Security
N4131
Installation
Content
Introduction
Web-Based Management
Troubleshooting
Switch Operation Power Over Ethernet Overview
What is PoE?
Chapter
Product Description
Package Contents
Powerful Security
Remote and Centralize Management installation
Product Features
How to Use this Manual
Power over Ethernet of GE-DS-82-PoE
Physical Port
Quality of Service
Layer 2 Features
Priority queues on all switch ports Traffic classification
GE-DS-82-PoE
Management
Multicast
Security
Dram
Product Specifications
Power over Ethernet GE-DS-82-PoE Only
Vlan
LED
Access Control List
Quality of Service
Power over Ethernet PoE Standard
PoE Power Supply Type
PoE Power Budget
Power Pin Assignment
Max. number of Class Standards Conformance Safety
Standards Compliance
10/100Mbps TP Interface GE-DS-82, GE-DS-82-PoE
Switch Front Panel
Hardware Description
LED Indications
Reset button
Gigabit TP Interface
Gigabit SFP Slots
Per 10/100/1000Base-T port/SFP interfaces
System
Per 10/100Base-T RJ-45 port
Per 10/100Base-TX, PoE interfaces Port-1 to Port-8
Switch Rear Panel
Console Port
Power Notice
Desktop/Shelf Installation
Switch Installation
Secure the brackets tightly, but do not over tighten screws
Rack-mount Installation
Mounting the GE-DS-82 in a rack
SFP Transceiver Installation
1000Base-SX/LX SFP transceiver
Approved GE Security SFP Transceivers
Remove the transceiver module
Connect the fiber cable
Pulling out the SFP transceiver
Installation
This chapter covers the following topics
Requirements
Summary
Management Access Overview
Management Methods Comparison
Web Browser Management
PC / Workstation With IE Browser RJ-45/UTP-Cable IP Address
Web Browser Setup
Login to the managed Switch
Login screen
SNMP-Based Network Management
Administration Console
PC / Workstation With Snmp application
IP Address
PC connected to Switch with RS-232 serial cable
Direct Access
Virtual Terminal Protocols
Telnet Setup
Protocols
New Connection dialog window
Log on to the Console
Management Architecture
Snmp Protocol
About Web-based Management
Web-Based Management
Requirements
Http//192.168.0.100
Logging on to the Switch
Panel Display
Main Web
Port states are illustrated as follows
Main Menu
System Information
System
This page includes the following fields
Misc Config
Basic
Mode
Object Description
Broadcast Storm Filter
How do I get one for this box?
IP Configuration
What is an IP address?
Objectdescription
IP Configuration
Snmp Overview
Snmp Configuration
Subnet Mask
Gateway
System Options
Snmp Community
System Location
System Name
System Contact
Snmp Status
Trap Managers
Community strings serve as passwords. See the table below
Community Strings
Enter the IP address of the trap manager
SNMPv3 Groups
Community Enter the community string for the trap station
Group Name
Security Name
SNMPv3 View
View Name
Included Excluded
View Subtree
SNMPv3 Access
View Mask Hexadecimal
Digits
SNMPv3 usm-user
This page include the following fields
Firmware Upgrade
Tftp Firmware Upgrade
To open the Firmware Upgrade screen, do the following
Http Firmware Upgrade
Click System then Web Firmware Upgrade
Firmware Upgrade screen is displayed as in Figure
Tftp Restore Configuration
Configuration Backup
Configuration Backup interface
Tftp Backup Configuration
Reboot the switch. Click reboot to reboot the system
Factory Default
System Reboot
Port Configuration
Syslog Setting
This page includes the following settings
Port Control
Port Control interface
BSF
Port Statistics
Port Status
Or receive any packet
Port Port number Link Status of linking-Up or Down State
Tx Bad Packet
Via this port
Port Mirror application
Port Sniffer
Monitored Port
Sniffer Type
Protected
Protected Port
Vlan Overview
Vlan Configuration
Web-Based Management
802.1Q Tag
Static Vlan Configuration
Static Vlan interface
Port-Based Vlan
Port-based Vlan interface
Create a Vlan and add member ports to it
Group ID
Vlan Name
Port
Member
802.1Q Vlan
Understand nomenclature of the Switch
Tagged
Untagged
Vlan Group Configuration
Vlan Group Configuration
Vlan Group Configuration interface
UnTag Member
Vlan ID
Pvid
Vlan Filter
Ingress Filtering
Ieee 802.1Q Tunneling Q-in-Q
QinQ Vlan \ QinQ Port Setting screen in appears
In-Q Port Setting
Object
In-Q Tunnel Setting
In-Q Tunnel Setting interface
To configure Gvrp
Gvrp Setting
Object Description Gvrp
Enable global Gvrp function
Object Description Vlan ID
Gvrp Table
Theory
Rapid Spanning Tree
Creating a Stable STP Topology
Bridge Protocol Data Units
STP Port States
STP Port State Transitions
Illustration of STP
Before Applying the STA Rules
This example, only the default STP values are used
STP Parameters
Default Value
STP Operation Levels
Parameter Description
Parameter Description Default Value
Rstp System Configuration
128
Port Priority
Forward Delay Time
Rstp mode
Protocol Version
RSTP, 802.1w
Rstp Bridge Status page screenshot
Root Bridge Information
Costs on the least cost path to the Root Bridge
Rstp Port Configuration interface
Admin Edge
Admin P2P
Admin Non STP
Path Cost
Recommended STP Path Cost Range
Trunking
Aggregator Setting
System Priority
Aggregator Information
Lacp
Work ports
Assigning 2 ports to a trunk group with Lacp disabled
Trunk group
Lacp enabled
Switch 1 configuration
Switch 2 configuration interface
Switch 2 configuration
State Activity
Switch 1 Aggregator Information
Dynamic MAC Table
Forwarding and Filtering
Static MAC Table
You can add static MAC address in the switch MAC table here
MAC Table Entries
Add the Static MAC Address
Vlan ID for the entry
MAC Filtering
MAC Address Enter the MAC address that you want to filter
MAC Filtering interface
About the Internet Group Management Protocol Igmp Snooping
Igmp Snooping
Multicast flooding
Octets Type Response Time
Igmp Versions 1
Igmp State Transitions
Igmp Querier
Will be displayed in Igmp status section
Igmp Configuration
Understand QOS
QoS Configuration
802.1Q Tag and 802.1p priority
QoS Configuration
Priority Queue Service settings
Weighted Round Robin
First Come First Service
All High before Low
802.1p priority
TOS/DSCP
QoS PerPort Configuration
Precedence
TOS/DSCP Configuration
TOS MBZ
DiffServ
Dscp
TOS/DSCP Port Configuration
Object Description TOS/DSCP
QoS Configuration TOS/DSCP Port Status
Access Control List
IPv4 ACL
Object Description Default Value
Action
Packet Type
TCP
Packet Type/Binding box should select Non-IPv4
Non-IPv4 ACL
Ether Type
Type
Port Id
Binding
MAC Limit
MAC Limit Configuration
MAC Limit
Limit
This table displays current MAC Limit status of each port
MAC Limit Port Status
Understanding Ieee 802.1X Port-Based Authentication
802.1X Configuration
802.1x device role
125
EAP message exchange
System information \ Misc Configuration\ 802.1x Protocol
System Configuration
Shared Key
802.1x Port Configuration
On the Radius Server
NAS, Identifier Set the identifier for the Radius client
802.1x Per Port Setting interface
Misc Configuration
Power Management
Power Over Ethernet
Power over Ethernet Powered Device
PoE Configuration
Power limit mode
PoE Temperature Unit
Power Allocation
PoE PSU Status
PD Classifications
Power Limit
Dhcp Relay and Option
To configure Dhcp Relay
Lldp
PerPort Configuration
Lldp Configuration
Use this page to change Lldp parameters
Value is
Lldp Status
Lldp Per Port Configuration
Console Management
Login in to the Console Interface
GE-DS-82-PoEConsole Login screen
Show the current IP address
Configure IP address
Subnet Mask Gateway
Configure IP address
Exec
Commands Level
Following table lists the CLI commands and description
144
Operation Notice
Switch# configure
Switch config #
Command Line Editing
System Commands
Command Help
Key Function
Port Configuration and show status
Switch Static Configuration
Syntax
Parameters
Port flow enable disable enable disable port-list
Enable or disable port flow control
Port priority disable low high port-list
Set port effective ingress or egress rate
Port jumboframe enable disable port-list
Port-id specifies the port to be shown
Show protected port information
Show trunking information
Trunk Configuration
Trunking Commands
Lacp Commands
Syntax Lacp system-priority Parameters
Show Lacp information by port
Virtual LANs
Syntax Show lacp port port-idParameters
Port-idspecifies the port to be shown
Display the current Vlan mode
Vlan Mode Port-based
Change Vlan mode
Advanced 802.1Q Vlan Configuration
Disabled port-based dot1q specifies the Vlan mode
Ingress filters configuration
Delete Vlan entry
Add or edit Vlan entry
Syntax Vlan add 1-4094 Name cpu-portno-cpu-port List List
Specifies the Vlan id, null means all valid entries. e.g
Show Vlan entry information
Vlan
Syntax Show vlan pvid List Parameters
Show port default Vlan id
Show static Vlan entry information
162
Syntax Show vlan filter List Parameters
Show Vlan filter setting
Set ingress filter rules
Forward
Mac-age-time Parameters
Misc Configuration
No mac-age-time Description
Syntax Collision-Retry off 16 32 Parameters
Collision-Retry setting
Change Username / Password
Administration Configuration
Syntax Hostname name-str Parameters
No hostname
Set the default gateway IP address
User can configure the IP setting and fill in the new value
Syntax Ip default-gateway ip-addr
Show IP address, subnet mask, and the default gateway
Reset to Default
Reboot switch
Set switch as dhcp client, it can get ip from dhcp server
Show dhcp enable/disable
Restore Configure File
Tftp Update Firmware
Copy tftp running config flash Description
Download firmware from Tftp server
Ip-addr specifies the IP address of the Tftp server
Backup Configure File
Copy running config flash tftp Description
Syntax Mac-limit port-list
No mac-limit Description
Mac-limit Description
Show port monitoring information
Port Mirroring Configuration
Syntax Mirror-port rx tx both port-idport-list Parameters
Quality of Service
Set 802.1p priority
Per Port Priority
Syntax Port priority disable 0-7 port-list Parameters
Mac-address-table static Description
MAC Address Configuration
No mac-address-table static mac-addr Description
Syntax No mac-address-table static mac-addrvlan-id
Show mac-address-table multicast Description
Show mac-address-table static Description
Smac-address-table static Description
Show smac-address-table multicast Description
Spanning-tree forward-delay Description
STP/RSTP Commands
Syntax Spanning-tree forward-delay 4-30 Parameters
Spanning-tree hello-time Description
Syntax Spanning-tree maximum-age 6-40 Parameters
Spanning-tree maximum-age Description
Spanning-tree priority Description
Syntax Spanning-tree priority 0-61440 Parameters
Spanning-tree debug Description
Show spanning-tree port Description
Syntax Show spanning-tree port port-list Parameters
Syntax Spanning-tree protocol-version stp rstp Parameters
Spanning-tree protocol version Description
No spanning-tree port mcheck Description
Syntax No spanning-tree port mcheck port-list Parameters
Spanning-tree point-to-point mac Description
No spanning-tree port non-stp Description
Syntax No spanning-tree port non-stp port-list Parameters
Snmp /no snmp Description
System Options
Show snmp status Description
Snmp system-name Description
Syntax Snmp system-location location-str Parameters
Snmp system-location Description
Snmp system-contact Description
Syntax Snmp system-contact contact-str Parameters
Set Snmp community string
Community Strings
Delete Snmp community string
Syntax No snmp community community-str Parameters
Syntax Snmp trap ip-addr community-str 1..65535 Parameters
Trap Managers
Remove trap receiver IP address and port number
Syntax No snmp trap ip-addr 1..65535 Parameters
Syntax No igmp CrossVLAN
Syntax No igmp fastleave
Syntax No igmp querier
Syntax No igmp debug
Enable/disable Igmp snooping debugging output
Show Igmp snooping information
Syntax Show igmp status router groups table Parameters
Dot1x Description
802.1x Protocol
Radius-server host Description
Radius-server key Description
Dot1x timeout tx-period Description
Syntax Dot1x timeout quiet-period 0..65535 Parameters
Syntax Dot1x timeout tx-period 0..65535 Parameters
Radius-server nas Description
Syntax Dot1x timeout supplicant 1..300 Parameters
Dot1x timeout supplicant Description
Dot1x timeout radius-server Description
Syntax Dot1x timeout radius-server 1..300 Parameters
Show 802.1x per port information
Set 802.1x per port information
Syntax Dot1x port fu fa au no port-list Parameters
Syntax No acl 1-220 Parameters
Ipv4 ACL commands
Show ACL group information
Add or edit ACL group for Ipv4
Acl addedit 1-220 permitdeny 0-4094 ipv4 0-255 Description
Acl addedit 1-220 qosvoip 0-4094 Description
Non-Ipv4 ACL commands
Commands
Add or edit ACL group for non-Ipv4
Binding
SIP/SMAC binding commands
Syntax Bind add 1-220 Abcdef 0-4094 A.B.C.D 1-26 Parameters
Show Binding group information
Add Binding group
Show System Power over Ethernet information
Power over Ethernet Commands GE DS-82-PoE
Command Level
Global Configuration Example
Syntax Show poe status port-list Parameters
Global Configuration
Show per PoE port information
Configure PoE System
Configure PoE Over Temperature Protection
Poe temperature-protection enablex4 Description
Configure System PoE power limit mode information
No Limit
Enabling or disabling the port POE injects function
Configure PoE -- Port
Syntax Poe priority Critical High Low port-list Parameters
Poe maximum-power Description
208
Forwarding & Filtering
Address Table
Learning
Auto-Negotiation
Store-and-Forward
What is PoE?
Power Over Ethernet Overview
PoE System Architecture
How Power is Transferred Through the Cable
References
When to install PoE?
Consider the following scenarios
PoE Provision Process
Stages of powering up a PoE link
Microsemi /PowerDsine Linear Tech
Classification
Line Detection
Start-up
Operation
Power Disconnection Scenarios
Power Overloads
DC Disconnect
AC Disconnect
Why the Switch doesnt connect to the network? Solution
Link LED is not lit Solution
Performance is poor Solution
While IP Address be changed or forgotten admin password
Switch does not power up Solution
1000Mbps, 1000Base T
Switchs RJ-45 Pin Assignments
Tx + transmit Rx + receive Tx transmit Rx receive Not used
10/100Mbps, 10/100Base-TX
Standard cable, RJ-45 pin assignment
Side SIDE2
Straight Cable
Side
Crossover Cable
