User Manual User Manual
Table Of Contents
- INTRODUCTION
- INSTALLATION
- SWITCH MANAGEMENT
- WEB CONFIGURATION
- Main Web Page
- System
- System Information
- IP Configuration
- IPv6 Configuration
- Users Configuration
- Users Privilege Levels
- NTP Configuration
- UPnP Configuration
- DHCP Relay
- DHCP Relay Statistics
- CPU Load
- _
- System Log
- Detailed Log
- Remote Syslog
- SMTP Configure
- Web Firmware Upgrade
- TFTP Firmware Upgrade
- Configuration Backup
- Configuration Upload
- _
- Factory Default
- _
- System Reboot
- Simple Network Management Protocol
- Port Management
- Link Aggregation
- VLAN
- Spanning Tree Protocol
- Multicast
- Quality of Service
- Access Control Lists
- Access Control List Status
- Access Control List Configuration
- ACE Configuration
- ACL Ports Configuration
- ACL Rate Limiter Configuration
- Understanding IEEE 802.1X Port-Based Authentication
- Authentication Configuration
- Network Access Server Configuration
- Network Access Overview
- Network Access Statistics
- _
- Authentication Server Configuration
- RADIUS Overview
- _
- RADIUS Details
- Windows Platform RADIUS Server Configuration
- 4.11.10 802.1X Client Configuration
- Security
- Address Table
- _
- LLDP
- Network Diagnostics
- Power over Ethernet (GE-DSSG-244-POE / NS3601-24P/4S)
- _
- COMMAND LINE INTERFACE
- Command Line Mode
- _
- System Command
- Stack
- IP Command
- Port Management Command
- MAC Address Table Command
- VLAN Configuration Command
- _
- Private VLAN Configuration Command
- Security Command
- Security Switch User Configuration
- Security Switch User Add
- Security Switch User Delete
- Security Switch Privilege Level Configuration
- Security Switch Privilege Level Group
- Security Switch Privilege Level Current
- Security Switch Auth Configuration
- Security Switch Auth Method
- Security Switch SSH Configuration
- Security Switch SSH Mode
- Security Switch HTTPs Configuration
- Security Switch HTTPs Mode
- Security Switch HTTPs Redirect
- Security Switch Access Configuration
- Security Switch Access Mode
- Security Switch Access Add
- Security Switch Access IPv6 Add
- Security Switch Access Delete
- Security Switch Access Lookup
- Security Switch Access Clear
- Security Switch Access Statistics
- Security Switch SNMP Configuration
- Security Switch SNMP Mode
- Security Switch SNMP Version
- Security Switch SNMP Read Community
- Security Switch SNMP Write Community
- Security Switch SNMP Trap Mode
- Security Switch SNMP Trap Version
- Security Switch SNMP Trap Community
- Security Switch SNMP Trap Destination
- Security Switch SNMP Trap IPv6 Destination
- Security Switch SNMP Trap Authentication Failure
- Security Switch SNMP Trap Link-up
- Security Switch SNMP Trap Inform Mode
- Security Switch SNMP Trap Inform Timeout
- Security Switch SNMP Trap Inform Retry Times
- Security Switch SNMP Trap Probe Security Engine ID
- Security Switch SNMP Trap Security Engine ID
- Security Switch SNMP Trap Security Name
- Security Switch SNMP Engine ID
- Security Switch SNMP Community Add
- Security Switch SNMP Community Delete
- Security Switch SNMP Community Lookup
- Security Switch SNMP User Add
- Security Switch SNMP User Delete
- Security Switch SNMP User Changekey
- Security Switch SNMP User Lookup
- Security Switch SNMP Group Add
- Security Switch SNMP Group Delete
- Security Switch SNMP Group Lookup
- Security Switch SNMP View Add
- Security Switch SNMP View Delete
- Security Switch SNMP View Lookup
- Security Switch SNMP Access Add
- Security Switch SNMP Access Delete
- Security Switch SNMP Access Lookup
- Security Network Psec Switch
- Security Network Psec Port
- Security Network Limit Configuration
- Security Network Limit Mode
- Security Network Limit Aging
- Security Network Limit Agetime
- Security Network Limit Port
- Security Network Limit Limit
- Security Network Limit Action
- Security Network Limit Reopen
- Security Network NAS Configuration
- Security Network NAS Mode
- Security Network NAS State
- Security Network NAS Reauthentication
- Security Network NAS ReauthPeriod
- Security Network NAS EapolTimeout
- Security Network NAS Agetime
- Security Network NAS Holdtime
- Security Network NAS RADIUS_QoS
- Security Network NAS RADIUS_VLAN
- Security Network NAS Guest_VLAN
- Security Network NAS Authenticate
- Security Network NAS Statistics
- Security Network ACL Configuration
- Security Network ACL Action
- Security Network ACL Policy
- Security Network ACL Rate
- Security Network ACL Add
- Security Network ACL Delete
- Security Network ACL Lookup
- Security Network ACL Clear
- Security Network ACL Status
- Security Network DHCP Relay Configuration
- Security Network DHCP Relay Mode
- Security Network DHCP Relay Server
- Security Network DHCP Relay Information Mode
- Security Network DHCP Relay Information Policy
- Security Network DHCP Relay Statistics
- Security Network DHCP Snooping Configuration
- Security Network DHCP Snooping Mode
- Security Network DHCP Snooping Port Mode
- Security Network DHCP Snooping Statistics
- Security Network IP Source Guard Configuration
- Security Network IP Source Guard Mode
- Security Network IP Source Guard Port Mode
- Security Network IP Source Guard Limit
- Security Network IP Source Guard Entry
- Security Network IP Source Guard Status
- Security Network ARP Inspection Configuration
- Security Network ARP Inspection Mode
- Security Network ARP Inspection Port Mode
- Security Network ARP Inspection Entry
- Security Network ARP Inspection Status
- Security AAA Configuration
- Security AAA Timeout
- Security AAA Deadtime
- Security AAA RADIUS
- Security AAA ACCT_RADIUS
- Security AAA TACACS+
- Security AAA Statistics
- Security Switch User Configuration
- Spanning Tree Protocol Command
- STP Configuration
- STP Version
- STP Tx Hold
- STP MaxHops
- STP MaxAge
- STP FwdDelay
- STP CName
- STP BPDU Filter
- STP BPDU Guard
- STP Recovery
- STP Status
- STP MSTI Priority
- STP MSTI Map
- STP MSTI Add
- STP Port Configuration
- STP Port Mode
- STP Port Edge
- STP Port AutoEdge
- STP Port P2P
- STP Port RestrictedRole
- STP Port RestrictedTcn
- STP Port bpduGuard
- STP Port Statistic
- STP Port Mcheck
- STP MSTI Port Configuration
- STP MSTI Port Cost
- STP MSTI Port Priority
- STP Configuration
- Multicast Configuration Command
- Link Aggregation Command
- Link Aggregation Control Protocol Command
- LLDP Command
- LLDPMED Command
- Power over Ethernet Command
- Quality of Service Command
- Mirror Command
- Configuration Command
- Firmware Command
- UPnP Command
- MVR Command
- Voice VLAN Command
- SMTP Command
- Show Command
- Show ACL Configuration
- Show Link Aggregation Configuration
- Show IGMP Configuration
- Show IP Configuration
- Show LACP Configuration
- Show LLDP Configuration
- Show MAC Configuration
- Show Mirror Configuration
- Show PoE Configuration
- Show Port Configuration
- Show Private VLAN Configuration
- Show QoS Configuration
- Show SNMP Configuration
- Show Stack Configuration
- Show System Configuration
- Show VLAN Configuration
- Show STP Configuration
- Show ACL Configuration
- SWITCH OPERATION
- POWER OVER ETHERNET OVERVIEW
- TROUBLE SHOOTING
- APPENDEX A
- APPENDEX B : GLOSSARY
- APPENDIX C: Local User Privilege Level Table
IFS NS3601-24P/4S GE-DSSG-244 and 244-POE User Manual
233
the same Network Connectivity Device may advertise different sets of policies, based on the authenticated user identity or port
configuration.
It should be noted that LLDP-MED is not intended to run on links other than between Network Connectivity Devices and Endpoints,
and therefore does not need to advertise the multitude of network policies that frequently run on an aggregated link interior to the
LAN.
Object Description
• Delete
Check to delete the policy. It will be deleted during the next save.
• Policy ID
ID for the policy. This is auto generated and shall be used when selecting the
polices that shall be mapped to the specific ports.
• Application Type
Intended use of the application types:
Voice - for use by dedicated IP Telephony handsets and other similar appliances
supporting interactive voice services. These devices are typically deployed on a
separate VLAN for ease of deployment and enhanced security by isolation from
data applications.
Voice Signaling (conditional) - for use in network topologies that require a
different policy for the voice signaling than for the voice media. This application
type should not be advertised if all the same network policies apply as those
advertised in the Voice application policy.
Guest Voice - support a separate 'limited feature-set' voice service for guest
users and visitors with their own IP Telephony handsets and other similar
appliances supporting interactive voice services.
Guest Voice Signaling (conditional) - for use in network topologies that require
a different policy for the guest voice signaling than for the guest voice media.
This application type should not be advertised if all the same network policies
apply as those advertised in the Guest Voice application policy.
Softphone Voice - for use by softphone applications on typical data centric
devices, such as PCs or laptops. This class of endpoints frequently does not
support multiple VLANs, if at all, and are typically configured to use an 'untagged’
VLAN or a single 'tagged’ data specific VLAN. When a network policy is defined
for use with an 'untagged’ VLAN (see Tagged flag below), then the L2 priority
field is ignored and only the DSCP value has relevance.
Video Conferencing
Streaming Video - for use by broadcast or multicast based video content
distribution and other similar applications supporting streaming video services
that require specific network policy treatment. Video applications relying on TCP
with buffering would not be an intended use of this application type.
Video Signaling (conditional) - for use in network topologies that require a
separate policy for the video signaling than for the video media. This application
type should not be advertised if all the same network policies apply as those
advertised in the Video Conferencing application policy.
• Tag
Tag indicating whether the specified application type is using a 'tagged’ or an
'untagged’ VLAN.
Untagged indicates that the device is using an untagged frame format and as
such does not include a tag header as defined by IEEE 802.1Q-2003. In this
case, both the VLAN ID and the Layer 2 priority fields are ignored and only the
DSCP value has relevance.
Tagged indicates that the device is using the IEEE 802.1Q tagged frame format,
and that both the VLAN ID and the Layer 2 priority values are being used, as well
as the DSCP value. The tagged format includes an additional field, known as the
tag header. The tagged frame format also includes priority tagged frames as
defined by IEEE 802.1Q-2003.
• VLAN ID
VLAN identifier (VID) for the port as defined in IEEE 802.1Q-2003
• L2 Priority
L2 Priority is the Layer 2 priority to be used for the specified application type. L2
Priority may specify one of eight priority levels (0 through 7), as defined by IEEE
802.1D-2004. A value of 0 represents use of the default priority as defined in
IEEE 802.1D-2004.
• DSCP
DSCP value to be used to provide Diffserv node behavior for the specified
application type as defined in IETF RFC 2474. DSCP may contain one of 64
code point values (0 through 63). A value of 0 represents use of the default
DSCP value as defined in RFC 2475.