User Manual
Table Of Contents
- M6100, M5300, and M7100 Series Managed Switches
- Contents
- 1. Getting Started
- 2. Configure System Information
- Initial Setup
- Configure a Management VLAN
- Configure the Initial Service Port Settings
- View or Define System Information
- View Backplane Information
- View the Temperature Sensor Information
- View the Fan Status
- View the Device Status
- View the System CPU Status
- Configure the CPU Thresholds
- View Switch Statistics
- View USB Device Information
- View Slot Information (M5300 only)
- Configure a Loopback Interface
- View the IPv6 Network Interface Neighbor Table
- Configure the IPv4 Service Port
- Configure the IPv6 Service Port
- IPv4 Management VLAN Overview
- Time
- Configure DNS Settings
- Configure Global DNS Settings
- Add a Static Entry to the Local DNS Table
- Configure the Switch Database Management Template Preference
- Configure Green Ethernet Settings
- Configure Green Ethernet Interface Settings
- Configure Green Ethernet Local and Remote Devices
- Configure Green Ethernet Remote Device Details
- View the Green Ethernet Statistics Summary
- Configure the Green Ethernet EEE LPI History
- Licenses (M5300 only)
- Configure DHCP Server Settings
- DHCP L2 Relay
- Configure Global DHCP L2 Relay Settings
- Configure a DHCP L2 Relay Interface
- View DHCP L2 Relay Interface Statistics
- Configure UDP Relay Global Settings
- Configure UDP Relay Interface Settings
- Enable or Disable DHCPv6 Server
- Configure the DHCPv6 Pool
- Configure the DHCPv6 Prefix Delegation
- Configure DHCPv6 Interface Settings
- View DHCPv6 Bindings Information
- View DHCPv6 Server Statistics
- Configure DHCPv6 Relay for an Interface
- Configure Basic PoE
- Configure SNMP
- LLDP Overview
- Configure LLDP Global Settings
- Configure the LLDP Interface
- View LLDP Statistics
- View LLDP Local Device Information
- View LLDP Remote Device Information
- View LLDP Remote Device Inventory
- Configure LLDP-MED Global Settings
- Configure LLDP-MED Interface
- View LLDP-MED Local Device Information
- View LLDP-MED Remote Device Information
- View LLDP-MED Remote Device Inventory
- Configure ISDP
- Timer Schedule
- Initial Setup
- 3. Chassis and Stacking
- M6100 Series Switch Chassis Overview
- Configure Basic Chassis Settings
- View the Chassis Protocol Information
- View Chassis Backplane-Port Configuration
- View the Chassis Backplane-Port Packet-Path
- Configure the Chassis Power Settings
- Configure the System Power
- Configure the Power Auto-Rebalance
- View Blade Power Consumption
- View Power Redundancy
- View the Power Modules
- View EPS Power Modules and EPS Ports
- View the Power Matrix
- Rebalance the Chassis Power
- Configure Chassis Firmware Synchronization
- View NSF Summary Data
- View NSF Checkpoint Statistics
- M5300 Series Switch Stacking Overview
- Stack Configuration
- M6100 Series Switch Chassis Overview
- 4. Configure Switching Information
- Configure VLANs
- Configure Basic VLAN Settings
- Configure an Advanced VLAN
- Configure an Internal VLAN
- Configure VLAN Trunking
- Configure VLAN Membership
- View VLAN Status
- Configure Port PVID Settings
- Configure a MAC-Based VLAN
- Configure Protocol-Based VLAN Groups
- Configure Protocol-Based VLAN Group Membership
- Configure an IP Subnet-Based VLAN
- Configure a Port DVLAN
- Configure a Voice VLAN
- Configure GARP Switch Settings
- Configure GARP Port
- Auto-VoIP
- iSCSI Overview
- Spanning Tree Protocol
- Multicast
- View the MFDB Table
- View the MFDB Statistics
- IGMP Snooping
- Configure IGMP Snooping
- Configure IGMP Snooping for Interfaces
- Configure IGMP Snooping for VLANs
- Configure a Multicast Router
- Configure a Multicast Router VLAN
- IGMP Snooping Querier Overview
- Configure IGMP Snooping Querier
- Configure IGMP Snooping Querier for VLANs
- Configure MLD Snooping
- Configure a MLD Snooping Interface
- Configure MLD VLAN Settings
- Enable or Disable a Multicast Router on an Interface
- Configure Multicast Router VLAN Settings
- Configure MLD Snooping Querier
- Configure MLD Snooping Querier VLAN Settings
- Configure MVR
- MAC Address Table
- Port Settings
- Link Aggregation Groups
- Configure LAG Settings
- Configure LAG Membership
- Configure the Virtual Port-Channel Global Settings
- Configure the Keep-Alive Parameters
- View the VPC Peer Link Settings
- Configure the Peer Link Settings
- Configure the Peer Detection Settings
- Configure the Virtual Port Channel Interface
- View Virtual Port Channel Interface Details
- View Virtual Port Channel Interface Details
- View Virtual Port Channel Keep-Alive Statistics
- View Virtual Port Channel Peer Link Statistics
- Multiple Registration Protocol Overview
- Configure VLANs
- 5. Routing
- 6. OSPF and OSPFv3
- OSPF
- Configure Basic OSPF Settings
- Configure the OSPF Default Route Advertise Settings
- Configure OSPF Settings
- Configure the OSPF Common Area ID
- Configure the OSPF Stub Area
- Configure the OSPF NSSA Area
- Configure the OSPF Area Range
- Configure the OSPF Interface
- View OSPF Statistics for an Interface
- View the OSPF Neighbor Table
- View the OSPF Link State Database
- Configure the OSPF Virtual Link
- Configure the OSPF Route Redistribution
- View the NSF OSPF Summary
- OSPFv3
- Configure Basic OSPFv3 Settings
- Configure OSPFv3 Default Route Advertise Settings
- Configure the Advanced OSPFv3 Settings
- Configure the OSPFv3 Common Area
- Configure an OSPFv3 Stub Area
- Configure the OSPFv3 NSSA Area
- Configure the OSPFv3 Area Range
- Configure the OSPFv3 Interface
- View OSPFv3 Interface Statistics
- View the OSPFv3 Neighbor Table
- View the OSPFv3 Link State Database
- Configure the OSPFv3 Virtual Link
- Configure OSPFv3 Route Redistribution
- View the NSF OSPFv3 Summary
- OSPF
- 7. Multicast Routing
- Multicast Overview
- Configure Multicast IGMP Settings
- Configure PIM Settings
- Configure the Multicast PIM Global Settings
- Configure PIM SSM Settings
- Configure PIM Interface
- View the PIM Neighbor
- View the PIM Candidate Rendezvous Point
- View the PIM Neighbor
- Configure the PIM Candidate Rendezvous Point
- Configure the PIM Bootstrap Router Candidate
- Configure the PIM Static Rendezvous Point
- Configure Multicast Static Routes
- Configure the Multicast Admin Boundary
- Configure IPv6 Multicast Settings
- View the IPv6 Multicast Mroute Table
- Configure the IPv6 PIM Global Settings
- Configure IPv6 PIM SSM
- Configure the IPv6 PIM Interface
- View the IPv6 PIM Neighbor
- Configure the IPv6 PIM Candidate Rendezvous Point
- Configure the IPv6 PIM Bootstrap Router Candidate Settings
- Configure the IPv6 PIM Static Rendezvous Point
- Configure IPv6 MLD Global Settings
- Configure the IPv6 MLD Routing Interface
- View IPv6 MLD Routing Interface Statistics
- View the IPv6 MLD Groups
- View IPv6 MLD Traffic
- Configure the IPv6 MLD Proxy Interface
- View IPv6 MLD Proxy Interface Statistics
- View the IPv6 MLD Proxy Membership
- Configure IPv6 Multicast Static Routes
- 8. Configure Quality of Service
- 9. Manage Device Security
- Management Security Settings
- TACACS Overview
- Configure Management Access
- Configure HTTP Server Settings
- HTTPS Configuration
- Manage Certificates
- Download Certificates
- Configure SSH Settings
- Manage Host Keys
- Download Host Keys
- Configure Telnet Settings
- Configure the Telnet Authentication List
- Configure the Console Port
- Configure Denial of Service Settings
- Configure an Access Control Profile
- Configure Access Rule Settings
- Port Authentication
- Traffic Control
- Port Security
- Configure the Global Port Security Mode
- Configure a Port Security Interface
- Convert Learned MAC Addresses to Static Addresses
- Configure a Static MAC Address
- Configure a Private Group
- Configure Private Group Membership
- Configure Protected Ports
- Configure a Private VLAN
- Configure Private VLAN Association Settings
- Configure the Private VLAN Port Mode
- Configure a Private VLAN Host Interface
- Configure a Private VLAN Promiscuous Interface
- Storm Control
- Configure Global Storm Control Settings
- Configure a Storm Control Interface
- DHCP Snooping
- Configure DHCP Snooping Global Settings
- Configure a DHCP Snooping Interface
- Configure DHCP Snooping Binding
- Configure Snooping Persistent Settings
- View DHCP Snooping Statistics
- Configure an IP Source Guard Interface
- Configure IP Source Guard Binding Settings
- Configure IPv6 Source Guard Interface Settings
- Configure IPv6 Source Guard Binding
- Configure Dynamic ARP Inspection
- Configure a DAI VLAN
- Configure the DAI Interface
- Configure a DAI ACL
- Configure a DAI ACL Rule
- View DAI Statistics
- Captive Portal
- Configure Captive Portal Global Settings
- Add a Captive Portal Instance
- Configure CP Binding
- View the Captive Portal Binding Table
- Configure a Captive Portal Group
- Configure Captive Portal User Settings
- Configure the Captive Portal Trap Flag Settings
- View the Captive Portal Client
- Configure Access Control Lists
- Use the ACL Wizard to Create a Simple ACL
- Configure an ACL Based on Destination MAC Address
- Use the ACL Wizard to Complete the Destination MAC ACL
- Configure a Basic MAC ACL
- Configure MAC ACL Rules
- Configure MAC Binding
- View or Delete MAC ACL Bindings in the MAC Binding Table
- Configure an IP ACL
- Configure Rules for an IP ACL
- Configure Rules for an Extended IP ACL
- Configure IPv6 ACL
- Configure IPv6 Rules
- Configure IP ACL Interface Bindings
- View or Delete IP ACL Bindings in the IP ACL Binding Table
- View or Delete VLAN ACL Bindings in the VLAN Binding Table
- 10. Monitor the System
- 11. Maintenance
- A. Default Settings
- B. Configuration Examples
- C. Acronyms and Abbreviations
Manage Device Security
662
M6100, M5300, and M7100 Series Managed Switches
configuring other match criteria is not offered. To configure specific match criteria for the
rule, remove the rule and recreate it, or reconfigure Match Every to False for the other
match criteria to be visible.
16. Use the Protocol Type field to specify that a packet's IP protocol is a match condition for the
selected IP ACL rule.
The possible values are ICMP, IGMP, IP, TCP, UDP, EIGRP, GRE, IPINIP, OSPF, and
PIM.
17. In the TCP Flag field, specify that a packet's TCP flag is a match condition for the selected
IP ACL rule.
The TCP flag values are URG, ACK, PSH, RST, SYN, and FIN. Each TCP flag can be set
separately. The possible values are as follows:
• Ignore. A packet matches this ACL rule whether the TCP flag in this packet is set or
not.
• Set (+). A packet matches this ACL rule if the TCP flag in this packet is set.
• Clear (-). A packet matches this ACL rule if the TCP flag in this packet is not set.
18. When Established is specified, a match occurs if either RST- or ACK-specified bits are set
in the TCP header. These fields are enabled only when TCP protocol is selected.
19. In the Src field, enter a source IP address, using dotted-decimal notation, to be compared to
a packet's source IP address as a match criteria for the selected IP ACL rule:
a. Select the IP Address option and enter an IP address with a relevant wildcard mask
to apply this criteria. If this field is left empty, it means any.
b. When you select the Host option, the wildcard mask is configured as 0.0.0.0. If this
field is left empty, it means any.
The wildcard mask determines which bits are used and which bits are ignored. A wildcard
mask of 0.0.0.0 indicates that none of the bits are important. A wildcard of
255.255.255.255 indicates that all of the bits are important.
20. Use Source L4 Port Action to specify relevant matching conditions for L4 port numbers in
the current extended ACL rule:
• Equal. IP ACL rule matches only if the Layer 4 source port number is equal to the
specified port number or port key.
• Less Than. IP ACL rule matches if the Layer 4 source port number is less than the
specified port number or port key.
• Greater Than. IP ACL rule matches if the Layer 4 source port number is greater than
the specified port number or port key.
• Not Equal. IP ACL rule matches only if the Layer 4 source port number is not equal to
the specified port number or port key.
21. Src L4 Port and Src L4 Range options are available only when protocol is set to TCP or
UDP. When you select the Port option, choose port key from the list or enter the port
number yourself.
• The source IP TCP port names are bgp, domain, echo, ftp, ftpdata, http, smtp, snmp,
Telnet, www, pop2, pop3.