User Manual
Table Of Contents
- Insight Managed 8-Port Gigabit Ethernet Smart Cloud Switch with 2 SFP Fiber Ports
- Contents
- 1. Getting Started
- Switch Management Options and Default Management Mode
- Available Publications
- Web Browser Requirements and Supported Browsers
- User-Defined Fields
- Interface Naming Conventions
- Access the Switch
- Change the Management Mode of the Switch
- Register the Switch
- How to Configure Interface Settings
- Local Browser Interface Device View
- 2. Configure System Information
- View and Configure the Switch Management Settings
- View or Define System Information
- View the Switch CPU Status
- Configure the CPU Thresholds
- Configure the IPv4 Address for the Network Interface and Management VLAN
- Configure the IPv6 Address for the Network Interface
- View the IPv6 Network Neighbor
- Configure the Time Settings
- Configure Denial of Service Settings
- Configure DNS Settings
- Configure Green Ethernet Settings
- Manage the Bonjour Settings and View Bonjour Information
- Control the LEDs
- Use the Device View
- Configure Power over Ethernet
- Configure Link Layer Discovery Protocol
- Configure DHCP L2 Relay and DHCP Snooping
- Set Up PoE Timer Schedules
- View and Configure the Switch Management Settings
- 3. Configure Switching
- 4. Configuring Routing
- 5. Configure Quality of Service
- 6. Manage Device Security
- Management Security Settings
- Configure Management Access
- Configure Port Authentication
- Set Up Traffic Control
- Configure Access Control Lists
- Use the ACL Wizard to Create a Simple ACL
- Configure a Basic MAC ACL
- Configure MAC ACL Rules
- Configure MAC Bindings
- View or Delete MAC ACL Bindings in the MAC Binding Table
- Configure an IP ACL
- Configure Rules for a Basic IP ACL
- Configure Rules for an Extended IP ACL
- Configure an IPv6 ACL
- Configure Rules for an IPv6 ACL
- Configure IP ACL Interface Bindings
- View or Delete IP ACL Bindings in the IP ACL Binding Table
- Configure VLAN ACL Bindings
- 7. Perform Maintenance Tasks
- 8. Manage Power over Ethernet
- 9. Monitor the System
- A. Configuration Examples
- B. Hardware Specifications and Default Values
Configuration Examples
393
Insight Managed 8-Port Gigabit Ethernet Smart Cloud Switch with 2 SFP Fiber Ports
• Assign Queue ID. 0
• Match Every. False
• CoS. 0
• Destination MAC. 01:02:1A:BC:DE:EF
• Destination MAC Mask. 00:00:00:00:FF:FF
• EtherType. User Value.
• Source MAC. 02:02:1A:BC:DE:EF
• Source MAC Mask. 00:00:00:00:FF:FF
• VLAN ID. 2
3. On the MAC Binding Configuration page (see Configure MAC Bindings on page 298),
assign the Sales_ACL to ports 6, 7, and 8, and then click the Apply button.
You can assign an optional sequence number to indicate the order of this access list
relative to other access lists if any are already assigned to this interface and direction.
4. The MAC Binding Table (see View or Delete MAC ACL Bindings in the MAC Binding
Table on page 300) displays the interface and MAC ACL binding information.
The ACL named Sales_ACL looks for Ethernet frames with destination and source MAC
addresses and MAC masks defined in the rule. Also, the frame must be tagged with VLAN
ID 2, which is the Sales department VLAN. The CoS value of the frame must be 0, which is
the default value for Ethernet frames. Frames that match this criteria are permitted on
interfaces 6, 7, and 8 and are assigned to the hardware egress queue 0, which is the default
queue. All other traffic is explicitly denied on these interfaces. To allow additional traffic to
enter these ports, you must add a new Permit rule with the desired match criteria and bind
the rule to interfaces 6, 7, and 8.
Standard IP ACL Sample Configuration
The following example shows how to create an IP-based ACL that prevents any IP traffic
from the Finance department from being allowed on the ports that are associated with other
departments. Traffic from the Finance department is identified by each packet’s network IP
address.
1. On the IP ACL page (see Configure an IP ACL on page 301), create a new IP ACL with
an IP ACL ID of 1.
2. On the IP Rules page (see Configure Rules for a Basic IP ACL on page 303), create a rule
for IP ACL 1 with the following settings:
• Sequence Number. 1
• Action. Deny
• Assign Queue ID. 0 (optional: 0 is the default value)
• Match Every. False
• Source IP Address. 192.168.187.0
• Source IP Mask. 255.255.0
3. Click the Add button.