24 PORTS 10/100BASE-T MANAGEMENT ETHERNET SWITCH WITH 2 1000BASE-X COMBO SFP SLOTS UPLINK Model: 500-7624FE2GC 0 SIGNAMAX a.s. Office: Vlarska 22, 627 00 Brno, CZ T:+420 533 338 854 l F:+420 533 338 883 l www.signamax.
Trademarks Contents subject to revise without prior notice. All other trademarks remain the property of their respective owners. Copyright Statement Copyright 2009, All Rights Reserved. This publication may not be reproduced as a whole or in part, in any way whatsoever unless prior consent has been obtained from Company. FCC Warning This equipment has been tested and found to comply with the limits for a Class-A digital device, pursuant to Part 15 of the FCC Rules.
Table of Contents 1. INTRODUCTION ............................................................................................................... 5 1.1 Switch Front and Rear Panel ....................................................................................... 5 1.2 Management Software & Interfaces ............................................................................. 6 1.3 Management Preparations ........................................................................................... 6 1.
2.6.15 VLAN command mode....................................................................................... 64 3. SNMP NETWORK MANAGEMENT ................................................................................ 69 4. WEB MANAGEMENT ..................................................................................................... 70 4.1 Information ................................................................................................................. 71 4.1.1 System Information......
4.3.13.1 DHCP Opt82 Settings ............................................................................... 106 4.3.13.2 DHCP Port Settings................................................................................... 107 4.3.13.3 Filter Configuration.................................................................................... 108 4.3.13.4 Configuring DHCP Snooping..................................................................... 110 4.3.13.5 Static IP Table Configuration ...................
1. INTRODUCTION Thank you for using the 24 10/100Mbps ports plus 2 or 4 uplink combo ports Managed Switch that is specifically designed for SMB (small and medium businesses) and FTTB applications. The Managed Switch provides a built-in management module that enables users to configure and monitor the operational status both locally and remotely. This User’s Manual will explain how to use command-line interface and Web Management to configure your Managed Switch.
1.2 Management Software & Interfaces Management options available for this Managed Switch are listed below: • • • Local Console Management Telnet Management SNMP Management Console Program The Managed switch has a built-in Command Line Interface (CLI) that allows you to configure the system, monitor the status, and reset the system. You can use this CLI as your only management system. However, another network management option, SNMPbased management system, is also available.
1000Base-X SFP Port The small form-factor pluggable (SFP) is a compact optical transceiver used in optical data communications applications. It interfaces a network device mother board (for a switch, router or similar device) to a fiber optic or unshielded twisted pair networking cable. It is a popular industry format supported by several fiber-optic component vendors.
RJ-45 DB-9 Port The RJ-45 DB-9 port is located on the front panel of the Managed Switch. This RJ-45 DB-9 port is used for local, out-of-band management. This DB-9 port is DTE; therefore, a null modem is required to connect the Managed Switch and the PC. With a connection through RJ-45 DB-9 port, users can configure and check the Managed Switch even when the network is down.
9 SIGNAMAX a.s. Office: Vlarska 22, 627 00 Brno, CZ T:+420 533 338 854 l F:+420 533 338 883 l www.signamax.
2. COMMAND LINE INTEFACE (CLI) This chapter introduces you how to use Managed Switch CLI, specifically in: • • • • Local Console Telnet Configuring the system Resetting the system 2.1 Using the Local Console Local Console is always done through the RS-232 DB-9 or RJ45 DB-9 port and requires a direct connection between the switch and a PC. This type of management is very useful especially when the network is down and the switch cannot be reached by any other means.
2.2 Remote Console Management - Telnet You can manage the Managed Switch via a Telnet session. However, you must first assign a unique IP address to the Switch before doing so. Use the Local Console to login the Managed Switch and assign the IP address for the first time.
NOTE: By default, the model name will be used for the prompt display. You can change the prompt display to the one that is ideal for your network environment using the hostname command (introduced in System Command Mode). However, for convenience, the prompt display “SWH” will be used consistently throughout this user’s manual. 2.3.
backup configure console disable exit help history ip While in Enable mode, enter the backup command. While in Enable mode, enter the configure command. While in Enable mode, enter the console command. While in Enable mode, enter the disable command. While in Enable mode, enter the exit command. While in Enable mode, enter the help command. While in Enable mode, enter the history command. While in Enable mode, enter the ip command. SWH(backup)# Backup a copy of configuration file via FTP or TFTP.
logout ping reboot restore service system upgrade user show write Enter Configuration mode While in Enable mode, enter the logout command. While in Enable mode, enter the ping command and followed by target IP. While in Enable mode, enter the reboot command. While in Enable mode, enter the restore command. While in Enable mode, enter the service command. While in Enable mode, enter the system command. While in Enable mode, enter the upgrade command. While in Enable mode, enter the user command.
Configuration exit help When in Config mode, enter the exit command. When in Config mode, enter the help command. When in Config mode, enter the acl command. When in Config dot.1x mode, enter the dot1x command. When in Config history mode, enter the history command. When in Config mode, enter the igmpfilter igmpfilter command. When in Config igmp mode, enter the igmp command. When in Config mac mode, enter the mac command. When in Config mirror mode, enter the mirror command.
security switch vlan show When in Config mode, enter the security command. When in Config mode, enter the switch command. When in Config mode, enter the vlan command. When in Config mode, enter the show command or enter the show command and followed by the command you would like to view its current setting. SWH(configsecurity)# SWH(configswitch)# SWH(configvlan)# SWH(config)# Configure Option82, Storm Control and Anti-broadcasting settings. Set up the max-frame.
2.3.3 General Commands This section introduces you some general commands that you can use in User, Enable, and Config mode, including “help”, “exit”, “history”, “logout”, and “show”. Entering the command… Enter the “help” command Enter the “exit” command Enter the “history” command Enter the “logout” command Enter the “show” command To do this… Obtain a list of available commands in the current mode. Return to the former mode or login screen. List all commands that have been entered. Logout from the CLI.
System Name: This shows the system name or related descriptions. System Location: This shows the system location. Model Name: This shows the product model name. Firmware Version: This shows the current firmware version of this Managed Switch. Serial Number: This shows the serial number of this Managed Switch. M/B Version: This shows the motherboard version of this Managed Switch. Date Code: This shows the date code of this Managed Switch.
Within QoS, the rate limit configurations can be set. You can type “show qos rate limit” in any mode to view its current setting. The Combination of Show Command and ? In User, Enable and Configuration mode, you can type “show” and followed by the command listed above to view its current setting. If there are sub-commands within a command (this is shown as […]), the Managed Switch can also show sub-commands available by issuing the show command and ?.
Type in the sub-command after “show dot1x” to view its current configurations. For example, if you issue “show dot1x sys” command, the following screen page appears. Show Currently-Configured Settings When you type a specific command in Enable or Config mode to configure or edit the setting of a certain function, you can type “show” to view the setting you have just configured or edited.
2.3.4 Listing Command After entering the question mark (?) at the prompt line, the screen will show a list of commands available for each command mode. 2- 3- 4- 1- 1. Command Prompt: The command prompt shows the mode that is currently configured. Users can type in commands or characters after the prompt. Currently configured mode Entering commands or characters 2. Command: This column lists all commands that are available in the current mode. 3.
2.3.6 Press Spacebar to Continue When a command generates more than one page outputs, the prompt “Press Spacebar to continue or any key to exit!” will be displayed at the bottom of the screen. Simply press spacebar to view next page information or press any key to return to the prompt line. 2.3.7 Conventions In CLI, some conventions are used consistently to express uses of a parameter. Common conventions are described below.
2.3.8 Login Username & Password Default Login When the Managed Switch is turned on, the boot-up message will be displayed first and then followed by username and password prompt. The default login username is admin and no password is required for default setting, thus press Enter key in password prompt. When system prompt shows “>”, it means that the user has successfully entered the User mode.
2.4 User Mode When the Managed Switch is turned on, the boot-up message will be displayed first and then followed by username and password prompt. The default login username is admin and no password is required for default setting, thus press Enter key in password prompt. When system prompt shows “SWH>”, it means that the user has successfully entered the User mode.
Command backup configure console disable exit help history ip logout ping reboot restore service system time-server upgrade user write Description Backup a copy of configuration file via FTP or TFTP. Enter Configuration mode. Set up time-out time. Exit Enable mode and return to User Mode. Exit Enable mode and return to User Mode. Display a list of available commands in Enable mode. Show a list of commands that have been entered. Assign the IP addresses manually. Logout from the Managed Switch.
2.5.2 Console command mode Enter the console command in Enable mode. Then, the console mode shows as follows: SWH# console SWH(console)# Command =================== time-out exit show SWH(console)# Prompt SWH(console)# Purpose & Description =========================== Set Time Out Exit from current mode Usage ============================= time-out exit Show Console Settings show Command &Parameter time-out Description To disconnect the Managed Switch when the user is inactive.
this Managed Switch. (Default IP address is 192.168.0.1) For example: SWH(ip)# address 192.110.1.2 Specify the subnet mask to the Switch IP address. The default subnet mask values for the three Internet address classes are as follows: Class A: 255.0.0.0 Class B: 255.255.0.0 Class C: 255.255.255.0 For example: SWH(ip)# address 192.110.1.2 255.255.255.0 Specify the IP address of a gateway or a router, which is responsible for the delivery of the IP packets sent by the Switch.
2.5.5 Restore command mode Enter the restore command in Enable mode. When the restore command is issued, you can load the default factory settings but keep the assigned IP address by adding the optional “keep-ip” parameter. Prompt SWH# Command & Parameter restore [keep-ip] Description Load the default factory settings. When restoring is in process, the Managed Switch will reboot automatically. : Load default factory settings.
SWH(snmpcommunity)# add Add a new community in SNMP. The name of the community is limited to 20 alphanumeric characters long. : Enter the community name.
is completely forbidden. NOTE 1: When the community browses the Managed Switch without proper access right, the Managed Switch will respond nothing. For example, if a community only has Read & Write privilege, then it cannot browse the Managed Switch’s user table. NOTE 2: If you would like to edit the settings of your new account, you can enter the command community community name under the SWH(service-snmp)#.
SWH(snmp-trapdest_trap id)# show state Show each trap’s (1~10) detailed settings. To enable or disable this trap destination. destination For example: SWH(snmp-trap-dest_trap id)# state enable Specify the IP address of this trap destination. community : Enter the trap destination IP address. Enter the community name.
sysname syslocation hostname exit show Enter a unique name for this Managed Switch of up to 55 alphanumeric characters. Use a descriptive name to identify the Managed Switch in relation to your network, for example, “Backbone 1”. This name is mainly used for reference only. Enter a unique location for the Managed Switch of up to 55 alphanumeric characters. Enter a new hostname prompt for this Managed Switch of up to 15 alphanumeric characters.
SWH(time-server)# and press enter. : 1~146 To enable or disable the daylight saving time function. To offset 1 hour or 2 hours for daylight saving function. Quit the current mode and return to Enable mode. Show currently-configured time server settings. day-saving offset exit show 2.5.9 Upgrade command mode Enter the upgrade command in Enable mode.
2.5.10 User command mode Enter the user command in Enable mode.
password For example: SWH(user_username)# state enable Set up a password for this user account. description : Enter the password for this user account of up to 20 alphanumerical characters. Enter the description for this user account. ip ip_addr level : Enter the description for this user account of up to 35 alphanumerical characters.
2.6 Configuration Mode In Configuration mode, you can set up advanced switching functions, such as QoS, VLAN, Remarking. Enter the configure (or config for short) command after SWH# directory and type in “?” to view a list of available commands in Config mode. SWH(config)# Command =================== acl exit help history dot1x igmpfilter igmp mac mirror mvr multicast port qos remarking stp security switch vlan Purpose & Description =========================== Enter ACL Cmd.
2.6.1 ACL command mode Enter the acl command in Config mode.
or in-port : Specify “any” to denote any ports are ingress ports or specify a port number. For example: frame-type SWH(config-acl_100)# in-port any Set up which frame type applies to this rule. : Four frame types are available for selection. Any: Specify “any” to denote any frame types. Ethernet: Specify “ethernet” to denote the frame type that conforms to 802.3 Ethernet standard.
through. ipv6 ipv6-mld source-ip : Any: Any IP versions will apply. Enable: IP must be version 4. Disable: IP does not have to be version 4. To enable or disable IPv6 traffic to pass through. : Any: Any IP versions will apply. Enable: IP must be version 6. Disable: IP does not have to be version 6. Enable or disable IPv6 MLD (Multicast Listener Discovery) function.
protocol Specify the IP protocol to be used. tos : Specify “any” denote any protocols or specify the type of transport packets used e.g. 1=ICMP, 6=TCP, 17=UDP. Specify TOS (Type of Service) priority level. source-port : Specify “any” to denote any priority levels or specify a priority level between 0 and 255. Configure the source port number that applies to this rule.
For example: SWH(config_acl-100)# permit-type mirror Logging: Specify “logging” to limit the number of packets. When this is used, you need to use logging <1-128> parameter to indicate how many packet size you would like to use. For example: SWH(config_acl-100)# permit-type logging SWH(config_acl-100)# logging 50 Ratelimit: Specify “ratelimit” to apply rate limiting settings. When this is used, you need to use rate-lim <1-128> parameter to indicate which rate ID you would like to use.
redir-port <1-26> or redir-port <1-28> Copytocpu: Specify “copytocpu” to send a copy of packets to CPU. Configure which port is the redirect port. newsvid <1-4094> <1-26>: Specify a port number between 1 and 26. When action is set to “redirect”, packets will be sent to the designated redirect port. Specify a logging ID that applies to this ACL rule. Specify the rate limiting ID that applies to this ACL rule. Specify a new service provider VID.
Prompt SWH(configdot1x-sys)# Command & Parameter server secret maxquery <1-16> Description Specify IP address for an external RADIUS authentication server. : Specify RADIUS Authentication server IP address. The identification word or number assigned to each RADIUS authentication server with which the client shares a secret. Notice that the Managed Switch and authentication server must have the same secret.
SWH(configdot1x)# state Enable or disable ports’ Dot.1X authentication. When clients connect to these Dot.1X-enabled ports, they will be prompted with username and password. : Specify a port number or multiple port numbers with the format 5, 7, 8, 9, 12 or 5, 7-9, 12. authentic For example: SWH(config-dot1x)# state 1-4,10-15,18,19 enable This will send out authentication message to the selected clients immediately.
vlanstate SWH(config-igmp)# router-port 1-4,1015,18,19 When enabled, the port in VLAN will monitor network traffic and determine which hosts want to receive the multicast traffic. : Specify an existing VLAN ID. vlanserver For example: SWH(config-igmp)#vlanstate 1 enable Assign a multicast IP address statically. This IP address is usually provided by the service provider. : Specify an existing VLAN ID. : Specify a multicast IP address.
Prompt SWH(configsegment)# Command & Parameter add Description To create a new segment. : Specify a segment ID from 1 to 400. : Specify a segment name of up to 20 characters. : Specify the multicast IP range. The available IP range is from 224.0.1.0~238.255. 255.255 delete For example: SWH(config-segment)# add 2 myseg 224.0.1.5 235.255.255.253 To delete an existing segment. : Specify the segment ID that you would like to delete.
igmpfilter)# channel <1-128> you would like to use IGMP filtering function, make sure IGMP is activated; otherwise, IGMP filtering will not be enabled even though you issue “enable” command. Specify the maximum transport multicast channels that can be received. : Specify a port number or multiple port numbers with the format 5, 7, 8, 9, 12 or 5, 7-9, 12. <1-128>: Specify the channel number between 1 and 128.
: Specify the MAC address that applies to this rule. : Specify a VLAN ID (1~4094) that this port belongs to. : For 26-port Managed Switch, enter the forwarding port number 1~26 or specify “filter” or “27” to filter packets. For 28port Managed Switch, enter the forwarding port number 1~28 or enter 29 to filter packets.
: Enter a range of port number (1~26 or 1~28) or enter “0” to disable port mirroring function. target-port For example: SWH(config-mirror)# port 1-4,10-15,18,19 Specify the preferred target port for mirroring. : Enter a port number (1~26 or 1~28) or specify “0” or “disable” to turn this function off. For example: SWH(config-mirror)# target-port 24 Quit the current mode and return to Configuration mode. Show current mirror settings.
address. delete For example: SWH(config-mvr)# add 4094 1-4,10-15,18,19 5-9,16,17 xxx.xxx.xxx.xxx To delete a registered MVR VLAN ID. : 1~4094 exit SWH(configmvr_vlan_id)# SWH(config-mvrgroup)# show Edit details of an existing MVR entry. For example: SWH(config-mvr)# delete 4094 Quit the current mode and return to Configuration mode. Show current MVR VLAN information. If you would like to modify an existing MVR entry, you can enter mvr vlan_id after SWH(config)#.
2.6.8 Multicast command mode Enter the multicast command in Configuration mode.
2.6.9 Port command mode Enter the port command in Configuration mode. Prompt SWH(config)# Command &Parameter port state port media port type port speed <1000 | 100 | 10> port duplex port flow-control Description : “all” means that port 1 to 26 will be configured.
2.6.10 QoS command mode Network traffic is always unpredictable and the only basic assurance that can be offered is the best effort traffic delivery. To overcome this challenge, Quality of Service (QoS) is applied throughout the network. This ensures that network traffic is prioritized according to specified criteria and receives preferential treatments.
queue 1 through 8 respectively. primap For example: SWH(config-qos)# weight 2-5,10,12 1:2:4:8 To specify a priority to a queue. : 0~7 : 0~7 dscpmap For example: SWH(config-qos)# primap 1-5 2 To specify DSCP classification identification number to a queue. : 0-63 : 0-7 SWH(config-qosrate-limit)# ingress SWH(config-qos)# dscpmap 1-5, 10, 13 1 To specify the ingress bit rate of the selected ports.
2.6.11 Remarking command mode Enter the remarking command in Configuration mode. Then, the remarking mode shows as follows: SWH(config)# remarking SWH(config-remarking)# Command Purpose & Description =================== =========================== dscp Set DSCP Remarking Port 802.1p Set 802.
SWH(configremarking-qmapping)# show Show current settings. 2.6.12 STP command mode Enter the stp command in Configuration mode. Then, the stp mode shows as follows: SWH(config)# stp SWH(config-stp)# Command =================== sys state path-cost priority edge p2p exit show SWH(config-rstp)# Prompt SWH(config-stpsys)# Purpose & Description =========================== Enter Sys Cmd.
but can be adjusted between 1 and 10 seconds. : 1~10 seconds delay For example: SWH(config-stp-sys)# hello-time 2 It is the time spent in each Listening and Learning state before the Forwarding state is entered. This forward delay occurs when a typology changes (a new bridge comes onto a busy network). If a switch changes too often, it is possible that not all network links will be ready to change their state and loops can happen as a result.
5, 7-9, 12. : 0~200000000 priority For example: SWH(config-stp)# path-cost 1-4,10-15,18,19 100000 To specify each port’s priority. : Specify a port number or multiple port numbers with the format 5, 7, 8, 9, 12 or 5, 7-9, 12 : 0:0 1:16 2:32 3:48 4:64 5:80 6:96 7:112 8:128 9:144 10:160 11:176 12:192 13:208 14:224 15:240 edge For example: SWH(config-stp)# priority 1-4,10-15,18,19 8 To enable or disable port edge.
2.6.13 Security command mode Enter the security command in Configuration mode. Then, the security mode shows as follows: SWH(config)# security SWH(config-security)# Command Purpose & Description =================== =========================== opt82 Enter Opt82 Cmd. Mode sourceguard Set Source Guard snooping Enter DHCP Cmd. Mode isolation Set Port Isolation ipv6-filter Set IPv6 Filter upnp-filter Set UPnP Filter static-ip Enter Static IP Cmd. Mode storm Enter Control Cmd.
exit show SWH(configsecurity)# sourceguard 4,10-15,18,19 Quit the current mode and return to Security Configuration mode. Show or verify currently-configured Option82 settings. To specify authorized access information for each port. : Specify a port number or multiple port numbers with the format 5, 7, 8, 9, 12 or 5, 7-9, 12 : Three options are available. Unlimited: Non-Limited (Static IP or DHCP assigns IP).
exit show : Specify a subnet mask. : 1~4094 : 1~24 Quit the current mode and return to Security Configuration mode. Show or verify currently-configured Static-IP settings. 61 SIGNAMAX a.s. Office: Vlarska 22, 627 00 Brno, CZ T:+420 533 338 854 l F:+420 533 338 883 l www.signamax.
SWH(configsecurity-storm)# unicast To set up unicast packet rate by port. : Specify a port number or multiple port numbers with the format 5, 7, 8, 9, 12 or 5, 7-9, 12 : Specify each port’s unknown unicast packet rate. Allowable unicast packet rate for port 1through 24 is 0~148810 and for port 25~26 (25~28) is 0~1048575. multicast For example: SWH(config-security-storm)# unicast 5000 To set up multicast packet rate by port.
port numbers with the format 5, 7, 8, 9, 12 or 5, 7-9, 12 : Enable or disable port state. For example: SWH(config-security-anti-bcast)# state 1-4, 10-15, 18, 19 enable Quit the current mode and return to Configuration mode. Show or verify currently-configured settings. exit show 2.6.14 Switch command mode Enter the switch command in Config mode.
2.6.15 VLAN command mode Enter the vlan command in Configuration mode. The vlan mode shows as follows: SWH(config)# vlan SWH(config-vlan)# Command =================== mode filter ethertype port-base dot1q srv-vlan proto-vlan frame-type mgt-vlan pvid svid egress exit show SWH(config-vlan)# Prompt SWH(config-vlan)# Purpose & Description =========================== VLAN Mode Ingress Filter Mode Ether Type Enter Port Base Cmd. Mode Enter Dot1q Cmd. Mode Enter SVLAN Cmd.
or : Specify an existing port-based VLAN name or index number (1~26). exit show SWH(config-vlandot1q)# add [name] For example: SWH(config-vlan-port-base)# delete myvland Quit the current mode and return to VLAN mode. Show or verify currently-added or deleted port-based VLANs. To add a new VLAN entity. : 1~4094 : Specify a port number or multiple port numbers with the format 5, 7, 8, 9, 12 or 5, 7-9, 12. Indicate “27” to denote CPU.
delete To delete a registered service VLAN. srv-port [enable | disable] For example: SWH(config-vlan-service)# delete 2 To set up which port or ports are service ports that allow double-tagged packets to pass through. : Specify a port number or multiple port numbers with the format 5, 7, 8, 9, 12 or 5, 7-9, 12. [enable | disable]: To enable or disable service ports.
SWH(config-vlan)# frame-type To enable or disable the frame type. Two frame types are available, these are “all” or “tagged”. The default setting is “all” to all ports. “tagged” means that the port will only receive VLAN-tagged packets. When ports are set to “all”, they will receive both VLANtagged and untagged packets. : Specify a port number or multiple port numbers with the format 5, 7, 8, 9, 12 or 5, 7-9, 12.
8, 9, 12 or 5, 7-9, 12. : “normal” means that egress traffic will be based on VLAN table settings. Specifying “un-modify” when you would like egress traffic to stay intact. In other words, frames that are tagged will stay tagged; frames that are untagged will stay untagged. exit show For example: SWH(config-vlan)# egress 1-4,10-15,18,19 un_modify Quit the current mode and return to Configuration mode. Show or verify VLAN configurations. 68 SIGNAMAX a.s.
3. SNMP NETWORK MANAGEMENT The Simple Network Management Protocol (SNMP) is an application-layer protocol that facilitates the exchange of management information between network devices. It is part of the TCP/IP protocol suite. SNMP enables network administrators to manage network performance, find and solve network problems, and plan for network growth. SNMP consists following key components, Managed device is a network node that contains SNMP agent.
4. WEB MANAGEMENT The Managed Switch provides Web Management for users to manage and monitor its realtime operational status via a Web browser. However, before accessing it, you must first assign a unique IP address to the Managed Switch. Use the RS-232 DB-9 console port or use a RJ45 LAN cable and any of the 10/100Base-T RJ-45 ports of the Managed Switch (as the temporary RJ-45 Management console port) to login to the Managed Switch and set up the IP address for the first time.
1. Information: Change the company name, system contact, name and location and add a new user or remove an existing user. 2. Network Management: Set up or view the IP address and related information of the Managed Switch required for network management applications. 3. Switch Management: Set up switch/port configuration, VLAN configuration and other functions. 4. Switch Monitor: View the operation status and traffic statistics of the ports. 5. System Utility: Firmware Upgrade, Load Factory Settings, etc. 6.
4.1.1 System Information Select System Information from the Information menu then the following screen page appears. Company Name: Enter a company name for this Managed Switch of up to 55 alphanumeric characters. System Object ID: View-only field that shows the predefined System OID. System Contact: Enter contact information for this Managed switch of up to 55 alphanumeric characters. System Name: Enter a unique name for this Managed Switch, up to 55 alphanumeric characters.
4.1.2 User Authentication To prevent any un-authorized operations, only registered users are allowed to operate the Managed Switch. Any users who want to operate the Managed Switch need to register into the user list first. To view or change current registered users, select User Authentication from the Information menu and then the following screen page shows up. User Name: Enter the login username. Password: Enter the login password for this account. Confirm Password: Enter the login password to confirm.
When you want to modify an account’s password, description or console level, click the “Edit” button on the entry so that each field becomes editable. When you make some modifications to the entry, click the “Change” button to make changes effective and this revised entry will appear in the registered list below. When you want to remove a username account, click the “Delete” button to remove the entry. Please note that before you can delete the entry you must confirm your password.
4.2.1 Network Configuration Click the option Network Configuration from the Network Management menu and then the following screen page appears. MAC Address: This view-only field shows the unique and permanent hardware address assigned to the Managed switch. You cannot change the Managed Switch’s MAC address. IP Assignment: There are two configuration types that users can choose from; these are “DHCP” and “Static lP”.
4.2.2 System Service Click the option System Service from the Network Management menu and then the following screen page appears. Telnet Service: To enable or disable the Telnet Management service. Telnet Port: View-only field that shows the Telnet port number. Telnet port number is set to 23 permanently. You can not change its setting. Console Time Out: Specify the desired time that the Managed Switch will wait before disconnecting an inactive console/telnet session.
4.2.3 Time Server Configuration Click the option Time Server Configuration from the Network Management menu and then the following screen page appears. Time Synchronization: To enable or disable time synchronization. Time Server Address: Enter the NTP time server address. 2nd Time Server Address: Enter the NTP time server address. When the default time server is down, the Managed Switch will automatically connect to the second time server.
4.2.4 Device Community Click the option Device Community from the Network Management menu and then the following screen page appears. Account State: Enable or disable this Community Account. Community: Specify the authorized SNMP community name of up to 20 alphanumeric characters. Description: Enter a unique description for this community name of up to 35 alphanumeric characters. This is mainly for reference only. SNMP Level: Click the pull-down menu to select the desired privilege for the SNMP operation.
4.2.5 Trap Destination Click the option Trap Destination from the Network Management menu and then the following screen page appears. Only 10 trap destination accounts can be used. For each account, click the “Edit” button to change its state and modify its destination IP address and community description. State: Enable or disable the function of sending trap to the specified destination. Destination: Enter the specific IP address of the network management system that will receive the trap.
Power Down: Enable or disable the Managed Switch to send a trap notice while the Managed Switch is power down. 4.3 Switch Management Click Switch Management folder from the Main menu and then the following sub-items appear. 1. Switch Configuration: Set up the maximum frame size. 2. Port Configuration: Enable or disable port speed, flow control, etc. 3. Port Mirroring: Set up target port and source port to enable traffic monitoring. 4. DSCP Remark: Set up queues and DSCP mappings. 5.
4.3.1 Switch Configuration Click the option Switch Configuration from the Switch Management menu and then the following screen page appears. Max Frame: Select the maximum transmitting and receiving frame size from the pull-down menu. When the Managed Switch transmits or receives a frame larger than the specified value, it will be discarded. 4.3.2 Port Configuration Click the option Port Configuration from the Switch Management menu and then the following screen page appears.
Port Speed: When you select Manual port type, you need to further specify the transmission speed of the port(s). For port 1~24, either 10Mbps or 100Mbps can be selected. For port 25~26, 10Mbps, 100Mbps, or 1000Mbps are available for selection. Duplex: When you select Manual port type, you can further specify the current operation Duplex mode (full or half duplex) of the port(s). Flow Control: Enable or disable the flow control. 4.3.
Remarking Ports Remark DSCP: Tick the checkbox on the port that you would like to enable its DSCP remarking. Remark 802.1p: Tick the checkbox on the port that you would like to enable its 802.1p remarking. Queue Mapping DSCP: Assign a DSCP value (0~63) to each queue. 802.1p: Assign a 802.1p value (0~7) to each queue. 4.3.5 Static Multicast Configuration Select the option Static Multicast Configuration from the Switch Management menu and then the following screen page appears.
4.3.6 Rapid Spanning Tree The Spanning Tree Protocol (STP), defined in the IEEE Standard 802.1d, creates a spanning tree within a mesh network of connected layer-2 bridges (typically Ethernet switches) and prevents loops when you establish redundant links. Those links become important when one of the links goes down. As mentioned, multiple active paths between network nodes cause a bridge loop. Bridge loops create several problems.
4.3.6.1 RSTP Switch Settings Select the option RSTP Switch Settings from the Rapid Spanning Tree menu and then the following screen page appears. System Priority: When switches on a segment decide which switch becomes a root bridge, they exchange BPDU frames to determine which switch has the lowest BID. BID mainly contains two parts. The first part is system priority. Each interface is associated with a port (number) in the STP code. By default, every switch’s system priority is 32768.
4.3.6.2 RSTP Physical Port Settings Select the option RSTP Physical Port Settings from the Rapid Spanning Tree menu and then the following screen page appears. Port Number: This field shows the port number that you would like to edit. Port State: Enable or disable each port’s RSTP or STP state. Path Cost: Enter each port’s path cost. By default, each port has the same path cost which is 1. Each switch has a relative cost that is used to decide the shortest path to forward a packet.
4.3.7 802.1X Configuration IEEE 802.1x standard is a port-based access control and authentication protocol that prevents unauthorized clients from connecting to LAN via publicly accessible switch ports. The clients or workstations requesting access to LAN should run 802.1x compliant software; otherwise, the clients will not be granted access to LAN. Once clients successfully authenticate with the authentication server, all ingress and egress traffic from clients can pass through the port.
4.3.7.1 802.1X System Select the option 802.1X System from the 802.1X Configuration menu and then the following screen page appears. Server IP: Specify RADIUS Authentication server IP address. Secret: Specify a shared secret of up to 30 characters. This must be the same secret as the RADIUS Authentication server. Max Query: Specify the maximum number of authentication attempts between 1 and 16. Users who fail to authenticate will not grant access to the switch.
4.3.7.2 802.1X Port Admin State Select the option 802.1X Port Admin State from the 802.1X Configuration menu and then the following screen page appears. Admin State: Enable each port’s 802.1x function. When the client connects to the 802.1xenabled port, it should authenticate with the authentication server. 4.3.7.3 802.1X Port Reauthenticate Select the option 802.1X Port Reauthenticate from the 802.1X Configuration menu and then the following screen page appears.
VLAN: Specify the existing VLAN ID (1~4094) where packets with the destination MAC address can be forwarded. Forwarding Port: When the incoming packets are from the specified MAC address, they can be filtered or sent to the specified forwarding port. 4.3.9 VLAN Configuration A Virtual Local Area Network (VLAN) is a network topology configured according to a logical scheme rather than the physical layout. VLAN can be used to combine any collections of LAN segments into a group that appears as a single LAN.
4. 802.1q Protocol VLAN: Configure which protocols are used to divide VLANs. 5. Management VLAN: Configure which port(s) are management ports. 6. Prot-based VLAN: Configure Port-based VLAN rules. 4.3.9.1 802.1q Tag VLAN Select the option 802.1q Tag VLAN from the VLAN Configuration menu and then the following screen page appears. VLAN Mode: When enabled, the forwarding decision will depend on the tag attached in frames. When disabled, the forwarding decision will depend on each port’s PVID setting.
Port 21 is not a member in VLAN 100: If Port 21 is not a member of VLAN 100, traffic from Port 21 will be discarded. Ingress Filter is disabled When Ingress Filter is disabled, traffic from a port will be forwarded to ports that have the same VID. For example, in the figure provided below, traffic with VID 100 will be forwarded to all member ports in VLAN 100; these are Port 22, 23, 24. Ether Type: To specify the Ether type in hexadecimal notation. CPU VID: View-only field that shows the CPU VLAN ID.
Egress Mode: To specify whether egress traffic is normal or unmodified. “normal” means that the tag that egress traffic carries will compare with its PVID. If the tag and PVID are identical, the egress traffic will be forwarded untagged. If the tag and PVID are different, egress traffic will be forwarded with a PVID. Specifying “un-modify” when you would like egress traffic to stay intact. In other words, frames that are tagged will stay tagged; frames that are untagged will stay untagged.
Service VLAN table is used to set up the membership of a service VLAN. Uplink traffic from a certain port generally contains two tags. The first tag will be checked against Service VLAN table. If traffic from the port belongs to a service VLAN, then it will check the second tag and see whether it have ports to forward to. Name: Enter a name for this Service VLAN entry. VID: Specify a VID for this VLAN entry. Member Port: Tick the checkbox on ports if you would like them to become a member of this entry. 4.
CPU VID: Specify a VID to CPU. The range is between 1 and 4094. Tag Mode: To set up whether ingress traffic from the management port is tagged or untagged. Management Port: Tick the checkbox on ports that you would like them to become a management port that has management capabilities of a switch. Click the “Submit” button to apply the settings. Please note that before you logout from the Managed Switch, you have to save configurations; otherwise, all changes will not be saved to Flash. 4.3.9.
Network traffic is always unpredictable and the only basic assurance that can be offered is the best effort traffic delivery. To overcome this challenge, Quality of Service (QoS) is applied throughout the network. This ensures that network traffic is prioritized according to specified criteria and receives preferential treatments. QoS enables users to assign various grades of network service to different types of traffic, such as multi-media, video, protocol-specific, time critical, and file-backup traffic.
Default Class: Enter the default class value between 0 and 7. Mode: There are two different queuing modes available. “Strict” indicates that services to egress queues are offered in the sequential order and all traffic with higher priority queues are transmitted first before lower priority queues are serviced. “Weighted” shares bandwidth at egress ports by using scheduling weights 1, 2, 4, 8 for queue 1 through 4 respectively. Weight (Q0~Q7): Specify a weight value to each queue (Q0~Q7). 4.3.10.
Port No.: This field shows the port number that you would like to edit. Ingress Rate: Ingress bit rate for port 1~24 is between 128 to 100000KBits/Sec and between 128 and 1000000 KBits/Sec for port 25 and 26 (or port 25~28). Indicating “0” is to disable ingress rate limit. Egress Rate: Engress bit rate for port 1~24 is between 128 to 100000KBits/Sec and between 128 and 1000000 KBits/Sec for port 25 and 26 (or port 25~28). Indicating “0” is to disable egress rate limit. 4.3.
Select the folder IGMP Snooping from the Switch Management menu and then the following screen page appears. 1. IGMP Configuration: To enable or disable IGMP, Unregistered IPMC Flooding and set up router ports. 2. IGMP VLAN ID: To set up the ability of IGMP snooping and querying with VLAN. 3. IPMC Segment: To create, edit or delete IPMC segment. 4. IPMC Profile: To create, edit or delete IPMC profile. 5. IGMP Filtering: To enable or disable IGMP filter and configure each port’s IGMP filter. 4.3.11.
before removing an interface. Router Port: Tick the checkbox on ports if you would like them to become multicast router ports. 4.3.11.2 IGMP VLAN ID Select the option IGMP VLAN ID from the IGMP Snooping menu and then the following screen page appears. VLAN Name: View-only field that shows the existing VLAN entry’s descriptions. VID: View-only field that shows the existing VLAN IDs. Snooping: Enable or disable IGMP snooping function. Server IP: Enter the server IP address. 4.3.11.
4.3.11.4 IPMC Profile Select the option IPMC Profile from the IGMP Snooping menu and then the following screen page appears. Profile Name: Enter a descriptive name for this profile. Up to 20 characters are allowed. Segment: Enter the existing segment IDs for this profile. Click “Insert” to add this rule in the IPMC profile table below. 101 SIGNAMAX a.s. Office: Vlarska 22, 627 00 Brno, CZ T:+420 533 338 854 l F:+420 533 338 883 l www.signamax.
4.3.11.5 IGMP Filtering An IGMP filtering function enables users to define a range of multicast groups that clients connected to the switch are able to join. In this way, the distribution of multicast services based on filtering rules can be controlled. This is carried out by uses of IGMP filtering profiles that contain several segments, each specifying a range of multicast IP addresses. Filter: To enable or disable IGMP filtering function.
Enable MVR global setting. Create MVR VLAN and indicate the Source port and Receive port. Create MVR Groups whose multicasting channels would belong to MVR VLAN. Enable VLAN Aware in MVR Source Port. In a normal condition, Tag multicasting stream injects to Source port. (Optional) Setting VLAN Port Egress mode in MVR Receiver port. In a normal condition, Un-tag multicasting stream forward to receive port.
4.3.12.1 MVR Settings Select the option MVR Settings from the MVR Configuration menu and then the following screen page appears. MVR Mode: To enable or disable MVR global settings. Click the “Submit” button to make your setting effective. MVR VLAN Table VID: View-only field that shows the specified MVR VLAN ID for current configuration. Click the “Insert” button to register a new MVR VLAN ID and then the following screen page appears. VLAN ID: Specify a VLAN ID for multicast VLAN.
Source port: Uplink ports resided in multicast VLAN and send and reecive multicast data are selected as source ports. Please note that the source ports specified here should be router ports as well. Refer to IGMP Configuration section for detailed explanations on setting up router ports. 4.3.12.2 MVR Group Select the option MVR Group from the MVR Configuration menu and then the following screen page appears. MVR Group Table VID: Specify a VLAN ID number that is registered in MVR Settings.
Each port’s (Port Number 1~24) configuration for DHCP, Static IP or Unlimited. Select the folder SKA Configuration from the Switch Management menu and then the following screen page appears. 1. DHCP Opt82 Settings: To enable or disable DHCP Option 82 relay agent global setting and show each port’s configuration. 2. DHCP Port Settings: Customer port (Port 1~24) DHCP snooping setting. 3. Filter Configuration: Customer port (Port 1~24) filtering setting. 4.
Relay Agent: To enable or disable DHCP Option 82 Relay Agent Global setting. When enabled, Relay Agent Information option is inserted by the DHCP relay agent when forwarding client-originated DHCP packets to a DHCP server. Servers recognizing the Relay Agent Information option may use the Information to implement IP address or other parameter assignment policies.
Source Guard: To specify authorized access information for each port. There are three options available. Unlimited: Non-Limited (Static IP or DHCP-assigned IP). DHCP: DHCP server assigns IP address. Fixed IP: Only Static IP (You must create Static IP table first. Refer to Static IP Table Configuration for further information.). 4.3.13.3 Filter Configuration Select the option Filter Configuration from the Security Configuration menu and then the following screen page appears.
UPnP Filter: Enable or disable UPnP filter. 109 SIGNAMAX a.s. Office: Vlarska 22, 627 00 Brno, CZ T:+420 533 338 854 l F:+420 533 338 883 l www.signamax.
4.3.13.4 Configuring DHCP Snooping When you want to use DHCP Snooping function, follow the steps below to enable a client to receive an IP from DHCP server. Step 1. Select each port’s IP type Select “Unlimited” or “DHCP” Step 2. Enable DHCP Snooping Step 3. Connect your clients to the Managed Switch After you complete Step 1 & 2, connect your clients to the Managed Switch. Your clients will send a DHCP Request out to DHCP Server soon after they receive a DHCP offer.
4.3.13.5 Static IP Table Configuration Select the option Static IP Table Configuration from the Security Configuration menu and then the following screen page appears. IP Address: Enter the static IP address that you would like to add to the table. Mask: Select the Subnet Mask. Port: Select the port number that this static IP address can pass through. Click “Insert” to add this entry to Static IP Table. Click “Edit” to modify the settings of the selected entry.
4.3.13.7 Anti-broadcast Control Select the option Anti-broadcast Control from the Security Configuration menu and then the following screen page appears. Polling Interval: Specify a time interval for how often the Managed Switch checks or refreshes broadcast traffic. By default, the polling interval is 3 seconds. Broadcast: To set up each port’s broadcast packet rate per second. The packet rate for port 1through 24 is 0~148810. The packet rate for port 25~26 (or 25~28) is 0~1048575.
4.3.14.1 ACL Rate Limiter Configuration Select the option ACL Rate Limiter Configuration from the Access Control List Management menu and then the following screen page appears. Click the “Edit” button on the entry that you would like to modify. ID: The total of 128 entries can be configured. Rate: Specify the rate for each rate limiting entry. Click the “Change” button to save your new settings in the Rate Limiter Table below. 4.3.14.
Rule: View-only field that shows details of each ACL rule. Click the “Insert” button to add a new ACL rule. Click the “Edit” button on the entry that you would like to modify and then click the “Change” button to enter the editing screen page. Click the “Delete” button to remove the entry from the ACL Rule Table. Rule ID: Specify an ACL ID (1~300) for this rule. Each ID can only be used once. 114 SIGNAMAX a.s. Office: Vlarska 22, 627 00 Brno, CZ T:+420 533 338 854 l F:+420 533 338 883 l www.signamax.
Ingress Port: Select which port is the ingress port. Select “any” to denote any ports are ingress ports or select a port number Frame Type: Select which frame type applies to this rule. Any: Select “Any” to denote any frame types. Ethernet: Select “Ethernet” to denote the frame type that conforms to 802.3 Ethernet standard. LLC: Specify “LLC” to denote Logical Link Control or SNAP frames (RFC 1042). Other: Specify “other” to denote other control values except LLC frames.
Enable: IP must be version 6. Disable: IP does not have to be version 6. IPv6 MLD Packet: Enable or disable IPv6 MLD (Multicast Listener Discovery) function. MLD is similar to IGMP function in IPv4 and is used to discover ports on a VLAN that are requesting multicast data. Any: Any MLD will apply. Enable: Enable IPv6 MLD function. Disable: Disable IPv6 MLD function. IPv4 Source IP: Configure which source IP address applies to this rule.
Svid: Specify “Svid” to replace an original service provider VID with a new one for egress traffic. When this is used, you need to set up the new service provider VID in “New Service VID” field below. Cvid: Specify “cvid” to replace an original customer VID with a new one for egress traffic. When this is used, you need to enable “Replace Customer VID” and set up “New Customer VID” field. Action: Configure which action is taken when you choose “Forward” permit type.
4.4 Switch Monitor Click Switch Monitor folder from the Main menu and then the following sub-items appear. 1. Switch Port State: View current port media type, port state, etc. 2. Anti-broadcast Status: View each port’s broadcast status. 3. DHCP Snooping: View the DHCP learning table. 4. MAC Address Table: List current MAC address learned by the Managed Switch. 5. Port Counters: View port traffic statistics, port packet error statistics and port packet analysis statistics. 6.
4.4.1 Switch Port State Select the option Switch Port State from the Switch Monitor menu and then the following screen page appears. Media Type: View-only field that shows the media type of each port, either Copper or Fiber. Port Sate: View-only field that shows each port’s state which can be D (Disabled), B/L (Blocking/Listening), L (Learning) or F (Forwarding). Disabled: A Port in this state does not participate in frame relay or the operation of the Spanning Tree Algorithm.
4.4.2 Anti-broadcast Status Select the option Anti-bcast Status from the Switch Monitor menu and then the following screen page appears. Broadcast Traffic: View-only field that shows the forwarding status of each port. “Forward” means that traffic is forwarded normally. “Drop” means that broadcast packets are all dropped. 4.4.3 DHCP Snooping Select the option DHCP Snooping from the Switch Monitor menu and then the following screen page appears.
4.4.4 MAC Address Table Select the option MAC Address Table from the Switch Monitor menu and then the following screen page appears. The table above shows the MAC addresses learned from each port of the Managed Switch. Please note that when the system is reset, MAC addresses will be cleared. Click the “Update” button to refresh the MAC Address Table. Click the “Clear” button to remove all MAC addresses learned from the table. 4.4.
RX/TX frames of Multicast and Broadcast, etc. 4.4.5.1 Port Traffic Statistics To view the real-time port traffic statistics of the Managed Switch, select Port Traffic Statistics from the Port Counters menu and then the following screen page appears. Click the “Clear Counts” button to set all values back to zero. Bytes Received: View-only field that show the total bytes received from each port. Frames Received: View-only field that show the total frames received from each port.
Click the “Clear Counts” button to set all values back to zero. RX Drops: View-only field that show dropped frames received. RX FCS Error: View-only field that show FCS errors received. RX Undersize: View-only field that show undersized frames received. RX Oversize: View-only field that show oversized frames received. RX Fragments: View-only field that show fragment frames received. RX Jabber Frames: View-only field that show Jabber frames received. TX Dropped: View-only field that show dropped frames sent.
4.4.5.3 Port Packet Analysis Statistics Port Packet Analysis Statistics Mode Counters allow users to view the port analysis history of the Managed Switch. Event mode counters are calculated since the last time that counter was reset or cleared. Select Port Packet Analysis Statistics from the Port Counters menu and then the following screen page appears. Click the “Clear Counts” button to set all values back to zero. RX Frames 64 Bytes: View-only field that show how many frames in 64 bytes received.
TX Broadcast Frames: View-only field that show how many good broadcast frames sent. 4.4.6 RSTP Monitor Click RSTP Monitor folder from the Switch Monitor menu and then the following sub-items appear. 1. RSTP VLAN Bridge Overview: This shows root bridge information and max age and hello time. 2. RSTP Port Status: This shows the Managed Switch’s RSTP status. 4.4.6.
Bridge ID: RSTP Bridge ID of this Managed Switch in a specific VLAN. Bridge ID contains two parts. In the illustration above, 32768 is the bridge’s system priority; whereas 00-06-1900-01-60 is the device’s MAC address. The switch with the lowest priority will be chosen as a root bridge. If the switches have the same priority, the MAC address will be compared bit by bit and the switch with the lowest MAC address becomes the root bridge.
4.4.7 IGMP Monitor Click IGMP Monitor folder from the Switch Monitor menu and then the following sub-items appear. 1. IGMP Snooping Status: This shows the number of IGMP queries received, IGMPv1 report received, IGMPv2 report received, IGMPv3 report received and IGMPv2 leave received. 2. IGMP Group Table: This shows IGMP group information. 4.4.7.
RX v2 Reports: IGMP Version 2 reports received. RX v3 Reports: IGMP Version 3 reports received. RX v2 Leave: IGMP Version 2 leaves received. 4.4.7.2 IGMP Group Table In order to view the real-time IGMP multicast group status of the Managed Switch, select IGMP Group Table from the IGMP monitor menu and then the following screen page appears. VID: VID of the specific VLAN Group: The multicast IP address of IGMP querier. Port: The port(s) grouped in the specific multicast group. 4.4.
4.4.8.1 SFP Port Info SFP Port Info displays each port’s slide-in SFP Transceiver information e.g. Speed, Length, Vendor Name, Vendor PN, Vendor SN. Select SFP Port Info from the SFP Information menu and then the following screen page appears. Speed: View-only field that shows data rate of the slide-in SFP transceiver. Distance: View-only field that shows the transmission distance of the slide-in SFP Transceiver. Vendor Name: View-only field that shows the vendor name of the slide-in SFP transceiver.
RX Power (dbm): View-only field that shows the slide-in SFP module optical Receiver power. 4.4.9 802.1X Monitor 802.1X Monitor displays each port’s 802.1X status. Select 802.1X Port Status from the 802.1X Monitor menu and the following screen page appears. State: When “Port Admin State” is enabled, the state information will show “Authorizing” or “Linkdown” depending on whether a client connects to a 802.1X-enabled port or not. “Authorizing” means that a client connects to a 802.
3. Factory Default: Restore the Managed Switch back to the factory defaults (can keep network configurations). 4.5.1 Upgrade Select Upgrade from the System Utility menu and the following screen page appears. Protocol: Select the preferred protocol, either FTP or TFTP. Server Address: Enter the specific File Server IP address. User Name: Enter the specific username to access the File Server (For FTP only). If you choose TFTP as your protocol, leave this field blank.
Protocol: Select the preferred protocol, either FTP or TFTP. Server Address: Enter the specific File Server IP address. User Name: Enter the specific username to access the File Server (For FTP only). If you choose TFTP as your protocol, leave this field blank. Password: Enter the specific password to access the File Server (For FTP only). If you choose TFTP as your protocol, leave this field blank. File Location: Enter the specific path and filename within the File Server.
4.5.3 Factory Default Select Factory Default from the System Utility menu and the following screen page appears. All Settings: Click the “Load” button to return the Managed Switch’s configurations back to factory defaults. Except Network Settings: Click the “Load” button to return the Managed Switch’s configurations back to factory defaults except network configurations (IP address, mask, default gateway address). 4.6 Save Configuration Click the “Save” button to save running configurations to flash. 4.
APPENDIX A: Set Up DHCP Auto-Provisioning Networking devices, such as switches or gateways, with DHCP Auto-provisioning function allow you to automatically upgrade firmware and configuration at startup process. Before setting up DHCP Server for auto-upgrade of firmware and configuration, please make sure the Managed Switch that you purchased can support DHCP Auto-provisioning. Setup procedures and auto-provisioning process are described below for your reference. A. Setup Procedures Step 1.
Step 2. Prepare “dhcpd.conf” file You can find this file in Linux ISC DHCP server. /usr/local/etc/dhcpd.conf Step 3. Copy the marked text to “dhcpd.conf” A sample of dhcp text is provided in APPENDIX B. Please copy the marked area to “dhcpd.conf” file. Copy the text to dhcpd.conf file Sample dhcp text 135 SIGNAMAX a.s. Office: Vlarska 22, 627 00 Brno, CZ T:+420 533 338 854 l F:+420 533 338 883 l www.signamax.
Step 4. Modify “dhcpd.conf” file Modify the marked area with your own settings. 1. This value is configurable and can be defined by users. 2. Specify the protocol used (Protocol 1: FTP; Protocol 0: TFTP). 3. Specify the FTP or TFTP IP address. 4. Login FTP server anonymously. 5. Specify FTP Server login name. 6. Specify FTP Server login password. 7. Specify the product model name. 8. Specify the firmware filename. 9. Specify the MD5 for firmware image.
Step 5. Generate Configuration File Before preparing the configuration image in TFTP/FTP Server, please make sure the device generating the configuration image is set to “Get IP address from DHCP” assignment.
B. Auto-Provisioning Process This Managed Switch is setting-free (through auto-upgrade and configuration) and its upgrade procedures are as follows: 1. 2. 3. 4. 5. The ISC DHCP server will recognize the device whenever it sends an IP address request to it. And ISC DHCP server will tell the device how to get a new firmware or configuration. The device will compare the firmware and configuration MD5 code form of DHCP option every time when it communicates with DHCP server.
APPENDIX B: DHCP Text Sample default-lease-time 90; max-lease-time 7200; #ddns-update-style ad-hoc; ddns-update-style interim; subnet 192.168.2.0 netmask 255.255.255.0 { range 192.168.2.1 192.168.2.99; option subnet-mask 255.255.255.0; option broadcast-address 192.168.2.255; option routers 192.168.2.2; option domain-name-servers 168.95.1.1, 168.95.192.1, 192.168.2.2; host CTS-FAE { hardware ethernet 00:14:85:06:5A:06; fixed-address 192.168.2.99; } } #Please copy the text text below to your dhcpd.
# option CTS.firmware-md5 d8:e2:f0:de:7d:a5:8e:2c:6e:4e:a7:5a:39:78:07:d8; option CTS.configuration-file-name "metafile"; option CTS.configuration-md5 95:d6:5c:39:4d:83:76:30:61:16:9b:de:37:ba:12:84; option CTS.option 1; } 140 SIGNAMAX a.s. Office: Vlarska 22, 627 00 Brno, CZ T:+420 533 338 854 l F:+420 533 338 883 l www.signamax.
APPENDIX C: Firmware Upgrade via TFTP Follow the procedures below to upgrade Firmware via TFTP server. Step 1. Configure TFTP Server in your PC. Double click the TFTP Software “tftpd32.exe” to open the TFTP Server on your PC. Figure1. Open the TFTP Server Click “Browse” to change the base directory to the folder where the new Firmware is located. Please note that the file (such as 500-7624FE2GC_FW_1.02.1A_101203.
Step 2. Login the Managed Switch Access the Managed Switch via “RS-232” console with the following settings: Default IP address of the Managed Switch: 192.168.0.1 Default Console Rate: 9600, N, 8, 1 Username: admin Password: By default, no password is required. (Press Enter) NOTE: If Telnet is used, please check your IP address as well. It must belong to 192.168.0.0/24 network domain, for example, 192.168.0.15. Step 3. Setup the Upgrade Configuration Use the following commands to update Firmware.
This page is intentionally left blank. 143 SIGNAMAX a.s. Office: Vlarska 22, 627 00 Brno, CZ T:+420 533 338 854 l F:+420 533 338 883 l www.signamax.
