User ManualTable of ContentsTable of Contents3Preface11Intended Readers12Typographical Conventions12Notes, Notices, and Cautions12Web-based Switch Configuration13Introduction13Login to Web Manager13Web-based User Interface14Areas of the User Interface14Web Pages15Configuration17Device Information18System Information18Serial Port Settings19IP Address20Setting the Swith’s IP Address using the Console Interface22Interface Settings22IPv6 Route Settings24IPv6 Neighbor Settings24Port Configuration25Port Settings25Port Description26Port Error Disabled27Static ARP Settings27User Accounts28Admin, Operator and User Privileges29System Log Configuration31System Log Settings31System Log Server31System Severity Settings33DHCP Relay34DHCP Relay Global Settings34The Implementation of DHCP Information Option 82 on the Switch36DHCP Relay Interface Settings37DHCP Relay Option 60 Default Settings37DHCP Relay Option 60 Settings38DHCP Relay Option 61 Default Settings38DHCP Relay Option 61 Settings39Out of Band Management Settings39External Alarm Settings40DHCP Auto Configuration Settings40MAC Address Aging Time41Web Settings41Telnet Settings41Password Encryption42Clipaging Settings42Firmware Information42Dual Configuration Settings43Ping Test44Local Loopback Ports Settings45The Local Loopback Ports Settings are used to start or stop the internal loopback test on selected ports, or set to/recover external loopback mode. When internal loopback is enabled, the device starts to send test packets to the port, and keeps monito...45VLAN Counter Settings46SNTP Settings47Time Settings47TimeZone Settings48MAC Notification Settings49MAC Notification Global Settings49MAC Notification Port Settings50SNMP Settings51Traps51MIBs51SNMP Global State Settings52SNMP View Table52SNMP Group Table53SNMP User Table54SNMP Community Table55SNMP Host Table56SNMP v6Host Table56SNMP Engine ID57SNMP Trap Configuration58Time Range Settings58sFlow59sFlow Global State Settings59sFlow Analyzer Server Settings59sFlow Flow Sampler Settings60sFlow Counter Poller Settings61Single IP Management62The Upgrade to v1.663Single IP Settings63Topology64Tool Tips67Right-Click68Group Icon68Commander Switch Icon69Member Switch Icon69Candidate Switch Icon69Menu Bar70File70Group70Device70View70Help70Firmware Upgrade71Configuration File Backup/Restore71Upload Log File72DDM72Browse DDM Status List72DDM Settings72DDM Temperature Threshold Settings73DDM Voltage Threshold Settings74DDM Bias Current Threshold Settings74DDM Tx Power Threshold Settings75DDM Rx Power Threshold Settings75L2 Features77Jumbo Frame77VLANs78Understanding IEEE 802.1p Priority78VLAN Description78Notes About VLANs78IEEE 802.1Q VLANs79802.1Q VLAN Tags80Port VLAN ID81Tagging and Untagging81Ingress Filtering81Default VLANs82Port-based VLANs82VLAN Segmentation82VLAN and Trunk Groups83Double VLANs83Regulations for Double VLANs84802.1Q VLAN85Subnet VLAN89Subnet VLAN Settings89VLAN Precedence Settings89Q-in-Q90Q-in-Q Settings90VLAN Translation Settings91Q-in-Q and VLAN Translation Rules92802.1v Protocol VLAN93802.1v Protocol Group Settings93802.1v Protocol VLAN Settings94RSPAN Settings95GVRP Settings95GVRP Global Settings96MAC-based VLAN Settings97PVID Auto Assign Settings97Port Trunking98Understanding Port Trunk Groups98LACP Port Settings100Traffic Segmentation101BPDU Tunneling Settings102IGMP Snooping103IGMP Snooping Settings103IGMP Snooping Rate Limit Settings105IGMP Snooping Static Group Settings105IGMP Multicast Group Profile Settings106IGMP Snooping Multicast VLAN Settings106IPv4 Multicast Profile Settings107IPv4 Limited Multicast Range Settings108IPv4 Max Multicast Group Settings108MLD Snooping109MLD Control Messages109MLD Snooping Settings109MLD Snooping Rate Limit Settings111MLD Snooping Static Group Settings112MLD Multicast Group Profile Settings112MLD Snooping Multicast VLAN Settings113IPv6 Multicast Profile Settings114IPv6 Limited Multicast Range Settings115IPv6 Max Multicast Group Settings115Port Mirror116Loopback Detection Settings117Spanning Tree118802.1w Rapid Spanning Tree118Port Transition States118Edge Port118P2P Port119802.1D and 802.1w Compatibility119STP Bridge Global Settings120STP Port Settings122MST Configuration Identification123STP Instance Settings124MSTP Port Information125Forwarding & Filtering126Unicast Forwarding126Multicast Forwarding126Multicast Filtering Mode127LLDP127LLDP Global Settings128LLDP Port Settings129LLDP Management Address List130LLDP Basic TLVs Settings130LLDP Dot1 TLVs Settings131LLDP Dot3 TLVs Settings132LLDP Statistics System132LLDP Local Port Information133LLDP Remote Port Information134CFM134CFM Port Settings134CFM CCM PDUs Forwarding Mode135CFM MPs Reply LTRs135CFM MIPCCM List135Connectivity Fault Management Settings136CFM Loopback Settings137CFM Linktrace Settings138Ethernet OAM139Ethernet OAM Settings139Ethernet OAM Configuration Settings140QoS141Advantages of QoS141Understanding QoS142HOL Blocking Pevention144Bandwidth Control144Traffic Control145802.1p Default Priority147802.1p User Priority148QoS Scheduling Mechanism148QoS Scheduling149In Band Manage Settings150SRED151SRED Settings151SRED Drop Counter153DSCP Trust Settings153DSCP Map Settings153802.1p Map Settings155Security156Safeguard Engine156Trusted Host158IP-MAC-Port Binding158IMP Binding Global Settings158IMP Binding Port Settings159IMP Binding Entry Settings161DHCP Snooping Entries162MAC Block List162Port Security162Port Security Port Settings162Port Security VLAN Settings163Port Security Entries164DHCP Server Screening Settings164DHCP Screening Port Settings165DHCP Offer Filtering165802.1X166802.1X Port-Based and Host-Based Access Control166Authentication Server166Authenticator167Client168Authentication Process168Understanding 802.1X Port-based and Host-based Network Access Control169Port-Based Network Access Control169Host-Based Network Access Control170802.1X Global Settings171802.1X Port Settings171802.1X User173Authentication RADIUS Server173Initialize Port(s)174Reauthenticate Port(s)174Guest VLAN Configuration175Limitations Using the Guest VLAN175Guest VLAN176SSL Settings176Download Certificate177Ciphersuite177SSH179SSH Settings179SSH Authmode and Algorithm Settings180SSH User Authentication Lists181Access Authentication Control182Authentication Policy Settings184Application Authentication Settings184Authentication Server Group185Authentication Server186Login Method Lists187Enable Method Lists188Local Enable Password Settings189RADIUS Accounting Settings190MAC-based Access Control191Notes About MAC-based Access Control191MAC-based Access Control Settings191MAC-based Access Control Local Settings193Web Authentication194Conditions and Limitations195Web-based Access Control Settings195Web-based Access Control User Settings196NetBIOS Filtering197NetBIOS Filtering Settings197ACL198ACL Configuration Wizard198Access Profile List199CPU Interface Filtering216CPU Access Profile List217ACL Finder228ACL Flow Meter228Monitoring231Device Status231Cable Diagnostic231CPU Utilization232Port Utilization233Packet Size233Memory Utilization235Packets235Received (RX)235UMB_cast (RX)237Transmitted (TX)238Errors241Received (RX)241Transmitted (TX)242Port Access Control244RADIUS Authentication244RADIUS Account Client245Authenticator State247Authenticator Statistics248Authenticator Session Statistics249Authenticator Diagnostics250Browse ARP Table252VLAN253Browse VLAN253Show VLAN Ports254IGMP Snooping254Browse IGMP Router Port254IGMP Snooping Group254IGMP Snooping Forwarding Table255Browse IGMP Snooping Counter255MLD Snooping256Browse MLD Router Port256MLD Snooping Group256MLD Snooping Forwarding Table257Browse MLD Snooping Counter258Browse Session Table258CFM258CFM Packet Counter List258CFM Packet Counter CCM List259Browse CFM Fault MEP259Browse CFM Port MP List259MAC Address Table260Browse VLAN Counter Statistics260Ethernet OAM261Browse Ethernet OAM Event Log261Browse Ethernet OAM Statistics261Historical Counter & Utilization263Browse Historical Counter263Browse Historical Utilization264System Log264Save Services and Tools266Save Configuration ID 1266Save Configuration ID 2267Save Log267Save All267Configuration File Backup & Restore268Upload Log File268Reset268Download Firmware269Reboot System269Mitigating ARP Spoofing Attacks Using Packet Content ACL270How Address Resolution Protocol works270How ARP spoofing attacks a network273Prevent ARP spoofing via packet content ACL275Configuration:275System Log Entries278DGS-3700 Series Trap List287Proprietary Trap List287Glossary289Password Recovery Procedure291Size: 6.47 MBPages: 292Language: EnglishOpen manual