Specifications

ManualsBrandsEnterasys ManualsComputer equipment802.1Q

9033820-03

VERTICAL HORIZON

VH-2402S2 / VH-2402SM2

FAST ETHERNET SWITCH

Configuration Guide

Summary of content (116 pages)

PAGE 1
VERTICAL HORIZON VH-2402S2 / VH-2402SM2 FAST ETHERNET SWITCH Configuration Guide 9033820-03
PAGE 2
PAGE 3
Notice ELECTRICAL HAZARD: Only qualified personnel should perform installation procedures. NOTICE Enterasys Networks reserves the right to make changes in specifications and other information contained in this document without prior notice. The reader should in all cases consult Enterasys Networks to determine whether any such changes have been made. The hardware, firmware, or software described in this manual is subject to change without notice.
PAGE 4
Notice ii 9033820-03
PAGE 5
TABLE OF CONTENTS 1. MANAGEMENT OVERVIEW . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 Configuration Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 Backup Management Agent . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2 Closed-Loop Stack . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 Required Connections . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 6
Displaying RMON Statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Displaying the Unicast Address Table . . . . . . . . . . . . . . . . . . . . . Displaying the IP Multicast Registration Table . . . . . . . . . . . . . . . Configuring Static Unicast Addresses. . . . . . . . . . . . . . . . . . . . . . Resetting the System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Logging Off the System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 7
Communicating Between Bridges . . . . . . . . . . . . . . . . . . . . . . . . . 94 Selecting a Root Bridge and Designated Bridges . . . . . . . . . . . . . 94 Selecting Designated Ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94 Handling Duplicate Paths . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 94 Remapping Network Topology . . . . . . . . . . . . . . . . . . . . . . . . . . . 94 APPENDIX B. VIRTUAL LANS (VLANS) . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 8
vi Table of Contents VH-2402S2
PAGE 9
1. MANAGEMENT OVERVIEW Configuration Options IMPORTANT NOTICE: The information contained in this guide applies to both the VH-2402S2 and VH-2402S products. IMPORTANT NOTICE: The VH-2402S2 (or VH-2402S) switch requires a VH-SMGMT2 Management Module to be installed with a minimum firmware version of 2.6. For advanced management capability, the VH-SMGMT2 Vertical Horizon Management Module provides a menu-driven system configuration program.
PAGE 10
Backup Management Agent Note the following points about master and backup management agents: • The VH-SMGMT2 with software version 02.06.00.00 supports a stack master management agent and a backup management agent. The agent with the lower stack ID will be the master. Every 5 minutes the master agent downloads the entire configuration data to the backup agent. Any configuration changes made to the master agent will be synchronized incrementally with the backup agent as they occur.
PAGE 11
Closed-Loop Stack The VH-2402S2 switches can be stacked together by installing optional Stacking Modules. The VH-STACK2 Stacking Module allows you to configure a closed-loop architecture that provides fault-tolerant operation of the stack. If a switch or stacking module fails, or if a stacking cable is disconnected, the entire stack will reboot and will subsequently resume normal operation and managment via the redundant stacking cable (closed loop).
PAGE 12
Telnet Connection After configuring the switch’s IP parameters, you can use a Telnet connection to access the on-board configuration program from anywhere within the attached network. Use the Network Configuration menu to specify the maximum number of simultaneous Telnet sessions that are supported by the system. In-Band Network Connection The on-board configuration program can be accessed using Telnet from any computer attached to the network.
PAGE 13
2. VH-2402S2 USER INTERFACE Overview Access is gained to the console menus by connecting a terminal to the console port (with a direct cable connection), or using Telnet to access the Management Module over the network. These menus allow you to reconfigure the switch, as well as to monitor the status and performance of the switch or the attached stack. The menus have a layout similar to the sample Main Menu shown in Figure 2-1.
PAGE 14
User Access Once a direct connection to the serial port or a Telnet connection is established, the login screen for the on-board configuration program appears. You may need to press Enter a few times to display the screen. The default user names are “admin” and “guest,” with no passwords. The administrator has Read/Write access, which allows you to read and modify switch information.
PAGE 15
Factory Defaults Table 2-1 lists the default settings for switch configuration parameters. Each parameter can be changed via the console menus or Telnet. Table 2-1.
PAGE 16
Parameter Default Value Terminal Baud Rate Auto User Names admin, guest Virtual LANs Acceptable VLAN Frame Type All Configurable PVID Tagging Yes GVRP Disabled Untagged VLAN Group Assignment 1 VLAN Ingress Filtering False VLAN Learning SVL 8 VH-2402S2 User Interface VH-2402S2
PAGE 17
Main Menu The Main Menu is the first screen seen after successfully logging into the system. Figure 2-2 shows the Main Menu and the accompanying table describes the Main Menu. Vertical Horizon Stack Local Management Main Menu System Information Menu... Management Setup Menu... Device Control Menu... Network Monitor Menu... System Restart Menu... Exit Use or arrow keys to move. to select. Figure 2-2.
PAGE 18
Selection Management Configuration Description Specifies if management access to the switch is available from all VLANs or restricted to one VLAN. Device Control Menu Port Configuration Enables any port, enables/disables flow control, and sets communication mode to auto-negotiation, full duplex or half duplex. Port Information Displays operational status, including link state, flow control method, and duplex mode.
PAGE 19
Selection Description Network Monitor Menu Port Statistics Displays statistics on network traffic passing through the selected port. RMON Statistics Displays detailed statistical information for the selected port such as packet type and frame size counters. Unicast Address Table Provides full address listing, as well as search and clear functions. IP Multicast Registration Table Displays all the multicast groups active on this switch, including multicast IP addresses and corresponding VLAN IDs.
PAGE 20
Displaying System Information Use the System Information screen to display descriptive information about the switch, or for quick system identification as shown in the following figure and table. Vertical Horizon Stack Local Management System Information System Description : Vertical Horizon Stack System Object ID : 1.3.6.1.4.1.5624.2.1.
PAGE 21
Displaying Switch Version and Module Information Use the Switch Information screen to display hardware/firmware version numbers for the main board and agent module, as well as the power status and modules plugged into the system. Vertical Horizon Stack Local Management Switch Information : Unit: 1 Main Board Hardware Version Firmware Version Serial Number Port Number Internal Power Status Redundant Power Status Expansion Slot 1 Expansion Slot 2 MainBoard Type : : : : : : : : : V3.0 V1.
PAGE 22
Displaying Stacking Information Use the Stacking Information screen to display information about the state of a closed-loop switch stack. Vertical Horizon Stack Local Management Stacking Information Current Stack State : Redundant Former Stack State : Not Redundant to select. Figure 2-6. System Information Parameter Description Current Stack State Indicates the current state of a redundant closed-loop stacking.
PAGE 23
Management Setup Menu After initially logging onto the system, adjust the communication parameters for your console to ensure a reliable connection (Serial Port Configuration). Specify the IP addresses for the agent module (Network Configuration / IP Configuration), and then set the Administrator and User passwords (Console Login Configuration). Remember to record them in a safe place.
PAGE 24
Changing the Network Configuration Use the Network Configuration menu to set the bootup option, configure the switch’s Internet Protocol (IP) parameters, enable the on-board Web agent, or to set the number of concurrent Telnet sessions allowed. The screen shown below is described in the following table. Vertical Horizon Stack Local Management Network Configuration IP Configuration ... IP Connectivity Test(Ping) ... HTTP Configuration ...
PAGE 25
IP Configuration Use the IP Configuration screen to set the bootup option, or configure the switch’s IP parameters. The screen shown below is described in the following table. Vertical Horizon Stack Local Management Network Configuration : IP Configuration : Unit: 1 Interface Type : Ethernet IP Address : 10.1.0.1 Subnet Mask : 255.255.0.0 Gateway IP : IP State : USER-CONFIG Master IP : 10.1.0.
PAGE 26
Parameter Default Description IP State USERCONFIG Specifies whether IP functionality is enabled via manual configuration, or set by Boot Protocol (BOOTP). Options include: USER-CONFIG - IP functionality is enabled based on the default or user specified IP Configuration. BOOTP Get IP - IP is enabled but will not function until a BOOTP reply has been received. BOOTP requests will be periodically broadcast by the switch in an effort to learn its IP address.
PAGE 27
IP Connectivity Test (Ping) Use the IP Connectivity Test to see if another site on the Internet can be reached. The screen shown below is described in the following table. Vertical Horizon Stack Local Management Network Configuration : IP Connectivity Test (Ping) IP Address : Test Times : 1 Interval : 3 Success Failure : 0 : 0 [Start] Use or arrow keys to move, other keys to make changes. Figure 2-10.
PAGE 28
HTTP Configuration Use the HTTP Configuration screen to enable/disable the on-board Web agent, and to specify the TCP port that will provide HTTP service. The screen shown below is described in the following table. Vertical Horizon Stack Local Management Network Configuration : HTTP Configuration HTTP Server : ENABLED HTTP Port Number : 80 Use or arrow keys to move, to scroll options. Figure 2-11.
PAGE 29
Configuring the Serial Port You can access the on-board configuration program by attaching a VT100 compatible device to the switch’s serial port. (For more information on connecting to this port, see “Required Connections” on page 3.) The communication parameters for this port can be accessed from the Serial Port Configuration screen shown below and described in the following table.
PAGE 30
Assigning SNMP Parameters Use the SNMP Configuration screen to display and modify parameters for the Simple Network Management Protocol (SNMP). The switch includes an on-board SNMP agent which monitors the status of its hardware, as well as the traffic passing through its ports. A computer attached to the network, called a Network Management Station (NMS), can be used to access this information. Access rights to the on-board agent are controlled by community strings.
PAGE 31
Configuring Community Names The following figure and table describe how to configure the community strings authorized for management access. Up to 5 community names may be entered. Vertical Horizon Stack Local Management SNMP Configuration : SNMP Communities Community Name 1. 2. 3. 4. 5. public private Access READ ONLY READ/WRITE Status ENABLED ENABLED Use or arrow keys to move, other keys to make changes. Figure 2-14.
PAGE 32
Configuring IP Trap Managers The following figure and table describe how to specify management stations that will receive authentication failure messages or other trap messages from the switch. Up to 5 trap managers may be entered. Vertical Horizon Stack Local Management SNMP Configuration : IP Trap Managers 1. 2. 3. 4. 5. IP Address Community Name Status 10.1.0.9 private ENABLED Use or arrow keys to move, other keys to make changes. Figure 2-15.
PAGE 33
Console Login Configuration Use the Management Setup: Console Login Configuration to restrict management access based on specified user names and passwords, or to set the invalid password threshold and timeout. There are only two user types defined, ADMIN (Administrator) and GUEST, but you can set up to five different user names and passwords. Only Administrators have write access for parameters governing the switch.
PAGE 34
Downloading System Software Using TFTP Protocol to Download Over the Network Use the TFTP Download menu to load software updates into the switch. The download file should be a VH-2402S2 file from Enterasys Networks; otherwise the agent will not accept it. The success of the download operation depends on the accessibility of the TFTP server and the quality of the network connection. After downloading the new software, the agent will automatically restart itself.
PAGE 35
Saving the System Configuration Use the Configuration Save & Restore menu to save the switch configuration settings to a file on a TFTP server. The file can be later downloaded to the switch to restore the switch’s settings. The success of the operation depends on the accessibility of the TFTP server and the quality of the network connection. Parameters shown on this screen are indicated in the following figure and table.
PAGE 36
Configuring Management Access Use the Management Configuration menu to define which VLAN has management access to the switch. Parameters shown on this screen are indicated in the following figure and table. Vertical Horizon Stack Local Management Management Configuration Management VLAN : ALL VLAN : 1 ARP reply timer : 1 Use or arrow keys to move, to scroll options. Figure 2-19.
PAGE 37
Configuring the Switch The Device Control menu is used to control a broad range of functions, including port configuration, Spanning Tree support for redundant switches, port mirroring, multicast filtering, and Virtual LANs. Each of the setup screens provided by these configuration menus is described in the following sections. Vertical Horizon Stack Local Management Device Control Menu Port Configuration ... Port Information ... Port Security Configuration ... Port Trunking Configuration ...
PAGE 38
Selection Description Global VLAN Configuration Displays basic VLAN information, such as VLAN version number and maximum VLANs supported, and allows you to enable/ disable each VLAN. Port Assignment VLAN Configuration Displays/configures port-specific VLAN settings, including PVID, ingress filtering, and 802.1Q trunks.
PAGE 39
Configuring Port Parameters Use the Port Configuration menus to set or display communication parameters for any port or module on the switch.
PAGE 40
Viewing the Current Port Configuration The Port Information screen displays the port type, status, link state, and flow control in use, as well as the communication speed and duplex mode. To change any of the port settings, use the Port Configuration menu. The parameters shown in the following figure and table are for the RJ-45 ports.
PAGE 41
Port Security Configuration Use the Port Security Configuration screen to enable and configure port security for the switch. Port Security allows you to configure each port with a list of MAC addresses of devices that are authorized to access the network through that port.
PAGE 42
Configuring Port Trunks Port trunks can be used to increase the bandwidth of a network connection or to ensure fault recovery. You can configure up five trunk connections (combining 2~4 ports into a fat pipe) between any two standalone switches, or up to 12 for an entire stack. However, before making any physical connections between devices, use the Trunk Configuration menu to specify the trunk on the devices at both ends.
PAGE 43
You can use the Port Trunking Configuration screen set up port trunks as shown below: Vertical Horizon Stack Local Management Port Trunking Configuration Trunk ID Status 1 ----------Unit : Port : -- Member List 2 3 ----------- ----------Unit : Unit : Port : -Port : -- 4 ----------Unit : Port : -- ---------- --------------- -- -------- Unit : Port : -- Unit : Port : -- Unit : Port : -- Unit : Port : -- -- -------- Unit : Port : -- Unit : Port : -- Unit : Port : -- Unit : Port : -- Trunk ID
PAGE 44
Configuring Bridge MIB Extensions The Bridge MIB includes extensions for managed devices that support Traffic Classes, Multicast Filtering and Virtual LANs.
PAGE 45
Parameter Description Bridge Settings Traffic Class* Multiple traffic classes are supported by this switch as indicated under Bridge Capabilities. However, you can disable this function by setting this parameter to False. VLAN Learning As default this switch uses Shared VLAN Learning (SVL), whereby all ports share one VLAN filtering database. However, you can set the switch to use Independent VLAN Learning (IVL), where each port maintains its own filtering database.
PAGE 46
Using the Spanning Tree Algorithm The Spanning Tree Algorithm can be used to detect and disable network loops, and to provide backup links between switches, bridges or routers. This allows the switch to interact with other bridging devices (that is, an STA-compliant switch, bridge or router) in your network to ensure that only one route exists between any two stations on the network. For a more detailed description of how to use this algorithm, refer to Appendix A, “Spanning Tree Concepts” on page 91.
PAGE 47
Parameter Default Description Spanning Tree Protocol Enabled Enable this parameter to participate in an STA compliant network. Priority 32,768 Device priority is used in selecting the root device, root port, and designated port. The device with the highest priority becomes the STA root device. However, if all devices have the same priority, the device with the lowest MAC address will then become the root device. Enter a value from 0 - 65535.
PAGE 48
Configuring STA for Ports or Modules The following figure and table describe STA configuration for ports or modules. (Note that the Spanning Tree Configuration screen for the expansion slots also indicates module type.
PAGE 49
Parameter Default Description FastForwarding ENABLED This parameter is used to enable/disabled the Fast Spanning Tree mode for the port. In this mode, ports skip the Blocked, Listening and Learning states and proceed straight to Forwarding. FastForwarding enables end-node workstations and servers to overcome time-out problems when the Spanning Tree Algorithm is implemented in a network. Therefore, FastForwarding should only be enabled for ports that are connected to an endnode device.
PAGE 50
Displaying the Current Bridge STA The parameters shown in the following figure and table describe the current Bridge STA Information. Vertical Horizon Stack Local Management Spanning Tree Information : STA Bridge Information Priority Hello Time (in seconds) Max Age (in seconds) Forward Delay (in seconds) Hold Time (in seconds) Designated Root Root Cost Root Port Configuration Changes Topology Up Time : : : : : : : : : : 32768 2 20 15 1 32768.
PAGE 51
Displaying the Current STA for Ports or Modules The parameters shown in the following figure and table are for port or module STA Information (Port 1-12, Port 13-24, Port 25-32). Vertical Horizon Stack Local Management Spanning Tree Port Information : Unit 1 Port 1-12 Port Type Status Designated Designated Designated Cost Bridge Port -------------------------------------------------------------------------1 10/100TX NO LINK 0 32768.0000E89A3BE0 128.1 2 10/100TX NO LINK 0 32768.0000E89A3BE0 128.
PAGE 52
Parameter Description The rules defining port status are: • A port on a network segment with no other STA-compliant bridging device is always forwarding. • If two ports of a switch are connected to the same segment and there is no other STA device attached to this segment, the port with the smaller ID forwards packets and the other is blocked. • All ports are blocked when the switch is booted, then some of them change state to listening, to learning, and then to forwarding.
PAGE 53
Using a Mirror Port for Analysis You can mirror traffic from any source port to a target port for real-time analysis. You can then attach a logic analyzer or RMON probe to the target port and study the traffic crossing the source port in a completely unobtrusive manner. When mirroring port traffic, note that the target port must be configured in the same VLAN and be operating at the same speed as the source port (see Configuring Virtual LANs on page 47).
PAGE 54
Configuring Broadcast Storm Control Use the Broadcast Storm Control Configuration screen to enable broadcast storm control for all ports in the switch stack, as shown below: Vertical Horizon Stack Local Management Broadcast Storm Control Configuration Broadcast Control : ENABLED Threshold(100pps) : 2 Averaging Interval : 1 sec Use or arrow keys to move, to scroll options. Figure 2-33.
PAGE 55
Configuring Virtual LANs You can use the VLAN configuration menu to assign any port on the switch to any of up to 256 LAN groups. In conventional networks with routers, broadcast traffic is split up into separate domains. Switches do not inherently support broadcast domains. This can lead to broadcast storms in large networks that handle a lot of IPX and NetBEUI traffic. By using IEEE 802.
PAGE 56
Parameter Description VLAN ID The ID for a new VLAN to be created, or the ID of an existing VLAN to be displayed. VLAN Name The name of a new VLAN to be created, or the name of an existing VLAN to be displayed. Status Allows a configured VLAN to be enabled or disabled. To create a new VLAN specified in the VLAN ID and VLAN Name fields, select “Create” and then use . Slected by Selects VLAN to display by VLAN ID or VLAN Name. [Show] Displays settings for the specified VLAN.
PAGE 57
Egress Ports VLAN Configuration Use this screen to modify the settings for an existing VLAN. You can add/ delete port members for a VLAN from any unit in the stack. (Note that all ports can only belong to one untagged VLAN. This is set to VLAN 1 by default, but can be changed via the Port Assignment VLAN Configuration screen on page 48.
PAGE 58
VLAN Forbidden Ports Configuration Use this screen to prevent a port from being automatically added to a VLAN via the GVRP protocol. (Note that GVRP is not implemented in the current firmware release.
PAGE 59
802.1Q VLAN Base Information The 802.1Q VLAN Base Information screen displays basic information on the VLAN type supported by this switch. Vertical Horizon Stack Local Management 802.1Q VLAN Base Information VLAN Version Number : 1 MAX VLAN ID : 2048 MAX Supported VLANs : 256 Current Number of 802.1Q VLANs Configured : 2 to select. Figure 2-38. 802.1Q VLAN Base Information Parameter Description VLAN Version Number The VLAN version used by this switch as specified in the IEEE 802.
PAGE 60
802.1Q VLAN Current Table Information This screen shows the current port members of each VLAN and whether or not the port supports VLAN tagging. Ports assigned to a large VLAN group that crosses several switches should use VLAN tagging. However, if you just want to create a small port-based VLAN for one or two switches, you can assign ports to the same untagged VLAN (page 48). The current configuration is shown in the following figure. Vertical Horizon Stack Local Management 802.
PAGE 61
802.1Q VLAN Static Table Configuration Use this screen to create a new VLAN or modify the settings for an existing VLAN. You can add/delete port members for a VLAN from any unit in the stack, or prevent a port from being automatically added to a VLAN via the GVRP protocol. (Also, note that all ports can only belong to one untagged VLAN. This is set to VLAN 1 by default, but can be changed via the Port Assignment VLAN Configuration screen on page 48.) Vertical Horizon Stack Local Management 802.
PAGE 62
For example, the following screen displays settings for VLAN 2, which includes tagged ports 1-6, and forbidden port 12. (Note that the dashed lines show that there are no switch units in this system other than Unit 1.) Vertical Horizon Stack Local Management 802.
PAGE 63
Configuring Traffic Classes IEEE 802.1p defines up to 8 separate traffic classes. This switch supports Quality of Service (QoS) by using two priority queues, with strict priority queuing for each port. You can use the 802.1P Configuration menu to configure the default priority for each port, or to display the mapping for the traffic classes as described in the following sections. Also, refer to Appendix C, “Class of Service” on page 101. Vertical Horizon Stack Local Management 802.1P Configuration 802.
PAGE 64
Port Priority Configuration The default priority for all ingress ports is zero. Therefore, any inbound frames that do not have priority tags will be placed in the low priority output queue. Default priority is only used to determine the output queue for the current port; no priority tag is actually added to the frame. You can use the 802.1P Port Priority Configuration menu to adjust default priority for any port as shown below: Vertical Horizon Stack Local Management 802.
PAGE 65
802.1P Port Traffic Class Information This switch provides two priority levels with strict priority queuing for port egress. This means that any frames with a default or user priority from 0~3 are sent to the low priority queue “0” while those from 4~7 are sent to the high priority queue “1” as shown in the following screen: Vertical Horizon Stack Local Management 802.
PAGE 66
IGMP Multicast Filtering Multicasting is used to support real-time applications such as video conferencing or streaming audio. A multicast server does not have to establish a separate connection with each client. It merely broadcasts its service to the network, and any hosts which want to receive the multicast register with their local multicast switch/router.
PAGE 67
Configuring IGMP This protocol allows a host to inform its local switch/router that it wants to receive transmissions addressed to a specific multicast group. You can use the IGMP Configuration screen to configure multicast filtering shown below: Vertical Horizon Stack Local Management IGMP Configuration IGMP Status : DISABLED Act as IGMP Querier : DISABLED IGMP Query Count : 2 IGMP Report Delay (Seconds) : 10 Use or arrow keys to move, to scroll options.
PAGE 68
IGMP Member Port Configuration You can use the IGMP Member Port Configuration screen to assign ports that are attached to hosts who want to receive a specific multicast service.
PAGE 69
Multicast Router Port Configuration You can use the Multicast Router Port Configuration screen to display the ports on this switch attached to a neighboring multicast router/switch for each VLAN ID.
PAGE 70
Monitoring the Switch The Network Monitor Menu provides access to port statistics, RMON statistics, IP multicast addresses, and the static (unicast) address table. Each of the screens provided by these menus is described in the following sections. Vertical Horizon Stack Local Management Network Monitor Menu Port Statistics ... RMON Statistics ... Unicast Address Table ... Multicast Address Registration Table ... IP Multicast Registration Table ... Static Unicast Address Table Configuration ...
PAGE 71
Displaying Port Statistics Port Statistics display key statistics from the Ethernet-like MIB for each port. Error statistics on the traffic passing through each port are displayed. This information can be used to identify potential problems with the switch (such as a faulty port or unusually heavy loading). The values displayed have been accumulated since the last system reboot. Select the required stack unit, and port or module. The statistics displayed are indicated in the following figure and table.
PAGE 72
Parameter Description Internal Mac Transmit Errors* The number of frames for which transmission failed due to an internal MAC sublayer transmit error. Carrier Sense Errors* The number of times that the carrier sense condition was lost or never asserted when attempting to transmit a frame. Frames Too Long The number of frames received that exceed the maximum permitted frame size. Internal Mac Receive Errors The number of frames for which reception failed due to an internal MAC sublayer receive error.
PAGE 73
Parameter Description Drop Events The total number of events in which packets were dropped due to lack of resources. Received Bytes Total number of bytes of data received on the network. This statistic can be used as a reasonable indication of Ethernet utilization. Received Frames The total number of frames (bad, broadcast and multicast) received. Broadcast Frames The total number of good frames received that were directed to the broadcast address. Note that this does not include multicast packets.
PAGE 74
Displaying the Unicast Address Table The Address Table contains the MAC addresses and VLAN identifier associated with each port (that is, the source port associated with the address and VLAN), sorted by MAC address or VLAN ID. You can search for a specific address, clear the entire address table, or information associated with a specific address, or set the aging time for deleting inactive entries.
PAGE 75
Displaying the IP Multicast Registration Table Use the IP Multicast Registration Table to display all the multicast groups active on this switch, including multicast IP addresses and the corresponding VLAN ID.
PAGE 76
Configuring Static Unicast Addresses Use the Static Unicast Address Table Configuration screen to manually configure host MAC addresses in the unicast table. You can use this screen to associate a MAC address with a specific VLAN ID and switch port as shown below.
PAGE 77
Resetting the System Select the System Restart Menu under the Main Menu to reset the management agent. The reset screen includes options as shown in the following figure and table. Vertical Horizon Stack Local Management System Restart Menu Restart Option : POST Reload Factory Defaults Keep IP Setting Keep User Authentication : : : : YES NO NO NO [Restart] Use or arrow keys to move, to scroll options. Figure 2-54.
PAGE 78
70 VH-2402S2 User Interface VH-2402S2
PAGE 79
3. CONFIGURING & MONITORING THE SWITCH Common Tasks The switch console menus allow you to modify default switch settings and configure a switch for network management. They also allow you to monitor switch performance and status. See Section 2, “VH-2402S2 User Interface,” for an overview of the menu hierarchy and a description of all menus. The following sections describe common tasks in setting up and operating the VH-2402S2 switch using the console menus.
PAGE 80
Setting Password Protection The VH-2402S2 switch is factory-configured with administrator access rights to the console menus set to READ/WRITE. This setting allows anyone to use the console menus to modify any operational parameter. To protect the configuration of a switch from unauthorized modification, you should set a password to protect access to the console menus. To enter a password, do the following: 1. Select Management Setup Menu from the Main Menu and press [Enter]. 2.
PAGE 81
Assigning an IP Address To assign an IP address to the switch, do the following: 1. Select Management Setup Menu from the Main menu. 2. Select Network Configuration and then IP Configuration. 3. Highlight the IP address field and enter the IP address. Press [Enter]. The IP address is now set. The subnet mask is automatically set to correspond to the class of the address entered. If a different mask is used on the network, higlight Subnet Mask and enter the appropriate mask.
PAGE 82
Setting SNMP Management Access Access to the VH-2402S2 switch through SNMP is controlled by community names. The community names set for the switch must match those used by the SNMP management station for successful communication to occur. Access for community names can be set to READ/WRITE or READ ONLY access. The default “Public” community name allows READ ONLY access to the device via SNMP, whereas the default “Private” community name allows READ/WRITE access.
PAGE 83
Configuring Port Mirroring You can mirror the traffic being switched on any port for the purposes of network traffic analysis and connection assurance. When Port Mirroring is enabled, one port becomes a monitor port for any other port within the stack. Note that the source and target ports must be configured within the same VLAN and be operating at the same speed. If the target port is operating at a lower speed, the source port will be forced to drop its operating speed to match that of the target port.
PAGE 84
Downloading Via the Serial Port A serial download is the easiest method to upgrade the VH-2402S2 switch software, requiring the least amount of equipment and configuration. To download new software via the serial port, do the following: 1. With the console port connected, reset the switch by powering the switch off and then on. 2. After the power-on hardware and software tests are complete, the system initialization screen displays the following message:.
PAGE 85
Downloading Via TFTP To perform a TFTP download, you must first configure the VH-2402S2 switch. This consists of setting an IP address, if this has not already been done, and entering the IP address of the TFTP server and the name of the upgrade file. To set the switch IP address, select the Management Setup Menu from the Main Menu screen, then select Network Configuration. To download switch software via TFTP, do the following: 1. Select Download Server IP Address from the TFTP Download Menu. 2.
PAGE 86
Configuring Spanning Tree Parameters The VH-2402S2 switch supports the IEEE 802.1D Spanning Tree Protocol. This protocol allows redundant connections to be created between LAN segments for purposes of fault tolerance. Two or more physical paths between different segments can be created through the switch, with the Spanning Tree Protocol choosing a single path at any given time and disabling all others.
PAGE 87
Configuring VLANs A virtual LAN (VLAN) is a group of devices on one or more LANs that are configured such that they can communicate as if they were attached to the same wire. Because VLANs are based on logical instead of physical connections, they are extremely flexible. The most fundamental benefit of VLAN technology is the ability to create workgroups based on function rather than on physical location or media. For further information, see Appendix B, “Virtual LANs (VLANs)” on page 97.
PAGE 88
3. For each stack unit, set individual port priorities by entering 0-3 for the low priority queue or 4-7 for the high priority queue. Note that the default for all ingress ports is zero. Configuring Port Operation You can configure switch ports for operational parameters such as autonegotiation, duplex mode, port speed and flow control. The 100Base-FX fiber ports always operate in full duplex mode and 100Mbps speed.
PAGE 89
Configuring the Unicast Address Table The Unicast Address Table allows you to designate forwarding treatment through the switch for specific MAC addresses, allowing you to maintain the efficiency and security of your network. You can search for a specific MAC address, clear the entire table, or information associated with a specific address, or set the Aging Time for deleteing inactive entries.
PAGE 90
Setting a Default Gateway The default Gateway parameter defines the IP address of a router or other network device to which IP packets are to be sent if destined for a subnet outside of that which the switch is operating. To set a default gateway, do the following: 1. Select Management Setup Menu from the Main Menu. 2. Select Network Configuration and then IP Configuration. 3. In the field Gateway IP,enter the IP address and press [Enter].
PAGE 91
5. Highlight the Mode field again, then select STATIC. 6. Select [Apply] and press [Enter]. The switch will now drop packets from the port if the source MAC address does not match one of the addresses in the authorized MAC address list. Configuring Port Trunks You can configure up to five port trunks on a standalone switch, or up to 12 for an entire stack. Each trunk can combine two, three, or four ports, creating an aggregate bandwidth of up to 4Gbps when grouping gigabit ports.
PAGE 92
• To disable a single link within a port trunk, you should first remove the network cable, and then disable both ends of the link via the configuration menu. This allows the traffic passing across that link to be automatically distributed to the other links in the trunk, without losing any significant amount of traffic. Configuring Broadcast Storm Control The VH-2402S2 switch supports a broadcast control mechanism that prevents a high level of broadcast traffic from overwhelming the network.
PAGE 93
To restore a switch configuration from a file on a TFTP server, do the following: 1. From the console interface Main Menu, select Management Setup Menu and then Configuration Save & Restore. 2. Select Download Server IP under the section Configuration Download. 3. Enter the TFTP server IP address and press [Enter]. 4. Select Download Filename and enter the file name to be downloaded to the switch. For a TFTP download, the path to the file must be included in its name.
PAGE 94
86 Configuring & Monitoring the Switch VH-2402S2
PAGE 95
4. SNMP MANAGEMENT The SNMP Protocol SNMP (Simple Network Management Protocol) is a communication protocol designed specifically for the purpose of managing devices or other elements on a network. Network equipment commonly managed with SNMP includes hubs, switches, routers, and host computers. SNMP is typically used to configure these types of devices for proper operation in their network environment, as well as to monitor them to evaluate their performance and detect potential problems.
PAGE 96
There are three main operations defined in SNMP: • GET operations read information from the managed device, such as those used to obtain status or statistical data. • SET operations change a functional parameter on the device, such as those used to configure Port Speed or to initiate a software download. GET and SET operations are initiated only by the manager software, and result in a response by the agent. • TRAP operations allow the agent to send an unsolicited message to the manager.
PAGE 97
RFC 1213 (MIB-II) RFC 1213 provides management of system-level parameters, including TCP/IP protocol-related statistics, IP addressing, and interface statistics for each switch port. MIB-II is the standard MIB defined by RFC 1213. All agent devices operating SNMP are required to support at least part of MIB-II. This MIB reports information about the protocols and network interfaces supported on the agent itself, as well as other general information.
PAGE 98
RFC 1757 (RMON MIB) RFC 1757 is a group defined under MIB-II. This MIB provides management for the RMON aspects of the switch. The VH-2402S2 switch supports four of the nine groups of RMON defined for Ethernet networks on a per port basis. RFC 2674 (Extended Bridge MIB) This MIB includes the set of managed objects as defined in the RFC 2674 standard. This MIB provides management for traffic classes, multicast filtering, and VLAN aspects of the switch.
PAGE 99
APPENDIX A. SPANNING TREE CONCEPTS General The IEEE 802.1D Spanning Tree Protocol resolves the problems of physical loops in a network by establishing one primary path between any two switches in a network. Any duplicate paths are barred from use and become standby or blocked paths until the original path fails, at which point they can be brought into service.
PAGE 100
Spanning Tree Protocol in a Network Figure A-1 illustrates the use of three VH-2402S2 switches to establish an effective Spanning Tree configuration. Switches A, B and C are connected together in a redundant topology (more than one path between two points). If the connection between A and B goes down, the link between A and C becomes active, thereby establishing a path between A and B through switch C.
PAGE 101
Spanning Tree Protocol Parameters Several configuration parameters control the operation of the Spanning Tree Protocol. Table A-1 describes the parameters and lists the VH-2402S2 switch default settings for each parameter. You can cause serious network performance degradation if you do not fully understand Spanning Tree concepts. Be sure to consult personnel experienced with this process prior to configuring Spanning Tree parameters. Table A-1.
PAGE 102
Spanning Tree Protocol Operation When the Spanning Tree Protocol is enabled for the first time or when there is a change in the network topology, such as a failure or the addition or removal of a component, the Spanning Tree Protocol automatically sets up the active topology of the current network. Communicating Between Bridges Periodically, all devices running the Spanning Tree Protocol on a network transmit packets to each other “in care of” the Bridge Group Address which all bridges share.
PAGE 103
There are five (5) states that the ports can be in for spanning tree: • Blocking: A port in this state does not participate in the transmission of frames, thus preventing duplication arising through multiple paths existing in the active topology of the bridged LAN. • Listening: A port in this state is preparing to participate in the transmission of frames.
PAGE 104
96 Spanning Tree Concepts VH-2402S2
PAGE 105
APPENDIX B. VIRTUAL LANS (VLANS) VLANs and Frame Tagging The VH-2402S2 switch supports IEEE 802.1Q-compliant virtual LANs (VLANs). This capability provides a highly efficient architecture for establishing VLANs within a network and for controlling broadcast/ multicast traffic between workgroups. Central to this capability is an explicit frame tagging approach for carrying VLAN information between interconnected network devices.
PAGE 106
VH-2402S2 VLAN Configuration VLAN operation on the VH-2402S2 switch is enabled by default. Therefore, all frames are transferred internally through a switch with a VLAN tag. This tag may already be on the frame entering the switch, or added to the frame by the switch. VLAN information already existing on frames entering the switch is automatically handled by the switch. The VH-2402S2 learns VLAN information from tagged frames and appropriately switches frames out the proper ports based on this information.
PAGE 107
Forwarding Tagged/Untagged Frames Ports can be assigned to multiple tagged or untagged VLANs. Each port on the switch is therefore capable of passing tagged or untagged frames. To forward a frame from a VLAN-aware device to a VLAN-unaware device, the switch first decides where to forward the frame, and then strips off the VLAN tag.
PAGE 108
Forwarding Traffic with Unknown VLAN Tags The VH-2402S2 switch only supports 256 VLANs with VLAN IDs ranging from 1 to 2048, but the IEEE 802.1Q VLAN standard allows for VLAN IDs from 1 to 4094. Therefore, if a switch is attached to endstations that issue VLAN registration requests, it will have to forward unknown VLAN tags. This traffic can only be propagated to the rest of the network if automatic VLAN registration is enabled on the switch.
PAGE 109
APPENDIX C. CLASS OF SERVICE Class of Service support on the VH-2402S2 switch allows you to assign mission-critical data a higher priority through a switch by delaying less critical traffic during periods of congestion. Higher priority traffic through a switch is serviced first before lower priority traffic. The Class of Service capability of the VH-2402S2 switch is implemented by a priority queuing mechanism. Class of Service is based on the IEEE 802.
PAGE 110
Figure C-1 shows priority queuing operating within a switch. Frames entering the switch through ports 1 and 4 are tagged as normal traffic and placed in a normal priority queue on the outbound port. Frames entering through ports 2 and 5 are tagged as high priority traffic and placed in a high priority queue on the outbound port. Priority queuing can be configured using the console interface or via SNMP. Figure C-1.
PAGE 111
APPENDIX D. IP MULTICAST FILTERING IGMP Snooping and IP Multicast Filtering The Internet Group Management Protocol (IGMP) runs between hosts and their immediately neighboring multicast router/switch. The protocol’s mechanisms allow a host to inform its local router that it wants to receive transmissions addressed to a specific multicast group. A router, or multicast-enabled switch, can periodically ask their hosts if they want to receive multicast traffic.
PAGE 112
104 IP Multicast Filtering VH-2402S2
PAGE 113
INDEX A aging time, configuring, 81 Auto-negotiation, configuring, 80 B BootP, configuring, 82 bridge MIB extensions, 36 broadcast storm control, configuring, 46 C Class of Service, configuring, 79 community names, SNMP, 74 console lock-out, 72 console login configuration, 25 console port connections, 3 D default settings, 7 downloads serial port, 75 TFTP, 75 IP address, assigning, 73 IP multicast filtering, 58 M MAC address table, configuring, 81 main menu, 9 management in-band connection, 3 out-of-ba
PAGE 114
SNMP agent, 1 communities, 23 configuring access, 74 management, 1, 87 MIB extensions, 90 operations, 88 traps, 88 snooping, IGMP, 103 software upgrades, 75 Spanning Tree Algorithm, 38 Spanning Tree configuration, 78 STA, see Spanning Tree Algorithm, 38 switch information, 13 system information, 12, 14 T Telnet connections, 4, 73 TFTP configuration for downloads, 26 download process, 77 downloading software, 75 protocol, 26 traffic classes, configuring, 55 traps SNMP, 88 trunks, configuring, 34 2 Index U
PAGE 115
PAGE 116
150200000000A R01