Manuals / KTI Networks / Computer Equipment / Switch

KTI Networks KGS-2404 manual

Models: KGS-2404

1 113

Download 113 pages 39.13 Kb

Page 71

Manual background

While in the authentication process, the message packets, encapsulated by Extensible Authentication Protocol over LAN (EAPOL), are exchanged between an authenticator PAE and a supplicant PAE. The Authenticator exchanges the message to authentication server using EAP encapsulation. Before successfully authenticating, the supplicant can only touch the authenticator to perform authentication message exchange or access the network from the uncontrolled port.

Fig. 4-13

In the Fig. 4-14, this is the typical configuration, a single supplicant, an authenticator and an authentication server. B and C is in the internal network, D is Authentication server running RADIUS, switch at the central location acts Authenticator connecting to PC A and A is a PC outside the controlled port, running Supplicant PAE. In this case, PC A wants to access the services on device B and C, first, it must exchange the authentication message with the authenticator on the port it connected via EAPOL packet. The authenticator transfers the supplicant’s credentials to Authentication server for verification. If success, the authentication server will notice the authenticator the grant. PC A, then, is allowed to access B and C via the switch. If there are two switches directly connected together instead of single one, for the link connecting two switches, it may have to act two port roles at the end of the link: authenticator and supplicant, because the traffic is bi-directional.

D

Fig. 4-14

The Fig. 4-15 shows the procedure of 802.1x authentication. There are steps

65

Image 71

KTI Networks KGS-2404 manual

Contents

DOC.080711 KGS-2404Web Smart 24-Port Gigabit Ethernet Switch User’s Manual Page Release Web Smart 24-Port Gigabit Ethernet Switch Users ManualTable of Contents 4-4. Maintenance 06/28/2007 Revision HistoryElectronic Emission Notices 1.02Overview of this user’s manual About this user’s manual1. Introduction 1-1. Overview of 24-Port GbE Web Smart SwitchKey Features in the Device Management 1-2. Checklist1-3. Features HardwareSupports on-line plug/unplug SFP modules Supports user management and limits one user to loginSupports 802.1Q VLAN Supports to send the trap event while monitored events happened1-4-1. User Interfaces on the Front Panel Button, LEDs and Plugs 1-4. View of 24-Port GbE Web Smart Switch10/100/1000Ethernet TP Port 1 to 24 LED LED Indicators1-4-2. User Interfaces on the Rear Panel System LED1-5. View of the Optional Modules Connecting the SFP Module to the Chassis 2. Installation2-1. Starting 24-Port GbE Web Smart Switch Up 2-1-1. Hardware and Cable InstallationFirmware Loading TP Port and Cable InstallationPower On 2-1-2. Cabling Requirements2-1-2-2. Cabling Requirements for 1000SX/LX SFP Module 2-1-2-1. Cabling Requirements for TP Ports100Base-TX TP 2-1-2-3. Switch Cascading in TopologyTakes the Delay Time into Account 1000Base-X TP, FiberCase2a Port-based VLAN See Fig.2-3 Case 2b Port-based VLAN See Fig.2-4 Page 2-1-3-1. Management through Ethernet Port Managing 24-Port GbE Web Smart Switch through Ethernet Port2-1-4. IP Address Assignment Class A 10000000.00000001.00000010.1 NetworkSubnet 25 bits All 0s = 128.1.2.128 All 1s=Prefix LengthNo. of IP matchedNo. of Addressable IP Default gateway 2-2. Typical Applications Fig. 2-12 Office Network Connection Fig. 2-11 Peer-to-peer Network Connection3-1. What’s the Ethernet 3. Basic Concept and ManagementIEEE 802.3 PLS IEEE MAU Coaxial/STP/UTP Data Link LayerIEEE 802.2 LLC IEEE802.3 CSMA/CD MAC Physical Layer0xAAAA 3-2. Media Access Control MAC 1st byte 0x8137 IPX datagram 0x86DD IPv6 For example 0x0800 IP datagram 0x0806 ARP 0x0835 RARPThe MAC sub-layer has two primary jobs to do Fig. 3-4 Gigabit Ethernet Frame 64 bytesTable 3-4 Ethernet parameters for half duplex mode Parameter value/LAN Max. collision domain DTE to DTEBurstLimit 3-3. Flow Control For a received frame, the MAC will check Frame ReceptionBits Bit Bits 3-4. How does a switch work? Extended Distance Limitations MAC address table How does a switch operate?Transmission schedule FCFS First Come First Service Strictly Priority All High before LowWeighted Round Robin Mac address aging3-5. Virtual LAN Page Fig.3-9 Tag Format VLAN Identifier VLAN-tagged framePriority-tagged frame Untagged frame An Ethernet frame carries no VLAN tag informationShared VLAN Learning SVL Ingress RuleEgress Rule Independent VLAN Learning IVLName NamePort Members Network Address3-6. Link Aggregation Terminology Link Aggregation 4. Operation of Web-based Management IP Address Subnet Mask Default Gateway Password4-1. Web Management Home Overview The Information of Page Layout 4-2. Configuration Parameter description 4-2-1. System ConfigurationFunction name Function descriptionShow the IP address of the DHCP server. Default Lease Time Left Show the active IP address of this switch. Active Subnet MaskShow the active subnet mask of this switch. Active Gateway Show the active gateway of this switch. DHCP ServerDefault admin Inactivity Timeoutsecs Default 255.255.255.0 Fallback GatewayDefault 192.168.1.254 Management VLAN Show the management VLAN number. PasswordSpeed 4-2-2. Port ConfigurationMedia type NWayParameter description 4-2-3. VLAN Mode ConfigurationFunction name Function descriptionTag-based Parameter description 4-2-4. VLAN Group ConfigurationFunction name Function descriptionFig. 4-8 Add or Remove VLAN Member Fig. 4-9 Port-Based VLAN ConfigurationAdd Group Delete GroupPage Parameter description 4-2-5. AggregationFunction name Function descriptionParameter description 4-2-6. LACPFunction name Function descriptionParameter description 4-2-7. RSTPFunction name Function descriptionParameter description continue Fig. 4-12 RSTP ConfigurationFunction name Function descriptionSupplicant 4-2-8Page Page Port Status AuthenticationPort Mode Port ControlFunction description Mode Enable or disable 802.1X function RADIUS IPForce Reinitialize for all ports in at once Parameter description Function name802.1x Parameters Function descriptionFunction description 4-2-9 IGMP SnoopingFig. 4-19 IGMP Configuration Function nameParameter description 4-2-10. Mirror ConfigurationFunction name Function descriptionFig. 4-21 QoS Configuration 4-2-11. QoSQuality of Service ConfigurationFunction description Function nameFunction description Function nameParameter description DSCP SettingFunction name Function descriptionParameter description 4-2-12 FilterFunction name Function descriptionDHCP Server Allowed Fig. 4-24 Filter ConfigurationDefault enable Parameter description 4-2-13 Rate LimitFunction name Function descriptionParameter description 4-2-14 Storm ControlFunction name Function descriptionFlooded unicast Rate Multicast RateFunction description 4-2-15 SNMPParameters description Function nameFig. 4-27 SNMP Configuration Default community name for Get publicDefault community name for Set private Default community name for Trap publicFunction description 4-3. Monitoring4-3-1. Statistics Overview Function nameFig. 4-28 Statistics Overview for all ports Tx Errors Number of bad packets transmitted Rx ErrorsNumber of bad packets received Parameter description 4-3-2. Detailed StatisticsFunction name Function descriptionTx 64 Bytes Tx Error PacketsShow the counting number of the received error packets. Rx 64 Bytes Number of 1024-maxlength-byte frames in good and bad packets receivedNumber of short frames 64 bytes with invalid CRC. Rx Jabber Parameter description 4-3-3. LACP StatusFunction name Function descriptionParameter description 4-3-4. RSTP StatusFunction name Function descriptionFig. 4-31 RSTP Status Parameter description 4-3-5. IGMP StatusFunction name Function descriptionParameter description 4-3-6. Ping StatusFunction name Function descriptionShow the result of the ping status. Received replies Show the received replies number of times. Request timeoutsShow the timeout of request. Average Response times In ms Target IP address Show the active target IP address. StatusConfiguration File Transfer Logout 4-4. MaintenanceThere are five functions contained in the maintenance function Maintenance Warm Restart Factory Default Software UpgradeFunction description 4-4-1. Warm RestartFunction name Function description 4-4-2. Factory DefaultFunction name Function name 4-4-3. Software UpgradeSoftware Upgrade Fig. 4-36 Software UpgradeFunction name 4-4-4. Configuration File TransferFunction description Parameter description 4-4-5. LogoutFunction name Function description5-2. Q&A 5. Maintenance5-1. Resolving No Link Condition Features Appendix A Technical Specificationsƒ Network Interface Hardware SpecificationsConfiguration ConnectorDimensions ƒ Diagnostic LEDƒ Power Requirement Ambient TemperatureVLAN Function Management Software SpecificationsSystem Configuration Quality of Service QoSAppendix B MIB Specifications