User's Manual

ManualsBrandsPLANET Technology ManualsLong Reach POE8-port Coax + 2-port 10/100/1000T + 2-port 100/1000X SFP Long Reach PoE over Coaxial Managed Switch

Table Of Contents

Summary of content (350 pages)

PAGE 1
PAGE 2
User’s Manual of LRP-822CS/LRP-1622CS Trademarks Copyright © PLANET Technology Corp. 2015. Contents are subject to revision without prior notice. PLANET is a registered trademark of PLANET Technology Corp. All other trademarks belong to their respective owners.
PAGE 3
User’s Manual of LRP-822CS/LRP-1622CS TABLE OF CONTENTS 1. INTRODUCTION.................................................................................................................. 10 1.1 Packet Contents .........................................................................................................................................10 1.2 Product Description ...................................................................................................................................11 1.
PAGE 4
User’s Manual of LRP-822CS/LRP-1622CS 4.2 System.........................................................................................................................................................50 4.2.1 System Information..............................................................................................................................................50 4.2.2 IP Configurations ...................................................................................................................
PAGE 5
User’s Manual of LRP-822CS/LRP-1622CS 4.4 Link Aggregation ......................................................................................................................................102 4.4.1 LAG Setting .......................................................................................................................................................104 4.4.2 LAG Managment ..........................................................................................................................
PAGE 6
User’s Manual of LRP-822CS/LRP-1622CS 4.7.2.3 IGMP Static Group...................................................................................................................................171 4.7.2.4 IGMP Group Table ...................................................................................................................................172 4.7.2.5 IGMP Router Setting ..............................................................................................................................
PAGE 7
User’s Manual of LRP-822CS/LRP-1622CS 4.8.5.4 Telephony OUI Port Setting .....................................................................................................................213 4.9 Security .....................................................................................................................................................215 4.9.1 802.1X ..........................................................................................................................................
PAGE 8
User’s Manual of LRP-822CS/LRP-1622CS 4.9.9.1 Port Settings ............................................................................................................................................264 4.9.9.2 Binding Table ...........................................................................................................................................265 4.9.10 Port Security ..........................................................................................................................
PAGE 9
User’s Manual of LRP-822CS/LRP-1622CS 4.14 RMON.......................................................................................................................................................321 4.14.1 RMON Statistics ..............................................................................................................................................321 4.14.2 RMON Event ...........................................................................................................................
PAGE 10
User’s Manual of LRP-822CS/LRP-1622CS 1. INTRODUCTION Thank you for purchasing PLANET LRP Managed Switch series, which comes with multiple Long Reach PoE female BNC, Gigabit Ethernet copper and SFP fiber optic connectibility, and robust layer 2 and layer 4 features.
PAGE 11
User’s Manual of LRP-822CS/LRP-1622CS 1.2 Product Description PLANET Long Reach PoE Solution enables all enterprises and network service providers to set up an IP infrastructure in a remote location where 802.3af/at PoE compliant powered devices can receive both data and power via PLANET switches, and PLANET LRP extenders and injectors over a long distance but not limited to the normal 100 meters.
PAGE 12
User’s Manual of LRP-822CS/LRP-1622CS Centralized Power Management PLANET LRP Managed Switch eliminates the need for an additional remote site power while allowing a single power source to provide power to both LRP extenders and the PoE powered devices at long range. The Long Reach PoE capabilities provided help to reduce installation time and deployment costs for network devices as a result of freeing from restrictions of power outlet locations.
PAGE 13
User’s Manual of LRP-822CS/LRP-1622CS Scheduled Power Recycling PLANET LRP Managed Switch allows each of the connected PoE IP cameras or PoE wireless access points via the LRP-101CE to reboot at a specific time each week. Therefore, it will reduce the chance of IP camera or wireless AP crash resulting from buffer overflow.
PAGE 14
User’s Manual of LRP-822CS/LRP-1622CS Environment-friendly, Smart Fan Design for Silent Operation PLANET LRP Managed Switch features a 19-inch metal housing, a low noise design and an effective ventilation system. It supports the smart fan technology to automatically control the speed of the built-in fan to reduce noise and maintain the temperature of the PoE switch for optimal power output capability.
PAGE 15
User’s Manual of LRP-822CS/LRP-1622CS Advanced Network Security PLANET LRP Managed Switch also provides DHCP Snooping, IP Source Guard and Dynamic ARP Inspection functions to prevent IP snooping from attack and discard ARP packets with invalid MAC address. The network administrators can now build highly-secured corporate networks with considerably less time and effort than before.
PAGE 16
User’s Manual of LRP-822CS/LRP-1622CS 1.3 How to Use This Manual This User Manual is structured as follows: Section 2, INSTALLATION The section explains the functions of the Switch and how to physically install the LRP Managed Switch. Section 3, SWITCH MANAGEMENT The section contains the information about the software function of the LRP Managed Switch. Section 4, WEB CONFIGURATION The section explains how to manage the LRP Managed Switch by Web interface.
PAGE 17
User’s Manual of LRP-822CS/LRP-1622CS Layer 2 Features ■ Prevents packet loss with back pressure (half-duplex) and IEEE 802.3x pause frame flow control (full-duplex) ■ High performance Store and Forward architecture, broadcast storm control, runt/CRC filtering that eliminates erroneous packets to optimize the network bandwidth ■ Supports VLAN - IEEE 802.1Q tagged VLAN - Provider Bridging (VLAN Q-in-Q) support (IEEE 802.
PAGE 18
User’s Manual of LRP-822CS/LRP-1622CS Security ■ Authentication  IEEE 802.
PAGE 19
User’s Manual of LRP-822CS/LRP-1622CS 1.
PAGE 20
User’s Manual of LRP-822CS/LRP-1622CS [LRP-1622CS] Distance Cable Data Rate* Type TX** RX** LRP-101CE PoE Output* 200m RG6 74.8Mbps 81.7Mbps 19.8W 400m RG6 62.5Mbps 75.2Mbps 15.8W 600m RG6 57.8Mbps 70.3Mbps 11.8W 800m RG6 41.7Mbps 67.1Mbps 7.9W 1000m RG6 31.7Mbps 58.8Mbps 6.7W 1200m RG6 14.9Mbps 22.5Mbps --- * The actual data rate and PoE output vary on the quality of the copper wire and environmental factors.
PAGE 21
User’s Manual of LRP-822CS/LRP-1622CS Many-to-1 monitor 802.1Q tagged-based VLAN Up to 256 VLAN groups, out of 4094 VLAN IDs 802.1ad Q-in-Q tunneling VLAN Voice VLAN Protocol VLAN Private VLAN (Protected port) GVRP Link Aggregation Spanning Tree Protocol IEEE 802.
PAGE 22
User’s Manual of LRP-822CS/LRP-1622CS RFC 2819 RMON (1, 2, 3, 9) RFC 2863 Interface Group MIB RFC 3635 Ethernet-like MIB Standards Conformance Regulation Compliance FCC Part 15 Class A, CE IEEE 1901 Broadband Power Line IEEE 802.3 10BASE-T IEEE 802.3u 100BASE-TX/100BASE-FX IEEE 802.3z Gigabit SX/LX IEEE 802.3ab Gigabit 1000T IEEE 802.3x flow control and back pressure IEEE 802.3ad port trunk with LACP IEEE 802.1D Spanning Tree Protocol IEEE 802.1w Rapid Spanning Tree Protocol IEEE 802.
PAGE 23
User’s Manual of LRP-822CS/LRP-1622CS 2. INSTALLATION This section describes the hardware features and installation of the LRP Managed Switch on the desktop or rack mount. For easier management and control of the LRP Managed Switch, familiarize yourself with its display indicators, and ports. Front panel illustrations in this chapter display the unit LED indicators. Before connecting any network device to the LRP Managed Switch, please read this chapter completely. 2.1 Hardware Description 2.1.
PAGE 24
User’s Manual of LRP-822CS/LRP-1622CS ■ Console Port The console port is a RJ45 port connector. It is an interface for connecting a terminal directly. Through the console port, it provides rich diagnostic information including IP Address setting, factory reset, port management, link status and system setting. Users can use the attached DB9 to RJ45 console cable in the package and connect to the console port on the device.
PAGE 25
User’s Manual of LRP-822CS/LRP-1622CS 2.1.2 LED Indications The front panel LEDs indicates instant status of port links, data activity and system power; it helps monitor and troubleshoot when needed. Figures 2-1-2A and 2-1-2B show the LED indications of these LRP Managed Switches. LRP-822CS LED Indication Figure 2-1-2 LRP-822CS LED Panel ■ System / Alert LED Color Function PWR Green SYS Green FAN 1 Red Lights to indicate that Fan 1 is down. FAN 2 Red Lights to indicate that Fan 2 is down.
PAGE 26
User’s Manual of LRP-822CS/LRP-1622CS ■ 1000BASE-SX/LX SFP Interfaces (GE3 to GE4) LED Color LNK/ACT Green Function Lights 1000 Orange To indicate the link through that port is successfully established. Blinking To indicate that the switch is actively sending or receiving data over that port. Lights To indicate that the port is operating at 1000Mbps. Lights When LNK/ACT LED lights up, it indicates that the port is operating at 10/100Mbps.
PAGE 27
User’s Manual of LRP-822CS/LRP-1622CS Lights If LNK/ACT LED lights up, it indicates that the port is operating at 10/100Mbps. Off If LNK/ACT LED is off, it indicates that the port is linkdown. ■ 1000BASE-SX/LX SFP Interfaces (GE3 to GE4) LED Color LNK/ACT Green Function Lights 1000 Orange To indicate the link through that port is successfully established. Blinking To indicate that the switch is actively sending or receiving data over that port.
PAGE 28
User’s Manual of LRP-822CS/LRP-1622CS 2.2 Installing the Switch This section describes how to install your LRP Managed Switch and make connections to the LRP Managed Switch. Please read the following topics and perform the procedures in the order being presented. To install your LRP Managed Switch on a desktop or shelf, simply complete the following steps. 2.2.
PAGE 29
User’s Manual of LRP-822CS/LRP-1622CS Step 5: Supply power to the LRP Managed Switch. Connect one end of the power cable to the LRP Managed Switch. Connect the power plug of the power cable to a standard wall outlet. When the LRP Managed Switch receives power, the Power LED should remain solid Green. 2.2.2 Rack Mounting To install the LRP Managed Switch in a 19-inch standard rack, please follow the instructions described below.
PAGE 30
User’s Manual of LRP-822CS/LRP-1622CS Figure 2-1-6 Mounting LRP Managed Switch in a Rack Step 6: Proceeds with Steps 4 and 5 of session 2.2.1 Desktop Installation to connect the network cabling and supply power to the LRP Managed Switch. 2.2.3 Installing the SFP transceiver The sections describe how to insert an SFP transceiver into an SFP slot. The SFP transceivers are hot-pluggable and hot-swappable.
PAGE 31
User’s Manual of LRP-822CS/LRP-1622CS Gigabit SFP Transceiver Modules  MGB-GT SFP-Port 1000BASE-T Module  MGB-SX SFP-Port 1000BASE-SX mini-GBIC module  MGB-LX SFP-Port 1000BASE-LX mini-GBIC module  MGB-L50 SFP-Port 1000BASE-LX mini-GBIC module – 50km  MGB-L70 SFP-Port 1000BASE-LX mini-GBIC module – 70km  MGB-L120 SFP-Port 1000BASE-LX mini-GBIC module – 120km  MGB-LA10 SFP-Port 1000BASE-LX (WDM,TX:1310nm) – 10km  MGB-LA20 SFP-Port 1000BASE-LX (WDM,TX:1310nm) – 20km  MGB-LB20
PAGE 32
User’s Manual of LRP-822CS/LRP-1622CS  Connect the Fiber Cable 1. Insert the duplex LC connector into the SFP transceiver. 2. Connect the other end of the cable to a device with SFP transceiver installed. 3. Check the LNK/ACT LED of the SFP slot on the front of the LRP Managed Switch. Ensure that the SFP transceiver is operating correctly. 4. Check the Link mode of the SFP port if the link fails.
PAGE 33
User’s Manual of LRP-822CS/LRP-1622CS 2.2.4 Installing the Long Reach PoE Communication The sections describe how to insert a coaxial cable into a BNC female port. You can plug in and out the coaxial cable to/from any BNC female port without having to power down the LRP Managed Switch.
PAGE 34
User’s Manual of LRP-822CS/LRP-1622CS 3. Tighten the BNC male connector gently. Figure 2-1-8 How to insert the coaxial cable from LRP Managed Switch 4. Enable Long Reach Power over Ethernet function for the all LRP ports from WebUI 5. Check the LNK LED of the Long Reach Power over Ethernet interface on the front of the LRP Managed Switch. Ensure that the Long Reach Power over Ethernet interface is operating correctly.
PAGE 35
User’s Manual of LRP-822CS/LRP-1622CS  Remove the connected the Coaxial Cable 1. Make sure there is no network activity anymore. 2. Disable Long Reach Power over Ethernet function for the all LRP ports from WebUI. 3. Loosen the BNC male connector gently. 4. Pull out the coaxial cable gently.
PAGE 36
User’s Manual of LRP-822CS/LRP-1622CS Never pull out the coaxial cable without disabling Long Reach Power over Ethernet function for the port from WebUI. Directly pulling out the coaxial cable could damage the Long Reach Ethernet coaxial extender and the BNC female connector of the LRP Managed Switch. 1. The package contains eight warning stickers, which should be stuck on the coaxial cable connector before using PLANET LRP Managed Switch and LRP extender.
PAGE 37
User’s Manual of LRP-822CS/LRP-1622CS 3. SWITCH MANAGEMENT This chapter explains the methods that you can use to configure management access to the LRP Managed Switch. It describes the types of management applications and the communication and management protocols that deliver data between your management device (workstation or personal computer) and the system. It also contains information about port connection options.
PAGE 38
User’s Manual of LRP-822CS/LRP-1622CS 3.2 Management Access Overview The LRP Managed Switch gives you the flexibility to access and manage it using any or all of the following methods:  An administration console  Web browser interface  An external SNMP-based network management application The administration console and Web browser interface support are embedded in the LRP Managed Switch software and are available for immediate use. Each of these management methods has their own advantages.
PAGE 39
User’s Manual of LRP-822CS/LRP-1622CS 3.3 Administration Console The administration console is an internal, character-oriented, and command line user interface for performing system administration such as displaying statistics or changing option settings. Using this method, you can view the administration console from a terminal, personal computer, Apple Macintosh, or workstation connected to the LRP Managed Switch's console port.
PAGE 40
User’s Manual of LRP-822CS/LRP-1622CS regardless of the interface through which the associated action was initiated. A Macintosh or PC attachment can use any terminal-emulation program for connecting to the terminal serial port. A workstation attachment under UNIX can use an emulator such as TIP. 3.4 Web Management The LRP Managed Switch offers management features that allow users to manage the LRP Managed Switch from anywhere on the network through a standard browser such as Microsoft Internet Explorer.
PAGE 41
User’s Manual of LRP-822CS/LRP-1622CS 3.5 SNMP-based Network Management You can use an external SNMP-based application to configure and manage the LRP Managed Switch, such as SNMP Network Manager, HP Openview Network Node Management (NNM) or What’s Up Gold. This management method requires the SNMP agent on the switch and the SNMP Network Management Station to use the same community string. This management method, in fact, uses two community strings: the get community string and the set community string.
PAGE 42
User’s Manual of LRP-822CS/LRP-1622CS If there are two LAN cards or above in the same administrator PC, choose a different LAN card by using the “Select Adapter” tool. 3. Press the “Refresh” button for the currently connected devices in the discovery list as the screen shows below: Figure 3-1-7: Planet Smart Discovery Utility Screen 1. This utility shows all necessary information from the devices, such as MAC Address, Device Name, firmware version and Device IP Subnet address.
PAGE 43
User’s Manual of LRP-822CS/LRP-1622CS 4. WEB CONFIGURATION This section introduces the configuration and functions of the Web-based management. About Web-based Management The LRP Managed Switch offers management features that allow users to manage the LRP Managed Switch from anywhere on the network through a standard browser such as Microsoft Internet Explorer. The Web-based Management supports Internet Explorer 8.0.
PAGE 44
User’s Manual of LRP-822CS/LRP-1622CS 2. When the following login screen appears, please enter the default username "admin" with password “admin” (or the username/password you have changed via console) to login the main screen of LRP Managed Switch. The login screen in Figure 4-1-2 appears. Figure 4-1-2 Login screen Default User Name: admin Default Password: admin After entering the username and password, the main screen appears as Figure 4-1-3.
PAGE 45
User’s Manual of LRP-822CS/LRP-1622CS Now, you can use the Web management interface to continue the switch management or manage the LRP Managed Switch by Web interface. The Switch Menu on the left of the web page lets you access all the commands and statistics the LRP Managed Switch provides.  It is recommended to use Internet Explore 8.0 or above to access LRP Managed Switch.  The changed IP address takes effect immediately after clicking on the Save button.
PAGE 46
User’s Manual of LRP-822CS/LRP-1622CS 4.1 Main Web Page The LRP Managed Switch provides a Web-based browser interface for configuring and managing it. This interface allows you to access the LRP Managed Switch using the Web browser of your choice. This chapter describes how to use the LRP Managed Switch’s Web browser interface to configure and manage it.
PAGE 47
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-1-5 LRP Managed Switch Main Functions Menu Buttons : Click to save changes or reset to default. : Click to logout the LRP Managed Switch. : Click to reboot the LRP Managed Switch. : Click to refresh the page. 4.1.1 Save Button This save button allows save the running / startup / backup configuration or reset switch in default parameter. The screen in Figure 4-1-6 appears.
PAGE 48
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Save Configuration to Click to save the configuration. For more detailed information, please refer to FLASH  Restore to Default chapter 4.1.2 Click to reset switch in default parameter. For more detailed information, please refer to chapter 4.15.1 4.1.2 Configuration Manager The system file folder contains configuration settings. The screen in Figure 4-1-7 appears.
PAGE 49
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to save configuration. 4.1.2.1 Saving Configuration In the LRP Managed Switch, the running configuration file stores in the RAM. In the current version, the running configuration sequence of running-config can be saved from the RAM to FLASH by ”Save Configurations to FLASH” function, so that the running configuration sequence becomes the startup configuration file, which is called configuration save.
PAGE 50
User’s Manual of LRP-822CS/LRP-1622CS 4.2 System Use the System menu items to display and configure basic administrative details of the LRP Managed Switch. Under System the following topics are provided to configure and view the system information. This section has the following items: ■ System Information The switch system information is provided here. ■ IP Configurations Configure the switch-managed IP information on this page.
PAGE 51
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  System Name Display the current system name  System Location Display the current system location  System Contact Display the current system contact  MAC Address The MAC address of this LRP Managed Switch.  IP Address The IP address of this LRP Managed Switch.  Subnet Mask The subnet mask of this LRP Managed Switch.  Gateway The gateway of this LRP Managed Switch.
PAGE 52
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Mode Indicates the IP address mode operation. Possible modes are: Static: Enable NTP mode operation. When enabling NTP mode operation, the agent forwards and transfers NTP messages between the clients and the server when they are not on the same subnet domain. DHCP: Enable DHCP client mode operation. Enable the DHCP client by checking this box.
PAGE 53
User’s Manual of LRP-822CS/LRP-1622CS 4.2.3 IPv6 Configuration The IPv6 Configuration includes Auto Configuration, IPv6 Address and Gateway. The configured column is used to view or change the IPv6 configuration. Fill out the Auto Configuration, IPv6 Address and Gateway for the device. The screens in Figure 4-2-4 & Figure 4-2-5 appear.
PAGE 54
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 55
User’s Manual of LRP-822CS/LRP-1622CS 4.2.4 User Configuration This page provides an overview of the current users and privilege type. Currently the only way to login as another user on the Web server is to close and reopen the browser. After the setup is completed, please press the “Apply” button to take effect. Please login Web interface with a new user name and password; the screens in Figure 4-2-6 & Figure 4-2-7 appear.
PAGE 56
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Username Display the current username  Password Type Display the current password type  Privilege Type Display the current privilege type  Modify Click to modify the local user entry : Delete the current user 4.2.5 Time Settings 4.2.5.1 System Time Configure SNTP on this page. SNTP is an acronym for Simple Network Time Protocol, a network protocol for synchronizing the clocks of computer systems.
PAGE 57
User’s Manual of LRP-822CS/LRP-1622CS SNTP messages between the clients and the server when they are not on the same subnet domain. Disabled: Disable SNTP mode operation.  Manual Time To set time manually.  Year - Select the starting Year.  Month - Select the starting month.  Day - Select the starting day.  Hours - Select the starting hour.  Minutes - Select the starting minute.  Seconds - Select the starting seconds.
PAGE 58
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 59
User’s Manual of LRP-822CS/LRP-1622CS 4.2.5.2 SNTP Server Settings The SNTP Server Configuration screens in Figure 4-2-10 & Figure 4-2-11 appear. Figure 4-2-10 SNTP Setup Page Screenshot The page includes the following fields: Object Description  SNTP Server Address Type the IP address or domain name of the SNTP server  Server Port Type the port number of the SNTP Buttons : Click to apply changes.
PAGE 60
User’s Manual of LRP-822CS/LRP-1622CS 4.2.6 Log Management The LRP Managed Switch log management is provided here. The local logs allow you to configure and limit system messages that are logged to flash or RAM memory. The default is for event levels 0 to 3 to be logged to flash and levels 0 to 6 to be logged to RAM.
PAGE 61
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-2-13 Logging Information Page Screenshot The page includes the following fields: Object Description  Logging Service Display the current logging service status 4.2.6.2 Local Log The switch system local log information is provided here. The local Log screens in Figure 4-2-14 & Figure 4-2-15 appear.
PAGE 62
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 63
User’s Manual of LRP-822CS/LRP-1622CS 4.2.6.3 Remote Syslog Configure remote syslog on this page. The Remote Syslog page allows you to configure the logging of messages that are sent to syslog servers or other management stations. You can also limit the event messages sent to only those messages below a specified level. The Remote Syslog screens in Figure 4-2-16 & Figure 4-2-17 appear.
PAGE 64
User’s Manual of LRP-822CS/LRP-1622CS  crit: Critical level of the critical conditions for local log.  error: Error level of the error conditions for local log.  warning: Warning level of the warning conditions for local log.  notice: Notice level of the normal but significant conditions for local log.  info: Informational level of the informational messages for local log.  debug: Debug level of the debugging messages for local log.
PAGE 65
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Target The target of the log view entry. The following target types are supported:  Buffered: Target the buffered of the log view.  File: Target the file of the log view.  Severity The severity of the log view entry. The following severity types are supported:  emerg: Emergency level of the system unstable for log view.  alert: Alert level of the immediate action needed for log view.
PAGE 66
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-2-20 Logging Messages Page Screenshot The page includes the following fields: Object Description  No. This is the number for logs  Timestamp Display the time of log  Category Display the category type  Severity Display the severity type  Message Display the log message Buttons : Click to clear the log. : Click to refresh the log.
PAGE 67
User’s Manual of LRP-822CS/LRP-1622CS 4.2.7 SNMP Management 4.2.7.1 SNMP Overview The Simple Network Management Protocol (SNMP) is an application layer protocol that facilitates the exchange of management information between network devices. It is part of the Transmission Control Protocol/Internet Protocol (TCP/IP) protocol suite. SNMP enables network administrators to manage network performance, find and solve network problems, and plan for network growth.
PAGE 68
User’s Manual of LRP-822CS/LRP-1622CS 4.2.7.2 SNMP System Information Configure SNMP setting on this page. The SNMP System global setting screens in Figure 4-2-21 & Figure 4-2-22 appear. Figure 4-2-21 SNMP Global Setting Page Screenshot The page includes the following fields: Object Description  Status Indicates the SNMP mode operation. Possible modes are: Enabled: Enable SNMP mode operation. Disabled: Disable SNMP mode operation. Buttons : Click to apply changes.
PAGE 69
User’s Manual of LRP-822CS/LRP-1622CS 4.2.7.3 SNMP View Configure SNMPv3 view table on this page. The entry index keys are View Name and OID Subtree. The SNMPv3 View Table Setting screens in Figure 4-2-23 and Figure 4-2-24 appear. Figure 4-2-23 SNMPv3 View Table Setting Page Screenshot The page includes the following fields: Object Description  View Name A string identifying the view name that this entry should belong to. The allowed string length is 1 to 16.
PAGE 70
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-2-24 SNMP View Table Status Page Screenshot The page includes the following fields: Object Description  View Name Display the current SNMP view name  Subtree OID Display the current SNMP subtree OID  OID Mask Display the current SNMP OID mask  View Type Display the current SNMP view type  Action : Delete the view table entry.
PAGE 71
User’s Manual of LRP-822CS/LRP-1622CS 4.2.7.4 SNMP Access Group Configure SNMPv3 access group on this page. The entry index keys are Group Name, Security Model and Security Level. The SNMPv3 Access Group Setting screens in Figure 4-2-25 & Figure 4-2-26 appear. Figure 4-2-25 SNMPv3 Access Group Setting Page Screenshot The page includes the following fields: Object Description  Group Name A string identifying the group name that this entry should belong to. The allowed string length is 1 to 16.
PAGE 72
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to add a new access entry. : Check to delete the entry.
PAGE 73
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Community Name Indicates the community read/write access string to permit access to SNMP agent. The allowed string length is 0 to 16.  Community Mode Indicates the SNMP community supported mode. Possible versions are:  Basic: Set SNMP community mode supported version 1 and 2c.  Advanced: Set SNMP community mode supported version 3.
PAGE 74
User’s Manual of LRP-822CS/LRP-1622CS 4.2.7.6 SNMP User Configure SNMPv3 users table on this page. Each SNMPv3 user is defined by a unique name. Users must be configured with a specific security level and assigned to a group. The SNMPv3 group restricts users to a specific read, write, and notify view. The entry index key is User Name. The SNMPv3 User Setting screens in Figure 4-2-29 & Figure 4-2-30 appear.
PAGE 75
User’s Manual of LRP-822CS/LRP-1622CS protocol are:  None: None privacy protocol.  DES: An optional flag to indicate that this user using DES authentication protocol.  Encryption Key A string identifying the privacy pass phrase. The allowed string length is 8 to 16. Buttons : Click to add a new user entry.
PAGE 76
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Server Address Indicates the SNMP trap destination address. It allow a valid IP address in dotted decimal notation ('x.y.z.w'). It can also represent a legally valid IPv4 address. For example, '::192.1.2.34'.  SNMP Version Indicates the SNMP trap supported version. Possible versions are:  SNMP v1: Set SNMP trap supported version 1.  SNMP v2c: Set SNMP trap supported version 2c.
PAGE 77
User’s Manual of LRP-822CS/LRP-1622CS 4.2.7.9 SNMPv3 Notification Recipients Configure SNMPv3 notification recipients on this page. The SNMPv1, 2 Notification Recipients screens in Figure 4-2-33 & Figure 4-2-34 appear. Figure 4-2-33 SNMPv3 Notification Recipients Page Screenshot The page includes the following fields: Object Description  Server Address Indicates the SNMP trap destination address. It allows a valid IP address in dotted decimal notation ('x.y.z.w').
PAGE 78
User’s Manual of LRP-822CS/LRP-1622CS  User Name Display the current user name  UDP Port Display the current UDP port  Time Out Display the current time out  Retries Display the current retry times  Action : Delete the SNMPv3 host entry 4.2.7.10 SNMP Engine ID Configure SNMPv3 Engine ID on this page. The entry index key is Engine ID. The remote engine ID is used to compute the security digest for authenticating and encrypting packets sent to a user on the remote host.
PAGE 79
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  User Default Display the current status  Engine ID Display the current engine ID 4.2.7.11 SNMP Remote Engine ID Configure SNMPv3 remote Engine ID on this page. The SNMPv3 Remote Engine ID Setting screens in Figure 4-2-37 & Figure 4-2-38 appear.
PAGE 80
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Remote IP Address Display the current remote IP address  Engine ID Display the current engine ID  Action : Delete the remote IP address entry 4.3 Port Management Use the Port Menu to display or configure the LRP Managed Switch's ports.
PAGE 81
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select Select port number from this drop-down list.  Enabled Indicates the port state operation. Possible states are: Enabled - Start up the port manually. Disabled – Shut down the port manually.  Speed Select any available link speed for the given switch port. Draw the menu bar to select the mode.  Duplex  Auto - Setup Auto negotiation.  Auto-10M - Setup 10M Auto negotiation.
PAGE 82
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-3-2A Port Status Page Screenshot The page includes the following fields: Object Description  Port This is the logical port number for this row  Description Click to indicate the port name  Enable State Display the current port state  Link Status Display the current link status  Speed Display the current speed status of the port  Duplex Display the current duplex status of the port  Flow Control Configuration Display the current flow contr
PAGE 83
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select Select port number from this drop-down list.  Enabled Indicates the port state operation. Possible state are: Enabled - Start up the port manually. Disabled – Shut down the port manually. Buttons : Click to apply changes.
PAGE 84
User’s Manual of LRP-822CS/LRP-1622CS 4.3.3 Port Counters This page provides an overview of traffic and trunk statistics for all switch ports. The Port Statistics screens in Figure 4-3-3, Figure 4-3-4, Figure 4-3-5 & Figure 4-3-6 appear. Figure 4-3-3 Port MIB Counters Page Screenshot The page includes the following fields: Object Description  Port Select port number from this drop-down list.  Mode Select port counters mode.
PAGE 85
User’s Manual of LRP-822CS/LRP-1622CS Object Description  Received Octets The total number of octets received on the interface, including framing characters.  Received Unicast The number of subnetwork-unicast packets delivered to a higher-layer protocol. Packets  Received Unknown Unicast Packets  Received Discarded Packets The number of packets received via the interface which is discarded because of an unknown or unsupported protocol.
PAGE 86
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-3-5 Ethernet link Counters Page Screenshot Object Description  Alignment Errors The number of alignment errors (missynchronized data packets).  FCS Errors A count of frames received on a particular interface that are an integral number of octets in length but do not pass the FCS check. This count does not include frames received with frame-too-long or frame-too-short error.
PAGE 87
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-3-6 RMON Counters Page Screenshot Object Description  Drop Events The total number of events in which packets were dropped due to lack of resources.  Octets The total number of octets received and transmitted on the interface, including framing characters.  Packets The total number of packets received and transmitted on the interface.  Broadcast Packets The total number of good frames received that were directed to the broadcast address.
PAGE 88
User’s Manual of LRP-822CS/LRP-1622CS  Fragments The total number of frames received that were less than 64 octets in length (excluding framing bits, but including FCS octets) and had either an FCS or alignment error.  Jabbers The total number of frames received that were longer than 1518 octets (excluding framing bits, but including FCS octets), and had either an FCS or alignment error.  Collisions The best estimate of the total number of collisions on this Ethernet segment.
PAGE 89
User’s Manual of LRP-822CS/LRP-1622CS 4.3.4 Bandwidth Utilization The Bandwidth Utilization page displays the percentage of the total available bandwidth being used on the ports. Bandwidth utilization statistics can be viewed using a line graph. The Bandwidth Utilization screen in Figure 4-3-7 appears.
PAGE 90
User’s Manual of LRP-822CS/LRP-1622CS 4.3.5 Port Mirroring Configure port Mirroring on this page. This function provides monitoring of network traffic that forwards a copy of each incoming or outgoing packet from one port of a network switch to another port where the packet can be studied. It enables the manager to keep close track of switch performance and alter it if necessary.
PAGE 91
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-3-9 Port Mirroring Settings Page Screenshot The page includes the following fields: Object Description  Session ID Set the port mirror session ID. Possible ID are: 1 to 4.  Monitor Session State Enable or disable the port mirroring function.  Destination Port Select the port to mirror destination port.  Allow-ingress Frames from ports that have either source (RX) or destination (TX) mirroring enabled are mirrored to this port.
PAGE 92
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Session ID Display the session ID  Destination Port This is the mirroring port entry  Ingress State Display the ingress state  Source TX Port Display the current TX ports  Source RX Port Display the current RX ports 4.3.6 Jumbo Frame This page provides to select the maximum frame size allowed for the switch port. The Jumbo Frame screens in Figure 4-3-11 & Figure 4-3-12 appear.
PAGE 93
User’s Manual of LRP-822CS/LRP-1622CS Jumbo Frame is available for GE1~GE4 only. 4.3.7 Port Error Disabled Configuration This page provides to set port error disable function. The Port Error Disable Configuration screens in Figure 4-3-13 & Figure 4-3-14 appear.
PAGE 94
User’s Manual of LRP-822CS/LRP-1622CS violation. Violation  DHCP Rate Limit Enable or disable the port error disabled function to check status by DHCP rate limit  ARP Rate Limit Enable or disable the port error disabled function to check status by ARP rate limit Buttons : Click to apply changes.
PAGE 95
User’s Manual of LRP-822CS/LRP-1622CS 4.3.8 Port Error Disabled This page provides disable that transitions a port into error disable and the recovery options. The ports were disabled by some protocols such as BPDU Guard, Loopback and UDLD. The Port Error Disable screen in Figure 4-3-15 appears.
PAGE 96
User’s Manual of LRP-822CS/LRP-1622CS For protected port group to be applied, the LRP Managed Switch must first be configured for standard VLAN operation.
PAGE 97
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-3-16 Protected Ports Settings Page Screenshot The page includes the following fields: Object Description  Port List Select port number from this drop-down list.  Port Type Displays protected port types. - Protected: A single stand-alone VLAN that contains one promiscuous port and one or more isolated (or host) ports. This VLAN conveys traffic between the isolated ports and a lone promiscuous port.
PAGE 98
User’s Manual of LRP-822CS/LRP-1622CS 4.3.10 EEE What is EEE EEE is a power saving option that reduces the power usage when there is low or no traffic utilization. EEE works by powering down circuits when there is no traffic. When a port gets data to be transmitted all circuits are powered up. The time it takes to power up the circuits is named wakeup time. The default wakeup time is 17 us for 1Gbit links and 30 us for other link speeds.
PAGE 99
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-3-19 EEE Enable Status Page Screenshot The page includes the following fields: Object Description  Port The switch port number of the logical port  EEE State Display the current EEE state EEE is available for GE1~GE2 only. 4.3.11 SFP Module Information LRP Managed Switch has supported the SFP module with digital diagnostics monitoring (DDM) function, this feature is also known as digital optical monitoring (DOM).
PAGE 100
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select port number from this drop-down list Figure 4-3-21 Fiber Port Status Page Screenshot The page includes the following fields: Object Description  OE-Present Display the current SFP OE-present  LOS Display the current SFP LOS 100
PAGE 101
User’s Manual of LRP-822CS/LRP-1622CS 4.3.11.1 SFP Module Detail Status The SFP Module Detail Status screen in Figure 4-3-22 appears.
PAGE 102
User’s Manual of LRP-822CS/LRP-1622CS 4.4 Link Aggregation Port Aggregation optimizes port usage by linking a group of ports together to form a single Link Aggregated Groups (LAGs). Port Aggregation multiplies the bandwidth between the devices, increases port flexibility, and provides link redundancy. Each LAG is composed of ports of the same speed, set to full-duplex operations. Ports in a LAG can be of different media types (UTP/Fiber, or different fiber types) provided they operate at the same speed.
PAGE 103
User’s Manual of LRP-822CS/LRP-1622CS The Link Aggregation Control Protocol (LACP) provides a standardized means for exchanging information between Partner Systems that require high-speed redundant links. Link aggregation lets you group up to eight consecutive ports into a single dedicated connection. This feature can expand bandwidth to a device on the network. LACP operation requires full-duplex mode. For more detailed information, refer to the IEEE 802.3ad standard.
PAGE 104
User’s Manual of LRP-822CS/LRP-1622CS 4.4.1 LAG Setting This page allows configuring load balance algorithm configuration settings. The LAG Setting screens in Figure 4-4-2 & Figure 4-4-3 appear. Figure 4-4-2 LAG Setting Page Screenshot The page includes the following fields: Object Description  Load Balance Select load balance algorithm mode: Algorithm  MAC Address: The MAC address can be used to calculate the port for the frame.
PAGE 105
User’s Manual of LRP-822CS/LRP-1622CS 4.4.2 LAG Management This page is used to configure the LAG management. The LAG Management screens in Figure 4-4-4 & Figure 4-4-5 appear. Figure 4-4-4 LAG Management Page Screenshot The page includes the following fields: Object Description  LAG Select LAG number from this drop-down list  Name Indicates each LAG name  Type Indicates the trunk type Static: Force aggregated selected ports to be a trunk group.
PAGE 106
User’s Manual of LRP-822CS/LRP-1622CS  Link State Display the link state  Active Member Display the active member  Standby Member Display the standby member  Modify Click to modify LAG configuration 4.4.3 LAG Port Setting This page allows setting configuration for each LAG. The LAG Port Setting screens in Figure 4-4-6 & Figure 4-4-7 appear.
PAGE 107
User’s Manual of LRP-822CS/LRP-1622CS frames on the port are transmitted. The RX and TX settings are determined by the result of the last Auto-Negotiation. Check the configured column to use flow control. This setting is related to the setting for Configured Link Speed. Buttons : Click to apply changes.
PAGE 108
User’s Manual of LRP-822CS/LRP-1622CS 4.4.4 LACP Setting This page is used to configure the LACP system priority setting. The LACP Setting screens in Figure 4-4-8 & Figure 4-4-9 appear. Figure 4-4-8 LACP Setting Page Screenshot The page includes the following fields: Object Description  System Priority A value which is used to identify the active LACP. The LRP Managed Switch with the lowest value has the highest priority and is selected as the active LACP peer of the trunk group.
PAGE 109
User’s Manual of LRP-822CS/LRP-1622CS 4.4.5 LACP Port Setting This page is used to configure the LACP port setting. The LACP Port Setting screens in Figure 4-4-10 & Figure 4-4-11 appear. Figure 4-4-10 LACP Port Setting Page Screenshot The page includes the following fields: Object Description  Port Select Select port number from this drop-down list to set LACP port setting.  Priority The Priority controls the priority of the port.
PAGE 110
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Name The switch port number of the logical port  Priority Display the current LACP priority parameter  Timeout Display the current timeout parameter 4.4.6 LAG Status This page displays LAG status. The LAG Status screens in Figure 4-4-12 & Figure 4-4-13 appear.
PAGE 111
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Trunk Display the current trunk ID  Port Display the current port number  PartnerSysId The system ID of link partner. This field would be updated when the port receives LACP PDU from link partner  PnKey Port key of partner. This field would be updated when the port receives LACP PDU from link partner  AtKey Port key of actor. The key is designed to be the same as trunk ID.
PAGE 112
User’s Manual of LRP-822CS/LRP-1622CS “Expired”. The contents could be true or false. If the contents are false, the web will show “_”; if the contents are true, the Web shows “A”, “T”, “G”, “S”, “C”, “D”, “F” and “E” for each content respectively.
PAGE 113
User’s Manual of LRP-822CS/LRP-1622CS 4.5 VLAN 4.5.1 VLAN Overview A Virtual Local Area Network (VLAN) is a network topology configured according to a logical scheme rather than the physical layout. VLAN can be used to combine any collection of LAN segments into an autonomous user group that appears as a single LAN. VLAN also logically segment the network into different broadcast domains so that packets are forwarded only between ports within the VLAN.
PAGE 114
User’s Manual of LRP-822CS/LRP-1622CS This section has the following items:  Management VLAN Configures the management VLAN  Create VLAN Creates the VLAN group  Interface Settings Configures mode and PVID on the VLAN port  Port to VLAN Configures the VLAN membership  Port VLAN Membership Displays the VLAN membership  Protocol VLAN Group Configures the protocol VLAN group Setting  Protocol VLAN Port Configures the protocol VLAN port setting Setting  GVRP Setting Configures GVRP
PAGE 115
User’s Manual of LRP-822CS/LRP-1622CS ■ IEEE 802.1Q Standard IEEE 802.1Q (tagged) VLAN are implemented on the Switch. 802.1Q VLAN require tagging, which enables them to span the entire network (assuming all switches on the network are IEEE 802.1Q-compliant). VLAN allow a network to be segmented in order to reduce the size of broadcast domains. All packets entering a VLAN will only be forwarded to the stations (over IEEE 802.
PAGE 116
User’s Manual of LRP-822CS/LRP-1622CS The Ether Type and VLAN ID are inserted after the MAC source address, but before the original Ether Type/Length or Logical Link Control. Because the packet is now a bit longer than it was originally, the Cyclic Redundancy Check (CRC) must be recalculated. Adding an IEEE802.1Q Tag Dest. Addr. Src. Addr. Length/E. type Dest. Addr. Src. Addr. E. type Priority Tag CFI Data Old CRC Length/E.
PAGE 117
User’s Manual of LRP-822CS/LRP-1622CS ■ Assigning Ports to VLANs Before enabling VLANs for the switch, you must first assign each port to the VLAN group(s) in which it will participate. By default all ports are assigned to VLAN 1 as untagged ports. Add a port as a tagged port if you want it to carry traffic for one or more VLANs, and any intermediate network devices or the host at the other end of the connection supports VLANs.
PAGE 118
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Management VLAN Provide the managed VLAN ID Buttons : Click to apply changes. Figure 4-5-2 Management VLAN State Page Screenshot The page includes the following fields: Object Description  Management VLAN Display the current management VLAN. 4.5.4 Create VLAN Create/delete VLAN on this page. The screens in Figure 4-5-3 & Figure 4-5-4 appear.
PAGE 119
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  VLAN List Indicates the ID of this particular VLAN.  VLAN Action This column allows users to add or delete VLAN s.  VLAN Name Prefix Indicates the name of this particular VLAN. Buttons : Click to apply changes.
PAGE 120
User’s Manual of LRP-822CS/LRP-1622CS  Tagged: Ports with tagging enabled will put the VID number, priority and other VLAN information into the header of all packets that flow into those ports. If a packet has previously been tagged, the port will not alter the packet, thus keeping the VLAN information intact. The VLAN information in the tag can then be used by other 802.1Q compliant devices on the network to make packet-forwarding decisions.  Untagged: Ports with untagging enabled will strip the 802.
PAGE 121
User’s Manual of LRP-822CS/LRP-1622CS The LRP Managed Switch supports multiple VLAN tags and can therefore be used in MAN applications as a provider bridge, aggregating traffic from numerous independent customer LANs into the MAN (Metro Access Network) space. One of the purposes of the provider bridge is to recognize and use VLAN tags so that the VLANs in the MAN space can be used independent of the customers’ VLANs.
PAGE 122
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select Select port number from this drop-down list to set VLAN port setting.  Interface VLAN Mode Set the port in access, trunk, hybrid and tunnel mode.  Trunk means the port allows traffic of multiple VLANs.  Access indicates the port belongs to one VLAN only.  Hybrid means the port allows the traffic of multi-VLANs to pass in tag or untag mode.  Tunnel configures IEEE 802.
PAGE 123
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 124
User’s Manual of LRP-822CS/LRP-1622CS 4.5.6 Port to VLAN Use the VLAN Static Table to configure port members for the selected VLAN index. This page allows you to add and delete port members of each VLAN. The screen in Figure 4-5-7 appears. Figure 4-5-7 Port to VLAN Setting Page Screenshot The page includes the following fields: Object Description  VLAN ID Select VLAN ID from this drop-down list to assign VLAN membership.  Port The switch port number of the logical port.
PAGE 125
User’s Manual of LRP-822CS/LRP-1622CS carry VLAN or CoS information. Note that an interface must be assigned to at least one group as an untagged port.  PVID Display the current PVID Buttons : Click to apply changes. 4.5.7 Port VLAN Membership This page provides an overview of membership status for VLAN users. The VLAN Membership Status screen in Figure 4-5-8 appears.
PAGE 126
User’s Manual of LRP-822CS/LRP-1622CS 4.5.8 Protocol VLAN Group Setting The network devices required to support multiple protocols cannot be easily grouped into a common VLAN. This may require non-standard devices to pass traffic between different VLANs in order to encompass all the devices participating in a specific protocol. This kind of configuration deprives users of the basic benefits of VLANs, including security and easy accessibility.
PAGE 127
User’s Manual of LRP-822CS/LRP-1622CS from the preceding Frame Type selection menu. (0x0600-0xFFFE) Valid values for frame type ranges from 0x0600-0xfffe Buttons : Click to apply changes. Figure 4-5-10 Protocol VLAN Group State Page Screenshot The page includes the following fields: Object Description  Group ID Display the current group ID  Frame Type Display the current frame type  Protocol Value Display the current protocol value  Delete Click to delete the group ID entry 4.5.
PAGE 128
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select port from this drop-down list to assign protocol VLAN port  Group Select group ID from this drop-down list to protocol VLAN group  VLAN VLAN ID assigned to the Special Protocol VLAN Group Buttons : Click to add protocol VLAN port entry.
PAGE 129
User’s Manual of LRP-822CS/LRP-1622CS 4.5.10 GVRP Setting GARP VLAN Registration Protocol (GVRP) defines a way for switches to exchange VLAN information in order to register VLAN members on ports across the network. VLANs are dynamically configured based on join messages issued by host devices and propagated throughout the network. GVRP must be enabled to permit automatic VLAN registration, and to support VLANs which extend beyond the local switch.
PAGE 130
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  GVRP Controls whether GVRP is enabled or disabled on this switch.  Join Timeout The interval between transmitting requests/queries to participate in a VLAN group. Range: 20-16375 centiseconds Default: 20 centiseconds  Leave Timeout The interval a port waits before leaving a VLAN group. This time should be set to more than twice the join time.
PAGE 131
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  GVRP Status Display the current GVRP status  Join Timeout Display the current join timeout parameter  Leave Timeout Display the current leave timeout parameter  LeaveAll Timeout Display the current leaveall timeout parameter 4.5.11 GVRP Port Setting The GVRP Port Setting/Status screens in Figure 4-5-15 & Figure 4-5-16 appear.
PAGE 132
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 133
User’s Manual of LRP-822CS/LRP-1622CS 4.5.12 GVRP VLAN The GVRP VLAN Database screen in Figure 4-5-17 appears. Figure 4-5-17 GVRP VLAN Database Status Page Screenshot The page includes the following fields: Object Description  VLAN ID Display the current VLAN ID  Member Ports Display the current member ports  Dynamic Ports Display the current dynamic ports  VLAN Type Display the current VLAN type 4.5.
PAGE 134
User’s Manual of LRP-822CS/LRP-1622CS  Empty (Rx/Tx) Display the current empty (TX/RX) packets  Leave Empty (Rx/Tx) Display the current leave empty (TX/RX) packets  Join In (Rx/Tx) Display the current join in (TX/RX) packets  Leave In (Rx/Tx) Display the current leave in (TX/RX) packets  LeaveAll (Rx/Tx) Display the current leaveall (TX/RX) packets Figure 4-5-19 GVRP Port Error Statistics Page Screenshot The page includes the following fields: Object Description  Port The switch port num
PAGE 135
User’s Manual of LRP-822CS/LRP-1622CS 4.5.14 VLAN setting example: - Separate VLANs - 802.1Q VLAN Trunk 4.5.14.1 Two Separate 802.1Q VLANs The diagram shows how the LRP Managed Switch handles Tagged and Untagged traffic flow for two VLANs. VLAN Group 2 and VLAN Group 3 are separated VLANs. Each VLAN isolates network traffic so only members of the VLAN receive traffic from the same VLAN members.
PAGE 136
User’s Manual of LRP-822CS/LRP-1622CS  2. [PC-4],[PC-5] and [PC-6] receive no packet. 3. While the packet leaves Port-2, it will be stripped away its tag becoming an untagged packet. 4. While the packet leaves Port-3, it will be kept as a tagged packet with VLAN Tag=2. Tagged packet entering VLAN 2 1. While [PC-3] transmits a tagged packet with VLAN Tag=2 entering Port-3. [PC-1] and [PC-2] will receive the packet through Port-1 and Port-2. 2.
PAGE 137
User’s Manual of LRP-822CS/LRP-1622CS 2. Assign VLAN mode and PVID to each port: Port-1,Port-2 and Port-3 : VLAN Mode = Hybrid, PVID=2 Port-4,Port-5 and Port-6 : VLAN Mode = Hybrid, PVID=3 3. Assign Tagged/Untagged to each port: VLAN ID = 2: Port-1 & 2 = Untagged, Port-3 = Tagged, Port -4~6 = Excluded. VLAN ID = 3: Port-4 & 5 = Untagged, Port -6 = Tagged, Port-1~3 = Excluded.
PAGE 138
User’s Manual of LRP-822CS/LRP-1622CS 4.5.14.2 VLAN Trunking between Two 802.1Q Aware Switches In most cases, they are used for “Uplink” to other switches. VLANs are separated at different switches, but they need to access other switches within the same VLAN group. The screen in Figure 4-5-21 appears. Setup steps 1.
PAGE 139
User’s Manual of LRP-822CS/LRP-1622CS 2. Assign VLAN mode and PVID to each port: Port-1,Port-2 and Port-3 : VLAN Mode = Hybrid, PVID=2 Port-4,Port-5 and Port-6 : VLAN Mode = Hybrid, PVID=3 Port-7 : VLAN Mode = Hybrid, PVID=1 3. Assign Tagged/Untagged to each port: VLAN ID = 1: Port-1~6 = Untagged, Port -7 = Excluded. VLAN ID = 2: Port-1 & 2 = Untagged, Port-3 & 7 = Tagged, Port -4~6 = Excluded.
PAGE 140
User’s Manual of LRP-822CS/LRP-1622CS VLAN ID = 3: Port-4 & 5 = Untagged, Port -6 & 7= Tagged, Port-1~3 = Excluded.
PAGE 141
User’s Manual of LRP-822CS/LRP-1622CS 4.6 Spanning Tree Protocol 4.6.1 Theory The Spanning Tree Protocol can be used to detect and disable network loops, and to provide backup links between switches, bridges or routers. This allows the switch to interact with other bridging devices in your network to ensure that only one route exists between any two stations on the network, and provide backup links which automatically take over when a primary link goes down.
PAGE 142
User’s Manual of LRP-822CS/LRP-1622CS  The path cost to the root from the transmitting port  The port identifier of the transmitting port The switch sends BPDUs to communicate and construct the spanning-tree topology. All switches connected to the LAN on which the packet is transmitted will receive the BPDU. BPDUs are not directly forwarded by the switch, but the receiving switch uses the information in the frame to calculate a BPDU, and, if the topology changes, initiates a BPDU transmission.
PAGE 143
User’s Manual of LRP-822CS/LRP-1622CS  From learning to forwarding or to disabled  From forwarding to disabled  From disabled to blocking Figure 4-6-1 STP Port State Transitions You can modify each port state by using management software. When you enable STP, every port on every switch in the network goes through the blocking state and then transitions through the states of listening and learning at power up. If properly configured, each port stabilizes to the forwarding or blocking state.
PAGE 144
User’s Manual of LRP-822CS/LRP-1622CS The following are the user-configurable STP parameters for the switch level: Parameter Description Default Value Bridge Identifier (Not user A combination of the User-set priority and the switch’s 32768 + MAC configurable MAC address.
PAGE 145
User’s Manual of LRP-822CS/LRP-1622CS Priority – A Priority for the switch can be set from 0 to 65535. 0 is equal to the highest Priority. Hello Time – The Hello Time can be from 1 to 10 seconds. This is the interval between two transmissions of BPDU packets sent by the Root Bridge to tell all other Switches that it is indeed the Root Bridge. If you set a Hello Time for your Switch, and it is not the Root Bridge, the set Hello Time will be used if and when your Switch becomes the Root Bridge.
PAGE 146
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-6-2 Before Applying the STA Rules In this example, only the default STP values are used.
PAGE 147
User’s Manual of LRP-822CS/LRP-1622CS The switch with the lowest Bridge ID (switch C) was elected the root bridge, and the ports were selected to give a high port cost between switches B and C. The two (optional) Gigabit ports (default port cost = 20,000) on switch A are connected to one (optional) Gigabit port on both switch B and C. The redundant link between switch B and C is deliberately chosen as a 100 Mbps Fast Ethernet link (default port cost = 200,000).
PAGE 148
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-6-4 Global Settings Page Screenshot The page includes the following fields: Object Description  Enable Enable or disable the STP function. The default value is "Disabled".  BPDU Forward Set the BPDU forward method.  PathCost Method The path cost method is used to determine the best path between devices. Therefore, lower values should be assigned to ports attached to faster media, and higher values assigned to ports with slower media.
PAGE 149
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  STP Display the current STP state  BPDU Forward Display the current BPDU forward mode  Cost Method Display the current cost method  Force Version Display the current force version  Configuration Name Display the current configuration name  Configuration Revision Display the current configuration revision 4.6.3 STP Port Setting This page allows you to configure per port STP settings.
PAGE 150
User’s Manual of LRP-822CS/LRP-1622CS  BPDU Guard Control whether a port explicitly configured as Edge will disable itself upon reception of a BPDU. The port will enter the error-disabled state, and will be removed from the active topology.  P2P MAC Controls whether the port connects to a point-to-point LAN rather than a shared medium. This can be automatically determined, or forced either true or false. Transition to the forwarding state is faster for point-to-point LANs than for shared media.
PAGE 151
User’s Manual of LRP-822CS/LRP-1622CS Port Type Link Type IEEE 802.1w-2001 Ethernet Half Duplex 2,000,000 Full Duplex 1,000,000 Trunk 500,000 Half Duplex 200,000 Full Duplex 100,000 Trunk 50,000 Full Duplex 10,000 Trunk 5,000 Fast Ethernet Gigabit Ethernet Table 4-6-3 Default STP Path Costs Figure 4-6-7 STP Port Status Page Screenshot The page includes the following fields: Object Description  Port The switch port number of the logical STP port.
PAGE 152
User’s Manual of LRP-822CS/LRP-1622CS 4.6.4 CIST Instance Setting This Page allows you to configure CIST instance settings. The CIST Instance Setting and Information screens in Figure 4-6-8 & Figure 4-6-9 appear. Figure 4-6-8: CIST Instance Setting Page Screenshot The page includes the following fields: Object Description  Priority Controls the bridge priority. Lower numeric values have better priority.
PAGE 153
User’s Manual of LRP-822CS/LRP-1622CS  Tx Hold Count The number of BPDU's a bridge port can send per second. When exceeded, transmission of the next BPDU will be delayed. Valid values are in the range 1 to 10 BPDU's per second.  Hello Time The time that controls the switch to send out the BPDU packet to check STP current status. Enter a value between 1 through 10. Buttons : Click to apply changes.
PAGE 154
User’s Manual of LRP-822CS/LRP-1622CS 4.6.5 CIST Port Setting This page allows you to configure per port CIST priority and cost. The CIST Port Setting and Status screens in Figure 4-6-10 & Figure 4-6-11 appear. Figure 4-6-10 CIST Port Setting Page Screenshot The page includes the following fields: Object Description  Port Select Select port number from this drop-down list.  Priority Controls the port priority. This can be used to control priority of ports having identical port cost. (See above).
PAGE 155
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-6-11 CIST Port Status Page Screenshot The page includes the following fields: Object Description  Port The switch port number of the logical STP port  Identifier (Priority / Port ID) Display the current identifier (Priority / Port ID)  External Path Cost Conf/Oper Display the current external path cost conf/oper  Internal Path Cost Conf/Oper Display the current internal path cost/oper  Designated Root Bridge Display the current designated root
PAGE 156
User’s Manual of LRP-822CS/LRP-1622CS 4.6.6 MST Instance Configuration This page allows the user to configure MST Instance Configuration. The MST Instance Setting, Information and Status screens in Figure 4-6-12, Figure 4-6-13 & Figure 4-6-14 appear. Figure 4-6-12 MST Instance Setting Page Screenshot The page includes the following fields: Object Description  MSTI ID Allow to assign MSTI ID. The range for the MSTI ID is 1-15.  VLAN List (1-4096) Allow to assign VLAN list to special MSTI ID.
PAGE 157
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  MSTI Display the current MSTI entry  Status Display the current MSTI status  VLAN List Display the current VLAN list  VLAN Count Display the current VLAN count  Priority Display the current MSTI priority Figure 4-6-14 MST Instance Status Page Screenshot 157
PAGE 158
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  MSTI ID Display the MSTI ID.  Regional Root Bridge Display the current designated root bridge  Internal Root Cost Display the current internal root cost  Designated Bridge Display the current designated bridge  Root Port Display the current root port.  Max. Age Display the current max. age.  Forward Delay Display the current forward delay.
PAGE 159
User’s Manual of LRP-822CS/LRP-1622CS 4.6.7 MST Port Setting This page allows the user to inspect the current STP MSTI port configurations, and possibly change them as well. A MSTI port is a virtual port, which is instantiated separately for each active CIST (physical) port for each MSTI instance configured and applicable for the port. The MSTI instance must be selected before displaying actual MSTI port configuration options. This page contains MSTI port settings for physical and aggregated ports.
PAGE 160
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 161
User’s Manual of LRP-822CS/LRP-1622CS 4.6.8 STP Statistics This page displays STP statistics. The STP statistics screen in Figure 4-6-17 appears.
PAGE 162
User’s Manual of LRP-822CS/LRP-1622CS 4.7 Multicast This section has the following items:  Properties Configures multicast properties  IGMP Snooping Configures IGMP snooping settings  IGMP Snooping Statistics Displays the IGMP snooping statistics  MLD Snooping Configures MLD snooping settings  MLD Snooping Statistics Displays the MLD snooping statistics  Multicast Throttling Configures multicast throttling setting Setting  Multicast Filter Configures multicast filter 4.7.
PAGE 163
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 164
User’s Manual of LRP-822CS/LRP-1622CS 4.7.2 IGMP Snooping The Internet Group Management Protocol (IGMP) lets host and routers share information about multicast groups memberships. IGMP snooping is a switch feature that monitors the exchange of IGMP messages and copies them to the CPU for feature processing. The overall purpose of IGMP Snooping is to limit the forwarding of multicast frames to only ports that are a member of the multicast group.
PAGE 165
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-7-4 Multicast Flooding Figure 4-7-5 IGMP Snooping Multicast Stream Control 165
PAGE 166
User’s Manual of LRP-822CS/LRP-1622CS IGMP Versions 1 and 2 Multicast groups allow members to join or leave at any time. IGMP provides the method for members and multicast routers to communicate when joining or leaving a multicast group. IGMP version 1 is defined in RFC 1112. It has a fixed packet size and no optional data.
PAGE 167
User’s Manual of LRP-822CS/LRP-1622CS message, and query messages that are specific to a given group. The states a computer will go through to join or to leave a multicast group are shown below: Figure 4-7-6 IGMP State Transitions  IGMP Querier – A router, or multicast-enabled switch, can periodically ask their hosts if they want to receive multicast traffic.
PAGE 168
User’s Manual of LRP-822CS/LRP-1622CS 4.7.2.1 IGMP Setting This page provides IGMP Snooping related configuration. Most of the settings are global, whereas the Router Port configuration is related to the current unit, as reflected by the page header. The IGMP Snooping Setting and Information screens in Figure 4-7-7, Figure 4-7-8 & Figure 4-7-9 appear.
PAGE 169
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  IGMP Snooping Status Display the current IGMP snooping status.  IGMP Snooping Version Display the current IGMP snooping version.  IGMP Snooping V2 Report Display the current IGMP snooping v2 report suppression. Suppression Figure 4-7-9 IGMP Snooping Information Page Screenshot The page includes the following fields: Object Description  Entry No.
PAGE 170
User’s Manual of LRP-822CS/LRP-1622CS 4.7.2.2 IGMP Querier Setting This page provides IGMP Querier Setting. The IGMP Querier Setting screens in Figure 4-7-10 & Figure 4-7-11 appear. Figure 4-7-10 IGMP VLAN Setting Page Screenshot The page includes the following fields: Object Description  VLAN ID Select VLAN ID from this drop-down list.  Querier State Enable or disable the querier state. The default value is "Disabled".
PAGE 171
User’s Manual of LRP-822CS/LRP-1622CS 4.7.2.3 IGMP Static Group Multicast filtering can be dynamically configured using IGMP Snooping and IGMP Query messages as described in above sections. For certain applications that require tighter control, you may need to statically configure a multicast service on the LRP Managed Switch. First add all the ports attached to participating hosts to a common VLAN, and then assign the multicast service to that VLAN group. - Static multicast addresses are never aged out.
PAGE 172
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  VLAN ID Display the current VLAN ID  Group IP Address Display the current group IP address  Member Ports Display the current member ports  Modify Click to edit parameter 4.7.2.4 IGMP Group Table This page provides Multicast Database. The IGMP Group Table screen in Figure 4-7-14 appears.
PAGE 173
User’s Manual of LRP-822CS/LRP-1622CS 4.7.2.5 IGMP Router Setting Depending on your network connections, IGMP snooping may not always be able to locate the IGMP querier. Therefore, if the IGMP querier is a known multicast router/ switch connected over the network to an interface (port or trunk) on your LRP Managed Switch, you can manually configure the interface (and a specified VLAN) to join all the current multicast groups supported by the attached router.
PAGE 174
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  VLAN ID Display the current VLAN ID  Static Ports Display the current static ports  Forbidden Ports Display the current forbidden ports  Modify Click Click to edit parameter to delete the group ID entry 4.7.2.6 IGMP Router Table This page provides Router Table. The Dynamic, Static and Forbidden Router Table screens in Figure 4-7-17, Figure 4-7-18 & Figure 4-7-19 appear.
PAGE 175
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  VLAN ID Display the current VLAN ID  Port Mask Display the current port mask Figure 4-7-19 Forbidden Router Table Page Screenshot The page includes the following fields: Object Description  VLAN ID Display the current VLAN ID  Port Mask Display the current port mask 4.7.2.7 IGMP Forward All This page provides IGMP Forward All. The Forward All screen in Figure 4-7-20 appears.
PAGE 176
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  VLAN ID Select VLAN ID from this drop-down list to assign IGMP membership  Port The switch port number of the logical port  Membership Select IGMP membership for each interface: Forbidden: Interface is forbidden from automatically joining the IGMP via MVR. None: Interface is not a member of the VLAN. Packets associated with this VLAN will not be transmitted by the interface.
PAGE 177
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Total RX Display current total RX  Valid RX Display current valid RX  Invalid RX Display current invalid RX  Other RX Display current other RX  Leave RX Display current leave RX  Report RX Display current report RX  General Query RX Display current general query RX  Special Group Query Display current special group query RX RX  Special Group & Display current special group & source q
PAGE 178
User’s Manual of LRP-822CS/LRP-1622CS 4.7.4 MLD Snooping 4.7.4.1 MLD Setting This page provides MLD Snooping related configuration. Most of the settings are global, whereas the Router Port configuration is related to the current unit, as reflected by the page header. The MLD Snooping Setting, Information and Table screens in Figure 4-7-21, Figure 4-7-22 & Figure 4-7-23 appear.
PAGE 179
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  MLD Snooping Status Display the current MLD snooping status  MLD Snooping Version Display the current MLD snooping version  MLD Snooping Report Display the current MLD snooping report suppression Suppression Figure 4-7-23 MLD Snooping Table Page Screenshot The page includes the following fields: Object Description  Entry No.
PAGE 180
User’s Manual of LRP-822CS/LRP-1622CS 4.7.4.2 MLD Static Group The MLD Static Group configuration screens in Figure 4-7-24 & Figure 4-7-25 appear. Figure 4-7-24 Add MLD Static Group Page Screenshot The page includes the following fields: Object Description  VLAN ID Select VLAN ID from this drop-down list  Group IP Address The IP address for a specific multicast service  Member Ports Select port number from this drop-down list Buttons : Click to add IGMP router port entry.
PAGE 181
User’s Manual of LRP-822CS/LRP-1622CS 4.7.4.3 MLD Group Table This page provides MLD Group Table. The MLD Group Table screen in Figure 4-7-26 appears.
PAGE 182
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  VLAN ID Selects the VLAN to propagate all multicast traffic coming from the attached multicast router  Type Sets the Router port type. The types of Router port as below: Static Forbid  Static Ports Select Specify which ports act as router ports. A router port is a port on the Ethernet switch that leads towards the Layer 3 multicast device or MLD querier.
PAGE 183
User’s Manual of LRP-822CS/LRP-1622CS 4.7.4.5 MLD Router Table This page provides Router Table. The Dynamic, Static and Forbidden Router Table screens in Figure 4-7-29, Figure 4-7-30 & Figure 4-7-31 appear.
PAGE 184
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  VLAN ID Display the current VLAN ID  Port Mask Display the current port mask 4.7.4.6 MLD Forward All This page provides MLD Forward All. The Forward All screen in Figure 4-7-32 appears.
PAGE 185
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes. 4.7.5 MLD Snooping Statics This page provides MLD Snooping Statics. The MLD Snooping Statics screen in Figure 4-7-33 appears.
PAGE 186
User’s Manual of LRP-822CS/LRP-1622CS RX  Special Group & Display the current special group & source query RX Source Query RX  Leave TX Display the current leave TX  Report TX Display the current report TX  General Query TX Display the current general query TX  Special Group Query Display the current special group query TX TX  Special Group & Display the current special group & source query TX Source Query TX Buttons : Click to clear the MLD Snooping Statistics.
PAGE 187
User’s Manual of LRP-822CS/LRP-1622CS 4.7.6 Multicast Throttling Setting Multicast throttling sets a maximum number of multicast groups that a port can join at the same time. When the maximum number of groups is reached on a port, the switch can take one of two actions; either “deny” or “replace”. If the action is set to deny, any new multicast join reports will be dropped. If the action is set to replace, the switch randomly removes an existing group and replaces it with the new multicast group.
PAGE 188
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-7-35 IGMP Port Max Groups Information Page Screenshot The page includes the following fields: Object Description  Port The switch port number of the logical port  Max Groups Display the current Max groups  Action Display the current action 4.7.7 Multicast Filter In certain switch applications, the administrator may want to control the multicast services that are available to end users.
PAGE 189
User’s Manual of LRP-822CS/LRP-1622CS 4.7.7.1 Multicast Profile Setting The Add Profile and Profile Status screens in Figure 4-7-36 & Figure 4-7-37 appear. Figure 4-7-36 Add Profile Setting Page Screenshot The page includes the following fields: Object Description  IP Type Select IPv4 or IPv6 from this drop-down list  Profile Index Indicates the ID of this particular profile  Group from Specifies multicast groups to include in the profile.
PAGE 190
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Index Display the current index  IP Type Display the current IP Type  Group from Display the current group from  Group to Display the current group to  Action Display the current action  Modify Click Click to edit parameter. to delete the MLD/IGMP profile entry. 4.7.7.2 IGMP Filter Setting The Filter Setting and Status screens in Figure 4-7-38 & Figure 4-7-39 appear.
PAGE 191
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Display the current port  Filter Profile ID Display the current filter profile ID  Action Click Click to display detail profile parameter to delete the IGMP filter profile entry 4.7.7.3 MLD Filter Setting The Filter Setting and Status screens in Figure 4-7-40 & Figure 4-7-41 appear.
PAGE 192
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Display the current port  Filter Profile ID Display the current filter profile ID  Action Click Click to display detail profile parameter to delete the MLD filter profile entry 192
PAGE 193
User’s Manual of LRP-822CS/LRP-1622CS 4.8 Quality of Service 4.8.1 Understand QoS Quality of Service (QoS) is an advanced traffic prioritization feature that allows you to establish control over network traffic. QoS enables you to assign various grades of network service to different types of traffic, such as multi-media, video, protocol-specific, time critical, and file-backup traffic. QoS reduces bandwidth limitations, delay, loss, and jitter.
PAGE 194
User’s Manual of LRP-822CS/LRP-1622CS 4.8.2 General 4.8.2.1 QoS Properties The QoS Global Setting and Information screen in Figure 4-8-1 & Figure 4-8-2 appear. Figure 4-8-1 QoS Global Setting Page Screenshot The page includes the following fields: Object Description  QoS Mode Enable or disable QoS mode Buttons : Click to apply changes.
PAGE 195
User’s Manual of LRP-822CS/LRP-1622CS 4.8.2.2 QoS Port Settings The QoS Port Settings and Status screens in Figure 4-8-2 & Figure 4-8-3 appear.
PAGE 196
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port The switch port number of the logical port  CoS Value Display the current CoS value  Remark CoS Display the current remark CoS  Remark DSCP Display the current remark DSCP  Remark IP Precedence Display the current remark IP precedence 4.8.2.3 Queue Settings The Queue Table and Information screens in Figure 4-8-4 & Figure 4-8-5 appear.
PAGE 197
User’s Manual of LRP-822CS/LRP-1622CS  WRR Controls whether the scheduler mode is "Weighted" on this switch port  Weight Controls the weight for this queue. This value is restricted to 1-100. This parameter is only shown if "Scheduler Mode" is set to "Weighted".  % of WRR Bandwidth Display the current bandwidth for each queue Buttons : Click to apply changes.
PAGE 198
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Queue Select Queue value from this drop-down list  Class of Service Select CoS value from this drop-down list Buttons : Click to apply changes.
PAGE 199
User’s Manual of LRP-822CS/LRP-1622CS  Queue Display the current queue value  Mapping to CoS Display the current mapping to CoS 4.8.2.5 DSCP Mapping The DSCP to Queue and Queue to DSCP Mapping screens in Figure 4-8-8 & Figure 4-8-9 appear.
PAGE 200
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-8-9 DSCP Mapping Page Screenshot The page includes the following fields: Object Description  DSCP Display the current CoS value  Mapping to Queue Display the current mapping to queue  Queue Display the current queue value  Mapping to DSCP Display the current mapping to DSCP 200
PAGE 201
User’s Manual of LRP-822CS/LRP-1622CS 4.8.2.6 IP Precedence Mapping The IP Precedence to Queue and Queue to IP Precedence Mapping screens in Figure 4-8-10 & Figure 4-8-11 appear. Figure 4-8-10 IP Precedence to Queue and Queue to IP Precedence Mapping Page Screenshot The page includes the following fields: Object Description  Queue Select Queue value from this drop-down list  IP Precedence Select IP Precedence value from this drop-down list Buttons : Click to apply changes.
PAGE 202
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-8-11 IP Precedence Mapping Page Screenshot The page includes the following fields: Object Description  IP Precedence Display the current CoS value  Mapping to Queue Display the current mapping to queue  Queue Display the current queue value  Mapping to IP Display the current mapping to IP Precedence Precedence 4.8.3 QoS Basic Mode 4.8.3.
PAGE 203
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes. Figure 4-8-13 QoS Information Page Screenshot The page includes the following fields: Object Description  Trust Mode Display the current QoS mode 4.8.3.2 Port Settings The QoS Port Setting and Status screens in Figure 4-8-14 & Figure 4-8-15 appear.
PAGE 204
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes. Figure 4-8-15 QoS Port Status Page Screenshot The page includes the following fields: Object Description  Port The switch port number of the logical port  Trust Mode Display the current trust type 4.8.4 Rate Limit Configure the switch port rate limit for the switch port on this page. 4.8.4.1 Ingress Bandwidth Control This page provides to select the ingress bandwidth preamble.
PAGE 205
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-8-16 Ingress Bandwidth Control Settings Page Screenshot The page includes the following fields: Object Description  Port Select port number from this drop-down list  State Enable or disable the port rate policer. The default value is "Disabled".  Rate (Kbps) Configure the rate for the port policer. The default value is "unlimited". Valid values are in the range 0 to 1000000. Buttons : Click to apply changes.
PAGE 206
User’s Manual of LRP-822CS/LRP-1622CS 4.8.4.2 Egress Bandwidth Control This page provides to select the egress bandwidth preamble. The Egress Bandwidth Control Setting and Status screens in Figure 4-8-18 & Figure 4-8-19 appear. Figure 4-8-18 Egress Bandwidth Control Settings Page Screenshot The page includes the following fields: Object Description  Port Select port number from this drop-down list  State Enable or disable the port rate policer. The default value is "Disabled".
PAGE 207
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port The switch port number of the logical port  Egress Rate Limit (Kbps) Display the current egress rate limit 4.8.4.3 Egress Queue The Egress Queue Bandwidth Control Settings and Status screens in Figure 4-8-20 & Figure 4-8-21 appear.
PAGE 208
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 209
User’s Manual of LRP-822CS/LRP-1622CS 4.8.5 Voice VLAN 4.5.8.1 Introduction to Voice VLAN Configure the switch port rate limit for the switch port on this page. Voice VLAN is specially configured for the user voice data traffic. By setting a Voice VLAN and adding the ports of the connected voice equipments to Voice VLAN, the user will be able to configure QoS (Quality of service) service for voice data, and improve voice data traffic transmission priority to ensure the calling quality.
PAGE 210
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-8-22 Properties Page Screenshot The page includes the following fields: Object Description  Voice VLAN State Indicates the Voice VLAN mode operation. We must disable MSTP feature before we enable Voice VLAN. It can avoid the conflict of ingress filter. Possible modes are:  Voice VLAN ID ■ Enabled: Enable Voice VLAN mode operation. ■ Disabled: Disable Voice VLAN mode operation Indicates the Voice VLAN ID.
PAGE 211
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes. Figure 4-8-23 Properties Page Screenshot The page includes the following fields: Object Description  Voice VLAN State Display the current voice VLAN state.  Voice VLAN ID Display the current voice VLAN ID.  Remark CoS/802.1p Display the current remark CoS/802.1p.  1p Remark Display the current 1p remark.  Aging Display the current aging time. 4.8.5.
PAGE 212
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  OUI Address A telephony OUI address is a globally unique identifier assigned to a vendor by IEEE. It must be 6 characters long and the input format is "xx:xx:xx" (x is a hexadecimal digit).  Description User-defined text that identifies the VoIP devices Buttons : Click to add voice VLAN OUI setting.
PAGE 213
User’s Manual of LRP-822CS/LRP-1622CS 4.8.5.4 Telephony OUI Port Setting The Voice VLAN feature enables voice traffic forwarding on the Voice VLAN, then the switch can classify and schedule network traffic. It is recommended that there be two VLANs on a port - one for voice and one for data. Before connecting the IP device to the switch, the IP phone should configure the voice VLAN ID correctly. It should be configured through its own GUI.
PAGE 214
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port The switch port number of the logical port  State Display the current state  CoS Mode Display the current CoS mode 214
PAGE 215
User’s Manual of LRP-822CS/LRP-1622CS 4.9 Security This section is to control the access of the LRP Managed Switch, including the user access and management control. The Security page contains links to the following main topics:  802.1X  DHCP Snooping  RADIUS Server  Dynamic ARP Inspection  TACACS+ Server  IP Source Guard  AAA  Port Security  Access  DoS  Management Access Method  Storm Control 4.9.1 802.1X Overview of 802.1X (Port-based) Authentication In the 802.
PAGE 216
User’s Manual of LRP-822CS/LRP-1622CS 4.9.1.1 Understanding IEEE 802.1X Port-based Authentication The IEEE 802.1X standard defines a client-server-based access control and authentication protocol that restricts unauthorized clients from connecting to a LAN through publicly accessible ports. The authentication server authenticates each client connected to a switch port before making available any services offered by the switch or the LAN. Until the client is authenticated, 802.
PAGE 217
User’s Manual of LRP-822CS/LRP-1622CS  Authentication server—performs the actual authentication of the client. The authentication server validates the identity of the client and notifies the switch whether or not the client is authorized to access the LAN and switch services. Because the switch acts as the proxy, the authentication service is transparent to the client.
PAGE 218
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-9-2 EAP Message Exchange  Ports in Authorized and Unauthorized States The switch port state determines whether or not the client is granted access to the network. The port starts in the unauthorized state. While in this state, the port disallows all ingress and egress traffic except for 802.1X protocol packets. When a client is successfully authenticated, the port transitions to the authorized state, allowing all traffic for the client to flow normally.
PAGE 219
User’s Manual of LRP-822CS/LRP-1622CS 4.9.1.2 802.1X Setting This page allows you to configure the IEEE 802.1X authentication system. The IEEE 802.1X standard defines a port-based access control procedure that prevents unauthorized access to a network by requiring users to first submit credentials for authentication. One or more central servers, the backend servers, determine whether the user is allowed access to the network. These backend (RADIUS) servers are configured on the "Security→802.
PAGE 220
User’s Manual of LRP-822CS/LRP-1622CS 4.9.1.3 802.1X Port Setting This page allows you to configure the IEEE 802.1X Port Setting. The 802.1X Port Setting screens in Figure 4-9-5 & Figure 4-9-6 appear. Figure 4-9-5 802.1X Port Setting Page Screenshot The page includes the following fields: Object Description  Port Select port from this drop-down list  Mode If NAS is globally enabled, this selection controls the port's authentication mode.
PAGE 221
User’s Manual of LRP-822CS/LRP-1622CS 802.1X-enabled ports can be used to detect if a new device is plugged into a switch port or if a supplicant is no longer attached.  Reauthentication Period Determines the period, in seconds, after which a connected client must be reauthenticated. This is only active if the Reauthentication Enabled checkbox is checked. Valid values are in the range 30 to 65535 seconds.  Quiet Period Sets time to keep silent on supplicant authentication failure.
PAGE 222
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port The switch port number of the logical port.  Mode (pps) Display the current mode.  Status (pps) Display the current status.  Periodic Reauthentication Display the current periodic reauthentication.  Reauthentication Period Display the current reauthentication period.  Quiet Period Display the current quiet period.  Supplicant Timeout Display the current supplicant timeout.  Max.
PAGE 223
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-9-7 Guest VLAN Setting Page Screenshot The page includes the following fields: Object Description  Guest VLAN ID This is the value that a port's Port VLAN ID is set to if a port is moved into the Guest VLAN. It is only changeable if the Guest VLAN option is globally enabled. Valid values are in the range [1~4094].  Guest VLAN Enabled A Guest VLAN is a special VLAN - typically with limited network access - on which 802.
PAGE 224
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 225
User’s Manual of LRP-822CS/LRP-1622CS 4.9.1.5 Authenticated Host The Authenticated Host Table screen in Figure 4-9-9 appears. Figure 4-9-9 Authenticated Host Table Page Screenshot The page includes the following fields: Object Description  User Name Display the current user name  Port Display the current port number  Session Time Display the current session time  Authentication Method Display the current authentication method  MAC Address Display the current MAC address 4.9.
PAGE 226
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Retries Timeout is the number of seconds, in the range 1 to 10, to wait for a reply from a RADIUS server before retransmitting the request.  Timeout for Reply Retransmit is the number of times, in the range 1 to 30, a RADIUS request is retransmitted to a server that is not responding. If the server has not responded after the last retransmit it is considered to be dead.
PAGE 227
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Server Definition Set the server definition  Server IP Address of the RADIUS server IP/name  Authentication Port The UDP port to use on the RADIUS Authentication Server. If the port is set to 0 (zero), the default port (1812) is used on the RADIUS Authentication Server.  Acct Port The UDP port to use on the RADIUS Accounting Server.
PAGE 228
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to add RADIUS server setting.
PAGE 229
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-9-13 Guest VLAN Setting Page Screenshot The page includes the following fields: Object Description  Key String The secret key with up to 63 characters long is shared between the TACACS+ server and the switch.  Timeout for Reply Retransmit is the number of times, in the range 1 to 30, a TACACS+ request is retransmitted to a server that is not responding. If the server has not responded after the last retransmit it is considered to be dead.
PAGE 230
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Server Definition Set the server definition  Server IP Address of the TACACS+ server IP/name  Server Port Network (TCP) port of TACACS+ server used for authentication messages. (Range: 1-65535; Default: 49)  Server Key The key is shared between the TACACS+ Authentication Server and the switch.
PAGE 231
User’s Manual of LRP-822CS/LRP-1622CS  Modify Click to edit login authentication list parameter Click to delete login authentication list entry 4.9.4 AAA Authentication, authorization, and accounting (AAA) provides a framework for configuring access control on the LRP Managed Switch. The three security functions can be summarized as follows:  Authentication — Identifies users that request access to the network.  Authorization — Determines if users can access specific services.
PAGE 232
User’s Manual of LRP-822CS/LRP-1622CS 4.9.4.1 Login List This page is to login list parameters. The authentication list screens in Figure 4-9-17 & Figure 4-9-18 appear. Figure 4-9-17 New Authentication List Screenshot The page includes the following fields: Object Description  List Name Defines a name for the authentication list  Method 1-4 Set the login authentication method: Empty / None / Local / TACACS+ / RADIUS / Enable Buttons : Click to add authentication list.
PAGE 233
User’s Manual of LRP-822CS/LRP-1622CS 4.9.4.2 Enable List This page is to login list parameters. The authentication list screens in Figure 4-9-19 & Figure 4-9-20 appear. Figure 4-9-19 New Authentication List Screenshot The page includes the following fields: Object Description  List Name Defines a name for the authentication list  Method 1-3 Set the login authentication method: Empty / None / Enable / TACACS+ / RADIUS Buttons : Click to add authentication list.
PAGE 234
User’s Manual of LRP-822CS/LRP-1622CS 4.9.5 Access This section is to control the access of the LRP Managed Switch, including the different access methods – Telnet, SSH, HTTP and HTTPs. 4.9.5.1 Telnet The Telnet Settings and Information screens in Figure 4-9-21 & Figure 4-9-22 appear.
PAGE 235
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-9-21 Telnet Information Page Screenshot The page includes the following fields: Object Description  Telnet Service Display the current Telnet service  Login Authentication List Display the current login authentication list  Enable Authentication List Display the current enable authentication list  Session Timeout Display the current session timeout  Password Retry Count Display the current password retry count  Silent Time Display the curre
PAGE 236
User’s Manual of LRP-822CS/LRP-1622CS The SSH Settings and Information screens in Figure 4-9-23 & Figure 4-9-24 appear.
PAGE 237
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-9-24 SSH Information Page Screenshot The page includes the following fields: Object Description  SSH Service Display the current SSH service  Login Authentication List Display the current login authentication list  Enable Authentication List Display the current enable authentication list  Session Timeout Display the current session timeout  Password Retry Count Display the current password retry count  Silent Time Display the current silent
PAGE 238
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  HTTP Service Disable or enable HTTP service  Login Authentication List Select login authentication list from this drop-down list  Session Timeout Set the session timeout value Buttons : Click to apply changes.
PAGE 239
User’s Manual of LRP-822CS/LRP-1622CS 4.9.5.4 HTTPs The HTTPs Settings and Information screens in Figure 4-9-27 & Figure 4-9-28 appear. Figure 4-9-27 HTTPs Settings Page Screenshot The page includes the following fields: Object Description  HTTPs Service Disable or enable HTTPs service  Login Authentication List Select login authentication list from this drop-down list  Session Timeout Set the session timeout value Buttons : Click to apply changes.
PAGE 240
User’s Manual of LRP-822CS/LRP-1622CS 4.9.6 Management Access Method 4.9.6.1 Profile Rules The Profile Rule Table Setting and Table screens in Figure 4-9-29 & Figure 4-9-30 appear. Figure 4-9-29 Profile Rule Table Setting Page Screenshot The page includes the following fields: Object Description  Access Profile Name Indicates the access profile name (1-32 characters)  Priority (1-65535) Set priority.
PAGE 241
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Access Profile Name Display the current access profile name  Priority Display the current priority  Management Method Display the current management method  Action Display the current action  Port Display the current port list  Source IPv4 Display the current source IPv4 address  Source IPv4 Mask Display the current source IPv4 mask  Source IPv6 Display the current source IPv6 address
PAGE 242
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 243
User’s Manual of LRP-822CS/LRP-1622CS 4.9.7 DHCP Snooping 4.9.7.1 DHCP Snooping Overview The addresses assigned to DHCP clients on unsecure ports can be carefully controlled using the dynamic bindings registered with DHCP Snooping. DHCP snooping allows a switch to protect a network from rogue DHCP servers or other devices which send port-related information to a DHCP server. This information can be useful in tracking an IP address back to a physical port.
PAGE 244
User’s Manual of LRP-822CS/LRP-1622CS  If the global DHCP snooping is disabled, all DHCP packets are forwarded.  If DHCP snooping is enabled globally, and also enabled on the VLAN where the DHCP packet is received, all DHCP packets are forwarded for a trusted port. If the received packet is a DHCP ACK message, a dynamic DHCP snooping entry is also added to the binding table.
PAGE 245
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  DHCP Snooping Indicates the DHCP snooping mode operation. Possible modes are:  Enabled: Enable DHCP snooping mode operation. When DHCP snooping mode operation is enabled, the request DHCP messages will be forwarded to trusted ports and only allowed reply packets from trusted ports.  Disabled: Disable DHCP snooping mode operation. Buttons : Click to apply changes.
PAGE 246
User’s Manual of LRP-822CS/LRP-1622CS The DHCP Snooping VLAN Setting screens in Figure 4-9-35 & Figure 4-9-36 appear. Figure 4-9-35 DHCP Snooping VLAN Setting Page Screenshot The page includes the following fields: Object Description  VLAN List Indicates the ID of this particular VLAN.  Status Indicates the DHCP snooping mode operation. Possible modes are:  Enabled: Enable DHCP snooping mode operation.
PAGE 247
User’s Manual of LRP-822CS/LRP-1622CS 4.9.7.4 Port Setting Configures switch ports as trusted or untrusted. Command Usage  A trusted interface is an interface that is configured to receive only messages from within the network. An untrusted interface is an interface that is configured to receive messages from outside the network or firewall.  When DHCP snooping is enabled both globally and on a VLAN, DHCP packet filtering will be performed on any untrusted ports within the VLAN.
PAGE 248
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-9-38 DHCP Snooping Port Setting Page Screenshot The page includes the following fields: Object Description  Port The switch port number of the logical port  Type Display the current type  Chaddr Check Display the current chaddr check 4.9.7.5 Statistics The DHCP Snooping Statistics screen in Figure 4-9-39 appears.
PAGE 249
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port The switch port number of the logical port  Forwarded Display the current forwarded  Chaddr Check Dropped Display the chaddr check dropped  Untrusted Port Dropped Display untrusted port dropped  Untrusted Port with Display untrusted port with option82 dropped Option82 Dropped  Invalid Dropped Display invalid dropped Buttons : Click to clear the statistics.
PAGE 250
User’s Manual of LRP-822CS/LRP-1622CS The switch also updates the entries in the binding file. The frequency at which the file is updated is based on a configurable delay, and the updates are batched. If the file is not updated in a specified time (set by the write-delay and abort-timeout values), the update stops. The DHCP Snooping Database and Information screens in Figure 4-9-40 & Figure 4-9-41 appear.
PAGE 251
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-9-41 DHCP Snooping Database Information Page Screenshot The page includes the following fields: Object Description  Database Type Display the current database type  File Name Display the current file name  Remote Server Display the current remote server  Write Delay Display the current write delay  Timeout Display the current timeout 4.9.7.
PAGE 252
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select port from this drop-down list  State Set default or user-define  Rate Limit (pps) Configure the rate limit for the port policer. The default value is "unlimited". Valid values are in the range 1 to 300.
PAGE 253
User’s Manual of LRP-822CS/LRP-1622CS 4.9.7.8 Option 82 Global Setting DHCP provides a relay mechanism for sending information about the switch and its DHCP clients to DHCP servers. Known as DHCP Option 82, it allows compatible DHCP servers to use the information when assigning IP addresses, or to set other services or policies for clients.
PAGE 254
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes. Figure 4-9-45 Option 82 Global Setting Page Screenshot The page includes the following fields: Object Description  Option 82 Remote ID Display the current option 82 remote ID 4.9.7.9 Option 82 Port Setting This function is used to set the retransmitting policy of the system for the received DHCP request message which contains option 82.
PAGE 255
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select port from this drop-down list  Enable Enable or disable option 82 function on port  Allow Untrusted Select modes from this drop-down list. The following modes are available:  Drop  Keep  Replace Buttons : Click to apply changes.
PAGE 256
User’s Manual of LRP-822CS/LRP-1622CS 4.9.7.10 Option 82 Circuit-ID Setting Set creation method for option 82, users can define the parameters of circuit-id suboption by themselves. Option 82 Circuit-ID Setting screens in Figure 4-9-48 & Figure 4-9-49 appear.
PAGE 257
User’s Manual of LRP-822CS/LRP-1622CS 4.9.8 Dynamic ARP Inspection Dynamic ARP Inspection (DAI) is a secure feature. Several types of attacks can be launched against a host or devices connected to Layer 2 networks by "poisoning" the ARP caches. This feature is used to block such attacks. Only valid ARP requests and responses can go through DUT. This page provides ARP Inspection related configuration. A Dynamic ARP prevents the untrusted ARP packets based on the DHCP Snooping Database. 4.9.8.
PAGE 258
User’s Manual of LRP-822CS/LRP-1622CS 4.9.8.2 VLAN Setting DAI VLAN Setting screens in Figure 4-9-52 & Figure 4-9-53 appear. Figure 4-9-52 DAI VLAN Setting Page Screenshot The page includes the following fields: Object Description  VLAN ID Indicates the ID of this particular VLAN Status Enables Dynamic ARP Inspection on the specified VLAN Options:  Enable  Disable Buttons : Click to apply changes.
PAGE 259
User’s Manual of LRP-822CS/LRP-1622CS 4.9.8.3 Port Setting Configures switch ports as DAI trusted or untrusted and check mode. DAI Port Setting screens in Figure 4-9-54 & Figure 4-9-55 appear. Figure 4-9-54 DAI Port Setting Page Screenshot The page includes the following fields: Object Description  Port Select port from this drop-down list  Type Specify ARP Inspection is enabled on which ports.
PAGE 260
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 261
User’s Manual of LRP-822CS/LRP-1622CS 4.9.8.4 Statistics Configures switch ports as DAI trusted or untrusted and check mode. DAI Port Setting screen in Figure 4-9-56 appears.
PAGE 262
User’s Manual of LRP-822CS/LRP-1622CS 4.9.8.5 Rate Limit The ARP Rate Limit Setting and Config screens in Figure 4-9-57 & Figure 4-9-58 appear. Figure 4-9-57 ARP Rate Limit Setting Page Screenshot The page includes the following fields: Object Description  Port Select port from this drop-down list  State Set default or user-define  Rate Limit (pps) Configure the rate limit for the port policer. The default value is "unlimited". Buttons : Click to apply changes.
PAGE 263
User’s Manual of LRP-822CS/LRP-1622CS 4.9.9 IP Source Guard IP Source Guard is a secure feature used to restrict IP traffic on DHCP snooping untrusted ports by filtering traffic based on the DHCP Snooping Table or manually configured IP Source Bindings. It helps prevent IP spoofing attacks when a host tries to spoof and use the IP address of another host.
PAGE 264
User’s Manual of LRP-822CS/LRP-1622CS 4.9.9.1 Port Settings IP Source Guard is a secure feature used to restrict IP traffic on DHCP snooping untrusted ports by filtering traffic based on the DHCP Snooping Table or manually configured IP Source Bindings. It helps prevent IP spoofing attacks when a host tries to spoof and use the IP address of another host. The IP Source Guard Port Setting and Information screens in Figure 4-9-60 & Figure 4-9-61 appear.
PAGE 265
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes. Figure 4-9-61 IP Source Guard Port Setting Page Screenshot The page includes the following fields: Object Description  Port The switch port number of the logical port  Status Display the current status  Verify Source Display the current verify source  Max Binding Entry Display the current max binding entry  Current Binding Entry Display the current binding entry 4.9.9.
PAGE 266
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select port from this drop-down list  VLAN ID Indicates the ID of this particular VLAN  MAC Address Sourcing MAC address is allowed  IP Address Sourcing IP address is allowed Buttons : Click to add authentication list Figure 4-9-63 IP Source Guard Binding Table Status Page Screenshot The page includes the following fields: Object Description  Port Display the current port  VLAN ID Di
PAGE 267
User’s Manual of LRP-822CS/LRP-1622CS 4.9.10 Port Security This page allows you to configure the Port Security Limit Control system and port settings. Limit Control allows for limiting the number of users on a given port. A user is identified by a MAC address and VLAN ID. If Limit Control is enabled on a port, the limit specifies the maximum number of users on the port. If this number is exceeded, an action is taken. The action can be one of the four as described below.
PAGE 268
User’s Manual of LRP-822CS/LRP-1622CS and reconnected on the port (by disconnecting the cable), the port will remain shut down. There are three ways to re-open the port: 1) Disable and re-enable Limit Control on the port or the switch, 2) Click the Reopen button.  Discard: If Limit + 1 MAC addresses is seen on the port, it will trigger the action that do not learn the new MAC and drop the package. Buttons : Click to apply changes.
PAGE 269
User’s Manual of LRP-822CS/LRP-1622CS 4.9.11 DoS The DoS is short for Denial of Service, which is a simple but effective destructive attack on the internet. The server under DoS attack will drop normal user data packet due to non-stop processing the attacker’s data packet, leading to the denial of the service and worse can lead to leak of sensitive data of the server. Security feature refers to applications such as protocol check which is for protecting the server from attacks such as DoS.
PAGE 270
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-9-66 Global DoS Setting Page Screenshot The page includes the following fields: Object Description  DMAC = SMAC Enable or disable DoS check mode by DMAC = SMAC  Land Enable or disable DoS check mode by land  UDP Blat Enable or disable DoS check mode by UDP blat  TCP Blat Enable or disable DoS check mode by TCP blat  POD Enable or disable DoS check mode by POD 270
PAGE 271
User’s Manual of LRP-822CS/LRP-1622CS  IPv6 Min Fragment Enable or disable DoS check mode by IPv6 min fragment  ICMP Fragments Enable or disable DoS check mode by ICMP fragment  IPv4 Ping Max Size Enable or disable DoS check mode by IPv4 ping max size  IPv6 Ping Max Size Enable or disable DoS check mode by IPv6 ping max size  Ping Max Size Setting Set the max size for ping  Smurf Attack Enable or disable DoS check mode by smurf attack  TCP Min Hdr Size Enable or disable DoS check mode by
PAGE 272
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  DMAC = SMAC Display the current DMAC = SMAC status  Land Attach Display the current land attach status  UDP Blat Display the current UDP blat status  TCP Blat Display the current TCP blat status  POD Display the current POD status  IPv6 Min Fragment Display the current IPv6 min fragment status  ICMP Fragments Display the current ICMP fragment status  IPv4 Ping Max Size Display the curre
PAGE 273
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select Select port from this drop-down list.  DoS Protection Enable or disable per port DoS protection. Buttons : Click to apply changes.
PAGE 274
User’s Manual of LRP-822CS/LRP-1622CS 4.9.12 Storm Control Storm control for the switch is configured on this page. There is an unknown unicast storm rate control, unknown multicast storm rate control, and a broadcast storm rate control. These only affect flooded frames, i.e. frames with a (VLAN ID, DMAC) pair not present on the MAC Address table. 4.9.12.1 Global Setting The Storm Control Global Setting and Information screens in Figure 4-9-69 & Figure 4-9-70 appear.
PAGE 275
User’s Manual of LRP-822CS/LRP-1622CS 4.9.12.2 Port Setting Storm control for the switch is configured on this page. There are three types of storm rate control:  Broadcast storm rate control  Unknown Unicast storm rate control  Unknown Multicast storm rate control The configuration indicates the permitted packet rate for unknown unicast, unknown multicast, or broadcast traffic across the switch. The Storm Control Configuration screens in Figure 4-9-71 & Figure 4-9-72 appear.
PAGE 276
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes Figure 4-9-72 Storm Control Information Page Screenshot The page includes the following fields: Object Description  Port The switch port number of the logical port  Port State Display the current port state  Broadcast (Kbps/pps) Display the current broadcast storm control rate  Unknown Multicast Display the current unknown multicast storm control rate (Kbps/pps)  Unknown Unicast Display the current unknown unicast storm
PAGE 277
User’s Manual of LRP-822CS/LRP-1622CS 4.10 ACL ACL is an acronym for Access Control List. It is the list table of ACEs, containing access control entries that specify individual users or groups permitted or denied to specific traffic objects, such as a process or a program. Each accessible traffic object contains an identifier to its ACL. The privileges determine whether there are specific traffic object access rights.
PAGE 278
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-10-2 ACL Table Page Screenshot The page includes the following fields: Object Description  Delete Click to delete ACL name entry 4.10.2 MAC-based ACE An ACE consists of several parameters. Different parameter options are displayed depending on the frame type that you select. The MAC-based ACE screens in Figure 4-10-3 & Figure 4-10-4 appear.
PAGE 279
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  ACL Name Select ACL name from this drop-down list  Sequence Set the ACL sequence  Action Indicates the forwarding action of the ACE.  Permit: Frames matching the ACE may be forwarded and learned.  Deny: Frames matching the ACE are dropped.  Shutdown: Port shutdown is disabled for the ACE.  DA MAC Specify the destination MAC filter for this ACE.  Any: No DA MAC filter is specified.
PAGE 280
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to add ACE list.
PAGE 281
User’s Manual of LRP-822CS/LRP-1622CS 4.10.3 IPv4-based ACL This page shows the ACL status by different ACL users. Each row describes the ACE that is defined. It is a conflict if a specific ACE is not applied to the hardware due to hardware limitations. IPv4-based ACL screens in Figure 4-10-5 & Figure 4-10-6 appear.
PAGE 282
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-10-7 IP-based ACE Page Screenshot 282
PAGE 283
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  ACL Name Select ACL name from this drop-down list.  Sequence Set the ACL sequence.  Action Indicates the forwarding action of the ACE.  Permit: Frames matching the ACE may be forwarded and learned.  Deny: Frames matching the ACE are dropped.  Shutdown: Port shutdown is disabled for the ACE.  Protocol Specify the protocol filter for this ACE.  Any(IP): No protocol filter is specified.
PAGE 284
User’s Manual of LRP-822CS/LRP-1622CS  Range: If you want to filter a specific source port range filter with this ACE, you can enter a specific source port range value. A field for entering a source port value appears. The allowed range is 0 to 65535. A frame that hits this ACE matches this source port value.  Destination Port Specify the destination port for this ACE.  Any: No specific destination port is specified (destination port status is "don't-care").
PAGE 285
User’s Manual of LRP-822CS/LRP-1622CS SYN Specify the TCP "Synchronize sequence numbers" (SYN) value for this ACE.  Set: TCP frames where the SYN field is set must be able to match this entry.  Unset: TCP frames where the SYN field is set must not be able to match this entry.  Don’t Care: Any value is allowed ("don't-care"). FIN Specify the TCP "No more data from sender" (FIN) value for this ACE.  Set: TCP frames where the FIN field is set must be able to match this entry.
PAGE 286
User’s Manual of LRP-822CS/LRP-1622CS : Click to add ACE list.
PAGE 287
User’s Manual of LRP-822CS/LRP-1622CS 4.10.5 IPv6-based ACL This page shows the ACL status by different ACL users. Each row describes the ACE that is defined. It is a conflict if a specific ACE is not applied to the hardware due to hardware limitations. IPv6-based ACL screens in Figure 4-10-9 & Figure 4-10-10 appear.
PAGE 288
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-10-11 IP-based ACE Page Screenshot 288
PAGE 289
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  ACL Name Select ACL name from this drop-down list  Sequence Set the ACL sequence  Action Indicates the forwarding action of the ACE  Permit: Frames matching the ACE may be forwarded and learned.  Deny: Frames matching the ACE are dropped.  Shutdown: Port shutdown is disabled for the ACE.  Protocol Specify the protocol filter for this ACE  Any(IP): No protocol filter is specified.
PAGE 290
User’s Manual of LRP-822CS/LRP-1622CS matches this source port value.  Range: If you want to filter a specific source port range filter with this ACE, you can enter a specific source port range value. A field for entering a source port value appears. The allowed range is 0 to 65535. A frame that hits this ACE matches this source port value.  Destination Port Specify the destination port for this ACE.  Any: No specific destination port is specified (destination port status is "don't-care").
PAGE 291
User’s Manual of LRP-822CS/LRP-1622CS match this entry.  Don’t Care: Any value is allowed ("don't-care"). SYN Specify the TCP "Synchronize sequence numbers" (SYN) value for this ACE.  Set: TCP frames where the SYN field is set must be able to match this entry.  Unset: TCP frames where the SYN field is set must not be able to match this entry.  Don’t Care: Any value is allowed ("don't-care"). FIN Specify the TCP "No more data from sender" (FIN) value for this ACE.
PAGE 292
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to add ACE list Figure 4-10-12 IPv6-based ACE Table Page Screenshot The page includes the following fields: Object Description  ACL Name Display the current ACL name  Sequence Display the current sequence  Action Display the current action  Protocol Display the current protocol  Source IP Address Display the current source IP address  Source IP Address Display the current source IP address wildcard mask Wildcard Mask  Destination I
PAGE 293
User’s Manual of LRP-822CS/LRP-1622CS 4.10.7 ACL Binding This page allows you to bind the Policy content to the appropriate ACLs. The ACL Policy screens in Figure 4-10-13 & Figure 4-10-14 appear. Figure 4-10-13 ACL Binding Page Screenshot The page includes the following fields: Object Description  Binding Port Select port from this drop-down list  ACL Select Select ACL list from this drop-down list Buttons : Click to apply changes.
PAGE 294
User’s Manual of LRP-822CS/LRP-1622CS 4.11 MAC Address Table Switching of frames is based upon the DMAC address contained in the frame. The LRP Managed Switch builds up a table that maps MAC addresses to switch ports for knowing which ports the frames should go to (based upon the DMAC address in the frame). This table contains both static and dynamic entries.
PAGE 295
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to add new static MAC address. Figure 4-11-2 Statics MAC Status Page Screenshot The page includes the following fields: Object Description  No. This is the number for entries  MAC Address The MAC address for the entry  VLAN The VLAN ID for the entry  Port Display the current port  Delete Click to delete static MAC status entry 4.11.
PAGE 296
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to add new MAC filtering setting. Figure 4-11-4 Statics MAC Status Page Screenshot The page includes the following fields: Object Description  No. This is the number for entries  MAC Address The MAC address for the entry  VLAN The VLAN ID for the entry  Delete Click to delete static MAC status entry. 4.11.3 Dynamic Address Setting By default, dynamic entries are removed from the MAC table after 300 seconds.
PAGE 297
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes. Figure 4-11-6 Dynamic Addresses Status Page Screenshot The page includes the following fields: Object Description  Aging Time Display the current aging time 4.11.4 Dynamic Learned Dynamic MAC Table The Dynamically Learned MAC Table is shown on this page. The MAC Table is sorted first by VLAN ID and then by MAC address. The Dynamically Learned screens in Figure 4-11-6 & Figure 4-11-7 appear.
PAGE 298
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Refreshes the displayed table starting from the "Start from MAC address" and "VLAN" input fields : Flushes all dynamic entries Figure 4-11-7 MAC Address Information Page Screenshot Object Description  MAC Address The MAC address of the entry  VLAN The VLAN ID of the entry  Type Indicates whether the entry is a static or dynamic entry  Port The ports that are members of the entry Buttons : Click to add dynamic MAC address to static MAC address.
PAGE 299
User’s Manual of LRP-822CS/LRP-1622CS 4.12 LLDP 4.12.1 Link Layer Discovery Protocol Link Layer Discovery Protocol (LLDP) is used to discover basic information about neighboring devices on the local broadcast domain. LLDP is a Layer 2 protocol that uses periodic broadcasts to advertise information about the sending device. Advertised information is represented in Type Length Value (TLV) format according to the IEEE 802.
PAGE 300
User’s Manual of LRP-822CS/LRP-1622CS  Bridging: transmit LLDP PDU in the same VLAN.  Flooding: transmit LLDP PDU for all port.  Transmission Interval The switch is periodically transmitting LLDP frames to its neighbors for having the network discovery information up-to-date. The interval between each LLDP frame is determined by the Transmission Interval value. Valid values are restricted to 5 - 32768 seconds.
PAGE 301
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 302
User’s Manual of LRP-822CS/LRP-1622CS 4.12.3 LLDP Port Setting Use the LLDP Port Setting to specify the message attributes for individual interfaces, including whether messages are transmitted, received, or both transmitted and received. The LLDP Port Configuration and Status screens in Figure 4-12-3 & Figure 4-12-4 appear.
PAGE 303
User’s Manual of LRP-822CS/LRP-1622CS  802.3 MAC-PHY: When checked the "802.3 MAC-PHY" is included in LLDP information transmitted.  802.3 Link Aggregation: When checked the "802.3 Link Aggregation" is included in LLDP information transmitted.  802.3 Maximum Frame Size: When checked the "802.3 Maximum Frame Size" is included in LLDP information transmitted.  Management Address: When checked the "Management Address" is included in LLDP information transmitted.  802.1 PVID: When checked the "802.
PAGE 304
User’s Manual of LRP-822CS/LRP-1622CS The VLAN Name TLV VLAN Selection and LLDP Port VLAN TLV Status screens in Figure 4-12-5 & Figure 4-12-6 appear. Figure 4-12-5 VLAN Name TLV Selection Page Screenshot The page includes the following fields: Object Description  Port Select Select port from this drop-down list.  VLAN Select Select VLAN from this drop-down list. Buttons : Click to apply changes.
PAGE 305
User’s Manual of LRP-822CS/LRP-1622CS 4.12.4 LLDP Local Device Use the LLDP Local Device Information screen to display information about the switch, such as its MAC address, chassis ID, management IP address, and port information. The Local Device Summary and Port Status screens in Figure 4-12-7 & Figure 4-12-8 appear.
PAGE 306
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-12-8 Port Status Page Screenshot The page includes the following fields: Object Description  Interface The switch port number of the logical port.  LLDP Status Display the current LLDP status  LLDP MED Status Display the current LLDP MED Status 4.12.5 LLDP Remote Device This page provides a status overview for all LLDP remote devices. The displayed table contains a row for each port on which an LLDP neighbor is detected.
PAGE 307
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Local Port Display the current local port  Chassis ID Subtype Display the current chassis ID subtype  Chassis ID The Chassis ID is the identification of the neighbor's LLDP frames  Port ID Subtype Display the current port ID subtype  Port ID The Remote Port ID is the identification of the neighbor port  System Name System Name is the name advertised by the neighbor unit  Time to Live Displ
PAGE 308
User’s Manual of LRP-822CS/LRP-1622CS 4.12.6 MED Network Policy Network Policy Discovery enables the efficient discovery and diagnosis of mismatch issues with the VLAN configuration, along with the associated Layer 2 and Layer 3 attributes, which apply for a set of specific protocol applications on that port. Improper network policy configurations are a very significant issue in VoIP environments that frequently result in voice quality degradation or loss of service.
PAGE 309
User’s Manual of LRP-822CS/LRP-1622CS Figure 4-12-10 Voice Auto Mode Configuration and Network Policy Configuration Page Screenshot The page includes the following fields: Object Description  LLDP MED Policy for Set the LLDP MED policy for voice application mode Voice Application  Network Policy Select network policy number for this drop down list Number  Application Type Intended use of the application types: Voice - for use by dedicated IP Telephony handsets and other similar appliances suppor
PAGE 310
User’s Manual of LRP-822CS/LRP-1622CS Softphone Voice - for use by softphone applications on typical data centric devices, such as PCs or laptops. This class of endpoints frequently does not support multiple VLANs, if at all, and are typically configured to use an 'untagged’ VLAN or a single 'tagged’ data specific VLAN. When a network policy is defined for use with an 'untagged’ VLAN (see Tagged flag below), then the L2 priority field is ignored and only the DSCP value has relevance.
PAGE 311
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 312
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select Select port from this drop-down list  MED Enable Enable or disable MED configuration  MED Optional TVLs Configures the information included in the MED TLV field of advertised messages. -Network Policy – This option advertises network policy configuration information, aiding in the discovery and diagnosis of VLAN configuration mismatches on a port.
PAGE 313
User’s Manual of LRP-822CS/LRP-1622CS  Application Display the current application  Location Display the current location  Inventory Display the current inventory The MED Location Configuration and LLDP MED Port Location Table screens in Figure 4-12-14 & Figure 4-12-15 appear.
PAGE 314
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port The switch port number of the logical port  Coordinate Display the current coordinate  Civic Address Display the current civic address  ESC ELIN Display the current ESC ELIN 4.12.8 LLDP Overloading The LLDP Port Overloading screen in Figure 4-12-16 appears.
PAGE 315
User’s Manual of LRP-822CS/LRP-1622CS  Status Gives the status of the TLVs  Mandatory TLVs Displays if the mandatory group of TLVs were transmitted or overloaded  MED Capabilities Displays if the capabilities packets were transmitted or overloaded  MED Location Displays if the location packets were transmitted or overloaded  MED Network Policy Displays if the network policies packets were transmitted or overloaded  MED Extended Power Displays if the extended power via MDI packets were trans
PAGE 316
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to clear the statistics : Click to refresh the statistics Figure 4-12-18 LLDP Port Statistics Page Screenshot The page includes the following fields: Object Description  Port The port on which LLDP frames are received or transmitted  TX Frame – Total The number of LLDP frames transmitted on the port  RX Frame – Total The number of LLDP frames received on the port  RX Frame – Discarded If an LLDP frame is received on a port, and the switch
PAGE 317
User’s Manual of LRP-822CS/LRP-1622CS 4.13 Diagnostics This section provide the Physical layer and IP layer network diagnostics tools for troubleshoot. The diagnostic tools are designed for network manager to help them quickly diagnose problems between point to point and better service customers. Use the Diagnostics menu items to display and configure basic administrative details of the LRP Managed Switch.
PAGE 318
User’s Manual of LRP-822CS/LRP-1622CS The copper test and test result screens in Figure 4-13-1 & Figure 4-13-2 appear.
PAGE 319
User’s Manual of LRP-822CS/LRP-1622CS 4.13.2 Ping The ping and IPv6 ping allow you to issue ICMP ping packets to troubleshoot IP connectivity issues. The LRP Managed Switch transmits ICMP packets, and the sequence number and roundtrip time are displayed upon reception of a reply. 4.13.3 Ping Test This page allows you to issue ICMP ping packets to troubleshoot IP connectivity issues.
PAGE 320
User’s Manual of LRP-822CS/LRP-1622CS Be sure the target IP Address is within the same network subnet of the switch, or you have to set up the correct gateway IP address. 4.13.4 IPv6 Ping Test This page allows you to issue ICMPv6 PING packets to troubleshoot IPv6 connectivity issues. After you press “Apply”, 5 ICMPv6 packets are transmitted, and the sequence number and roundtrip time are displayed upon reception of a reply.
PAGE 321
User’s Manual of LRP-822CS/LRP-1622CS 4.14 RMON RMON is the most important expansion of the standard SNMP. RMON is a set of MIB definitions, used to define standard network monitor functions and interfaces, enabling the communication between SNMP management terminals and remote monitors. RMON provides a highly efficient method to monitor actions inside the subnets. MID of RMON consists of 10 groups.
PAGE 322
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Port Select port from this drop-down list  Drop Events The total number of events in which packets were dropped by the probe due to lack of resources  Octets The total number of octets of data (including those in bad packets) received on the network  Packets The total number of packets (including bad packets, broadcast packets, and multicast packets) received  Broadcast Packets The total number
PAGE 323
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to clear the RMON statistics 4.14.2 RMON Event Configure RMON Event table on this page. The RMON Event screens in Figure 4-14-2 & Figure 4-14-3 appear. Figure 4-14-2: RMON Event Configuration Page Screenshot The page includes the following fields: Object Description  Select Index Select index from this drop-down list to create new index or modify index  Index Indicates the index of the entry.
PAGE 324
User’s Manual of LRP-822CS/LRP-1622CS Buttons : Click to apply changes.
PAGE 325
User’s Manual of LRP-822CS/LRP-1622CS 4.14.4 RMON Alarm Configure RMON Alarm table on this page. The RMON Alarm screens in Figure 4-14-5 & Figure 4-14-6 appear.
PAGE 326
User’s Manual of LRP-822CS/LRP-1622CS packets.  MulticastPkts: The total number of good frames received that were directed to this multicast address.  CRCAlignErrors: The number of CRC/alignment errors (FCS or alignment errors).  UndersizePkts: The total number of frames received that were less than 64 octets long(excluding framing bits, but including FCS octets) and were otherwise well formed.
PAGE 327
User’s Manual of LRP-822CS/LRP-1622CS  Sample Type The method of sampling the selected variable and calculating the value to be compared against the thresholds, possible sample types are:  Absolute: Get the sample directly (default).  Delta: Calculate the difference between samples.
PAGE 328
User’s Manual of LRP-822CS/LRP-1622CS 4.14.5 RMON History Configure RMON History table on this page. The RMON History screens in Figure 4-14-7 & Figure 4-14-8 appear.
PAGE 329
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Index Display the current index  Data Source Display the current data source  Bucket Requested Display the current bucket requested  Interval Display the current interval  Owner Display the current owner  Action Click to delete RMON history entry. 4.14.6 RMON History Log This page provides a detail of RMON history entries; screen in Figure 4-14-9 appears.
PAGE 330
User’s Manual of LRP-822CS/LRP-1622CS 4.15 Power over Ethernet The LRP Managed Switch can easily build a power central-controlled IP phone system, IP camera system and AP group for the enterprise. Without the power-socket limitation, the LRP Managed Switch makes the installation of cameras or WLAN APs easier and more efficient.
PAGE 331
User’s Manual of LRP-822CS/LRP-1622CS 4.15.1 Long Reach Power over Ethernet Powered Device Long Reach Power over Ethernet Extenders Enterprise can extend IP Ethernet transmission and inject power over an existing coaxial cable for distance up to 1000m (3280ft) to PoE IP camera, 36 watts (max.)  PoE wireless AP and any 802.3af/at complied powered device (PD).
PAGE 332
User’s Manual of LRP-822CS/LRP-1622CS 4.15.2 System Configuration In a power over Ethernet system, operating power is applied from a power source (PSU-power supply unit) over the LAN infrastructure to powered devices (PDs), which are connected to ports. Under some conditions, the total output power required by PDs can exceed the maximum available power provided by the PSU. The system with a PSU is capable of supplying less power than the total potential power consumption of all the PoE ports in the system.
PAGE 333
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  System PoE Admin Allows user to enable or disable PoE function. It will cause all of PoE ports to Mode  PoE Management Mode supply or not to supply power. There are six modes for configuring how the ports/PDs may reserve power and when to shut down ports.  Consumption mode: The system offers PoE power according to PD real power consumption.
PAGE 334
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  PoE Mode There are three modes for PoE mode.  Enable: enable PoE function.  Disable: disable PoE function.  Schedule: enable PoE function in schedule mode.  Schedule Indicates the scheduled profile mode. Possible profiles are:  Profile1  Profile2  Profile3  Profile4  Priority The Priority represents PoE ports priority. There are three levels of power priority named Low, High and Critical.
PAGE 335
User’s Manual of LRP-822CS/LRP-1622CS 4.15.4 PoE Schedule This page allows the user to define PoE schedule and scheduled power recycling. PoE Schedule Besides being used as an IP Surveillance, the Managed PoE switch is certainly applicable to construct any PoE network including VoIP and Wireless LAN.
PAGE 336
User’s Manual of LRP-822CS/LRP-1622CS The screen in Figure 4-16-4 appears. Figure 4-16-4: PoE Schedule Screenshot Please press the Add New Rule button to start setting PoE Schedule function. You have to set PoE schedule to profile and then go back to PoE Port Configuration, and select “Schedule” mode from per port “PoE Mode” option to enable you to indicate which schedule profile could be applied to the PoE port.
PAGE 337
User’s Manual of LRP-822CS/LRP-1622CS  End Hour Allows user to set what hour PoE function does by disabling it.  End Min Allows user to set what minute PoE function does by disabling it.  Reboot Enable Allows user to enable or disable the whole PoE port reboot by PoE reboot schedule. Please note that if you want PoE schedule and PoE reboot schedule to work at the same time, please use this function, and don’t use Reboot Only function.
PAGE 338
User’s Manual of LRP-822CS/LRP-1622CS 4.15.5 PoE Alive Check Configuration The PoE Switch can be configured to monitor connected PD’s status in real time via ping action. Once the PD stops working and without response, the PoE Switch is going to restart PoE port power, and bring the PD back to work. It will greatly enhance the reliability and reduces administrator management burden. This page provides you with how to configure PD Alive Check. The screen in Figure 4-16-5 appears.
PAGE 339
User’s Manual of LRP-822CS/LRP-1622CS The page includes the following fields: Object Description  Mode Allows user to enable or disable per port PD Alive Check function. By default, all ports are disabled.  Ping PD IP Address This column allows user to set PoE device IP address for system making ping to the PoE device. Please note that the PD’s IP address must be set to the same network segment with the PoE Switch.
PAGE 340
User’s Manual of LRP-822CS/LRP-1622CS 4.16 Maintenance Use the Maintenance menu items to display and configure basic configurations of the LRP Managed Switch. Under maintenance, the following topics are provided to back up, upgrade, save and restore the configuration. This section has the following items: ■ Factory Default You can reset the configuration of the switch on this page. ■ Reboot Switch You can restart the switch on this page. After restart, the switch will boot normally.
PAGE 341
User’s Manual of LRP-822CS/LRP-1622CS 4.16.2 Reboot Switch The Reboot page enables the device to be rebooted from a remote location. Once the Reboot button is pressed, user has to re-login the Web interface for about 60 seconds. The Reboot Switch screen in Figure 4-16-2 appears and click to reboot the system. Figure 4-16-2 Reboot Switch Page Screenshot 4.16.3 Backup Manager This function allows backup of the current image or configuration of the LRP Managed Switch to the local management station.
PAGE 342
User’s Manual of LRP-822CS/LRP-1622CS 4.16.4 Upgrade Manager This function allows reloading of the current image or configuration of the LRP Managed Switch to the local management station. The Upgrade Manager screen in Figure 4-16-4 appears. Figure 4-16-4 Upgrade Manager Page Screenshot The page includes the following fields: Object Description  Upgrade Method Select upgrade method from this drop-down list.  Server IP Fill in your TFTP server IP address.
PAGE 343
User’s Manual of LRP-822CS/LRP-1622CS 4.16.5 Dual Image This page provides information about the active and backup firmware images in the device, and allows you to revert to the backup image. The web page displays two tables with information about the active and backup firmware images. The Dual Image Configuration and Information screens in Figure 4-16-5 & Figure 4-16-6 appear.
PAGE 344
User’s Manual of LRP-822CS/LRP-1622CS 5. SWITCH OPERATION 5.1 Address Table The Switch is implemented with an address table. This address table is composed of many entries. Each entry is used to store the address information of some nodes on the network, including MAC address, port no, etc. This information comes from the learning process of Ethernet Switch. 5.
PAGE 345
User’s Manual of LRP-822CS/LRP-1622CS 5.5 Auto-Negotiation The STP ports on the Switch have a built-in "Auto-negotiation". This technology automatically sets the best possible bandwidth when a connection is established with another network device (usually at Power On or Reset). This is done by detecting the modes and speeds when both devices are connected. Both 10BASE-T and 100BASE-TX devices can connect with the port in either half- or full-duplex mode.
PAGE 346
User’s Manual of LRP-822CS/LRP-1622CS 6. TROUBLESHOOTING This chapter contains information to help you solve your issue. If the LRP Managed Switch is not functioning properly, make sure the LRP Managed Switch is set up according to instructions in this manual.
PAGE 347
User’s Manual of LRP-822CS/LRP-1622CS connecting a different device in place of the switch. 4. If that device works, refer to the next step. 5.
PAGE 348
User’s Manual of LRP-822CS/LRP-1622CS APPENDIX A A.1 Switch's RJ45 Pin Assignments 1000Mbps, 1000BASE T Contact MDI MDI-X 1 BI_DA+ BI_DB+ 2 BI_DA- BI_DB- 3 BI_DB+ BI_DA+ 4 BI_DC+ BI_DD+ 5 BI_DC- BI_DD- 6 BI_DB- BI_DA- 7 BI_DD+ BI_DC+ 8 BI_DD- BI_DC- Implicit implementation of the crossover function within a twisted-pair cable, or at a wiring panel, while not expressly forbidden, is beyond the scope of this standard. A.
PAGE 349
User’s Manual of LRP-822CS/LRP-1622CS The standard cable, RJ45 pin assignment The standard RJ45 receptacle/connector There are 8 wires on a standard UTP/STP cable and each wire is color-coded.
PAGE 350
EC Declaration of Conformity For the following equipment: *Type of Product : 8-port Coax + 2-port 10/100/1000T + 2-port 100/1000X SFP Long Reach PoE over Coaxial Managed Switch *Model Number : LRP-822CS * Produced by: Manufacturer‘s Name : Manufacturer‘s Address : Planet Technology Corp. 10F., No.96, Minquan Rd., Xindian Dist., New Taipei City 231, Taiwan (R.O.C.).