User Manual
Table Of Contents
- 1. INTRODUCTION
- 2. INSTALLATION
- 3. SWITCH MANAGEMENT
- 4. WEB CONFIGURATION
- 4.1 Main Web Page
- 4.2 System
- 4.2.1 System Information
- 4.2.2 IP Configuration
- 4.2.3 IPv6 Configuration
- 4.2.4 Users Configuration
- 4.2.5 Privilege Levels
- 4.2.6 NTP Configuration
- 4.2.7 UPnP
- 4.2.8 DHCP Relay
- 4.2.9 DHCP Relay Statistics
- 4.2.10 CPU Load
- 4.2.11 System Log
- 4.2.12 Detailed Log
- 4.2.13 Remote Syslog
- 4.2.14 SMTP Configuration
- 4.2.15 EEE Power Reduction
- 4.2.16 Web Firmware Upgrade
- 4.2.17 TFTP Firmware Upgrade
- 4.2.18 Configuration Backup
- 4.2.19 Configuration Upload
- 4.2.20 Image Select
- 4.2.21 Factory Default
- 4.2.22 System Reboot
- 4.2.23 Daylight Saving
- 4.3 Simple Network Management Protocol
- 4.4 Port Management
- 4.5 Link Aggregation
- 4.6 VLAN
- 4.6.1 VLAN Overview
- 4.6.2 IEEE 802.1Q VLAN
- 4.6.3 VLAN Basic Information
- 4.6.4 VLAN Port Configuration
- 4.6.5 VLAN Membership
- 4.6.6 VLAN Membership Status
- 4.6.7 VLAN Port Status
- 4.6.8 Private VLAN
- 4.6.9 Port Isolation
- 4.6.10 VLAN setting example:
- 4.6.11 MAC-based VLAN
- 4.6.12 MAC-based VLAN Status
- 4.6.13 IP Subnet-based VLAN
- 4.6.14 Protocol-based VLAN
- 4.6.15 Protocol-based VLAN Mambership
- 4.7 Spanning Tree Protocol
- 4.8 Multicast
- 4.8.1 IGMP Snooping
- 4.8.2 IGMP Snooping Configuration
- 4.8.3 IGMP Snooping VLAN Configuration
- 4.8.4 IGMP Snooping Port Group Filtering
- 4.8.5 IGMP Snooping Status
- 4.8.6 IGMP Group Information
- 4.8.7 IGMPv3 Information
- 4.8.8 MLD Snooping Configuration
- 4.8.9 MLD Snooping VLAN Configuration
- 4.8.10 MLD Snooping Port Group Filtering
- 4.8.11 MLD Snooping Status
- 4.8.12 MLD Groups Information
- 4.8.13 MLDv2 Information
- 4.8.14 MVR
- 4.8.15 MVR Status
- 4.8.16 MVR Groups Information
- 4.8.17 MVR SFM Information
- 4.9 Quality of Service
- 4.9.1 Understand QOS
- 4.9.2 Port Policing
- 4.9.3 Port Classification
- 4.9.4 Port Scheduler
- 4.9.5 Port Shaping
- 4.9.6 Port Tag Remarking
- 4.9.7 Port DSCP
- 4.9.8 DSCP-Based QoS
- 4.9.9 DSCP Translation
- 4.9.10 DSCP Classification
- 4.9.11 QoS Control List
- 4.9.12 QoS Status
- 4.9.13 Storm Control Configuration
- 4.9.14 QoS Statistics
- 4.9.15 Voice VLAN Configuration
- 4.9.16 Voice VLAN OUI Table
- 4.10 Access Control Lists
- 4.11 Authentication
- 4.11.1 Understanding IEEE 802.1X Port-Based Authentication
- 4.11.2 Authentication Configuration
- 4.11.3 Network Access Server Configuration
- 4.11.4 Network Access Overview
- 4.11.5 Network Access Statistics
- 4.11.6 Authentication Server Configuration
- 4.11.7 RADIUS Overview
- 4.11.8 RADIUS Details
- 4.11.9 Windows Platform RADIUS Server Configuration
- 4.11.10 802.1X Client Configuration
- 4.12 Security
- 4.12.1 Port Limit Control
- 4.12.2 Access Management
- 4.12.3 Access Management Statistics
- 4.12.4 HTTPs
- 4.12.5 SSH
- 4.12.6 Port Security Status
- 4.12.7 Port Security Detail
- 4.12.8 DHCP Snooping
- 4.12.9 DHCP Snooping Statistics
- 4.12.10 IP Source Guard Configuration
- 4.12.11 IP Source Guard Static Table
- 4.12.12 ARP Inspection
- 4.12.13 ARP Inspection Static Table
- 4.13 MAC Address Table
- 4.14 LLDP
- 4.15 Diagnostics
- 4.16 Loop Protection
- 4.17 RMON
- 4.17.1 RMON Alarm Configuration
- 4.17.2 RMON Alarm Detail
- 4.17.3 RMON Alarm Status
- 4.17.4 RMON Event Configuration
- 4.17.5 RMON Event Detail
- 4.17.6 RMON Event Status
- 4.17.7 RMON History Configuration
- 4.17.8 RMON History Detail
- 4.17.9 RMON History Status
- 4.17.10 RMON Statistics Configuration
- 4.17.11 RMON Statistics Detail
- 4.18 Precision Time Protocol
- 5. COMMAND LINE INTERFACE
- 6. COMMAND LINE MODE
- 6.1 System Command
- 6.2 IP Command
- 6.3 Port Management Command
- 6.4 MAC Address Table Command
- 6.5 VLAN Configuration Command
- 6.6 Private VLAN Configuration Command
- 6.7 Security Command
- Security Switch User Configuration
- Security Switch User Add
- Security Switch User Delete
- Security Switch Privilege Level Configuration
- Security Switch Privilege Level Group
- Security Switch Privilege Level Current
- Security Switch Auth Configuration
- Security Switch Auth Method
- Security Switch SSH Configuration
- Security Switch SSH Mode
- Security Switch HTTPs Configuration
- Security Switch HTTPs Mode
- Security Switch HTTPs Redirect
- Security Switch Access Configuration
- Security Switch Access Mode
- Security Switch Access Configuration
- Security Switch Access Mode
- Security Switch Access Add
- Security Switch Access IPv6 Add
- Security Switch Access Delete
- Security Switch Access Lookup
- Security Switch Access Clear
- Security Switch Access Statistics
- Security Switch SNMP Configuration
- Security Switch SNMP Mode
- Security Switch SNMP Version
- Security Switch SNMP Read Community
- Security Switch SNMP Write Community
- Security Switch SNMP Trap Mode
- Security Switch SNMP Trap Version
- Security Switch SNMP Trap Community
- Security Switch SNMP Trap Destination
- Security Switch SNMP Trap IPv6 Destination
- Security Switch SNMP Trap Authentication Failure
- Security Switch SNMP Trap Link-up
- Security Switch SNMP Trap Inform Mode
- Security Switch SNMP Trap Inform Timeout
- Security Switch SNMP Trap Inform Retry Times
- Security Switch SNMP Trap Probe Security Engine ID
- Security Switch SNMP Trap Security Engine ID
- Security Switch SNMP Trap Security Name
- Security Switch SNMP Engine ID
- Security Switch SNMP Community Add
- Security Switch SNMP Community Delete
- Security Switch SNMP Community Lookup
- Security Switch SNMP User Add
- Security Switch SNMP User Delete
- Security Switch SNMP User Changekey
- Security Switch SNMP User Lookup
- Security Switch SNMP Group Add
- Security Switch SNMP Group Delete
- Security Switch SNMP Group Lookup
- Security Switch SNMP View Add
- Security Switch SNMP View Delete
- Security Switch SNMP View Lookup
- Security Switch SNMP Access Add
- Security Switch SNMP Access Delete
- Security Switch SNMP Access Lookup
- Security Network Psec Switch
- Security Network Psec Port
- Security Network Limit Configuration
- Security Network Limit Mode
- Security Network Limit Aging
- Security Network Limit Agetime
- Security Network Limit Port
- Security Network Limit Limit
- Security Network Limit Action
- Security Network Limit Reopen
- Security Network NAS Configuration
- Security Network NAS Mode
- Security Network NAS State
- Security Network NAS Reauthentication
- Security Network NAS ReauthPeriod
- Security Network NAS EapolTimeout
- Security Network NAS Agetime
- Security Network NAS Holdtime
- Security Network NAS RADIUS_QoS
- Security Network NAS RADIUS_VLAN
- Security Network NAS Guest_VLAN
- Security Network NAS Authenticate
- Security Network NAS Statistics
- Security Network ACL Configuration
- Security Network ACL Action
- Security Network ACL Policy
- Security Network ACL Rate
- Security Network ACL Add
- Security Network ACL Delete
- Security Network ACL Lookup
- Security Network ACL Clear
- Security Network ACL Status
- Security Network DHCP Relay Configuration
- Security Network DHCP Relay Mode
- Security Network DHCP Relay Server
- Security Network DHCP Relay Information Mode
- Security Network DHCP Relay Information Policy
- Security Network DHCP Relay Statistics
- Security Network DHCP Snooping Configuration
- Security Network DHCP Snooping Mode
- Security Network DHCP Snooping Port Mode
- Security Network DHCP Snooping Statistics
- Security Network IP Source Guard Configuration
- Security Network IP Source Guard Mode
- Security Network IP Source Guard Port Mode
- Security Network IP Source Guard Limit
- Security Network IP Source Guard Entry
- Security Network IP Source Guard Status
- Security Network ARP Inspection Configuration
- Security Network ARP Inspection Mode
- Security Network ARP Inspection Port Mode
- Security Network ARP Inspection Entry
- Security Network ARP Inspection Status
- Security AAA Configuration
- Security AAA Timeout
- Security AAA Deadtime
- Security AAA RADIUS
- Security AAA ACCT_RADIUS
- Security AAA TACACS+
- Security AAA Statistics
- 6.8 Spanning Tree Protocol Command
- STP Configuration
- STP Version
- STP Tx Hold
- STP MaxHops
- STP MaxAge
- STP FwdDelay
- STP CName
- STP BPDU Filter
- STP BPDU Guard
- STP Recovery
- STP Status
- STP MSTI Priority
- STP MSTI Map
- STP MSTI Add
- STP Port Configuration
- STP Port Mode
- STP Port Edge
- STP Port AutoEdge
- STP Port P2P
- STP Port RestrictedRole
- STP Port RestrictedTcn
- STP Port bpduGuard
- STP Port Statistic
- STP Port Mcheck
- STP MSTI Port Configuration
- STP MSTI Port Cost
- STP MSTI Port Priority
- 6.9 Link Aggregation Command
- 6.10 Link Aggregation Control Protocol Command
- 6.11 LLDP Command
- 6.12 LLDP MED Command
- 6.13 EEE Command
- 6.14 Quality of Service Command
- QoS Configuration
- QoS Port Classification Class
- QoS Port Classification DPL
- QoS Port Classification PCP
- QoS Port Classification DEI
- QoS Port Classification Tag
- QoS Port Classification Map
- QoS Port Classification DSCP
- QoS Port Policer Mode
- QoS Port Policer Rate
- QoS Port Policer Unit
- QoS Port Scheduler Mode
- QoS Port Scheduler Weight
- QoS Port QueueShaper Mode
- QoS Port QueueShaper Rate
- QoS Port QueueShaper Excess
- QoS Port Shaper Mode
- QoS Port Shaper Rate
- QoS Port TagRemarking Mode
- QoS Port TagRemarking PCP
- QoS Port TagRemarking DEI
- QoS Port TagRemarking Map
- QoS Port DSCP Translation
- QoS Port DSCP Classification
- QoS Port DSCP EgressRemark
- QoS DSCP Map
- QoS DSCP Translation
- QoS DSCP Trust
- QoS DSCP Classification Mode
- QoS DSCP EgressRemap
- QoS Storm Unicast
- QoS Storm Multicast
- QoS QCL Add
- QoS QCL Delete
- QoS QCL Lookup
- QoS QCL Status
- QoS QCL Refresh
- 6.15 Mirror Command
- 6.16 Configuration Command
- 6.17 Firmware Command
- 6.18 UPnP Command
- 6.19 MVR Command
- 6.20 Voice VLAN Command
- 6.21 Loop Protect Command
- 6.22 IPMC Command
- 6.23 VLAN Control List Command
- VCL MAC-based VLAN Configuration
- VCL MAC-based VLAN Add
- VCL MAC-based VLAN Delete
- VCL Stasus
- VCL Protocol-based VLAN Add Ethernet II
- VCL Protocol-based VLAN Add SNAP
- VCL Protocol-based VLAN Add LLC
- VCL Protocol-based VLAN Delete Ethernet II
- VCL Protocol-based VLAN Delete SNAP
- VCL Protocol-based VLAN Delete LLC
- VCL Protocol-based VLAN Add
- VCL Protocol-based VLAN Delete
- VCL Protocol-based VLAN Configuration
- 6.24 SMTP Command
- 6.25 PTP Command
- 7. SWITCH OPERATION
- 8. TROUBLE SHOOTING
- APPENDEX A
- APPENDEX B: GLOSSARY
- EC Declaration of Conformity
User’s Manual of IGS-10080MFT
APPENDEX B: GLOSSARY
A
ACE
ACE is an acronym for Access Control Entry. It describes access permission associated with a particular ACE ID.
There are three ACE frame types (Ethernet Type
, ARP, and IPv4) and two ACE actions (permit and deny). The ACE also
contains many detailed, different parameter options that are available for individual application.
ACL
ACL is an acronym for Access Control List. It is the list table of ACEs, containing access control entries that specify
individual users or groups permitted or denied to specific traffic objects, such as a process or a program.
Each accessible traffic object contains an identifier to its ACL. The privileges determine whether there are specific
traffic object access rights.
ACL implementations can be quite complex, for example, when the ACEs are prioritized for the various situation. In
networking, the ACL refers to a list of service ports or network services that are available on a host or server, each with
a list of hosts or servers permitted or denied to use the service. ACL can generally be configured to control inbound
traffic, and in this context, they are similar to firewalls.
There are 3 web-pages associated with the manual ACL configuration:
ACL|Access Control List: The web page shows the ACEs in a prioritized way, highest (top) to lowest (bottom).
Default the table is empty. An ingress frame will only get a hit on one ACE even though there are more matching ACEs.
The first matching ACE will take action (permit/deny) on that frame and a counter associated with that ACE is
incremented. An ACE can be associated with a Policy, 1 ingress port, or any ingress port (the whole switch). If an ACE
Policy is created then that Policy can be associated with a group of ports under the "Ports" web-page. There are
number of parameters that can be configured with an ACE. Read the Web page help text to get further information for
each of them. The maximum number of ACEs is 64.
ACL|Ports: The ACL Ports configuration is used to assign a Policy ID to an ingress port. This is useful to group ports
to obey the same traffic rules. Traffic Policy is created under the "Access Control List" - page. You can you also set up
specific traffic properties (Action / Rate Limiter / Port copy, etc) for each ingress port. They will though only apply if the
frame gets past the ACE matching without getting matched. In that case a counter associated with that port is
incremented. See the Web page help text for each specific port property.
ACL|Rate Limiters: Under this page you can configure the rate limiters. There can be 15 different rate limiters,
each ranging from 1-1024K packets per seconds. Under "Ports" and "Access Control List" web-pages you can assign a
557