community Use the snmp-server community command to set up the community access string for use with SNMP protocol.
Command Line Interface !Disable SNMP manager entry index-4 Switch(config)# no snmp-server community 4 Switch(config)# snmp-server host Use the snmp-server host command to set up the recipient of SNMP notification operation.
5-20 ES3000 User Guide snmp-server enable traps Use the snmp-server enable traps command to enable or disable the specified SNMP notification.
Command Line Interface show snmp Use the show snmp command to display snmp trap-receivers information. show snmp SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show snmp command has no arguments or keywords. The show snmp command has no default setting. Privileged EXEC Cisco Basic Switch Configuration -> SNMP Configuration Menu EXAMPLE: Switch# show snmp No.
5-22 ES3000 User Guide 5.5 Basic System Management Commands hostname Use the hostname command to specify the host name for the system.
Command Line Interface EXAMPLE: Switch# show sys-info System up for Boot Code Version Runtime Code Version : 1hr(s), 18min(s), 06sec(s) : 1.0.0.07 / Feb 16 2004 14:35:55 : 1.0.7.05 / Apr 01 2004 09:33:00 Hardware Information Version : DRAM Size : Fixed Baud Rate : Flash Size : Version1 32MB 9600bps 8MB Administration Information Switch Name : 12G-Switch Switch Location : DNI-3FB Switch Contact : DNI_KARL System Address Information MAC Address : 00:00:00:22:33:44 IP Address : 172.16.3.
5-24 ES3000 User Guide console inactivity-timer Use the console inactivity-timer command to specify an inactivity timeout value for the console. console inactivity-timer SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: 0 - 60 minutes (0 means no timeout) The default value is 5 minutes.
Command Line Interface EXAMPLE: Switch# show console Console UI Idle Timeout: 5 Min. Console -------Active Switch# telnet-server enable Use the telnet-server command to enable or disable access to the telnet server. telnet-server enable no telnet-server SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The telnet-server command has no argument. The feature is enabled by default.
5-26 ES3000 User Guide telnet-server inactivity-timer Use the telnet-server inactivity-timer command to specify an inactivity timeout value for telnet server.
Command Line Interface EXAMPLE: Switch# show telnet-server Telnet UI Idle Timeout: 5 Min. Telnet Server --------------enabled Switch# 5.6 IP Addressing Commands ip address Use the ip address command to specify an IP address and subnet mask for the system. ip address SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: IP address Mask for the associated IP subnet Both values are 0.0.0.
5-28 ES3000 User Guide ip address dhcp Use the ip address dhcp command to enable or disable the system to acquire its IP address through DHCP. ip address dhcp SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The ip address dhcp-bootp command has no argument. The feature is disabled by default.
Command Line Interface show ip conf Use the show ip conf command to display IP configurations. show ip conf SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: The show ip conf command has no arguments or keywords. The show ip conf command has no default setting. Privileged EXEC None EXAMPLE: Switch# show ip conf MAC Address IP Address Subnet Mask Default Gateway DHCP Mode Switch# : : : : : 00:00:00:22:33:44 172.16.3.71 255.255.255.0 172.16.3.
5-30 ES3000 User Guide 5.7 Security Commands username Use the username command to specify the user name and password for logging into the system. username name SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The user name string is limited to 13 characters. Both are set to "manager".
Command Line Interface 5.8 Layer-2 Interface Commands shutdown Use the shutdown command to enable or disable a port. interface shutdown no shutdown SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Port instance The shutdown feature is enabled by default.
5-32 ES3000 User Guide speed-duplex Use the speed-duplex command to configure the speed and duplex mode for a port.
Command Line Interface flow-control Use the flow-control command to enable or disable the flow control for a port. interface flow-control no flow-control SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Port instance The flow control feature is enabled by default.
5-34 ES3000 User Guide EXAMPLE: Switch# show interface Port Trunk Type --------------1/1 --10/100TX 1/2 --10/100TX 1/3 --10/100TX 1/4 --10/100TX 1/5 --10/100TX 1/6 --10/100TX 1/7 --10/100TX 1/8 --10/100TX 1/9 --10/100TX 1/10 --10/100TX 1/11 --10/100TX 1/12 --10/100TX Link ----Down Down Down Down Down Down Down Down Down Down Down Down Status -------Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Enabled Mode ------Auto Auto Auto Auto Auto Auto Auto Auto Auto Auto
Command Line Interface show interface counters Use the show interface counters command to display interface statistics. show interface counters SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Port instance. The feature is disabled by default.
5-36 ES3000 User Guide EXAMPLE: Switch# show interface counters errors fastethernet0/2 CRC/Align Errors 0 Fragments 0 Undersize Pkts 0 Jabbers 0 Oversize Pkts 0 Collisions 0 Switch # port monitor Use the port monitor command to configure a port to monitor traffic from another port.
Command Line Interface EXAMPLE: ! Set port-2 Monitoring Port , port-4 Monitored Port, direction is both. Switch(config)# interface fastethernet0/2 Switch(config-if)# port monitor fastethernet0/4 direction both Switch(config-if)# !Disable port-2 Monitoring Port , port-4 Monitored Port Switch(config)# interface fastethernet0/2 Switch(config-if)# no port monitor Switch(config-if)# show monitor Use the show monitor command to display port monitoring information.
5-38 ES3000 User Guide storm-control threshold Use the storm-control threshold command to configure the mulitcast storm control for a port. storm-control threshold SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Threshold value for a port (packets per second).
Command Line Interface storm-control broadcast Use the strom-control broadcast command to configure the broadcast storm control for a port. storm-control broadcast no storm-control broadcast SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The storm-control broadcast command has no arguments or keywords. The default value is disabled.
5-40 ES3000 User Guide ! Disable multicast storm control Switch(config)# no storm-control mutlicast storm-control unicast Use the storm-control unicast command to configure the unicast(DLF) storm control for a port. storm-control unicast no storm-control unicast SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The storm-control unicast command has no arguments or keywords. The default value is disabled.
Command Line Interface show storm-control Use the show storm-control command to display storm-control status. show storm-control SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show storm-control command has no arguments or keywords. The show storm-control command has no default setting.
5-42 ES3000 User Guide 5.9 Link Aggregation Commands lacp Use the lacp command to add ports to a port LACP group or delete ports from the group. lacp SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Trunk LACP key A list of port instances Option Meaning Active The port automatically sends LACP protocol packets.
Command Line Interface EXAMPLE: ! Set port-1 port-2 port-3 link aggregation, and LACP key =10 and mode = active Switch(config)# lacp 10 1,2,3 active Switch(config)# ! Set port-10-13 link aggregation,and LACP key =42 and mode = passive Switch(config)# lacp 42 10-13 passive Switch(config)# ! Set port-5-7 link aggregation,and LACP key =42 and mode = manual Switch(config)# lacp 12 5-7 manual Switch(config)# ! Disable link aggregation(LACP key 10) Switch(config)# no lacp 10 Switch(config)# lacp system-prior
5-44 ES3000 User Guide lacp port-priority Use the lacp port-priority command to LACP port priority. lacp port-priority SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Lacp port priority 0-255 Interface configuration Cisco EXAMPLE: ! set port 3 port-priority 40 Switch(config)# interface fastethernet0/3 Switch(config-if)# lacp port-priority 40 Switch(config-if)# show lacp Use the show lacp command to display link aggregation information.
Command Line Interface EXAMPLE: Switch# show lacp System Priority Key ---1 2 : 40000 Mode -------Manual Active Member post list ----------------2,3 4,5,6 --------- Switch# Switch# show lacp 2 System Priority Key 2 Key ---4 5 6 Switch# : 40000 Pri -------1 1 1 Attached port list ----------------4 5 6 --------- 5-45
5-46 ES3000 User Guide 5.10 MAC Address Commands mac-address-table static Use the mac-address table static command to insert a static MAC address. mac-address-table static vlan SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: MAC address Port instance VLAN ID This feature has no default value.
Command Line Interface mac-address-table aging-time Use the mac-address-table aging-time command to control aging time for dynamic MAC addresses. mac-address-table aging-time SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Integer ranges from 10 - 1000000. Default value is 300.
5-48 ES3000 User Guide show mac-address-table mac Use the show mac-address-table mac command to list MAC addresses by individual MAC address. show mac-address-table mac SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show mac-address-table mac command has no arguments or keywords. The show mac-address-table mac command has no default setting.
Command Line Interface EXAMPLE: Switch# show mac-address-table interface fastethernet0/26 MAC Address ----------------00:30:AB:00:09:20 00:30:AB:00:09:21 00:30:AB:00:09:22 00:30:AB:00:09:23 00:30:AB:00:09:24 Port -------------------26 26 26 26 26? Switch# show mac-address-table vlan Use the show mac-address-table vlan command to display the MAC address table by VLAN. show mac-address-table vlan SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: VLAN ID.
5-50 ES3000 User Guide show mac-address-table static Use the show mac-address-table static command to display the MAC address table by static. show mac-address-table static SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The c command has no arguments or keywords. The command has no default setting. Privileged EXEC None.
Command Line Interface 5.11 Multiple Spanning Tree Commands spanning-tree mst Use the spanning-tree mst command to enable or disable multiple spanning tree. spanning-tree mst enable spanning-tree mst disable SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The spanning-tree mst command has no arguments or keywords.
5-52 ES3000 User Guide EXAMPLE: !Cnfigure the MSTP name “Symbol” Switch(config)# spanning-tree mst name Symbol Switch(config)# spanning-tree mst revision Use the spanning-tree mst revision command to configure the mst revision number.
Command Line Interface MENU: EXAMPLE: !Set STP Compatible Switch(config)# spanning-tree mst version stpCompatible Switch(config)# spanning-tree mst max-hops Use the spanning-tree mst max-hops command to configure the maximum hops count.
5-54 ES3000 User Guide EXAMPLE: !Set CIST priority 40960 Switch(config)# spanning-tree mst priority 40960 Switch(config)# spanning-tree mst max-age Use the spanning-tree mst max-age command to configure the value of CIST bridge Max Age. spanning-tree mst max-age SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Integer ranges from 6 to 40 and enforces the following relationships 2* (Bridge _Forward_Delay - 1.
Command Line Interface COMMAND MODES: REFERENCE: MENU: Global configuration EXAMPLE: !set CIST Hello Time 5 seconds Switch(config)# spanning-tree mst hello-time 5 Switch(config)# spanning-tree mst forward-time Use the spanning-tree mst forward time command to configure the CIST bridge Forward Time value.
5-56 ES3000 User Guide spanning-tree mst instance priority Use the spanning-tree mst instance priority command to configure the bridge priority instance value. spanning-tree mst priority SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Integer ranges from 1 to 64 Valid priority vales are: 4096, 8192, 12288, 16384, 20480, 24576, 28672, 32768, 36864, 40960, 45056, 49152, 53248, 57344 and 61440. All other values are rejected.
Command Line Interface spanning-tree mst instance vlan Use the spanning-tree mst instance vlan command to map vlans to instances.
5-58 ES3000 User Guide ! Disable MSTP on port 4 Switch(config)# interface fastethernet0/4 Switch(config-if)# spanning-tree mst shutdown Switch(config)# spanning-tree mst port-priority Use the spanning-tree mst port priority command to configure CIST Port Priority. spanning-tree mst port-priority SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Valid priority values are 0, 16, 32, 48, 64, 80, 96, 112, 128, 144, 160, 176, 192, 208, 224, and 240.
Command Line Interface EXAMPLE: ! Set CIST port path cost 4000 on port 4 Switch(config)# interface fastethernet0/4 Switch(config-if)# spanning-tree mst cost 4000 Switch(config-if)# spanning-tree mst init-migration Init Protocol Migration on the Port in MSTP. spanning-tree mst init-migration SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The spanning-tree mst init-migration command has no arguments or keywords.
5-60 ES3000 User Guide spanning-tree mst edgeport Use the spanning-tree mst edgeport command to configure the Edge Port Status in MSTP. spanning-tree mst edgeport SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The spanning-tree mst edgeport command has no arguments or keywords.
Command Line Interface DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Interface configuration EXAMPLE: ! Force p2p false on port 4 Switch(config)# interface fastethernet0/4 Switch(config-if)# spanning-tree mst point-to-point forcefalse Switch(config-if)# spanning-tree mst instance shutdown Use the spanning-tree mst instance shutdown command to Enable/Disable MSTP function on the interface.
5-62 ES3000 User Guide spanning-tree mst instance port-priority Use the spanning-tree mst instance port-priority command to configure instance Port Priority. spanning-tree mst instance port-priority SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Integer ranges from 0 to 64 Valid priority values are 0, 16, 32, 48, 64, 80, 96, 112, 128, 144, 160, 176, 192, 208, 224, and 240. All other values are rejected.
Command Line Interface show spanning-tree mst configuration Use the show spanning-tree mst configuration command to display the MSTP configuration. show spanning-tree mst configuration SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show spanning-tree mst configuration command has no arguments or keywords. The show spanning-tree mst configuration command has no default setting.
5-64 ES3000 User Guide show spanning-tree mst cist configuration Use this command to display the MSTP CIST configuration. show spanning-tree mst cist configuration SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show spanning-tree mst cist configuration command has no arguments or keywords. The show spanning-tree mst cist configuration command has no default setting.
Command Line Interface show spanning-tree mst cist interface Use this command to display MSTP CIST configuration information for interface. show spanning-tree mst cist interface SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: A list of port instances The show spanning-tree mst cist interface command has no default setting.
5-66 ES3000 User Guide show spanning-tree mst instance configuration Use this command to display MSTP CIST configuration. show spanning-tree mst configuration SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Integer ranges from 1 to 64 The show spanning-tree mst instance configuration command has no default setting. Privileged EXEC EXAMPLE: Switch# show spanning-tree mst 5 configuration Msti Root Port: 0 Time Since Topology Change: 3069 Sec.
Command Line Interface show spanning-tree mst instance interface Use this command to display MSTP CIST configuration information for interface. show spanning-tree mst interface SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Integer ranges from 1 to 64 A list of port instances The show spanning-tree mst instance interface command has no default setting.
5-68 ES3000 User Guide 5.12 IGMP Snooping Commands ip igmp snooping Use the ip igmp snooping command to enable or disable IGMP snooping as implemented in the system. ip igmp snooping no ip igmp snooping SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The ip igmp snooping command has no argument. The feature is disabled by default.
Command Line Interface MENU: Advanced Switch Configuration Menu->IGMP Snooping->Set Host Port Aged Tim, Set Router Port Aged Time EXAMPLE: !Enable igmp snooping router port age out time 300 sec Switch(config)# ip igmp snooping aging-time router 300 Switch(config)# !Enable igmp snooping host port age out time 300 sec Switch(config)# ip igmp snooping aging-time host 300 Switch(config)# ip igmp snooping report-forward-interval Use this command to configure the forward interval of IGMP report message to a
5-70 ES3000 User Guide ip igmp snooping vlan-filter vlan Use this command to filter IGMP snooping on a specific interface in the system. ip igmp snooping vlan-filter vlan SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: VLAN ID The feature is disabled by default.
Command Line Interface EXAMPLE: Switch# show ip igmp snooping conf IGMP Snooping Status Host Port Age-Out Time Router Port Age-Out Time Report Forward Interval : : : : Enabled 260 sec 300 sec 10 sec Switch# show mac-address-table multicast Use this command to display Layer2 multicast entries information for VLAN. show mac-address-table multicst SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: This command has no arguments or keywords. This command has no default setting.
5-72 ES3000 User Guide show ip igmp snooping mrouter Use this command to display multicast router port information for VLAN. show ip igmp snooping mrouter SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: This command has no arguments or keywords. This command has no default setting. Privileged EXEC Cisco.
Command Line Interface show ip igmp snooping vlan-filter-table Use this command to display IGMP Snooping VLAN filter information. show ip igmp snooping vlan-filter-table SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: This command has no arguments or keywords. This command has no default setting.
5-74 ES3000 User Guide 5.13 VLAN Commands vlan init Use the vlan init command to remove all vlans and reset ports to default VLAN vlan init SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The vlan init command has no arguments or keywords This command has no default setting. Global configuration Advanced Switch Configuration Menu->IGMP Snooping-> Enable/Disable IGMP Snooping EXAMPLE: !remove all vlan.
Command Line Interface EXAMPLE: ! create a 802.1Q vlan untag port 1-5, 10, 15-19 Switch(config)# interface vlan3 Switch(config-if)# name VLAN-3 Switch(config-if)# member 1-5,10,15-19 Switch(config-if)# ! modify participation (remove 10, 15-19) Switch(config)# interface vlan3 Switch(config-if)# member 1-5 Switch(config-if)# forbidden Use the forbidden command to create a new VLAN or modify an existing one in the system.
5-76 ES3000 User Guide management Use the management command to remove a port member from a VLAN. interface management SYNTAX DESCRIPTION: COMMAND MODES: REFERENCE: MENU: VLAN ID Interface configuration Cisco EXAMPLE: ! Set Vlan3 management Switch(config)# interface vlan3 Switch(config-if)# management Switch(config-if)# no interface Use the no interface command to delete a VLAN in the system.
Command Line Interface PVID Use the PVID command to configure a PVID on a port. PVID SYNTAX DESCRIPTION: COMMAND MODES: REFERENCE: MENU: VLAN ID Interface configuration None EXAMPLE: ! Set port 2 PVID 3 Switch(config)# interface fastethernet0/2 Switch(config-if)# PVID 3 Switch(config-if)# frame-type Use the frame-type command to configure the frame type on a port.
5-78 ES3000 User Guide show vlan Use the show-vlan command to display VLAN information. show vlan SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: VLAN ID. The show vlan command has no default setting.
Command Line Interface EXAMPLE: ! Enable GVRP Switch(config)# gvrp Switch(config)# ! Disable GVRP Switch(config)# no gvrp Switch(config)# show vlan gvrp Use the show vlan gvrp command to display VLAN information. show vlan gvrp SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: VLAN ID. The show vlan gvrp command has no default setting.
5-80 ES3000 User Guide show vlan port Use the show vlan port command to display VLAN information. show vlan port SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show vlan port command has no default setting.
Command Line Interface 5.14 Quality of Service Commands mls qos Use the mls qos command to enable or disable the QoS implemented in the system. mls qos no mls qos SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The mls qos command has no argument. The feature is disabled by default.
5-82 ES3000 User Guide EXAMPLE: ! traffic class(Queue) 1 mapping to Priority 5 Switch(config)# priority-queue cos-map 1 5 Switch(config)# show mls qos Use the show mls qos command to display QoS information. show mls qos SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show mls qos command has no arguments or keywords. The show mls qos command has no default setting.
Command Line Interface EXAMPLE: Switch# show priority-queue cos-map Pritority Traffic Class --------- ------------0 0 1 0 2 2 3 1 4 2 5 2 6 3 7 3 Switch# 5-83
5-84 ES3000 User Guide 5.15 Diffserv Commands diffserv classifier Use the diffserv classifier command to configure the classifier for diffserv.
Command Line Interface EXAMPLE: ! Create a classifier Index:23, source MAC address: 00:00:01:02:03:04 Vlan ID is 40 Switch(config)# diffserv classifier 23 src-mac 00:00:01:02:03:04 vlan-id 40 Switch(config)# ! delete a classifier Index 23 Switch(config)# no diffserv classifier 23 Switch(config)# diffserv inprofile Use the diffserv inprofile command to configure in-profile action for diffserv.
5-86 ES3000 User Guide diffserv nomatch Use the diffserv nomatch command to configure nomatch action for diffserv.
Command Line Interface diffserv outprofile Use the diffserv outprofile command to configure the out-profile for diffserv.
5-88 ES3000 User Guide EXAMPLE: ! Create a portlist Index 5, set port 3-7 . Switch(config)# diffserv portlist 5 3-7 Switch(config)# ! delete a port-list 5 Switch(config)# no diffserv portlist 5 Switch(config)# diffserv policy Use the diffserv policy command to configure the policy for diffserv.
Command Line Interface ! delete a policy Index 5 Switch(config)# no diffserv policy 5 Switch(config)# show diffserv classifier Use the show diffserv classifier command to display diffserv classifier information. show diffserv classifier SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show diffserv classifier command has no arguments or keywords.
5-90 ES3000 User Guide show diffserv inprofile Use the diffserv inprofile command to display the diffserv in-profile information. show diffserv inprofile SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show diffserv inprofile command has no arguments or keywords.
Command Line Interface show diffserv portlist Use the show diffserv portlist command to display diffserv portlist information. show diffserv portlist SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show diffserv portlist command has no arguments or keywords.
5-92 ES3000 User Guide show diffserv policy Use the show diffserv policy command to display diffserv policy information. show diffserv policy [] SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show diffserv policy command has no arguments or keywords.
Command Line Interface show diffserv policy prcedence port Use this command to show diffserv policy precedence by port information. show diffserv policy-precedence port [sort index/precedence] SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The command has no arguments or keywords.
5-94 ES3000 User Guide 5.16 802.1x Commands dot1x radius Use the dot1x nas-id command to set 802.1x admin status. dot1x radius SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: String, ID for dot1x request to Radius server. Global configuration EXAMPLE: ! NAS ID "dot1x_auth" Switch(config)# dot1x radius dot1x_auth Switch(config)# dot1x port-control Use the dot1x port-control command to set 802.1x port control status.
Command Line Interface REFERENCE: MENU: Cisco EXAMPLE: ! set port-control auto on port 5 Switch(config)# interface fastethernet0/5 Switch(config-if)# dot1x port-control auto Switch(config)# dot1x re-authentication Use the dot1x re-authentication command to set 802.1x port re-authentication. dot1x re-authentication no dot1x re-authentication SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The dot1x re-authentication command has no arguments or keywords.
5-96 ES3000 User Guide dot1x timeout re-authperiod Use this command to set the number of seconds between re-authentication attempts. The command affects the behavior of the switch only if periodic re-authentication is enabled.
Command Line Interface dot1x timeout quiet-period Use this command to set the number of seconds the switch remains in quiet state following a failed authentication exchange with the client.
5-98 ES3000 User Guide dot1x timeout tx-period Use this command to set the number of seconds the switch waits for a response to an EAP-request/identity frame from the client before retransmitting the request.
Command Line Interface dot1x re-authenticate Use this command to re-authenticate on an 802.1X-authorized port. dot1x re-authenticate SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The dot1x re-authenticate command has no arguments or keywords.
5-100 ES3000 User Guide dot1x control-direction Use the dot1x control-direction command to impose dot1x authentication on either incoming or outgoing traffic.
Command Line Interface show dot1x show dot1x SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Port list Privileged EXEC Cisco EXAMPLE: Switch# show dot1x 1-2 NAS ID : dot1x_auth Port No : 1 Port Status : Authorized OperControlDirection : Both Port Control : Force Authorized AdminControlDirection : Both Quiet Period : 60 seconds Transmission Period : 30 seconds Supplicant Timeout : 30 seconds Server Timeout : 30 seconds Maxumum Request : 2 Re-auth Period : 60 mi
5-102 ES3000 User Guide 5.17 Radius Commands radius-server host Use the radius-server host command to specify a RADIUS server host. radius-server host < ip-address> [timeout ] [retransmit ] [key ] no radius-server SYNTAX DESCRIPTION: COMMAND MODES: REFERENCE: MENU: ip-address IP address of the RADIUS server host timeout (Optional) The time interval in seconds that the router waits for the RADIUS server to reply before retransmitting. seconds The range is 1 to 1000.
Command Line Interface show radius-server Use the show radius-server command to display Radius configure information. show radius-server SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The show radius-server command has no arguments or keywords. The show radius-server command has no default setting. Privileged EXEC EXAMPLE: Switch# show radius Server IP Address : Shared Secret : Response Time : Maximum Retransmission : Switch# 192.168.0.
5-104 ES3000 User Guide 5.18 SNTP Commands sntp server Use the sntp server command to configure the sntp server snto server SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: MENU: IP address of the recipient. The hosts are not assigned by default Global configuration Basic Switch Configuration Menu->SNTP Configuration-> Set SNTP Server IP EXAMPLE: ! Configure SNTP server ip 172.16.5.198. Switch(config)# sntp server 172.16.5.
Command Line Interface sntp daylight-saving Use this command to enable or disable daylight saving, if time zone is applicable. sntp daylight-saving no sntp daylight-saving SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: This command has no argument. This command is disabled by default Global configuration None Basic Switch Configuration Menu->SNTP Configuration-> Set Daylight Saving EXAMPLE: !Enable daylight saving.
5-106 ES3000 User Guide EXAMPLE: !Configure timezone to Taipei. Switch(config)# sntp timezone 50 Switch(config)# show sntp Use the show sntp configuration information for the interface show sntp SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: This command has no default value Privileged EXEC EXAMPLE: Switch# show sntp Date ( YYYY/MM/DD ) Time ( HH:MM:SS ) : 03:41:07 : 1900/01/01 SNTP Server IP SNTP Polling Interval Time Zone Daylight Saving : : : : Switch# Thursday 172.16.5.
Command Line Interface 5.
5-108 ES3000 User Guide log clear Use the log clear command to delete the syslog log clear SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: Global configuration EXAMPLE: Switch(config)# log clear Switch(config)#
Command Line Interface 5.20 Power Over Ethernet Commands peth trap Use the peth trap command to configure a PoE trap. peth trap no peth trap SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The peth trap command has no arguments or keywords Global configuration EXAMPLE: !Set PETH trap on Switch(config)# peth trap Switch(config)# peth usage-threshold Use the peth usage-threshold command to configure power usage threshold.
5-110 ES3000 User Guide peth disconnection-method Use the peth disconnection-method command to configure the dosconnection method. peth disconnection-method SYNTAX DESCRIPTION: next port - After the power budget has been exceeded, the next port attempting to power up is denied, regardless of its priority.
Command Line Interface EXAMPLE: !Enable capacitor detection Switch(config)# peth capacitor-detection Switch(config)# peth limit Use the peth limit command to set the power limit on a port.
5-112 ES3000 User Guide EXAMPLE: !Set priority low oon port 3 Switch(config)# interface fastethernet0/3 Switch(config-if)# peth priority low Switch(config-if)# peth shutdown Use the peth shutdown command to shut down a PoE port. peth shutdown SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The peth shutdown command has no arguments or keywords.
Command Line Interface show peth-conf Use the show peth-conf command to display switch Ethernet settings.. show peth-conf SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: This command has no arguments or keywords.
5-114 ES3000 User Guide EXAMPLE: Switch# show peth-port No. Admin. Status --- ------ -------------1 Up Not Powered 2 Down Not Powered 3 Up Not Powered 4 Up Not Powered 5 Up Not Powered 6 Up Not Powered 7 Up Not Powered 8 Up Not Powered 9 Up Not Powered 10 Up Not Powered 11 Up Not Powered 12 Up Not Powered 13 Up Not Powered Switch# Class ------------------------------- Prio. Limit (W) Power (W) Vol. (V) Cur. ------ --------- --------- --------- ---Low 15.4 0 0 0 Low 15 0 0 0 Low 15.4 0 0 0 Low 15.
Command Line Interface 5.21 Miscellaneous Commands system mtu Use the system mtu command to set the mtu length. system mtu 1578 no system mtu SYNTAX DESCRIPTION: DEFAULT VALUE: COMMAND MODES: REFERENCE: MENU: The system mtu command has one argument for the current version that is required to be 1578. Global configuration EXAMPLE: ! Set system mtu 1578 Switch(config)# system mtu 1578 Switch(config)# show system mtu Use the show system mtu command to display system mtu.
5-116 ES3000 User Guide
Command Line Interface 5.
5-118 ES3000 User Guide ! interface FastEthernet0/2 shutdown no flow-control ! interface FastEthernet0/3 no flow-control ! interface FastEthernet0/4 speed-duplex 100-full no flow-control ! interface FastEthernet0/5 no flow-control ! interface FastEthernet0/6 no flow-control ! interface FastEthernet0/7 no flow-control spanning-tree port-priority 20 ! interface FastEthernet0/8 no flow-control spanning-tree cost 10
Command Line Interface ! interface FastEthernet0/9 no flow-control ! interface FastEthernet0/10 spanning-tree cost 2 spanning-tree port-priority 3 ! interface FastEthernet0/11 spanning-tree cost 2 spanning-tree port-priority 3 ! interface FastEthernet0/12 spanning-tree cost 2 spanning-tree port-priority 3 ! interface FastEthernet0/13 spanning-tree cost 2 spanning-tree port-priority 3 ! interface FastEthernet0/14 no flow-control ! interface FastEthernet0/15 no flow-control 5-119
5-120 ES3000 User Guide ! interface FastEthernet0/16 no flow-control ! interface FastEthernet0/17 no flow-control ! interface FastEthernet0/18 no flow-control ! interface FastEthernet0/19 no flow-control port security max-mac-count 1 port security action noaction ! interface FastEthernet0/20 no flow-control port security Secure port security action trap-shutdown ! interface FastEthernet0/21 no flow-control ! interface FastEthernet0/22 no flow-control
Command Line Interface port monitor FastEthernet0/23 ! interface FastEthernet0/23 no flow-control ! interface FastEthernet0/24 no flow-control ! interface GigabitEthernet0/25 no flow-control ! interface GigabitEthernet0/26 giga-port-type GBIC no flow-control ! ! vlan-type 802.
5-122 ES3000 User Guide tagged 0/2 forbidden 0/3-4 ! interface vlan3 name ext VLAN untagged 0/14 tagged 0/15 forbidden 0/10-13 ! ip address 172.16.3.42 255.255.240.0 ! ip igmp snooping ip igmp snooping aging-time 300 ip default-gateway 172.16.5.
Command Line Interface ! mls qos priority-queue cos-map 0 1 priority-queue cos-map 0 2 priority-queue cos-map 1 6 priority-queue cos-map 1 7 ! port storm-control broadcast threshold medium ! console inactivity-timer 0 ! no telnet-server telnet-server inactivity-timer 10 ! end 5-123
5-124 ES3000 User Guide
Specifications & Pin Assignments A.1 Specifications The ES3000 Ethernet Switch has the following specifications: Width 482.6 mm with mounting brackets 440 mm without moutning brackets Height 44 mm (1RU) Depth 256 mm Weight PoE version 8.95 lbs. (with rack brackets) PoE version 8.95 lbs. (without rack brackets) Non PoE version 7.90lbs. (with rack brackets) Non PoE version 7.75 lbs. (without rack brackets) Max Power Consumption 100VAC - 240VAC, 50Hz/60Hz, 3.5A (PoE) 100VAC - 240VAC, 50Hz/60Hz, 1.
A-2 ES3000 User Guide Operating Humidity 10% to 40 % (without condensation) MTBF ES-3000-PWR-10-WW - 140,000 hours @ 25 C ES-3000-10-WW - 355,000 hours @ 25 C FIBER-3000-1S-WW - 1,125,000 hours @ 25 C A.2 RJ-45 Plug and RJ-45 Connector In a Fast Ethernet network, it is important all 100BASE-T certified Category 5 cabling use RJ-45 plugs. The RJ-45 plug accepts 4-pair UTP or shielded twisted-pair (STP) 100-ohm cable and connects into the RJ-45 connector.
Cabling Guidelines B.1 Fast Ethernet Cable Guidelines Fast Ethernet uses UTP cable, as specified in the IEEE 802.3u standard for 100BASE-TX.The specification requires Category 5 UTP cable consisting of either two-pair or four-pair twisted insulated copper conductors bound in a single plastic sheath. Category 5 cable is certified up to 100 MHz bandwidth. 100BASE-TX operation uses one pair of wires for transmission and the other pair for receiving and for collision detection.
B-2 ES3000 User Guide B.1.2 Termination Method To minimize cross-talk noise, maintain the twist ratio of the cable up to the point of termination; verify untwist at any RJ-45 plug or patch panel does not exceed 0.5 inch (1.5 cm). B.
B-3 technology automatically senses which connection, MDI or MDI-X, is needed and makes the right connection. B.4 Patch Panels and Cables If using patch panels, ensure they meet the 100BASE-TX requirements. Symbol recommends Category 5 UTP cable for patch cables and work area cables to ensure the UTP patch cable rating meets or exceeds the distribution cable rating. To wire patch panels, two Category 5 UTP cables are required with an RJ-45 plug at each end.
B-4 ES3000 User Guide B.5.3 Length The maximum distance limitation between two pieces of equipment is 100 m, as per the original Ethernet specification. The end-to-end link is called the "channel." TSB-67 defines the "Basic Link" which is the portion of the link that is part of the building infrastructure. This excludes patch and equipment cords. The maximum basic link length is 295 feet (90 m). B.5.
B-5 B.5.6 Patch Cables When installing equipment, replace old patch panel cables that do not meet Category 5e specifications. As pointed out in the NEXT section, this near end piece of cable is critical for successful operation. B.5.7 Optimum Performance For optimum performance of the 1000BASE-T product, it is important to fully qualify the cable installation and ensure it meets or exceeds ANSI/EIA/TIA-568-A:1995 or ISO/IEC 11801:1995 Category 5 specifications.
B-6 ES3000 User Guide
Customer Support Symbol Technologies provides its customers with prompt and accurate customer support. Use the Symbol Support Center as the primary contact for any technical problem, question or support issue involving Symbol products. If the Symbol Customer Support specialists cannot solve a problem, access to all technical disciplines within Symbol becomes available for further assistance and support.
C-2 ES3000 User Guide North American Contacts Inside North America, contact Symbol by: Symbol Technologies, Inc. One Symbol Plaza Holtsville, New York 11742-1300 Telephone: 1-631-738-2400/1-800-SCAN 234 Fax: 1-631-738-5990 Symbol Support Center (for warranty and service information): telephone: 1-800-653-5350 fax: (631) 563-5410 Email: support@symbol.
C-3 Web Support Sites MySymbolCare http://www.symbol.com/services/msc Symbol Services Homepage http://symbol.com/services Symbol Software Updates http://symbol.com/services/downloads Symbol Developer Program http://software.symbol.com/devzone Additional Information Obtain additional information by contacting Symbol at: 1-800-722-6234, inside North America +1-631-738-5200, in/outside North America http://www.symbol.
C-4 ES3000 User Guide
Glossary 10BASE-T The IEEE specification for 10 Mbps Ethernet over Category 3, 4, or 5 twisted-pair cable. 100BASE-FX The IEEE specification for 100 Mbps Fast Ethernet over fiber-optic cable. 100BASE-TX The IEEE specification for 100 Mbps Fast Ethernet over Category 5 twisted-pair cable. 1000BASE-SX The IEEE specification for 1000 Mbps Gigabit Ethernet over fiber-optic cable. 1000BASE-T The IEEE specification for 1000 Mbps Gigabit Ethernet over Category 5 twisted-pair cable.
GL-2 ES3000 User Guide Backbone The part of a network used as a primary path for transporting traffic between network segments. Bandwidth The information capacity, measured in bits per second, that a channel could transmit. Bandwidth examples include 10 Mbps for Ethernet, 100 Mbps for Fast Ethernet, and 1000 Mbps (I Gbps) for Gigabit Ethernet. Baud The signaling rate of a line, that is, the number of transitions (voltage or frequency changes) made per second. Also known as line speed.
GL-3 Full-duplex A system that allows packets to be transmitted and received at the same time and, in effect, doubles the potential throughput of a link. Half-duplex A system that allows packets to transmitted and received, but not at the same time. Contrast with full-duplex. IEEE Institute of Electrical and Electronics Engineers. This American organization was founded in 1963 and sets standards for computers and communications. IETF Internet Engineering Task Force.
GL-4 ES3000 User Guide Multicast Port monitoring A single packet sent to a specific group of end stations on a network. The ability to monitor the traffic passing through a port on a device to analyze network characteristics and perform troubleshooting. Port speed The speed that a port on a device uses to communicate with another device or the network. Port trunking The ability to combine multiple ports on a device to create a single, high-bandwidth connection.
GL-5 Traffic prioritization Unicast VLAN Giving time-critical data traffic a higher quality of service over other, non-critical data traffic. A packet sent to a single end station on a network. Virtual LAN. A logical association that allows users to communicate as if they were physically connected to a single LAN, independent of the actual physical configuration of the network.
GL-6 ES3000 User Guide
Index Numerics 1000BASE-T Gigabit Ethernet Category 5 cables . . . . . . . . . . . . . . . . . . . . . . . . . B-3 NEXT . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . B-4 return loss . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . B-4 802.1x port settings . . . . . . . . . . . . . . . . . . . . . . . .3-36, 4-23 A access configuration . . . . . . . . . . . . . . . . . . . . . . . . . . 3-10 actions in-profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
IN-2 ES3000 User Guide guidelines. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .B-1 length . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .B-4 patch panels. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .B-3 trunk guidelines . . . . . . . . . . . . . . . . . . . . . . . . . . 3-41 twisted pair . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .B-2 case sensitivity, user names and passwords . . . . 3-12, 4-5 Category 5 cabling . . . . . . . . . . . . .
IN-3 dot1x re-authenticate command . . . . . . . . . . . . . . . . . 5-99 dot1x re-authentication command. . . . . . . . . . . . . . . . 5-95 dot1x timeout quiet-period command . . . . . . . . . . . . . 5-97 dot1x timeout re-authperiod command . . . . . . . . . . . . 5-96 dot1x timeout server command . . . . . . . . . . . . . . . . . . 5-97 dot1x timeout supp-timeout command . . . . . . . . . . . . 5-96 dot1x timeout tx-period command. . . . . . . . . . . . . . . . 5-98 download command. . . . . . . . . .
IN-4 ES3000 User Guide adding groups . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-34 cabling guidelines . . . . . . . . . . . . . . . . . . . . . . . . 3-41 configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-41 configuring multiple links as one. . . . . . . . . . . . . 4-34 setting priority . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-42 settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-40 system priority . . . . . . . . . . . . . . . . .
IN-5 polling interval, setting . . . . . . . . . . . . . . . . . . . . . . . . 3-26 port monitor command. . . . . . . . . . . . . . . . . . . . . . . . . 5-36 ports configuration 802.1x settings. . . . . . . . . . . . . . . . . .3-36, 4-23 basic. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-29 CIST advanced . . . . . . . . . . . . . . . . . .3-61, 4-53 CIST basic . . . . . . . . . . . . . . . . . . . . .3-60, 4-52 link operations . . . . . . . . . . . . . . . . . .3-28, 4-18 lists. . . . . .
IN-6 ES3000 User Guide radius-server host command . . . . . . . . . . . . . . . . . . . 5-102 Rapid Spanning Tree Protocol, see RSTP rate limits . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-69, 4-71 reboot protocol . . . . . . . . . . . . . . . . . . . . . . . . . . 3-23, 4-13 regional topology . . . . . . . . . . . . . . . . . . . . . . . . 3-64, 4-56 remote management. . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-6 return loss . . . . . . . . . . . . . . . . . . . . . . . . .
IN-7 sntp timezone. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5-105 software browser versions. . . . . . . . . . . . . . . . . . . . . . . . . . 4-1 rebooting. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-23 upgrades . . . . . . . . . . . . . . . . . . . . . . . 2-1, 3-22, 4-12 spanning trees configuration CIST . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-50 menu options . . . . . . . . . . . . . . . . . . . . . . . 3-52 forwarding database. . . . . . . .
IN-8 ES3000 User Guide Web interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2-1 user interface about . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-5 logging out . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-6 working with . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1-2 user names changing. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4-6 default . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Symbol Technologies, Inc. One Symbol Plaza Holtsville, New York 11742-1300 http://www.symbol.
