Specifications

ManualsBrandsEnterasys ManualsComputer equipmentVertical Horizon VH-8G

9033640

VERTICAL HORIZON

VH-8G

GIGABIT ETHERNET SWITCH

MANAGEMENT GUIDE

Summary of content (110 pages)

PAGE 1
VERTICAL HORIZON VH-8G GIGABIT ETHERNET SWITCH MANAGEMENT GUIDE 9033640
PAGE 2
PAGE 3
Notice Only qualified personnel should perform installation procedures. NOTICE Enterasys Networks reserves the right to make changes in specifications and other information contained in this document without prior notice. The reader should in all cases consult Enterasys Networks to determine whether any such changes have been made. The hardware, firmware, or software described in this manual is subject to change without notice.
PAGE 4
Notice ii 9033640
PAGE 5
TABLE OF CONTENTS 1. MANAGEMENT OVERVIEW . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 Configuration Options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 Required Connections . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 Console Port (Out-of-Band) Connections . . . . . . . . . . . . . . . . . . . . 1 In-Band Connections . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2 2.
PAGE 6
Displaying the IP Multicast Registration Table . . . . . . . . . . . . . . . Configuring Static Unicast Addresses. . . . . . . . . . . . . . . . . . . . . . Resetting the System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Logging Off the System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 61 62 63 63 3. CONFIGURING & MONITORING THE SWITCH . . . . . . . . . . . . . . . . . . . . . Common Tasks . . . . . . . . . . . . . . . . . . . . . . . . . . . .
PAGE 7
APPENDIX B. VIRTUAL LANS (VLANS) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89 VLANs and Frame Tagging . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 89 VH-8G VLAN Configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 90 Assigning Ports to VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 90 Forwarding Tagged/Untagged Frames . . . . . . . . . . . . . . . . . . . . . . . . . 91 Automatic VLAN Registration . . . . . . . . . . . . .
PAGE 8
vi Table of Contents VH-8G
PAGE 9
1. MANAGEMENT OVERVIEW Configuration Options For advanced management capability, the Enterasys Networks’ Vertical Horizon VH-8G provides a menu-driven system configuration program. This program can be accessed by a direct connection to the serial port on the switch’s rear panel (out-of-band), or by a Telnet connection over the network (in-band). The switch’s management is based on SNMP (Simple Network Management Protocol).
PAGE 10
In-Band Connections Prior to accessing the switch via a network connection, you must first configure it with a valid IP address, subnet mask, and default gateway using an out-of-band connection or the BootP protocol. Telnet Connection Prior to accessing the switch via an in-band Telnet connection, you must first configure it with a valid IP address, subnet mask, and default gateway using an out-of-band connection or BootP protocol.
PAGE 11
2. VH-8G USER INTERFACE Overview Access is gained to the console menus by directly connecting a terminal to the console port with a null-modem cable connection, or using Telnet to access the switch over the network. These menus allow you to reconfigure the switch, as well as to monitor the status and performance of the switch. The menus have a layout similar to the sample Main Menu shown in Figure 2-1.
PAGE 12
User Access Once a direct connection to the console port or a Telnet connection is established, the login screen for the on-board configuration program appears. You may need to press Enter a few times to display the screen. The default user names are “admin” and “guest,” with no passwords. The administrator has Read/Write access, which allows you to read and modify switch information.
PAGE 13
Factory Defaults Table 2-1 lists the default settings for switch configuration parameters. Each parameter can be changed via the console menus or Telnet. Table 2-1.
PAGE 14
Parameter Default Value Virtual LANs Acceptable VLAN Frame Type All Configurable PVID Tagging Yes GVRP Disabled Untagged VLAN Group Assignment 1 VLAN Ingress Filtering False VLAN Learning SVL 6 VH-8G User Interface VH-8G
PAGE 15
Main Menu The Main Menu is the first screen seen after successfully logging into the system. Figure 2-2 shows the Main Menu and the accompanying table describes the Main Menu. Vertical Horizon Local Management -- VH-8G Main Menu System Information Menu... Management Setup Menu... Device Control Menu... Network Monitor Menu... System Restart Menu... Exit Use or arrow keys to move. to select. Figure 2-2.
PAGE 16
Selection Description Device Control Menu Port Configuration Enables any port, enables/disables flow control, and sets communication mode to auto-negotiation, full duplex or half duplex. Port Information Displays operational status, including link state, flow control method, and duplex mode. Spanning Tree Configuration Enables Spanning Tree Algorithm; also sets parameters for hello time, maximum message age, switch priority, and forward delay; as well as port priority and path cost.
PAGE 17
Selection Description IP Multicast Registration Table Displays all the multicast groups active on this switch, including multicast IP addresses and corresponding VLAN IDs. Static Unicast Address Table Configuration Used to manually configure host MAC addresses in the unicast table. System Restart Restarts system with options to use POST, or to retain factory defaults, IP settings, or user authentication settings. Exit Exits the configuration program.
PAGE 18
Displaying System Information Use the System Information screen to display descriptive information about the switch, or for quick system identification as shown in the following figure and table. Vertical Horizon Local Management -- VH-8G System Information System Description : Vertical Horizon VH-8G System Object ID : 1.3.6.1.4.1.5624.2.1.
PAGE 19
Displaying Switch Version Use the Switch Information screen to display hardware/firmware version numbers for the switch, as well as the power status of the system. Vertical Horizon Local Management -- VH-8G Switch Information Main Board Hardware Version Firmware Version POST ROM Version Serial Number Port Number Internal Power Status Redundant Power Status : V0.0 (860 CPU) : 02.04.00.00 : V1.02 : 00-E0-63-76-F3-00 :8 : Active : Inactive Use or arrow keys to move. to select Figure 2-5.
PAGE 20
Management Setup Menu After initially logging onto the system, adjust the communication parameters for your console to ensure a reliable connection (Serial Port Configuration). Specify the IP addresses for the switch (Network Configuration / IP Configuration), and then set the Administrator and User passwords (Console Login Configuration). Remember to record them in a safe place. Also set the community string which controls SNMP access to the switch via in-band management software (SNMP Configuration).
PAGE 21
Changing the Network Configuration Use the Network Configuration menu to set the bootup option, configure the switch’s Internet Protocol (IP) parameters, enable the on-board Web server, or to set the number of concurrent Telnet sessions allowed. The screen shown below is described in the following table. Vertical Horizon Local Management -- VH-8G Network Configuration IP Configuration ... IP Connectivity Test (Ping) ... HTTP Configuration ...
PAGE 22
IP Configuration Use the IP Configuration screen to set the bootup option, or configure the switch’s IP parameters. The screen shown below is described in the following table. Vertical Horizon Local Management -- VH-8G Network Configuration: IP Configuration Interface Type IP Address Subnet Mask Gateway IP IP State : Ethernet : 10.1.0.1 : 255.255.0.0 : 10.1.0.254 : USER-CONFIG Use or arrow keys to move, other keys to make changes. Figure 2-8.
PAGE 23
IP Connectivity Test (Ping) Use the IP Connectivity Test to see if another site on the Internet can be reached. The screen shown below is described in the following table. Vertical Horizon Local Management -- VH-8G Network Configuration: IP Connectivity Test (Ping) IP Address : 200.123.211.109 Test Times : 1 Interval : 3 Success Failure : 0 :0 [Start] Use or arrow keys to move, other keys to make changes. Figure 2-9.
PAGE 24
HTTP Configuration Use the HTTP Configuration screen to enable/disable the on-board Web server, and to specify the TCP port that will provide HTTP service. The screen shown below is described in the following table. Vertical Horizon Local Management -- VH-8G Network Configuration : HTTP Configuration HTTP Server : ENABLED HTTP Port Number : 80 Use or arrow keys to move, to scroll options. Figure 2-10.
PAGE 25
Configuring the Serial Port You can access the on-board configuration program by attaching a VT100 compatible device to the switch’s serial port. (For more information on connecting to this port, see “Required Connections” on page 1.) The communication parameters for this port can be accessed from the Serial Port Configuration screen shown below and described in the following table.
PAGE 26
Assigning SNMP Parameters Use the SNMP Configuration screen to display and modify parameters for the Simple Network Management Protocol (SNMP). The switch includes an SNMP agent which monitors the status of its hardware, as well as the traffic passing through its ports. A computer attached to the network, called a Network Management Station (NMS), can be used to access this information. Access rights to the switch are controlled by community strings.
PAGE 27
Configuring Community Names The following figure and table describe how to configure the community strings authorized for management access. Up to 5 community names may be entered. Vertical Horizon Local Management -- VH-8G SNMP Configuration : SNMP Communities Community Name 1. public 2. private 3. 4. 5. Access Status READ ONLY ENABLED READ/WRITE ENABLED Use or arrow keys to move, other keys to make changes. Figure 2-13.
PAGE 28
Configuring IP Trap Managers The following figure and table describe how to specify management stations that will receive authentication failure messages or other trap messages from the switch. Up to 5 trap managers may be entered. Vertical Horizon Local Management -- VH-8G SNMP Configuration : IP Trap Managers IP Address 1. 10.1.0.23 2. 3. 4. 5. Community Name Status public DISABLED Use or arrow keys to move, other keys to make changes. Figure 2-14.
PAGE 29
Console Login Configuration Use the Management Setup: Console Login Configuration to restrict management access based on specified user names and passwords, or to set the invalid password threshold and timeout. There are only two user types defined, ADMIN (Administrator) and GUEST, but you can set up to five different user names and passwords. Only Administrators have write access for parameters governing the switch.
PAGE 30
Downloading System Software Using TFTP Protocol to Download Over the Network Use the TFTP Download menu to load software updates into the switch. The download file should be an VH-8G file from Enterasys; otherwise the switch will not accept it. The success of the download operation depends on the accessibility of the TFTP server and the quality of the network connection. After downloading the new software, the switch will automatically restart itself.
PAGE 31
Saving the System Configuration Use the Configuration Save & Restore menu to save the switch configuration settings to a file on a TFTP server. The file can be later downloaded to the switch to restore the switch’s settings. The success of the operation depends on the accessibility of the TFTP server and the quality of the network connection. Parameters shown on this screen are indicated in the following figure and table.
PAGE 32
Configuring Management Access Use the Management Configuration menu to define which VLAN has management access to the switch. Parameters shown on this screen are indicated in the following figure and table. Vertical Horizon Local Management -- VH-8G Management Configuration Management VLAN : ALL VLAN :1 Use or arrow keys to move, to scroll options. Figure 2-18.
PAGE 33
Configuring the Switch The Device Control menu is used to control a broad range of functions, including port configuration, Spanning Tree support for redundant switches, port mirroring, multicast filtering, and Virtual LANs. Each of the setup screens provided by these configuration menus is described in the following sections. Vertical Horizon Local Management -- VH-8G Device Control Menu Port Configuration ... Port Information ... Spanning Tree Configuration ... Spanning Tree Information ...
PAGE 34
Selection Description 802.1Q VLAN Base Information Displays basic VLAN information, such as VLAN version number and maximum VLANs supported. 802.1Q VLAN Current Table Information Displays VLAN groups and port members. 802.1Q VLAN Static Table Configuration Configures VLAN groups via static assignments, including setting port members, or restricting ports from being dynamically added to a port by the GVRP protocol.
PAGE 35
Configuring Port Parameters Use the Port Configuration menus to set or display communication parameters for any port on the switch. Vertical Horizon Local Management -- VH-8G Port Configuration : Port 1 - 8 Flow Control on all ports : [Enable] [Disable] Port Type Admin Flow Speed and Control Duplex ------------------------------------------------------------------------1. 1000SX ENABLED ENABLED 1000-HALF 2. 1000SX ENABLED ENABLED 1000-FULL 3. 1000SX ENABLED ENABLED AUTO 4. 1000SX ENABLED ENABLED AUTO 5.
PAGE 36
Viewing the Current Port Configuration The Port Information screen displays the port type, status, link state, and flow control in use, as well as the communication speed and duplex mode. To change any of the port settings, use the Port Configuration menu. . Vertical Horizon Local Management -- VH-8G Port Information : Port 1 - 8 Port Type Operational Link FlowControl Speed and InUse Duplex InUse ------------------------------------------------------------------------------------------------------1.
PAGE 37
Using the Spanning Tree Algorithm The Spanning Tree Algorithm can be used to detect and disable network loops, and to provide backup links between switches, bridges or routers. This allows the switch to interact with other bridging devices (that is, an STA-compliant switch, bridge or router) in your network to ensure that only one route exists between any two stations on the network. For a more detailed description of how to use this algorithm, refer to Appendix A, “Spanning Tree Concepts” on page 83.
PAGE 38
Parameter Default Description Spanning Tree Protocol Enabled Enable this parameter to participate in an STA compliant network. Priority 32,768 Device priority is used in selecting the root device, root port, and designated port. The device with the highest priority becomes the STA root device. However, if all devices have the same priority, the device with the lowest MAC address will then become the root device. Enter a value from 0 - 65535.
PAGE 39
Configuring STA for Ports The following figure and table describe STA configuration for ports.
PAGE 40
Parameter Default Description FastForwarding ENABLED This parameter is used to enable/disabled the Fast Spanning Tree mode for the port. In this mode, ports skip the Blocked, Listening and Learning states and proceed straight to Forwarding. FastForwarding enables end-node workstations and servers to overcome time-out problems when the Spanning Tree Algorithm is implemented in a network. Therefore, FastForwarding should only be enabled for ports that are connected to an endnode device.
PAGE 41
Displaying the Current Bridge STA The parameters shown in the following figure and table describe the current Bridge STA Information. Vertical Horizon Local Management -- VH-8G Spanning Tree Information : Bridge STA Information Priority Hello Time (in seconds) Max Age (in seconds) Forward Delay (in seconds) Hold Time (in seconds) Designated Root Root Cost Root Port Configuration Changes Topology Up Time : 32768 :2 : 20 : 15 :1 : 0.
PAGE 42
Displaying the Current STA for Ports The parameters shown in the following figure and table are for port STA Information. Vertical Horizon Local Management -- VH-8G Spanning Tree Port Information : Port 1 - 8 Port Type Status Designated Designated Designated Cost Bridge Port ------------------------------------------------------------------------------------------------------1. 1000SX FORWARDING 4 0.0000E800E800 128.3 2. 1000SX FORWARDING 4 32768.00E029522800 128.1 3. 1000SX FORWARDING 4 32768.
PAGE 43
Parameter Description The rules defining port status are: • A port on a network segment with no other STA-compliant bridging device is always forwarding. • If two ports of a switch are connected to the same segment and there is no other STA device attached to this segment, the port with the smaller ID forwards packets and the other is blocked. • All ports are blocked when the switch is booted, then some of them change state to listening, to learning, and then to forwarding.
PAGE 44
Using a Mirror Port for Analysis You can mirror traffic from any source port to a target port for real-time analysis. You can then attach a logic analyzer or RMON probe to the target port and study the traffic crossing the source port in a completely unobtrusive manner. When mirroring port traffic, note that the target port must be configured in the same VLAN as the source port (see Configuring Virtual LANs on page 47).
PAGE 45
Configuring Port Trunks Port trunks can be used to increase the bandwidth of a network connection or to ensure fault recovery. You can configure up to four trunk connections (combining 2~4 ports into a fat pipe) between any two VH-8G switches. However, before making any physical connections between devices, use the Trunk Configuration menu to specify the trunk on the devices at both ends. When using a port trunk, note that: 9033640 • Ports can only be assigned to one trunk.
PAGE 46
You can use the Port Trunking Configuration screen set up port trunks as shown below: Vertical Horizon Local Management -- VH-8G Port Trunking Configuration Trunk ID Status Member List 1 2 3 4 ------------- ------------- ---------------- ---------------- ---------------- ---------------Port : -Port : -Port : -Port : -Port : -- Port : -- Port : -- Port : -- Port : -- Port : -- Port : -- Port : -- Trunk ID : 1 Trunk ID : 1 [Show] [More] [Enable] [Disable] [Add] Member Port : 1 [Delete] Us
PAGE 47
IGMP Multicast Filtering Multicasting is used to support real-time applications such as video conferencing or streaming audio. A multicast server does not have to establish a separate connection with each client. It merely broadcasts its service to the network, and any hosts which want to receive the multicast register with their local multicast switch/router.
PAGE 48
Configuring IGMP This protocol allows a host to inform its local switch/router that it wants to receive transmissions addressed to a specific multicast group. You can use the IGMP Configuration screen to configure multicast filtering shown below: Vertical Horizon Local Management -- VH-8G IGMP Configuration IGMP Status : DISABLED Act as IGMP Querier : DISABLED IGMP Query Count :2 IGMP Report Delay (Seconds) : 10 Use or arrow keys to move, to scroll options.
PAGE 49
Configuring Broadcast Storm Control Use the Broadcast Storm Control Configuration screen to enable broadcast storm control for any port on the switch, as shown below: Vertical Horizon Local Management -- VH-8G Broadcast Storm Control Configuration : Port 1 - 8 Broadcast control on all ports : [Enable] [Disable] Port Threshold Broadcast Control ------------------------------------------------------1 500 ENABLED 2 500 ENABLED 3 500 ENABLED 4 500 ENABLED 5 500 ENABLED 6 500 ENABLED 7 500 ENABLED 8 500 ENABLED
PAGE 50
Configuring Bridge MIB Extensions The Bridge MIB includes extensions for managed devices that support Traffic Classes, Multicast Filtering and Virtual LANs.
PAGE 51
Parameter Description Bridge Settings Traffic Class* Multiple traffic classes are supported by this switch as indicated under Bridge Capabilities. However, you can disable this function by setting this parameter to False. VLAN Learning As default this switch uses Shared VLAN Learning (SVL), whereby all ports share one VLAN filtering database. However, you can set the switch to use Independent VLAN Learning (IVL), where each port maintains its own filtering database.
PAGE 52
Configuring Traffic Classes IEEE 802.1p defines up to 8 separate traffic classes. This switch supports Quality of Service (QoS) by using two priority queues, with weighted fair queuing for each port. You can use the 802.1P Configuration menu to configure the default priority for each port, or to display the mapping for the traffic classes as described in the following sections. Also, refer to Appendix C, “Class of Service” on page 93. . Vertical Horizon Local Management -- VH-8G 802.
PAGE 53
Port Priority Configuration The default priority for all ingress ports is zero. Therefore, any inbound frames that do not have priority tags will be placed in the low priority output queue. Default priority is only used to determine the output queue for the current port; no priority tag is actually added to the frame. You can use the 802.1P Port Priority Configuration menu to adjust default priority for any port as shown below: Vertical Horizon Local Management -- VH-8G 802.
PAGE 54
802.1P Port Traffic Class Information This switch provides two priority levels with weighted fair queuing for port egress. This means that any frames with a default or user priority from 0~3 are sent to the low priority queue “0” while those from 4~7 are sent to the high priority queue “1” as shown in the following screen: Vertical Horizon Local Management -- VH-8G 802.
PAGE 55
Configuring Virtual LANs You can use the VLAN configuration menu to assign any port on the switch to any of up to 256 LAN groups. In conventional networks with routers, broadcast traffic is split up into separate domains. Switches do not inherently support broadcast domains. This can lead to broadcast storms in large networks that handle a lot of IPX and NetBeui traffic. By using IEEE 802.
PAGE 56
802.1Q VLAN Current Table Information This screen shows the current port members of each VLAN and whether or not the port supports VLAN tagging. Ports assigned to a large VLAN group that crosses several switches should use VLAN tagging. However, if you just want to create a small port-based VLAN for one or two switches, you can assign ports to the same untagged VLAN (page 51). The current configuration is shown in the following figure. Vertical Horizon Local Management -- VH-8G 802.
PAGE 57
802.1Q VLAN Static Table Configuration Use this screen to create a new VLAN or modify the settings for an existing VLAN. You can add/delete port members for a VLAN, or prevent a port from being automatically added to a VLAN via the GVRP protocol. (Also, note that all ports can only belong to one untagged VLAN. This is set to VLAN 1 by default, but can be changed via the Port Assignment VLAN Configuration screen on page 51.
PAGE 58
For example, the following screen displays settings for VLAN 2, which includes tagged ports 1-4, and forbidden port 8. Vertical Horizon Local Management -- VH-8GVH-8G 1Q VLAN Static Table Configuration VID VLAN Name Status -------------------------------------2 Active Egress Ports 11110000 Untagged Ports 00000000 Forbidden Egress Ports 00000001 VID : 2 [Show] [More] [New] Use or arrow keys to move, other keys to make changes. to select. Figure 2-39. 802.
PAGE 59
Port Assignment VLAN Configuration Use this screen to configure port-specific settings for IEEE 802.1Q VLAN features. Vertical Horizon Local Management -- VH-8G Port Assignment VLAN Configuration Port PVID 802.1Q Trunk Ingress Filter ------------------------------------------------------------------1 3 NO TRUE 2 3 NO TRUE 3 1 NO FALSE 4 1 NO FALSE 5 1 NO FALSE 6 1 NO FALSE 7 1 NO FALSE 8 1 NO FALSE Port ID : 1 [Show] [More] Use or arrow keys to move, to scroll options.
PAGE 60
Multicast Router Port Information You can use the Multicast Router Port Information screen to display the ports on this switch attached to a neighboring multicast router/switch for each VLAN ID.
PAGE 61
Static Multicast Router Port Configuration You can use the Static Multicast Router Port Configuration screen to assign ports that are attached to a neighboring multicast router/switch. Vertical Horizon Local Management -- VH-8G Static Multicast Router Port Configuration Static Multicast Router Port List ---------------------------------------------------00000010 Sorted by VID : 1 [Show] [More] Port : 1 [Add] [Delete] Use or arrow keys to move. to select Figure 2-42.
PAGE 62
IGMP Member Port Configuration You can use the IGMP Member Port Configuration screen to assign ports that are attached to hosts who want to receive a specific multicast service.
PAGE 63
Port Security Configuration Use the Port Security Configuration screen to enable and configure port security for the switch. Port security allows you to configure each port with a list of MAC addresses of devices that are authorized to access the network through that port.
PAGE 64
Monitoring the Switch The Network Monitor Menu provides access to port statistics, RMON statistics, IP multicast addresses, and the static (unicast) address table. Each of the screens provided by these menus is described in the following sections. Vertical Horizon Local Management -- VH-8G Network Monitor Menu Port Statistics ... RMON Statistics ... Unicast Address Table ... Multicast Address Registration Table ... IP Multicast Registration Table ... Static Unicast Address Table Configuration ...
PAGE 65
Displaying Port Statistics Port Statistics display key statistics from the Ethernet-like MIB for each port. Error statistics on the traffic passing through each port are displayed. This information can be used to identify potential problems with the switch (such as a faulty port or unusually heavy loading). The values displayed have been accumulated since the last system reboot. Select the required port. The statistics displayed are indicated in the following figure and table.
PAGE 66
Parameter Description Carrier Sense Errors* The number of times that the carrier sense condition was lost or never asserted when attempting to transmit a frame. Frames Too Long The number of frames received that exceed the maximum permitted frame size. Internal Mac Receive Errors* The number of frames for which reception failed due to an internal MAC sublayer receive error. * The reported values will always be zero because these statistics are not supported by the internal chip set.
PAGE 67
Parameter Description Drop Events The total number of events in which packets were dropped due to lack of resources. Received Bytes Total number of bytes of data received on the network. This statistic can be used as a reasonable indication of Ethernet utilization. Received Frames The total number of frames (bad, broadcast and multicast) received. Broadcast Frames The total number of good frames received that were directed to the broadcast address. Note that this does not include multicast packets.
PAGE 68
Displaying the Unicast Address Table The Address Table contains the MAC addresses and VLAN identifier associated with each port (that is, the source port associated with the address and VLAN), sorted by MAC address or VLAN ID. You can search for a specific address, clear the entire address table, or information associated with a specific address, or set the aging time for deleting inactive entries. The information displayed in the Address Table is indicated in the following figure and table.
PAGE 69
Displaying the IP Multicast Registration Table Use the IP Multicast Registration Table to display all the multicast groups active on this switch, including multicast IP addresses and the corresponding VLAN ID. Vertical Horizon Local Management -- VH-8G IP Multicast Registration Table VID Multicast IP Dynamic Port Lists Learned by ----------------------------------------------------------------------------------1 224.0.0.2 00000001 IGMP 1 224.0.0.9 00000001 IGMP 1 224.0.1.22 00000001 IGMP 1 224.0.1.
PAGE 70
Configuring Static Unicast Addresses Use the Static Unicast Address Table Configuration screen to manually configure host MAC addresses in the unicast table. You can use this screen to associate a MAC address with a specific VLAN ID and switch port as shown below.
PAGE 71
Resetting the System Select the System Restart Menu under the Main Menu to reset the switch. The reset screen includes options as shown in the following figure and table. Vertical Horizon Local Management -- VH-8G System Restart Menu Restart Option : POST Reload Factory Defaults Keep IP Setting Keep User Authentication : YES : NO : NO : NO [Restart] Use or arrow keys to move, to scroll options. Figure 2-51.
PAGE 72
64 VH-8G User Interface VH-8G
PAGE 73
3. CONFIGURING & MONITORING THE SWITCH Common Tasks The switch console menus allow you to modify default switch settings and configure the switch for network management. They also allow you to monitor switch performance and status. See Section 2, “VH-8G User Interface,” for an overview of the menu hierarchy and a description of all menus. The following sections describe common tasks in setting up and operating the VH-8G switch using the console menus.
PAGE 74
Setting Password Protection The VH-8G switch is factory-configured with administrator access rights to the console menus set to READ/WRITE. This setting allows anyone to use the console menus to modify any operational parameter. To protect the configuration of the switch from unauthorized modification, you should enable password protection to the console menus. To enter a password, do the following: 1. Select Management Setup Menu from the Main Menu and press [Enter]. 2.
PAGE 75
Assigning an IP Address To assign an IP address to the switch, do the following: 1. Select Management Setup Menu from the Main menu. 2. Select Network Configuration and then IP Configuration. 3. Highlight the IP address field and enter the IP address. Press [Enter]. The IP address is now set. To set the subnet mask, highlight Subnet Mask and enter the appropriate mask. Checking Network Configuration Status To check connection status for the network, do the following: 1.
PAGE 76
Setting SNMP Management Access Access to the VH-8G switch through SNMP is controlled by community names. The community names set for the switch must match those used by the SNMP management station for successful communication to occur. Access for community names can be set to READ/WRITE or READ ONLY access. The default “Public” community name allows READ ONLY access to the device via SNMP, whereas the default “Private” community name allows READ/WRITE access.
PAGE 77
Configuring Port Mirroring You can mirror the traffic being switched on any port for the purposes of network traffic analysis and connection assurance. When Port Mirroring is enabled, one port becomes a monitor port for any other port on the switch. Note that the source and target ports must be configured within the same VLAN and be operating at the duplex mode. To configure port mirroring, do the following: 1. Select Device Control Menu from the Main Menu. 2. Select Mirror Port Configuration. 3.
PAGE 78
Downloading Via the Serial Port A serial download is the easiest method to upgrade the VH-8G switch software, requiring the least amount of equipment and configuration. To download switch software via the serial port, do the following: 1. With the console port connected, reset the switch by powering the switch off and then on. 2. After the power-on hardware and software tests are complete, the system initialization screen displays the following message:.
PAGE 79
Downloading Via TFTP To perform a TFTP download, you must first configure the VH-8G switch. This consists of programming the switch with an IP address, if this has not already been done, and entering the IP address of the TFTP server and the name of the upgrade file. To program the switch IP address, select the Management Setup Menu from the Main Menu screen, then select Network Configuration. To download switch software via TFTP, do the following: 1.
PAGE 80
Configuring Spanning Tree Parameters The VH-8G switch supports the IEEE 802.1D Spanning Tree Protocol. This protocol allows redundant connections to be created between LAN segments for purposes of fault tolerance. Two or more physical paths between different segments can be created through the switch, with the Spanning Tree Protocol choosing a single path at any given time and disabling all others.
PAGE 81
Configuring VLANs A virtual LAN (VLAN) is a group of devices on one or more LANs that are configured such that they can communicate as if they were attached to the same wire. Because VLANs are based on logical instead of physical connections, they are extremely flexible. The most fundamental benefit of VLAN technology is the ability to create workgroups based on function rather than on physical location or media. For further information, see Appendix B, “Virtual LANs (VLANs)” on page 89.
PAGE 82
Configuring Port Operation You can configure switch ports for operational parameters such as autonegotiation, duplex mode, and flow control. The 1000Base-SX fiber ports always operate at 1000Mbps speed. Therefore, this parameter is not configurable. To configure port operation, do the following: 1. Select Device Control Menu from the Main Menu. 2. Select Port Configuration and press [Enter]. 3. Select the port number to configure. 4. In the Admin column, select ENABLED.
PAGE 83
Configuring the Unicast Address Table The Unicast Address Table allows you to designate forwarding treatment through the switch for specific MAC addresses, allowing you to maintain the efficiency and security of your network. You can search for a specific MAC address, clear the entire table, or information associated with a specific address, or set the Aging Time for deleteing inactive entries.
PAGE 84
Setting a Default Gateway The default Gateway parameter defines the IP address of a router or other network device to which IP packets are to be sent if destined for a subnet outside of that which the switch is operating. To set a default gateway, do the following: 1. Select Management Setup Menu from the Main Menu. 2. Select Network Configuration and then IP Configuration. 3. In the field Gateway IP,enter the IP address and press [Enter].
PAGE 85
Configuring Port Trunks You can configure up to four port trunks on the VH-8G switch. Each trunk can combine up to four ports into an aggregate connection with up to 8Gbps of bandwidth when operating at full duplex. Besides balancing the load across each port in the trunk, the additional ports provide redundancy by taking over the load if another port in the trunk should fail. To configure the port trunks, do the following: 1. Select the Device Control Menu from the Main Menu. 2.
PAGE 86
78 Configuring & Monitoring the Switch VH-8G
PAGE 87
4. SNMP MANAGEMENT The SNMP Protocol SNMP (Simple Network Management Protocol) is a communication protocol designed specifically for the purpose of managing devices or other elements on a network. Network equipment commonly managed with SNMP includes hubs, switches, routers, and host computers. SNMP is typically used to configure these types of devices for proper operation in their network environment, as well as to monitor them to evaluate their performance and detect potential problems.
PAGE 88
There are three main operations defined in SNMP: • GET operations read information from the managed device, such as those used to obtain status or statistical data. • SET operations change a functional parameter on the device, such as those used to configure Port Speed or to initiate a software download. GET and SET operations are initiated only by the manager software, and result in a response by the agent. • TRAP operations allow the agent to send an unsolicited message to the manager.
PAGE 89
This MIB reports information about the protocols and network interfaces supported on the agent itself, as well as other general information. The MIB is divided into a number of groups, each of which corresponds to a specific protocol or set of information. Some groups are defined in other RFC documents.
PAGE 90
IEEE 802.1Q (Q-MIB) This MIB includes the set of managed objects as defined in the IEEE 802.1Q VLAN standard. This MIB provides management for the VLAN aspects of the switch. Enterasys Proprietary MIB Extensions Areas of VH-8G switch functionality not covered by the standard RFC MIBs are specified in the Enterasys private MIB. This MIB definition is specified separately from MIB-II. Areas covered in this MIB include various system, switch, and port level information.
PAGE 91
APPENDIX A. SPANNING TREE CONCEPTS General The IEEE 802.1D Spanning Tree Protocol resolves the problems of physical loops in a network by establishing one primary path between any two switches in a network. Any duplicate paths are barred from use and become standby or blocked paths until the original path fails, at which point they can be brought into service.
PAGE 92
Spanning Tree Protocol in a Network Figure A-1 illustrates the use of an VH-8G switch to establish an effective Spanning Tree configuration. Switches A, B and C are connected together in a redundant topology (more than one path between two points). If the connection between A and B goes down, the link between A and C becomes active, thereby establishing a path between A and B through switch C.
PAGE 93
Spanning Tree Protocol Parameters Several configuration parameters control the operation of the Spanning Tree Protocol. Table A-1 describes the parameters and lists the VH-8G switch default settings for each parameter. You can cause serious network performance degradation if you do not fully understand Spanning Tree concepts. Be sure to consult personnel experienced with this process prior to configuring Spanning Tree parameters. Table A-1.
PAGE 94
Spanning Tree Protocol Operation When the Spanning Tree Protocol is enabled for the first time or when there is a change in the network topology, such as a failure or the addition or removal of a component, the Spanning Tree Protocol automatically sets up the active topology of the current network. Communicating Between Bridges Periodically, all devices running the Spanning Tree Protocol on a network transmit packets to each other “in care of” the Bridge Group Address which all bridges share.
PAGE 95
There are five (5) states that the ports can be in for spanning tree: 9033640 • Blocking: A port in this state does not participate in the transmission of frames, thus preventing duplication arising through multiple paths existing in the active topology of the bridged LAN. • Listening: A port in this state is preparing to participate in the transmission of frames.
PAGE 96
88 Spanning Tree Concepts VH-8G
PAGE 97
APPENDIX B. VIRTUAL LANS (VLANS) VLANs and Frame Tagging The VH-8G switch supports IEEE 802.1Q-compliant virtual LANs (VLANs). This capability provides a highly efficient architecture for establishing VLANs within a network and for controlling broadcast/ multicast traffic between workgroups. Central to this capability is an explicit frame tagging approach for carrying VLAN information between interconnected network devices.
PAGE 98
VH-8G VLAN Configuration VLAN operation on the VH-8G is enabled by default. Therefore, all frames are transferred internally through the switch with a VLAN tag. This tag may already be on the frame entering the switch, or added to the frame by the switch. VLAN information already existing on frames entering the switch is automatically handled by the switch. The VH-8G learns VLAN information from tagged frames and appropriately switches frames out the proper ports based on this information.
PAGE 99
Forwarding Tagged/Untagged Frames Ports can be assigned to multiple tagged or untagged VLANs. Each port on the switch is therefore capable of passing tagged or untagged frames. To forward a frame from a VLAN-aware device to a VLAN-unaware device, the switch first decides where to forward the frame, and then strips off the VLAN tag.
PAGE 100
Forwarding Traffic with Unknown VLAN Tags This switch only supports 256 VLANs with VLAN IDs ranging from 1 to 2048, but the IEEE 802.1Q VLAN standard allows for VLAN IDs from 1 to 4094. Therefore, if this switch is attached to endstations that issue VLAN registration requests, it will have to forward unknown VLAN tags. This traffic can only be propagated to the rest of the network if automatic VLAN registration is enabled on the switch.
PAGE 101
APPENDIX C. CLASS OF SERVICE Class of Service support on the VH-8G switch allows you to assign mission-critical data a higher priority through the switch by delaying less critical traffic during periods of congestion. Higher priority traffic through the switch is serviced first before lower priority traffic. The Class of Service capability of the VH-8G switch is implemented by a priority queuing mechanism. Class of Service is based on the IEEE 802.
PAGE 102
Figure C-1 shows priority queuing operating within a switch. Frames entering the switch through ports 1 and 4 are tagged as normal traffic and placed in a normal priority queue on the outbound port. Frames entering through ports 2 and 5 are tagged as high priority traffic and placed in a high priority queue on the outbound port. Priority queuing can be configured using the console interface or via SNMP. Figure C-1.
PAGE 103
APPENDIX D. IP MULTICAST FILTERING IGMP Snooping and IP Multicast Filtering The Internet Group Management Protocol (IGMP) runs between hosts and their immediately neighboring multicast router/switch. The protocol’s mechanisms allow a host to inform its local router that it wants to receive transmissions addressed to a specific multicast group. A router, or multicast-enabled switch, can periodically ask their hosts is they want to receive multicast traffic.
PAGE 104
96 IP Multicast Filtering VH-8G
PAGE 105
INDEX A address table unicast, 60 aging time, configuring, 75 Auto-negotiation, configuring, 74 Internet Group Management Protocol, see IGMP IP configuration, 14 multicast registration table, 61 IP address, assigning, 67 IP multicast filtering, 39 B BootP, configuring, 76 bridge MIB extensions, 42 C Class of Service, configuring, 45, 73 community names, SNMP, 68 console lock-out, 66 console login configuration, 21 console port configuration, 17 connections, 1 D default settings, 5 downloads serial port,
PAGE 106
priority port configuration, 45 port information, 46 traffic class, 44 R traffic classes, configuring, 44 traps configuring managers, 20 sending, 18 SNMP, 80 trunks, configuring, 37 restarting the system, 63 U S unicast address table configuring, 75 displaying, 60 static, 62 user interface access to, 4 overview, 3 sample, 3 serial port configuration, 17 connections, 1 download, 69 SET operations, 80 SNMP communities, 19 configuration, 18 configuring access, 68 management, 1, 79 MIB extensions, 82 ope
PAGE 107
9033640 Index 3
PAGE 108
PAGE 109
PAGE 110
150183-102 R01