User GuideTable of ContentsTitle1Notice3Contents7A13B13Figures14Tables17About This Guide21Using This Guide21Structure of This Guide22Related Documents24Document Conventions24Typographical and Keystroke Conventions25Introduction271.1 Overview271.1.1 The Management Agent291.1.2 In-Band vs. Out-of-Band291.2 Navigating Local Management Screens291.3 Local Management Requirements301.4 Local Management Screen Elements301.5 Local Management Keyboard Conventions341.6 Getting Help35Local Management Requirements372.1 Management Terminal Setup372.1.1 Console Cable Connection382.1.2 Management Terminal Setup Parameters392.2 Telnet Connections402.3 Monitoring an Uninterruptible Power Supply40Accessing Local Management433.1 Navigating Local Management Screens433.1.1 Selecting Local Management Menu Screen Items463.1.2 Exiting Local Management Screens463.1.3 Using the NEXT and PREVIOUS Commands473.1.4 Using the CLEAR COUNTERS Command473.2 Password Screen483.3 Main Menu Screen503.4 Module Selection Screen513.4.1 Selecting a Module533.5 Module Menu Screen543.6 Overview of Security Methods573.6.1 Host Access Control Authentication (HACA)583.6.2 802.1X Port Based Network Access Control613.6.2.1 Definitions of Terms and Abbreviations613.6.2.2 802.1X Security Overview623.6.3 MAC Authentication Overview633.6.3.1 Authentication Method Selection633.6.3.2 Authentication Method Sequence633.6.3.3 Concurrent Operation of 802.1X and MAC Authentication643.6.4 MAC Authentication Control673.7 Security Menu Screen683.8 Passwords Screen713.8.1 Setting the Module Login Password733.9 Radius Configuration Screen733.9.1 Setting the Last Resort Authentication763.9.2 Setting the Local and Remote Servers763.10 Name Services Configuration Screen773.11 System Authentication Configuration Screen793.12 EAP (Port) Configuration Screen813.13 EAP Statistics Menu Screen863.13.1 EAP Session Statistics Screen883.13.2 EAP Authenticator Statistics Screen903.13.3 EAP Diagnostic Statistics Screen933.14 MAC Port Configuration Screen963.15 MAC Supplicant Configuration Screen98Chassis Menu Screens1014.1 Chassis Menu Screen1024.2 Chassis Configuration Screen1044.2.1 Setting the IP Address1064.2.2 Setting the Subnet Mask1074.2.3 Setting the Chassis Date1074.2.4 Setting the Chassis Time1084.2.5 Setting a New Screen Refresh Time1084.2.6 Setting the Screen Lockout Time1094.3 SNMP Configuration Menu Screen1104.4 SNMP Community Names Configuration Screen1124.4.1 Establishing Community Names1134.5 SNMP Traps Configuration Screen1144.5.1 Configuring the Trap Table1164.6 Chassis Environmental Information Screen1164.7 Redirect Configuration Menu Screen (Chassis)1184.8 Port Redirect Configuration Screen1194.8.1 Changing Source and Destination Ports1224.9 VLAN Redirect Configuration Screen1234.9.1 Changing Source VLAN and Destination Ports126Module Configuration Menu Screens1275.1 Module Configuration Menu Screen1285.2 General Configuration Screen1305.2.1 Setting the IP Address1345.2.2 Setting the Subnet Mask1355.2.3 Setting the Default Gateway1365.2.4 Setting the TFTP Gateway IP Address1375.2.5 Setting the Module Name1385.2.6 Setting the Module Date1385.2.7 Setting the Module Time1395.2.8 Entering a New Screen Refresh Time1395.2.9 Setting the Screen Lockout Time1405.2.10 Configuring the COM Port1405.2.10.1 Changing the COM Port Application1425.2.11 Clearing NVRAM1425.2.12 Enabling/Disabling IP Fragmentation1435.3 SNMP Configuration Menu Screen1445.4 SNMP Community Names Configuration Screen1465.4.1 Establishing Community Names1485.5 SNMP Traps Configuration Screen1495.5.1 Configuring the Trap Table1505.6 Access Control List Screen1515.6.1 Entering IP Addresses1545.6.2 Enable/Disable ACL1555.7 System Resources Information Screen1565.7.1 Setting the Reset Peak Switch Utilization1575.8 FLASH Download Configuration Screen1585.8.1 Image File Download Using Runtime1625.8.2 Configuration File Download Using TFTP1635.8.3 Configuration File Upload Using TFTP164Port Configuration Menu Screens1656.1 Port Configuration Menu Screen1666.2 Ethernet Interface Configuration Screen1686.3 Ethernet Port Configuration Screen1726.3.1 Selecting Field Settings1766.3.2 Setting the Advertised Ability1766.4 HSIM/VHSIM Configuration Screen1776.5 Redirect Configuration Menu Screen1786.6 Port Redirect Configuration Screen1806.6.1 Changing Source and Destination Ports1836.7 VLAN Redirect Configuration Screen1846.7.1 Changing Source VLAN and Destination Ports1876.8 Link Aggregation Screen (802.3ad Main Menu Screen)1886.8.1 802.3ad Port Screen1936.8.1.1 802.3ad Port Details Screen1956.8.1.2 802.3ad Port Statistics Screen2016.8.2 802.3ad Aggregator Screen2046.8.2.1 802.3ad Aggregator Details Screen2066.8.3 802.3ad System Screen2086.9 Broadcast Suppression Configuration Screen2106.9.1 Setting the Threshold2116.9.2 Setting the Reset Peak212802.1 Configuration Menu Screens2137.1 802.1 Configuration Menu Screen2147.2 Spanning Tree Configuration Menu Screen2167.3 Spanning Tree Configuration Screen2187.3.1 Configuring a VLAN Spanning Tree2217.4 Spanning Tree Port Configuration Screen2227.4.1 Enabling/Disabling the Default Spanning Tree Ports2247.4.2 Viewing Status of Spanning Tree Ports2247.5 PVST Port Configuration Screen224802.1Q VLAN Configuration Menu Screens2278.1 Summary of VLAN Local Management2288.1.1 Preparing for VLAN Configuration2288.2 802.1Q VLAN Configuration Menu Screen2298.3 Static VLAN Configuration Screen2328.3.1 Creating a Static VLAN2348.3.2 Displaying the Current Static VLAN Port Egress List2348.3.3 Renaming a Static VLAN2358.3.4 Deleting a Static VLAN2358.3.5 Paging Through the VLAN List2368.4 Static VLAN Egress Configuration Screen2368.4.1 Setting Egress Types on Ports2388.4.2 Displaying the Next Group of Ports2398.5 Current VLAN Configuration Screen2408.6 Current VLAN Egress Configuration Screen2428.7 VLAN Port Configuration Screen2438.7.1 Changing the Port Mode2468.7.2 Configuring the VLAN Ports2478.8 VLAN Classification Configuration Screen2478.8.1 Classification Precedence Rules2558.8.2 Displaying the Current Classification Rule Assignments2588.8.3 Assigning a Classification to a VID2598.8.4 Deleting Line Items2608.9 Protocol Port Configuration Screen2618.9.1 Assigning Ports to a VID/Classification263802.1p Configuration Menu Screens2659.1 802.1p Configuration Menu Screen2669.2 Port Priority Configuration Screen2689.2.1 Setting Switch Port Priority Port-by-Port2709.2.2 Setting Switch Port Priority on All Ports2719.3 Traffic Class Information Screen2719.4 Traffic Class Configuration Screen2749.4.1 Assigning the Traffic Class to Port Priority2759.5 Transmit Queues Configuration Screen2769.5.1 Setting the Current Queueing Mode2799.6 Priority Classification Configuration Screen2809.6.1 Classification Precedence Rules2909.6.2 About the IP TOS Rewrite Feature2939.6.3 Displaying the Current PID/Classification Assignments2949.6.4 Assigning a Classification to a PID2949.6.5 Deleting PID/Classification/Description Line Items2959.7 Protocol Port Configuration Screen2969.7.1 Assigning Ports to a PID/Classification2989.7.2 Example, Prioritizing Traffic According to Classification Rule2999.7.2.1 Solving the Problem2999.8 Rate Limiting Configuration Screen3019.8.1 Configuring a Port3059.8.2 Changing/Deleting Port Line Items3079.8.3 More About Rate Limiting308Layer 3 Extensions Menu Screens31110.1 Layer 3 Extensions Menu Screen31210.2 IGMP/VLAN Configuration Screen31310.2.1 IGMP/VLAN Configuration Procedure317Module Statistics Menu Screens31911.1 Module Statistics Menu Screen32011.2 Switch Statistics Screen32211.3 Interface Statistics Screen32411.3.1 Displaying Interface Statistics32711.4 RMON Statistics Screen32811.4.1 Displaying RMON Statistics33111.5 Chassis Environmental Statistics Configuration Screen332Network Tools Screens33512.1 Network Tools33512.2 Built-in Commands33812.3 Example, Effects of Aging Time on Dynamic Egress37112.4 Example, Using Dynamic Egress to Control Traffic37112.5 Special Commands372VLAN Operation and Network Applications37313.1 Defining VLANs37413.2 Types of VLANs37613.2.1 802.1Q VLANs37613.2.2 Other VLAN Strategies37613.3 Benefits and Restrictions37613.4 VLAN Terms37713.5 VLAN Operation37913.5.1 Description37913.5.2 VLAN Components37913.6 Configuration Process38013.6.1 Defining a VLAN38013.6.2 Classifying Frames to a VLAN38013.6.3 Customizing the VLAN Forwarding List38013.7 VLAN Switch Operation38113.7.1 Receiving Frames from VLAN Ports38213.7.2 Forwarding Decisions38213.7.2.1 Broadcasts, Multicasts, and Unknown Unicasts38213.7.2.2 Known Unicasts38313.8 VLAN Configuration38313.8.1 Managing the Switch38313.8.2 Switch Without VLANs38313.8.3 Switch with VLANs38413.9 Summary of VLAN Local Management38613.9.1 Preparing for VLAN Configuration38713.10 Quick VLAN Walkthrough38813.11 Examples39313.12 Example 1, Single Switch Operation39413.12.1 Solving the Problem39413.12.2 Frame Handling39613.13 Example 2, VLANs Across Multiple Switches39613.13.1 Solving the Problem39813.13.2 Frame Handling40113.14 Example 3, Filtering Traffic According to a Layer 4 Classification Rule40413.14.1 Solving the Problem40413.15 Example 4, Securing Sensitive Information According to Subnet40513.15.1 Solving the Problem40613.16 Example 5, Using Dynamic Egress to Control Traffic40613.17 Example 6, Locking a MAC Address to a Port Using Classification Rules40813.17.1 Solving the Problem408Generic Attribute Registration Protocol (GARP)411A.1 Operation411A.2 How It Works412About IGMP413B.1 IGMP Overview413B.2 Supported Features and Functions414B.3 Detecting Multicast Routers415Index417Numerics417A418B418C418D419E419F420G420H421I421K421L422M422N422P423Q424R424S425T428U428V428W429Size: 4.48 MBPages: 430Language: EnglishOpen manual