SGS-5220 Series User Manual
Table Of Contents
- 1. INTRODUCTION
- 2. INSTALLATION
- 3. SWITCH MANAGEMENT
- 4. WEB CONFIGURATION
- 4.1 Main Web page
- 4.2 System
- 4.2.1 System Information
- 4.2.2 IP Configuration
- 4.2.3 IP Status
- 4.2.4 Users Configuration
- 4.2.5 Privilege Levels
- 4.2.6 NTP Configuration
- 4.2.7 Time Configuration
- 4.2.8 UPnP
- 4.2.9 DHCP Relay
- 4.2.10 DHCP Relay Statistics
- 4.2.11 CPU Load
- 4.2.12 System Log
- 4.2.13 Detailed Log
- 4.2.14 Remote Syslog
- 4.2.15 SMTP Configuration
- 4.2.16 Web Firmware Upgrade
- 4.2.17 TFTP Firmware Upgrade
- 4.2.18 Save Startup Config
- 4.2.19 Configuration Download
- 4.2.20 Configuration Upload
- 4.2.21 Configuration Activate
- 4.2.22 Configuration Delete
- 4.2.23 Image Select
- 4.2.24 Factory Default
- 4.2.25 System Reboot
- 4.3 Simple Network Management Protocol
- 4.4 Port Management
- 4.5 Link Aggregation
- 4.6 VLAN
- 4.7 Spanning Tree Protocol
- 4.8 Multicast
- 4.8.1 IGMP Snooping
- 4.8.2 Profile Table
- 4.8.3 Address Entry
- 4.8.4 IGMP Snooping Configuration
- 4.8.5 IGMP Snooping VLAN Configuration
- 4.8.6 IGMP Snooping Port Group Filtering
- 4.8.7 IGMP Snooping Status
- 4.8.8 IGMP Group Information
- 4.8.9 IGMPv3 Information
- 4.8.10 MLD Snooping Configuration
- 4.8.11 MLD Snooping VLAN Configuration
- 4.8.12 MLD Snooping Port Group Filtering
- 4.8.13 MLD Snooping Status
- 4.8.14 MLD Group Information
- 4.8.15 MLDv2 Information
- 4.8.16 MVR (Multicast VLAN Registration)
- 4.8.17 MVR Status
- 4.8.18 MVR Groups Information
- 4.8.19 MVR SFM Information
- 4.9 Quality of Service
- 4.9.1 Understanding QoS
- 4.9.2 Port Policing
- 4.9.3 Port Classification
- 4.9.4 Port Scheduler
- 4.9.5 Port Shaping
- 4.9.6 Port Tag Remarking
- 4.9.7 Port DSCP
- 4.9.8 DSCP-based QoS
- 4.9.9 DSCP Translation
- 4.9.10 DSCP Classification
- 4.9.11 QoS Control List
- 4.9.12 QCL Status
- 4.9.13 Storm Control Configuration
- 4.9.14 WRED
- 4.9.15 QoS Statistics
- 4.9.16 Voice VLAN Configuration
- 4.9.17 Voice VLAN OUI Table
- 4.10 Access Control Lists
- 4.11 Authentication
- 4.11.1 Understanding IEEE 802.1X Port-Based Authentication
- 4.11.2 Authentication Configuration
- 4.11.3 Network Access Server Configuration
- 4.11.4 Network Access Overview
- 4.11.5 Network Access Statistics
- 4.11.6 RADIUS
- 4.11.7 TACACS+
- 4.11.8 RADIUS Overview
- 4.11.9 RADIUS Details
- 4.11.10 Windows Platform RADIUS Server Configuration
- 4.11.11 802.1X Client Configuration
- 4.12 Security
- 4.12.1 Port Limit Control
- 4.12.2 Access Management
- 4.12.3 Access Management Statistics
- 4.12.4 HTTPs
- 4.12.5 SSH
- 4.12.6 Port Security Status
- 4.12.7 Port Security Detail
- 4.12.8 DHCP Snooping
- 4.12.9 Snooping Table
- 4.12.10 IP Source Guard Configuration
- 4.12.11 IP Source Guard Static Table
- 4.12.12 ARP Inspection
- 4.12.13 ARP Inspection Static Table
- 4.13 Address Table
- 4.14 LLDP
- 4.15 Network Diagnostics
- 4.16 Power over Ethernet (SGS-5220-24P2X only)
- 4.17 Loop Protection
- 4.18 RMON
- 4.19 Stack
- 5. SWITCH OPERATION
- 6. TROUBLESHOOTING
- APPENDIX A: Networking Connection
- APPENDIX B : GLOSSARY
- EC Declaration of Conformity
User’s Manual of SGS-5220 Series
13
IPv4 and IPv6 VLAN Routing for Secure and Flexible Management
To help customers stay on top of their businesses, the SGS-5220 switch series not only provides ultra high transmission
performance and excellent layer 2 technologies, but also offers IPv4/IPv6 VLAN routing feature which allows to crossover
different VLANs and different IP addresses for the purpose of having a highly secured, flexible management and simpler
networking application.
Robust Layer2 Features
The SGS-5220 series can be programmed for advanced switch management function, such as dynamic port link aggregation,
Q-in-Q VLAN, Multiple Spanning Tree Protocol (MSTP), Layer 2/4 QoS, bandwidth control and IGMP/MLD snooping. The
SGS-5220 series allows the operation of a high-speed trunk combining multiple ports. It enables up to 14 groups of 8 ports for
trunk maximum and supports connection fail-over as well.
Powerful Security
The SGS-5220 series offers comprehensive layer2 to layer4 access control list (ACL) for enforcing security to the edge. It
can be used to restrict to network access by denying packets based on source and destination IP address, TCP/UDP port
number or defined typical network applications. Its protection mechanism also comprises 802.1x Port-based and MAC-based
user and device authentication. With the private VLAN function, communication between edge ports can be prevented to
ensure user privacy.
Enhanced Security and Traffic Control
The SGS-5220 series also provides DHCP Snooping, IP Source Guard and Dynamic ARP Inspection functions to prevent IP
snooping from attack and discard ARP packets with invalid MAC address. The network administrator can now construct highly
secured corporate networks with considerably less time and effort than before.
User-friendly Secure Management
For efficient management, the SGS-5220 series managed switch series is equipped with console, web and SNMP management
interfaces. With the built-in web-based management interface, the SGS-5220 series offers an easy-to-use, platform
independent management and configuration facility. The SGS-5220 series supports SNMP and it can be managed via any
management software based on standard of SNMP v1 and v2 protocol. For reducing product learning time, the SGS-5220
series offers Cisco-like command via Telnet or console port and customer doesn’t need to learn new command from these
switches. Moreover, the SGS-5220 series offers remote secure management by supporting SSH, SSL and SNMPv3 connection
which can encrypt the packet content at each session.