Dell™ PowerConnect™ 3324/3348 User’s Guide Model PowerConnect 3324/3348 w w w. d e l l . c o m | s u p p o r t . d e l l .
Notes, Notices, and Cautions NOTE: Notes indicate important information that helps you make better use of your device. NOTICE: Notices indicate either potential damage to hardware or loss of data and tells you how to avoid the problem. CAUTION: Caution indicates a potential for property damage, personal injury, or death. Information in this document is subject to change without notice. © 2003 Dell Inc. All rights reserved. Reproduction in any manner whatsoever without the written permission of Dell Inc.
Contents 1 Overview System Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12 . . . . . . . . . . . . . . . . . . 13 . . . . . . . . . . . . . . . . . . . . . 14 . . . . . . . . . . . . . . . . . . . . . . . 15 PowerConnect 3324/3348 Stacking Overview Stack Members and Unit ID . Configuration Handling Rearranging Stacks 12 Replacing Stack Members . . . . . . . . . . . . . . . . . . . . PowerConnect User Guide Overview 15 . . . . . . . . . . . . . . . .
3 Installing the PowerConnect 3324/3348 Switch Installation Precautions Site Requirements . . . . . . . . . . . . . . . . . . . . . . 30 . . . . . . . . . . . . . . . . . . . . . . . . . 30 Unpacking and Installation 31 . . . . . . . . . . . . . . . . . . . . . . . 31 . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 Package Contents Unpacking . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32 Installing the Switch without a Rack . . . . . . . . . . . .
. . . . . . . . . . . 51 . . . . . . . . . . . . . . . . . . . 51 . . . . . . . . . . . . . . . . . . . . . . 53 Retrieving an IP address from a DHCP Server . . . . . . . . . 54 Receiving an IP address from a BOOTP Server . . . . . . . . . 55 User Name, Password, and Privilege Level SNMP Community Strings Advanced Configuration . . . . . . . 56 . . . . . . . . . . . . . . . . . 57 Sample Configuration Process . . . . . . . . . . . . . . . . . . . 60 Device Setup Requirements . . . . . .
Defining SNMP Settings Connecting Devices . . . . . . . . . . . . . . . . . . . . . 85 . . . . . . . . . . . . . . . . . . . . . . . . 86 5 Getting Started Starting the Switch Administrator . . . . . . . . . . . . . . . . 88 . . . . . . . . . . . . . . . . . . . 88 . . . . . . . . . . . . . . . . . . . . . . . . . . . 89 . . . . . . . . . . . . . . . . . . . . . . . . . . 90 . . . . . . . . . . . . . . . . . . . . .
Managing Logs . . . . . . . . . . . . . . . . . . . . . . . . . . Defining Global Log Parameters . 113 . . . . . . . . . . . . . . . 114 . . . . . . . . . . . . . . . . . . 118 . . . . . . . . . . . . . . . . . 121 . . . . 121 . . . . . . . . 123 Defining Device IP Addresses . . . . . . . . . . . . . . . . . .
7 Configuring Switch Information Configuring Network Security . . . . . . . . . . . . . . . . . . 190 . . . . . . . . . . . . . . . . . . 191 . . . . . . . . . . . . . . . . . . . 193 . . . . . . . . . . . . . . . . . . . . 196 . . . . . . . . . . . . . . . . . . 200 Binding ACLs . . . . . . . . . . . . . . . . . . . . . . . . . 205 Configuring Ports . . . . . . . . . . . . . . . . . . . . . . . . . 207 . . . . . . . . . . . . . . . . . . . 208 . . . . . . . . . . . . . . . . . . .
Multicast Forwarding Support . . . . . . . . . . . . . . . . . . Defining IGMP Snooping Settings . 280 . . . . . . . . . . . . . . 281 . . . . . . . . . . . 284 Adding Bridge Multicast Group Members . . . . . . . . . 287 . . . . . . . . . . . . . . . . . . . 289 . . . . . . . . . . . . . . . . . . . . . . . . . . 294 . . . . . . . . . . . . . . . . . 295 Viewing Counter Summary . . . . . . . . . . . . . . . . . . 297 Viewing Interface Statistics . . . . . . . . . . . . . . . . . .
Defining QoS Global Parameters . . . . . . . . . . . . . . . . . 339 Configuring Global QoS Settings . . . . . . . . . . . . . . . . 340 Defining QoS Interface Settings . . . . . . . . . . . . . . . . 342 . . . . . . . . . . . . . . . . . . . . 343 . . . . . . . . . . . . . . . . . . . . . . . . 346 . . . . . . . . . . . . . . . . 346 Defining Queue Settings Mapping to Queues Mapping CoS Values to Queues Mapping DSCP Values to Queues . . . . . . . . . . . . . . . . 348 . . . . . . . . .
SECTION 1 Overview System Description PowerConnect 3324/3348 Stacking Overview PowerConnect User Guide Overview PowerConnect 3324/3348 CLI Documentation
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m System Description The Dell™ PowerConnect™ 3324 and 3348 devices are standalone and stackable advanced Layer 2 switches. PowerConnect 3324 and PowerConnect 3348 also function as stand-alone Layer 2 switching systems. PowerConnect 3324/3348 devices are managed either using InBand Management (via the network station remotely) or via the console.
During the stacking setup, one device is selected by the network administrator as the stack master, while all other devices are selected as stack members and assigned a unique Unit ID. PowerConnect 3324/3348 stacks provide across-the-stack Layer 2 functionality including: • Switching • Trunking • Port Mirroring • VLANs For example, VLANs can be configured from ports belonging to different stack members, or configure port mirroring from a second stack member to a third stack member.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m When the master unit boots or when inserting or removing a stack member, the master unit initiates a stacking discover process. If two members are discovered with the same Unit ID, or a master unit is not found, the entire stack cannot function. The stacking LED remains red. Configuration Handling In a PowerConnect 3324/3348 operative stack, the stack master is responsible for the stack configuration.
Rearranging Stacks The stacking order can be changed by either removing a stack member or by rearranging the stacking cables. The order in which stack members are arranged is established not by the physical order of the stack members but by the Unit ID assignment. The stack configuration is stored in stack master after the stack order is changed, and the stack is reset.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m PowerConnect 3324 Replaces PowerConnect 3348 • If a PowerConnect 3348 replaces PowerConnect 3348, the new 48 10/100 BaseT ports receive the previous 48 10/100 BaseT port configuration. Ports G1 and G2 receive the previous device’s G1 and G2 port configuration. • If a PowerConnect 3348 replaces PowerConnect 3324, then ports 1-24 10/100 BaseT receive the previous device’s configuration for ports 1-24.
PowerConnect User Guide Overview The PowerConnect User Guide is divided into two parts: • About Installing the PowerConnect 3324/3348 Switch • Using the Dell OpenManage Switch Administrator Installing the PowerConnect 3324/3348 Switch This section contains the following sections about unpacking, installing, and configuring the PowerConnect 3324/3348: • Hardware Description—Contains information about the PowerConnect 3324/3348 hardware, including a description of the ports and LED types.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Configuring Quality of Service—Contains information about configuring device Class of Service. • Getting Help—Contains information about technical assistance, problems with your order, returning items for repair or credit, and how to contact Dell. PowerConnect 3324/3348 CLI Documentation In addition to the PowerConnect 3324/3348 User Guide, Dell provides the PowerConnect 3324/3348 CLI Reference Guide.
SECTION 2 Hardware Description PowerConnect 3324/3348 Description Ports Description LED Definitions
w w w. d e l l . c o m | s u p p o r t . d e l l .
General Device Components The PowerConnect 3324/3348 includes the following hardware components: • CPU—Based on Motorola’s MPC 8245. • FLASH—Contains 8 MB of FLASH Memory. • SDRAM—Contains 32 MB.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Mode Button The Mode Button toggles between port activity and port duplex settings. Stack ID Button The PowerConnect 3324/3348 front panel contains a Stack ID button that permits network administrators to manually select the Stack Master and stack members. NOTE: The Stack Master and stack members must be selected within 15 seconds after booting the device.
Master Unit #1 Tx Member Unit #1 Rx Tx Member Unit #2 Rx Tx Rx Member Unit #3 Tx Rx Stacking Connections For more information about connecting Stacking cables, see "Connecting Stacking Cables".
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Ports Description Ethernet Port Description The PowerConnect 3324 features 24 FE 10BaseT/100BaseTX UTP copper RJ45 ports per unit and 2 combo ports. The PowerConnect 3348 features 48 FE 10BaseT/100BaseTX UTP copper RJ45 ports per unit and 2 combo ports. Each combo port is a single logical port that has the following two physical interfaces: • 1000Base-T connectors. • Mini-GBIC (SFP) connectors.
System LEDs 3 4 1 2 1 2 Link/Act Duplex G1 G2 Mode Button 3 4 3 4 1 2 1 2 PWR Diag RPS Stack 5 6 3 4 7 8 5 6 9 10 7 8 11 12 9 10 15 16 13 14 11 12 13 14 15 16 17 18 19 20 17 18 21 22 19 20 1 2 3 4 5 6 23 24 21 22 23 24 G1 G2 1 2 3 4 5 6 Front Panel LEDs: 24 Ports System LEDs Link/Act Duplex G1 G2 3 4 1 2 Mode Button 1 2 3 4 1 2 3 4 2 3 4 5 6 G1 3 4 1 2 1 5 6 5 6 7 8 7 8 9 10 9 10 11 12 11 12 15 16 13 14 13 14 15 16 17 18 17 18 19 20
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Port LEDs Each port has one corresponding LED located above the port. The LEDs show either link activity or duplex mode, depending on the port LED display mode. For information about setting the LED display mode, see "System LEDs". Color Activity Definition Green Static Port link up. Port operating at 100 Mbps. Green Flashing Port link up with activity. Port operating at 100 Mbps. Red Static Port link up. Port operating at 10 Mbps.
Color Activity Definition Green Static Port link up. Port operating at 1000 Mbps. Green Flashing Port link up with activity. Port operating at 1000 Mbps. Red Static Port link up. Port operating at 10/100 Mbps. Red Flashing Port link up with activity. Port operating at 10/100 Mbps. Off Off Port link down. Giga Port Link Activity Status • The Mode button located next to the system LEDs is used to toggle between the two display modes.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Stacking LEDs The stacking LEDs indicate the unit’s position in the stack. As shown in the front panel illustrations at the start of this section, the stacking LEDs are numbered 1 through 6. Each unit in the stack has one stacking LED lit, indicating its position in the stack. When stacking LED 1 is lit, the unit is the master unit. When one of the stacking LEDs numbered 2 through 6 is lit, the unit is the corresponding stacking member unit.
SECTION 3 Installing the PowerConnect 3324/3348 Switch Installation Precautions Site Requirements Unpacking and Installation Cable, Port, and Pinout Information
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Installation Precautions CAUTION: The rack or cabinet housing the switch should be adequately secured to prevent it from becoming unstable and/or falling over. CAUTION: E n s u r e t h e p o w e r s o u r c e c i r c u i t s a r e p r o p e r l y g r o u n d e d . CAUTION: Observe and follow service markings. Do not service any product except as explained in your system documentation.
• Power—The unit is installed within 1.5 m (5 feet) of a grounded, easily accessible outlet 100-250 VAC, 50-60 Hz. It is preferred that two separate power supplies are provided, for example, a UPS and a separated phased supply. • Clearance—There is adequate frontal clearance for operator access. Allow clearance for cabling, power connections, and ventilation.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 6 Inspect the product for damage. Report any damage immediately. For information about contacting Dell, see "Getting Help". Device Rack Installation CAUTION: Disconnect all cables from the unit before mounting the PowerConnect 3324/3348 switch in a rack or cabinet. Installing PowerConnect 3324/3348: 1 Ground yourself by putting on an ESD wrist strap and attaching the ESD clip to a metal surface.
Stacking PowerConnect 3324/3348 PowerConnect 3324/3348 supports stacking up to six PowerConnect 3324/3348 devices or up to 192 Fast Ethernet ports and six Giga ports. Each PowerConnect 3324/3348 stack contains a single Master unit, while the remaining units are considered stacking members. All management is done through the Master unit. Both 24-port and 48-port devices can be included in the stack. To enable stacking, units must be stacked with a Stack Module connected to port G2 in the SFP slot.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Connected Stack For more information on configuring stacks, see "Configuring Stacking". Connecting the PowerConnect 3324/3348 to a Power Supply The following section contains instruction for connecting the PowerConnect 3324/3348 to a AC power connection. The PowerConnect 3324/3348 is supplied with power from: 34 • AC power supply source. • An optional PowerConnect RPS-600 redundant power supply. • Both AC and DC sources.
Connecting PowerConnect 3324/3348 to a Power Supply • Plug in the PowerConnect 3324/3348 to one of the previously listed power sources. AC Power Connection AC power should be supplied to the unit through a 1.5m (5 foot) standard power cable with safety-ground connected. To connect power to PowerConnect 3324/3348: 1 Connect the power cable to the AC main socket located on the rear panel. If there is a redundant power module, connect this redundant power module cable to a separate power supply.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Port Connections The ports are all standard RJ45 Ethernet ports. Switching ports can connect to stations wired in standard RJ45 Ethernet station mode using straight cables. Transmission devices use crossed cables to connect to each other. The following figure illustrates the RJ45 pin number allocations for the 10/100M ports.
The following figure illustrates the Gigaport Connector: GigaPort Connector A serial cable connects PowerConnect 3324/3348 to a terminal for the initial setup and configuration. (A PC running terminal emulation software can also be used.) The serial cable is a female-to-female DB-9 crossover cable.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The following figure illustrates the DB-9 connector. DB-9 Serial Cable Pin Use 1 Unused 2 TXD 3 RXD 4 Unused 5 GND 6 Unused 7 CTS 8 RTS 9 Unused DB-9 Pin Number Allocation Cable Connections This section describes how to connect the various cables to the PowerConnect 3324/3348 device.
ASCII Terminal (Serial) Connection The serial port connector is a DB-9 type connector. A supplied interface cable is required to connect the device. To connect the device: 1 Connect the interface crossed cable to the terminal ASCII DTE RS-232 connection. 2 Connect the interface crossed cable to the device serial connection.
w w w. d e l l . c o m | s u p p o r t . d e l l .
SECTION 4 Configuring the PowerConnect 3324/3348 Switch Configuration Overview General Configuration Information Terminal Connection Configuration Other Configuration Requirements Booting the Device Device Configuration Introduction Initial Configuration Advanced Configuration Sample Configuration Process Configuring Stacking Rebooting the Device Startup Menu Functions Downloading the Software to Stacking Units Defining SNMP Settings Connecting Devices
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Configuration Overview This section describes the initial device configuration and includes: • Initial Device Bootup • Preliminary Configuration Requirements • Configuring Stacking After all the device external connections are in place, a terminal must be connected to the device to monitor the boot and other procedures.
Instructions for setting up the device and hardware are provided in the preceding sections. For a first-time installation, the standard device installation is performed. There are other special functions which can be performed, but this suspends the installation process and results in a system reboot. This option is described later in this section. General Configuration Information Dell™ PowerConnect™ 3324/3348 is provided with pre-defined implemented features and setup configuration.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Switching Port Default Settings The following table describes the Port default settings.
Baud Rate The baud rates can be manually changed to any of the following values: • 2400 • 4800 • 9600 • 19,200 • 38,400 • 57,600 • 115,200 NOTE: The default baud rate is 9600. NOTE: Closing the device does not return the default baud rate. It must be specifically configured. NOTE: In order to enter configuration mode, you must specify administrative level 15 privileges.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Other Configuration Requirements The following is required for downloading embedded software and configuring the device: • ASCII terminal (or emulation) connected to the Serial port in the back of the unit. • Assigned IP address for PowerConnect 3324/3348 for device remote control using with Telnet, SSH, etc. NOTE: The configuration process defines only one port.
BOOT Software Version 1.30.11 Built 27-JAN-2003 10:06:03 Processor: MPC8245 Rev 0.12, 250 MHz (Bus: 100MHz), 32 MByte SDRAM. I-Cache 16 KB, linesize 32.D-Cache 16 KB, linesize 32. Cache Enabled. Autoboot in 2 seconds - press RETURN or Esc. to abort and enter prom. The auto-boot message that appears at the end of the POST (see the last lines) indicates that no problems were encountered during boot.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m STAND ALONE The BCM5625_A1 0 initiate successfully The BCM5625_A1 1 initiate successfully 02-Jan-2000 01:01:11%SSHD-W-NOHOSTKEY: SSHG_init: The SSH daemon cannot listen for incoming connections, because a host key has not been generated. The service will start automatically when a host key is generated.
Initial Configuration Initial configuration starts after the device has booted successfully. The initial configuration scope for the device includes: • Static IP address and Subnet Mask • Default gateway • User name and privilege level must be configured to allow remote management. If the device is to be managed from an SNMP-based management station, SNMP community strings must also be configured.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Gateway IP Address Activity status ----------------------- ----------------------- IP Address I/F ----------------------- ---------------------100.1.1.1/8 vlan 1 console# To configure an interface on a port, enter the commands at the system prompt as shown in the following configuration example: console> enable console# configure console(config)# interface ethernet 1/e1 console(config-if)# ip address 10.1.1.1 255.0.0.
Default Gateway To manage a PowerConnect 3324/3348 device from a remote network, a default gateway, which is the gateway that a device uses if a specific gateway is not specified, must be configured. The configured gateway IP address must belong to the same subnet as one of the device IP interfaces. To configure a default gateway, enter the command at the system prompt as shown in this configuration example: console> enable console# configure console(config)# ip default-gateway 100.1.1.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The device is SNMP-compliant. It contains an SNMP agent that supports a set of standard and private MIB variables. Developers of management stations require the exact structure of the MIB tree and receive the complete private MIBs information before being able to manage the MIBs. All parameters are manageable from any SNMP management platform, except the SNMP management station IP address and community (community name and access rights).
To configure SNMP station IP address and community string(s): 1 At the console prompt, type Enable. The prompt is displayed as #. 2 Type configure and press . 3 In the configuration mode, type the SNMP configuration command with the parameters including community name (private), community access right (read and write) and IP address, as shown in the example below: console> enable config# configure config(config)# snmp-server community private rw 11.1.1.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m When configuring/receiving IP addresses through DHCP and BOOTP, the configuration received from these servers includes IP address, and may include subnet mask and default gateway. Retrieving an IP address from a DHCP Server When using the DHCP protocol to retrieve an IP address, the device acts as a DHCP client.
console# NOTE: The device configuration does not need to be deleted to retrieve an IP address for the DHCP server. Receiving an IP address from a BOOTP Server The standard BOOTP protocol is supported enabling the device to automatically download their IP host configuration from any standard BOOTP server in the internet. In this case, the device acts as a BOOTP client.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m To verify the IP address, see the following display example. console> enable console# show ip interface Gateway IP Address Activity status ----------------------- ----------------------- IP Address I/F ----------------------- ---------------------10.1.1.1/8 vlan1 console# Now the device is configured with an IP address. The device configuration must be deleted to retrieve an IP address from the BOOTP server.
Configuring Security Passwords The security passwords can be configured for the following services: • Console • Telnet • SSH • HTTP • HTTPS NOTE: Passwords are user-defined. NOTE: When creating a user name, the default priority is "1", which allows access but not configuration rights. A priority of "15" must be specifically set to enable access and configuration rights to the device. For more information about password limitation, see "Configuring Network Security".
w w w. d e l l . c o m | s u p p o r t . d e l l .
Configuring an Initial HTTP Password To configure an initial HTTP password, enter the following commands: console> enable console# configure console(config)# ip http authentication local console(config)# username admin password admin level 15 console(config)# exit Configuring an Initial HTTPS Password To configure an initial HTTPS password, enter the following commands: console> enable console# configure console(config)# ip https authentication local console(config)# username admin password admin level 1
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Sample Configuration Process The purpose of this chapter is to present the basic steps required in order to establish a remote network management connection with the PowerConnect 3324/3348 device. This chapter does not explain the various configurations available on the device or the relevant commands. This chapter describes accessing a device for the first time—still with the factory configuration and definitions.
NOTE: 9600 is the default baud rate for new device. If using 9600 baud rate does not result in viewing the device terminal, try another baud rate setting (the device may be set at a different baud rate). 3 Use an F2F Null Modem cable to connect the PC running the ASCII terminal to the device. 4 Insert the device’s power cord into an electrical outlet to power up the device.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Booting... ------ Performing the Power-On Self Test (POST( -----UART Channel Loopback Test........................PASS Testing the System Cache..........................PASS Testing the System SDRAM..........................PASS Boot1 Checksum Test...............................PASS Boot2 Checksum Test...............................PASS Flash Image Validation Test.......................PASS Testing CPU PCI Bus Device Configuration..........
****************************************************************** *** Running *** SW Ver. 1.0.0.52 Date 29-Jun-2003 Time 19:04:06 ****************************************************************** HW version is 00.00.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Jan-2000 01:01:13 %LINK-W-Down: 1/e22 01-Jan-2000 01:01:13 %LINK-W-Down: 1/e23 01-Jan-2000 01:01:13 %LINK-W-Down: 1/e24 01-Jan-2000 01:01:13 %LINK-W-Down: 1/g1 01-Jan-2000 01:01:13 %LINK-W-Down: 1/g2 01-Jan-2000 01:01:14 %LINK-I-Up: Vlan 1 01-Jan-2000 01:01:14 %LINK-I-Up: 1/e1 console> The device is ready for configuration.
************************************************** ***************** SYSTEM RESET ***************** ************************************************** . . . . Remote Management Access To allow remote device management (Telnet, Web etc.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 4 Enter the command interface ethernet at the console to enter the Device Configuration screen mode through VLAN1 as follows: console> enable console# configure console(config)# interface vlan 1 console (config)# exit 5 Define an IP address on the device by assigning an IP address to the interface connected to the management station (in this example 50.1.1.1).
console(config)# exit console# ping 50.1.1.2 64 bytes from 50.1.1.2: icmp_seq=1. time=0 ms 64 bytes from 50.1.1.2: icmp_seq=2. time=0 ms 64 bytes from 50.1.1.2: icmp_seq=3. time=0 ms 64 bytes from 50.1.1.2: icmp_seq=4. time=0 ms ----50.1.1.2 PING Statistics---4 packets transmitted, 4 packets received, 0% packet loss round-trip (ms) min/avg/max = 0/0/0 console# 8 Define a username and password to allow full (privileged level 15) device access for a remote user (telnet, Web Server etc.).
w w w. d e l l . c o m | s u p p o r t . d e l l .
3 Select the option to configure the internet protocol (TCP/IP) and click Properties. The Internet Protocol (TCP/IP) properties window is displayed.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 4 Select Use the following IP address option. 5 In the Internet Protocol (TCP/IP) properties windows define statically (not via DHCP) an IP address, Mask and default gateway for the PC. NOTE: If the PC is connected to a router and not directly to PowerConnect 3324/3348 device, the default gateway must be configured as the IP address of the router interface connected to the PC (which leads to the PowerConnect device).
Once Access is granted, command usage is the same as in direct device management: 1 Under Windows click Start>Run and enter the command cmd. The standard windows command line interface is displayed. 2 Enter the command Telnet and the device IP address. Microsoft Windows 2000 [Version 5.00.2195] (C) Copyright 1985-2000 Microsoft Corp. C:\>telnet 50.1.1.2 01-Jan-2000 02:40:23 %MSCM-I-NEWTERM: New TELNET connection from 50.1.1.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Notice that Device indicates (In ASCII terminal) Telnet session status: console> 01-Jan-2000 02:39:04 %MSCM-I-NEWTERM: New TELNET connection from 50.1.1.3 01Jan-2000 02:39:11 %MSCM-I-TERMTERMINATED: TELNET connection from 50.1.1.
2 In the browser window type the IP previously configured on the device (with or without http:// prefix): Logging on Interface C o n f i g u r i n g t h e Po w e r C o n n e c t 3 3 2 4 / 3 3 4 8 S w i t c h 73
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 3 When the authentication window is displayed, enter the Username and password: Password Prompt The device Web Management Interface is displayed.
The PowerConnect 3324/3348 Interface Components Table lists the interface components with their corresponding numbers: Configuring Stacking Stacking Introduction Stacked PowerConnect 3324/3348 units act as a single system. Each stack has one Master unit, and up to five Member units. The Master unit: • Manages all member device setup. • Configures member ports. • Manages events that occur in the member context. All stacked unit Event Logs are managed and reported by the selected Master unit.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 4 Select Unit 2 using the Stack ID button within 15 seconds. 5 Repeat steps 3 and 4 for all stacking members. NOTE: Stack the units according to their Unit ID. For example, the Master Unit is stacked first, with Unit 2 directly below the Master Unit. Expanding the Stack This section contains instructions for adding stacking members. To expand a stack: NOTE: The Stack Unit ID must be selected within 15 seconds.
Startup Menu Functions From the Startup Menu, additional device configuration functions are performed.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m NOTE: The or key must be pressed within 2 seconds in order to display the Startup menu. NOTE: The device times out after 35 seconds if no selection is made. The time out periods can be reset using the CLI. 5 Type 1. The following prompt displays: Downloading code using XMODEM. 6 Using any VT100 emulator, select the download file option. The Send File window is displayed. Click the Send button.
To erase the device configuration: 1 Verify that the ASCII terminal is connected to the device. 2 Connect the power cable. The device boots and the Startup menu appears. The device begins to boot. 3 Press to exit or within two seconds. The Startup menu is displayed. 4 Type the number indicating your choice or press to exit. Type 2 within two seconds. The following message is displayed: Warning! About to erase the file from flash Are you sure (Y/N)? 5 Type Y.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 7 Confirm by typing Y. The following message is displayed: Erasing flash blocks 1 - 1: Done. Password Recovery To recover an Access Method password: 1 Boot or reboot the device and press within 2 seconds. The Startup menu displays. The following figure displays the Startup menu: Startup menu [1] Download sw [2] Erase from flash [3] Erase Flash [4] Password Recovery Procedure 2 Type 4 and press . The access method is reset.
Downloading the Software Sequentially Using the CLI 1 Ensure that an IP address is assigned to at least one port on the Master unit. 2 Enter console# show version to verify which software version is currently running on each unit. The following is an example of the information which displays: Unit SW version Boot version HW version ---------------------------------------------------1 1.0.0.52 1.0.0.13 00.00.01 2 1.0.0.52 1.0.0.13 00.00.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 5 Enter console# copy tftp://50.1.1.2/332448-10018.dos unit://2/image. The device software is copied to the Stacking member 2. unit: the //2/image indicates the Stacking member Unit ID to which the software is copied. The following is an example of the information that displays: ...................
1 Ensure that an IP address is assigned to at least one port on the Master unit. 2 Enter console# show version to verify which software version is currently running on each unit. The following is an example of the information that displays: Unit SW version Boot version HW version ---------------------------------------------------1 1.0.0.52 1.0.0.13 00.00.01 2 1.0.0.52 1.0.0.13 00.00.01 Each unit’s software version, boot version, and hardware version are displayed.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 6 Enter console# reload. The following message displays: This command will reset the whole system and disconnect your current session. Do you want to continue (y/n) [n] ? 7 Enter Y. The device reboots. 8 Repeat step 3 to verify which Image files are active. 9 Enter console# copy image unit://2/image. The following is an example of the information which displays: console# copy image unit://2/image ...................
Defining SNMP Settings Simple Network Management Protocol (SNMP) provides a method for managing network devices. Devices supporting SNMP run local software (agent). The SNMP agents maintain a list of variables, which are used to manage the device. The variables are defined in the Management Information Base (MIB). The MIB presents the variables controlled by the agent. The SNMP agent defines the MIB specification format as well as the format used to access the information over the network.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Connecting Devices After assigning IP addresses to the PowerConnect device, devices are connected to the RJ-45 connectors on the PowerConnect front panel. NOTICE: If auto negotiation is disabled for an RJ-45 port, the auto-MDI/MDI-X pin signal configuration is also disabled. To connect a device to an SFP transceiver port: 1 Use the cabling requirements to select an appropriate SFP transceiver type.
SECTION 5 Getting Started Starting the Switch Administrator Understanding the Interface Using the Switch Administrator Buttons Using the CLI Starting the CLI
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Starting the Switch Administrator The Dell™ PowerConnect™ 3324/3348 Dell OpenManage™ Switch Administrator can be accessed from any PC with a web browser. To start the Switch Administrator: 1 Open a web browser. 2 Enter the device IP address/home.htm in the address bar and press . A login window displays. PowerConnect 3324/3348 Password Page 3 Enter a user name and password.
PowerConnect 3324/3348 Web Management Inter face The PowerConnect 3324/3348 Interface Components Table lists the interface components with their corresponding numbers: P o w e r C o n n e c t 3 3 2 4 / 3 3 4 8 I n t e r f a c e C o m p o n e n t s Ta b l e Component Name 1 Tree View. The Tree View contains a list of the different device features. For more information about the Tree View, see "Tree View". 2 Device View.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The branches in the Tree View can be expanded to view all the components under a specific feature or retracted to hide the feature's components. Device View The following section describes the different aspects of the Device View. The device provides information about the PowerConnect 3324/3348 switch.
PowerConnect 3348 The port coloring indicates whether a specific port is currently active. Ports are reflected in the following colors: PowerConnect 3324/3348 Port Indicators Component Name Green Indicates the port is connected. Blue Indicates the port is suspended due to a security function. Red Indicates that the port is disconnected. NOTE: The LEDs are not reflected in the PowerConnect 3324/3348 front panel in the Switch Administrator.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Example of Work Desk Information Using the Switch Administrator Buttons This section contains information about the different Dell OpenManage Switch Administrator buttons provided by the interface. The Switch Administrator provides the following buttons: 92 • Information Buttons—Provides access to informational services including technical support, online help, information about the device, and closing the Switch Administrator.
Information Buttons The Switch Administrator home page contains the following information buttons: Information Buttons Button Description Opens the Dell Support Page. The Dell Technical Support Page URL is www.support.dell.com Opens the Online Help. Opens the About page. Logs out of the Switch Administrator. Support Button The Support page contains information for accessing Dell's technical support page. 1 Click Support.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 2 Select the area that describes the support needed. The appropriate support page displays. 3 Enter a user name and password. 4 Click Login and complete the instructions. NOTE: Depending on the type of technical support required, a user name and password may be required. Help Button The Online Help page contains information to assist with configuring and managing the switch. 1 Click Help. The Online Help page opens. 2 Select a Help topic.
About PageDevice Management Buttons The Switch Administrator management buttons allow network managers to easily configure PowerConnect from remote locations. The Switch Administrator contains the following management buttons: Device Management Buttons Button Description Applies set changes to the device. Adds information to tables or information windows. Starts a Telnet session. Queries tables. Displays the device tables. Transfers the firmware file from the device to the server.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Adds ACEs to ACLs. Adds ACLs. Adds new lists. Attaches assorted lists to interfaces. Resets statistic counters. Prints the Network Management System page and/or table information. Sorts table information. Displays the Neighbors List from the Neighbors Table page. Restores the device default settings. Creates Statistics charts on-the-fly.
Using the CLI This section contains an introduction to the Command Line Interface (CLI). Command Mode The CLI is divided into command modes. Each command mode has a specific command set. Entering a question mark ? at the system prompt (console prompt) displays a list of commands available for that particular command mode. In each mode, a specific command is used to navigate from one command mode to another.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m To list the user EXEC commands enter the command ?. The user-level prompt consists of the host name followed by the angle bracket (>). console> NOTE: The default host name is console unless it has been modified during initial configuration. Privileged EXEC Mode This mode ensures that the Privileged access is password protected to prevent unauthorized use. Passwords are displayed on the screen as ***** and are case sensitive.
The exit command is used to move back from any mode to a previous level mode, for example, from Interface Configuration Mode to Global Configuration Mode, and from Global Configuration Mode to Privileged EXEC Mode. Global Configuration Mode Global Configuration commands apply to system features, rather than a specific protocol or interface. The Privileged EXEC Mode command configure is used to enter the Global Configuration Mode.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Line Interface—Contains commands to configure the management connections. These include commands such as line speed and timeout settings. • IP Access-List—Contains commands to manage access lists. The commands create and maintain the lists. • Ethernet—Contains commands to manage port configuration. • Management Access List—Contains commands to define access lists for management.
Telnet Connection Telnet is a terminal emulation TCP/IP protocol. ASCII terminals can be virtually connected to the local device through a TCP/IP protocol network. Telnet is an alternative to a local login terminal where a remote login is required. PowerConnect 3324/3348 supports up to four simultaneous Telnet sessions. All CLI commands can be used over a telnet session. To start a Telnet session: 1 Select Start > Run. The Run window opens.
Getting Started w w w. d e l l . c o m | s u p p o r t . d e l l .
SECTION 6 Configuring System Information Defining General Device Information Managing Logs Defining Device IP Addresses Managing Device Security Defining SNMP Parameters Managing Files Defining Advanced Settings
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m This section provides information about defining system parameters including security features, downloading device software, and resetting the device. To open the System page: • Click System in the Tree View. The System page opens.
General Page Viewing the Asset Page The Asset page contains parameters for configuring general device information, including the system name, location, and contact, the system MAC Address, System Object ID, date, time, and System Up Time. To open the Asset page: • Click System > General > Asset in the Tree View. The Asset page opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Asset Page The Asset page contains the following fields: 106 • System Name—Defines the user-defined device name. • System Contact—Specifies the name of the contact person. • System Location—Indicates the location where the system is currently running. • MAC Address—Specifies the switch MAC address. • Sys Object ID—Identifies the OID of the MIB. • Date (MM/DD/YY)—Indicates the current date.
• Asset Tag—Specifies the user-defined device reference. • Serial No.—Indicates the serial number of the device. Defining system information: 1 Open the Asset page. 2 Define the System Name, System Contact, System Location, Date, Asset Tag, and Time fields. 3 Click Apply Changes. The system parameters are defined, and the device is updated. Initiating a Telnet Session: 1 Open the Asset page. 2 Click Telnet. A Telnet session is initiated.
w w w. d e l l . c o m | s u p p o r t . d e l l .
Viewing System Health Information The System Health page physical device hardware information. To open the System Health page: • Click System > General > Health in the Tree View. The System Health page opens. System Health Page The System Health page contains the following fields: • Unit—Indicates the stacking unit number. • Main Power Supply Status—Indicates the main power supply state. The possible field values are: – • —Indicates the main power supply is operating normally for the specified unit.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m – —Indicates the redundant power supply is not operating normally for the specified unit. – Not Present—Indicates that the power supply is not present for the specified unit. Viewing System Health Information Using the CLI Commands The following table summarizes the equivalent CLI commands for viewing fields displayed in the System Health page. CLI Command Description show system Displays system information.
Ve r s i o n s Pa g e The Versions page contains the following information: • Unit No.—Indicates the stacking unit number. • Software Version—Displays the current software version running on a specific stacking unit. • Boot Version—Displays the current Boot version running on a specific stacking unit. • Hardware Version—Displays the current hardware versions running on a specific stacking unit.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The following is an example of the CLI commands: Console> show version SW version 1.0.0.01 (date Boot version HW version 1.30.11 ( date 14-Feb-2003 time 14:42:16 ) 27-Jan-2003 time 10:06:02 ) 01.01.01 Resetting the Device The Reset page allows users to reset the device from a remote location. To open the Reset page: • Click System > General > Reset in the Tree View. The Reset page opens.
Resetting the device: 1 Open the Reset page. 2 Click Reset. A confirmation message displays: Device Reset Confirmation Message 3 Click OK. The device is reset. After the device is reset, the user is prompted for a user name and password. Resetting the Device Using the CLI The following table summarizes the equivalent CLI commands for viewing fields displayed in the Reset page. CLI Command Description reload Reloads the operating system.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Logs Page The Logs page contains links to the following pages: • Defining Global Log Parameters • Displaying RAM Log Table • Displaying the Log File Table • Viewing the Remote Log Server Settings Page Defining Global Log Parameters The System Logs enable you to view significant events in real time and keep a record of these events for later use. This feature provides the ability to log and manage events and report errors.
Event messages have a unique format, as per the SYSLOG RFC recommended message format for all error reporting; for example, Syslog+ local device reporting. Messages are assigned a severity code and include a message mnemonic, which identifies the source application generating the message. Messages are filtered based on their urgency or relevancy. The severity of each message determines the set of event logging devices to which messages are sent for each event logging device.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Global Log Parameters Page The Global Log Parameters page contains the following fields: • • 116 Logging—Enables device global logs for Cache, File, and Server Logs. Console logs are enabled by default and cannot be disabled. The possible field values are: – Enable—Enables saving logs in Cache (RAM), File (FLASH), and an External Server. – Disable—Disables saving logs. Console logs cannot be disabled.
– Warning—Indicates the lowest level of a device warning. The device is functioning, but an operational problem has occurred. – Notice—Provides the network administrators with device information. – Informational—Provides device information. – Debug—Provides detailed information about the log. If a Debug error occurs, contact Dell Online Technical Support (www.support.dell.com). NOTE: When a severity level is selected, all severity level choices above the selection are selected automatically.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CLI Command Description logging buffered level Limits syslog messages displayed from an internal buffer (RAM) based on severity. logging file level Limits syslog messages sent to the logging file based on severity. clear logging Clears logs.
The RAM Log Table page contains the following fields: • Log Index—Indicates the log number in the RAM Log Table. • Log Time—Specifies the time at which the log was entered in the RAM Log Table. • Severity—Specifies the log severity. • Description—Displays the user-defined log description. Removing Log Information: 1 Open the RAM Log Table page. 2 Click Clear Log. The log information is removed from the RAM Log Table/Log File Table, and the device is updated.
w w w. d e l l . c o m | s u p p o r t . d e l l .
Displaying the Log File Table The Log File Table contains information about log entries saved to the Log File in FLASH, including the time the log was entered, the log severity, and a description of the log message. To open the Log File Table page: • Click System > Logs > Log File in the Tree View. The Log File Table page opens. L o g F i l e Ta b l e The Log File Table contains the following fields: • Log Index—Indicates the log number in the Log File Table.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CLI Command Description show logging file Displays the state of logging and the syslog messages stored in the logging file. clear logging Clears all log files. The following is an example of the CLI commands: Console # show logging file Console logging: level debugging. Console Messages: 0 Dropped (severity). Buffer logging: level debugging. Buffer Messages: 11 Logged, 200 Max. File logging: level notifications.
11-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1/e0, changed state to down 11-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1/e1, changed state to down 11-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1/e2, changed state to down 11-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet1/e3, changed state to down Viewing the Remote Log Server Settings Page The Remote Log Server Settings page contain
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • UDP Port (1-65535)—Indicates the UDP port to which the logs are sent for the selected server. The possible range is 1 - 65,535. The default value is 514. • Facility—Indicates the facility mapping level for the selected server. The default value is Local 0. The possible values are: – Local 0 - Local 7. – No Map. • Description—Displays the user-defined server description.
Add a Log Ser ver Page In addition to the fields in the Remote Logs Server Settings page, the Add a Log Server page contains the following field: • New Log Server IP Address—Specifies the IP address of the new Log Server. To add a log server: 1 Define the New Log Server IP Address, UDP Port, Facility, and Description fields, and select the Severity to Include check boxes. 2 Click Apply Changes. The server is defined and added to the Available Servers list.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Removing a Log Server from the Log Servers Table page: 1 Open the Remote Logs Server Settings page. 2 Click Show All. The Log Servers Table page opens. 3 Select a Log Servers Table entry. 4 Check the Remove check box to remove the server(s). 5 Click Apply Changes. The Log Servers Table entry is removed and the device is updated.
The IP Addressing page contains links to the following pages: • Defining Default Gateways • Defining IP Interfaces • Defining DHCP IP Interfaces • Configuring ARP Defining Default Gateways The Default Gateway page allows network managers to assign Gateway devices. Packets are forwarded to the default IP when frames are sent to a remote network. The configured IP address must belong to the same IP address subnet of one of the IP interfaces.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The Default Gateway page contains the following fields: • Default Gateway—Indicates the Gateway device IP address. • Active—Indicates if the default Gateway device specified in the Default Gateway drop-down list is currently active. The possible field values are: • – Checked—Indicates the Gateway device is currently active. – Unchecked—Indicates the Gateway device is not currently active.
3 Define the Default Gateway IP Address field. OR Set the new gateway as active by checking the check box. 4 Click Apply Changes. The new default Gateway device is defined, and the device is updated. Displaying the Default Gateway Table: 1 Open the Default Gateway page. 2 Click Show All. The Default Gateway Table opens. D e f a u l t G a t e w a y Ta b l e P a g e Removing a Default Gateway device: 1 Open the Default Gateway page. 2 Click Show All. The Default Gateway Table page opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CLI Command Description no ip default-gateway [ip-address] Removes a default gateway. The following is an example of the CLI commands: Console (config)# ip default-gateway 196.210.10.1 Console (config)# no ip default-gateway 196.210.10.1 Defining IP Interfaces The IP Interface Parameters page contains parameters for assigning IP addresses to interfaces.
– Port—Indicates that the IP address was assigned to a port. – LAG—Indicates that the IP address was assigned to a Link Aggregated Group (LAG). – VLAN—Indicates that the IP address was assigned to a VLAN. • Type—Indicates whether the IP address was defined manually as a static IP address or automatically through DHCP. • Remove—Removes the selected interface from the IP Address drop-down list. – Checked—Removes the interface from the IP Address drop-down list.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m I P I n t e r f a c e Ta b l e P a g e Deleting IP addresses: 1 Open the IP Interface page. 2 Click Show All. The IP Interface Table page opens. 3 Select an entry in the IP Interface Table. 4 Check the Remove check box to remove IP addresses. 5 Click Apply Changes. The IP address is deleted, and the device is updated.
Internet address is 10.7.1.192/24 console# show ip interface vlan 204 IP Address Directed Broadcast ----------------------- -------------------146.1.0.132/29 disable console# Defining DHCP IP Interfaces The DCHP IP Interface page specifies the DCHP client setting for the device per interface. • Click System > IP Addressing > DHCP IP Interface in the Tree View. The DCHP IP Interface page opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The DCHP IP Interface page contains the following fields: • Interface—Select an interface of the device. – Port—Specifies the interface type is a port, and the specific port number for which DHCP client settings are shown. – LAG—Specifies the interface type is a LAG, and the specific LAG number for which DHCP client settings are shown.
Modifying a DCHP IP Interface: 1 Open the DHCP IP Interface page. 2 Modify the Interface field. 3 Click Apply Changes. The entry is modified, and the device is updated. Displaying the DHCP IP Interfaces Table: 1 Open the DHCP IP Interface page. 2 Click Show All. The DHCP IP Interfaces Table Page opens. D H C P I P I n t e r f a c e s Ta b l e P a g e Deleting a DHCP IP Interface: 1 Open the DHCP IP Interface page. 2 Click Show All. The DHCP IP Interfaces Table opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CLI Command Description ip address-dhcp [hostname host-name] Acquires an IP address on an ethernet interface from DHCP. The following is an example of the CLI commands: Console (config)# interface ethernet 1/e8 Console (config-if)# ip address-dhcp hostname marketing Configuring ARP The Address Resolution Protocol (ARP) is a TCP/IP protocol that converts IP addresses into physical addresses. The static entries can be defined in the ARP Table.
The ARP Settings page contains the following fields: • ARP Entry Age Out (0-4000000)—Indicates the amount of time (seconds) that passes before an ARP entry is aged out. After this period, the entry is deleted from the table. The default value is 60,000 seconds. • Clear ARP Table Entries—Indicates the type of ARP entries that are cleared. The possible field values are: • – None—Indicates that ARP entries are not cleared. – All—Indicates that all ARP entries are cleared.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Add ARP Entr y Page 3 Select an Interface and define its IP Address and MAC address fields. 4 Click Apply Changes. The ARP Table entry is added, and the device is updated. Displaying the ARP Table: 1 Open the ARP Setting page. 2 Click Show All. The ARP Table page opens. A R P Ta b l e P a g e Deleting ARP Table entry: 1 Open the ARP Setting page. 2 Click Show All. The ARP Table page opens. 3 Select a table entry.
CLI Command Description arp ip_addr hw_addr {ethernet interfacenumber | vlan vlan-id | port-channel number} Adds a permanent entry in the ARP cache. arp timeout seconds Configures how long an entry remains in the ARP cache. show arp Displays entries in the ARP Table. no arp Removes an ARP entry from the ARP Table. The following is an example of the CLI commands: console(config)# arp 146.1.0.
w w w. d e l l . c o m | s u p p o r t . d e l l .
Defining Access Profiles The Access Profiles page allows network managers to define profiles and rules for accessing the device. Management method access can be limited to a specific user group by Ingress Ports, Source IP address, and/or Subnet Masks. Management Access methods can be separately defined for: • Web Access (HTTP) • Secure Web Access (HTTPS) • Telnet • SNMP • All of the above Users accessing one management service may differ from users managing a separate management service.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The Access Profiles page contains the following fields: • • Access Profile State—Enables the Access Profile on the device. The possible field values are: – Enable—Enables Access Profile Security Management on the device. – Disable—Disables the Access Profile Security Management on the device. If Access Profile Security Management is disabled, the device is accessible to all stations.
Add An Access Profile Page The Add An Access Profile page contains the following fields: • Access Profiles Name—Specifies the Access Profile for which rules are defined. • Rule Priority (1-65535)—Indicates the rule priority (for an optional first rule to include in the new profile). • Management Method—Specifies the management method for which the Access Profile is defined. The possible field values: • – All—Indicates all management methods are assigned to the Access Profile.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Source IP Address—Indicates the interface Source IP Address to which the packet is matched. • Network Mask—Indicates the interface network mask to which the packet is matched. • Prefix Length—Indicates the prefix length to which the packet is matched. • Action—Defines the Management Security Rule action. The possible field values are: – Permit—Permits management access to the defined interface.
• • Management Method—Specifies the management method for which the access profile is defined. The possible field values: – All—Indicates all management methods are assigned to the Access Profile. Users with this Access Profile can access the device using all management methods. – Telnet—Indicates all Telnet sessions are assigned to the Access Profile. Users with this Access Profile access the device using the Telnet management method.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 5 Click Apply Changes. The rule is added, and the device is updated. Viewing the Profile Rules Table: NOTE: The order in which rules appear in the Profile Rules Table is important. Packets are matched to the first rule which meets the rule criteria. 1 Open the Access Profiles page. 2 Click Show All.The Profile Rules Table page opens. P r o f i l e R u l e s Ta b l e P a g e 3 Click Apply Changes.
CLI Command Description management access-list name Defines an access-list for management, and enters the access-list context for configuration. permit [ethernet interfacenumber | vlan vlan-id | portchannel number] [service service] Sets port permitting conditions for the management access list.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Console (config)# management access-class mlist Console (config)# exit Console# show management access-list mlist ----permit ethernet 1/e1 permit ethernet 2/e9 ! (Note: all other access implicitly denied) Console> show management access-class Management access-class is enabled, using access list mlist Defining Authentication Profiles The Authentication Profiles page allows network managers to select the user authentication method on the device.
Authentication Profiles Page The Authentication Profiles page contains the following options lists: • • • Authentication Profile Name—Displays the user-defined authentication method lists and includes the following values: – Network Default – Console Default Optional Methods—Lists the user authentication methods. The possible options are: – Local—Indicates that authentication occurs locally. The device checks the user name and password for authentication.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Remove—Removes the selected Authentication Profile from the Authentication Profile Name list. – Checked—Removes an Authentication Profile. – Unchecked—Maintains an Authentication Profile. Selecting an Authentication Profile: 1 Open the Authentication Profiles page. 2 Select a profile in the Authentication Profile Name field. 3 Select the authentication method using the arrow icons. 4 Click Apply Changes.
Authentication Profile Page Deleting an Authentication Profile: 1 Open the Authentication Profiles page. 2 Click Show All. The Open the Authentication Profile page opens. 3 Select an authentication profile. 4 Check the Remove check box. 5 Click Apply Changes. The authenticating profile is deleted. Configuring an Authentication Profile Using CLI Commands The following table summarizes the equivalent CLI commands for viewing fields displayed in the Authentication Profiles page.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Assigning Authentication Profiles After Authentication Profiles are defined, the Authentication Profiles can be applied to Management Access methods. For example, console users can be authenticated by Authentication Method Lists 1, while Telnet users are authenticated by Authentication Method List 2. To open the Management Authentication page: • Click System > Management Security > Select Authentication in the Tree View.
• Telnet—Displays the Authentication Profiles used to authenticate Telnet users. Authentication Profiles are assigned in Assigning Authentication Profiles. There are two predefined field values to which other Authentication Profiles can be added. However the predefined values cannot be deleted. The predefined field values are: – Network Default – Console Default • Secure Telnet (SSH)—Displays the Authentication Profiles used to authenticate SSH users.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Secure HTTP—Specifies the authentication profiles used for Secure HTTP access. The possible field values are: – None—Indicates that no authentication profiles is used for Secure HTTP access. – Local—Indicates that Secure HTTP authentication occurs locally. – Radius—Indicates that Secure HTTP authentication occurs at the RADIUS server. – Local, None—Indicates that Secure HTTP authentication first takes place locally.
3 Click Apply Changes. Telnet sessions are assigned an Authentication List. Applying an Authentication Profile to Secure Telnet (SSH) Sessions: 1 Open the Select Authentication page. 2 Select an Authentication Profile in the Secure Telnet (SSH) field. 3 Click Apply Changes. Secure Telnet (SSH) sessions are assigned an Authentication Profile. Assigning HTTP Sessions a Authentication Sequence: 1 Open the Select Authentication page. 2 Select an authentication sequence in the HTTP field.
w w w. d e l l . c o m | s u p p o r t . d e l l .
Defining the Local User Databases The Local User Database page allows network managers to define users, passwords and access levels. Password are limited to a maximum of 16 characters. To open the Local User Database page: • Click System > Management Security > Local User Database in the Tree View. The Local User Database page opens. Local User Database Page The Local User Database page contains the following fields: • User Name—Contains a list of users.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m – Checked—Removes a specific user from the Local User Database. – Unchecked—Maintains the user in the Local User Database . Assigning access rights to a user: 1 Open the Local User Database page. 2 Select a user in the User Name field. 3 Define the Access Level, and Password fields. 4 Click Apply Changes. The user access rights and passwords are defined, and the device is updated. Defining a New User: 1 Open the Local User Database page.
L o c a l U s e r Ta b l e P a g e Deleting Users: 1 Open the Local User Database page. 2 Click Show All. The Local User Table page opens. 3 Select a User Name. 4 Check the Remove check box. 5 Click Apply Changes. The user is deleted, and the device is updated. Assigning Users Using CLI Commands The following table summarizes the equivalent CLI commands for viewing fields displayed in the Local User Database page.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Defining Line Passwords The Line Passwords page allows network managers to define line passwords for management methods. Passwords are limit to maximum of 16 characters. To open the Line Passwords page: • Click System > Management Security > Line Passwords in the Tree View. The Line Password page opens.
Defining line passwords for console sessions: 1 Open the Line Password page. 2 Define the Line Password for Console field. 3 Click Apply Changes. The line password for console sessions is defined, and the device is updated. Defining line passwords for Telnet sessions: 1 Open the Line Password page. 2 Define the Line Password for Telnet field. 3 Click Apply Changes. The line password for the Telnet sessions is defined, and the device is updated.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Click System > Management Security > Enable Passwords in the Tree View. The Modify Enable Password page opens. Modify Enable Password Page The Modify Enable Password page contains the following fields: • Select Enable Access Level—Specifies the access level associated with the Enable password. • Password—Indicates the Enable password.The password is displayed as *******. • Confirm Password—Confirms the new Enable password.
CLI Command Description enable password [level level] password [encrypted] Sets a local password to control access to user and privilege levels. show users accounts Displays information about the local user database.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m RADIUS Settings Page The RADIUS Settings page contains the following fields: 164 • IP Address—Indicates the list of Authentication Server IP addresses. • Priority (1-65535)—Indicates the server priority. The possible values are 1-65535, where 1 is the highest value. This is used to configure the order in which servers are queried. • Authentication Port—Identifies the authentication port.
The following fields set the RADIUS default values: • Default Timeout for Reply (1-30)—Specifies the default amount of time (in seconds) the device waits for an answer from the RADIUS server before timing out. NOTE: If Host Specific Timeouts, Retransmit, Dead Time, or Deny values are not specified, the Global values are applied to each host. • Default Retries (1-10)—Specifies the default number of transmitted requests sent to RADIUS server before a failure occurs.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 3 Define the IP Address, Priority, Authentication Port, Number of Retries, Timeout for Reply, Dead Time, Key String, and Source IP Address fields. 4 Click Apply Changes. The new RADIUS server is added, and the device is updated. Displaying the RADIUS Server List: 1 Open the RADIUS Settings page. 2 Click Show All. The RADIUS Servers List page opens.
CLI Command Description radius-server timeout timeout Sets the default interval for which a device waits for a server host to reply. radius-server retransmit retries Specifies the default number of times the software searches the list of RADIUS server hosts. radius-server deadtime deadtime Configures unavailable default servers to be skipped. radius-server key keystring Sets the default authentication and encryption key for all RADIUS communications between the device and the RADIUS environment.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 172.16.1.216451646118 02 Defining SNMP Parameters Simple Network Management Protocol (SNMP) provides a method for managing network devices. Devices supporting SNMP run a local software (agent). The SNMP agents maintain a list of variables, which are used to manage the device. The variables are defined in the Management Information Base (MIB). The MIB presents the variables controlled by the agent.
Defining Communities The system administrator manages access rights (read and write, read only, and so on.) by defining communities in the Community Table. When the community names are changed, access rights are also changed. To open the SNMP Community page: • Click System > SNMP > Communities in the Tree View. The SNMP Community page opens. SNMP Community Page The SNMP Community page contains the following fields: • SNMP Management Station—Indicates a list of management station IP addresses.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m – • SNMP Admin—Indicates that the user has access to all device configuration options, as well to modifying the community. Remove—Removes a community. The possible field values are: – Checked—Removes the community. – Unchecked—Maintains the community. Defining a new community: 1 Open the SNMP Community page. 2 Click Add. The Add SNMP Community page opens.
C o m m u n i t y Ta b l e P a g e Deleting Communities: 1 Open the SNMP Community page. 2 Click Show All. The Community Table page opens. 3 Select a community from the Community Table. 4 Check the Remove check box. 5 Click Apply Changes. The community entry is deleted, and the device is updated. Configuring Communities Using CLI Commands The following table summarizes the equivalent CLI commands for viewing fields displayed in the SNMP Community page.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m S N M P Tr a p S e t t i n g s P a g e The SNMP Trap Settings page contains the following fields: • • 172 SNMP Trap—Enables sending SNMP traps or SNMP notifications from the switch to defined trap recipients. The possible field values are: – Enable—Enables sending SNMP traps or SNMP notifications. – Disable—Stops all SNMP traps from being sent. Authentication Trap—Enables sending SNMP traps when authentication fails to defined recipients.
– Checked—Removes the Trap Manager Table entry. – Unchecked—Maintains the Trap Manager Table entry. Enabling SNMP Traps on the device: 1 Open the SNMP Trap Settings page. 2 Select Enable in the SNMP Trap drop-down list. 3 Define the Select Recipient IP, Traps, and Community String fields. 4 Click Apply Changes. SNMP traps are enabled on the device. Enabling Authentication Traps on the device: 1 Open the SNMP Trap Settings page. 2 Select Enable in the Authentication Trap drop-down list.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Displaying the Trap Managers Table: The Trap Managers Table contains fields for configuring trap types. 1 Open the Traps page. 2 Click Show All. The Traps Manager Table page opens. Tr a p M a n a g e r s Ta b l e P a g e Deleting a Trap Manager Table entry: 1 Open the SNMP Trap Settings page. 2 Click Show All. The Traps Manager Table page opens. 3 Select a Trap Managers Table entry. 4 Check the Remove check box. 5 Click Apply Changes.
CLI Command Description show snmp Displays the SNMP communications status. The following is an example of the CLI commands: Console (config)# snmp-server enable traps Console (config)# snmp-server trap authentication Console (config)# snmp-server host 10.1.1.1 trapRec 2 Console (config)# exit Console# show snmp Community-StringCommunity-AccessIP address ------------------------------------------publicread onlyAll privateread write172.16.1.1 privateread write172.17.1.1 Traps are enabled.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m File Management Overview The configuration file structure consists of the following files: • Startup Configuration File—Retains the exact device configuration when the device is powered down or rebooted. The Startup file maintains configuration commands, and configuration commands from the Running Configuration file can be saved to the Startup file.
File Management Page The File Management page contains links to: • Downloading Files • Uploading Files • Resetting the Active Image • Copying and Deleting Files Downloading Files The File Download from Server page contains fields for downloading image and Configuration Files from the TFTP server to the device. To open the File Download from Server page: • Click System > File Management > File Download in the Tree View. The File Download from Server page opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m File Download From Ser ver Page The File Download from Server page contains the following fields: 178 • Firmware Download—Indicates that the Firmware file is downloaded. If Firmware Download is selected, the Configuration Download fields are grayed out. • Configuration Download—Indicates that the Configuration file is downloaded. If Configuration Download is selected, the Firmware Download fields are grayed out.
• Configuration Download File Destination—Indicates the destination file to which to the configuration files is downloaded. The possible field values are: – Running Configuration—Downloads commands into the Running Configuration files. – Startup Configuration—Downloads the Startup Configuration file and overwrites it. – Backup Configuration—Downloads the Backup Configuration file and overwrites it. Downloading files: 1 Open the File Download from Server page. 2 Define the file type to download.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Copy took 0:01:11 [hh:mm:ss] Uploading Files The File Upload to Server page contains fields for uploading the software from the TFTP server to the device. The Image file can also be uploaded from the File Upload to Server page. To open the File Upload to Server page: • Click System > File Management > File Upload in the Tree View.
• Configuration Upload Destination—Specifies the Configuration file path from which the file is uploaded. • Configuration Upload Transfer file name—Indicates the software file to which the configuration is uploaded. The possible field values are: – Running Configuration—Uploads the Running Configuration file. – Startup Configuration—Uploads the Startup Configuration file. – Backup Configuration—Uploads the Backup file. Uploading files: 1 Open the File Upload to Server page.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Resetting the Active Image The Active Images page allows network managers to select and reset the Image files. The Active Image file for each unit in a stacking configuration can be individually selected. To open the Active Images page: • Click System > File Management > Active Images in the Tree View. The Active Images page opens. Active Images Page The Active Images page contains the following fields: • Unit No.
3 Click Apply Changes. The Image file is selected. The Image file reloads only after the next reset. The currently selected Image file continue to run until the next device reset. For instruction on resetting the device, see "Resetting the Device". Working with the Active Image File Using CLI Commands The following table summarizes the equivalent CLI commands for viewing fields displayed in the Active Images page.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Copy Files Page The Copy Files page contains the following fields: • • 184 Copy Master Firmware—Copies either the Software Image and/or Boot Code from the master unit to a selected stacking unit. – Source—Copies either the Software Image or Boot Code files to the selected stacking unit. – Destination Unit—Indicates the stacking unit to which the Software Image or Boot Code is copied.
• Restore Configuration Factory Defaults—Restores the Factory Configuration default files by erasing the Startup-Config File. Note that the Backup-Config File is not erased. The possible field values are: – Checked—Restores the factory defaults. – Unchecked—Maintains the current configuration settings. Copying Files: 1 Open the Copy Files page. 2 Select either the Copy Configuration or Copy Master Firmware field. 3 Define the Source and Destination fields for the file. 4 Click Apply Changes.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Accessing file 'file1' on 172.16.101.101. Loading file1 from 172.16.101.101: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!! [OK] Copy took 0:01:11 [hh:mm:ss] Defining Advanced Settings Device Tuning is used to determine the maximum amount of entries allowed in the various tables listed.
Configuring General Device Tuning Parameters The General Settings page allows network managers to define general device parameters. To open the General Settings page: • Click System > Advanced Settings > General in the Tree View. The General Settings page opens. General Settings Page The General Settings page contains the following columns: • Attribute—The general setting attribute. • Current—The current value. • After Reset—The future (after reset) value.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Viewing RAM Log Entries Counter Using the CLI Commands The following table summarizes the equivalent CLI commands for viewing fields displayed in the General Settings page. CLI Command Description logging buffered size number Sets the number of syslog messages stored in the internal buffer (RAM). gvrp max vlan Configures the maximum number of VLANs when GVRP is enabled.
SECTION 7 Configuring Switch Information Configuring Network Security Configuring Ports Configuring Address Tables Configuring GARP Configuring the Spanning Tree Protocol Configuring VLANs Aggregating Ports Multicast Forwarding Support
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m This section provides all system operation and general information for configuring network security, ports, Address tables, GARP, VLANs, Spanning Tree, Port Aggregation, and Multicast Support. Switch Page Configuring Network Security Dell™ PowerConnect™ 3324/3348 allows network managers to set network security through both Access Control Lists and Locked Ports. To open the Network Security page: • 190 Select Switch > Network Security.
Network Security Page The Network Security page contains links to the following topics: • Network Security Overview • Configuring Port Security • Defining IP-Based ACLs • Defining MAC-Based ACLs • Binding ACLs Network Security Overview Access Control Lists (ACLs) allow network managers to define classification actions and rules for specific ingress ports. ACLs contain multiple classification rules and actions. Each classification rule and action is an Access Control Element (ACE).
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Wild Card Masks • Match DSCP • Match IP-Precedence • Source MAC Address • Destination MAC Address • VLAN ID For example, a network administrator may define an ACL rule that states that port number 20 can receive TCP packets; however, if a UDP packet is received, the packet is dropped. A single ACL can contain more than one ACE. The ACEs within an ACL are applied in a first fit manner.
Configuring Port Security Network users can be limited to specific ports or LAGs with Locked Ports. Locked Port is restricted to users with specific MAC addresses. Locked ports can only be enabled on static MAC addresses. In addition, the Locked Port security option enables storing a list of MAC addresses in the Configuration file. The MAC address list can be restored after the device has been reset. MAC addresses are learned either dynamically or statically.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • • • • Set Port—Indicates that the port is either locked or unlocked. The possible field values are: – Unlocked—Unlocks Port. This is the default value. – Locked—Locks Port. Action on Violation—Indicates the action to be applied to packets arriving on a locked port. The possible field values are: – Forward—Forwards the packets from an unknown source; however, the MAC address is not learned.
P o r t S e c u r i t y Ta b l e P a g e In addition to the fields displayed in the Port Security Page, the Port Security Table page contains the following additional field: • Unit No.—Indicates the unit number for which the port security information is displayed. Configuring Locked Port Security with CLI Commands The following table summarizes the equivalent CLI commands for configuring Locked Port security as displayed in the Port Security Page.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 5/7 Discard Enable 7/8 Discard Disable 100 88 Defining IP-Based ACLs The Add ACE to IP Based ACL page allows network administrators to define IP-based Access Control Lists (ACLs) and Access Control Entries (ACEs). ACEs act as filters to match packets to forwarding criteria. To open the Add ACE to IP Based ACL page: • Select Switch > Network Security > IP based ACL. The Add ACE to IP Based ACL page opens.
• Source IP Address—Matches the source IP address to which packets are addressed to the ACE. • Wild Card Mask—Indicates the source IP Address wild card mask. Wild cards are used to mask all or part of a source IP Address. Wild card masks specify which bits are used and which bits are ignored. A wild card mask of 255.255.255.255 indicates that no bit is important. A wildcard of 00.00.00.00 indicates that all bits are important. For example, if the source IP address 149.36.184.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Add IP Based ACL Page 3 Define the ACL Name, New Ace Priority, Protocol, Source and Destination Port, Source and Destination IP Address, Match DSCP or Match IP Precedence, and Action fields. 4 Click Apply Changes. The IP-based ACLs are defined. If a new ACE priority was defined, it is added to the new ACL. Assigning ACEs to a IP-based ACL: 1 Open the Add ACE to IP Based ACL page. 2 Select an ACL in the ACL Name drop-down list.
A C E s A s s o c i a t e d w i t h I P- A C L Modifying an IP-based ACE: 1 Open the Add ACE to IP Based ACL page. 2 Click Show All.The ACEs Associated with IP-ACL page opens. 3 Modify the ACL Name, New Ace Priority, Protocol, Source and Destination Port, Source and Destination IP Address, Match DSCP or Match IP Precedence, and Action fields. 4 Click Apply Changes. The IP-based ACEs is modified, and the device is updated. Removing ACLs: 1 Open the Add ACE to IP Based ACL page. 2 Click Show All.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Assigning IP-based ACEs to ACLs Using the CLI Commands The following table summarizes the equivalent CLI commands for assigning IP-based ACEs to ACLs as displayed in the Add ACE to IP Based ACL page. CLI Command Description ip access-list name Enters to IP-Access list configuration mode.
Add ACE to MAC Based ACL Page The Add ACE to MAC Based ACL page contains the following fields: • ACL Name—Contains a list of user-defined ACLs. • New ACE Priority—Enables creating a new ACE and indicates the ACE priority. • Source MAC Address—Matches the source MAC address from which packets are addressed to the ACE. • Wild Card Mask—Indicates the source MAC Address wild card mask. Wild cards are used to mask all or part of a source MAC address.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • VLAN ID—Matches the packet’s VLAN ID to the ACE. • Action—Indicates the ACE forwarding action. The possible field values are: – Permit—Forwards packets which meet the ACE criteria. – Deny—Drops packets which meet the ACE criteria. – Shutdown—Drops packet that meet the ACE criteria, and disables the port to which the packet was addressed. Ports are reactivated from the Port Configuration, see "Defining Port Parameters".
Displaying ACL-specific ACEs: 1 Open the Add ACE to MAC Based ACL page. 2 Click Show All. The ACEs Associated with MAC ACL page opens. ACEs Associated with MAC ACL Modifying a MAC-based ACE: 1 Open the Add ACE to MAC Based ACL page. 2 Click Show All.The ACEs Associated with MAC ACL page opens. 3 Modify the ACL Name, Source and Destination Address, and Action fields. 4 Click Apply Changes. The MAC-based ACEs is modified, and the device is updated.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 4 Check the Remove check box. 5 Click Apply Changes. The MAC-based ACE is removed, and the device is updated. Assigning MAC-Based ACEs to ACLs Using the CLI Commands The following is an example. Station A is connected to port 5, and Station B is connected to port 9. Station A has the MAC address 00-0B-CD-35-6A-00 (ip address: 10.0.0.1 255.255.255.0). Station B has the MAC address 00-06-6B-C7-A1-D8 (ip address: 10.0.0.2 255.255.255.0).
CLI Command Description mac access-list name Creates Layer 2 MAC ACLs, and enters to MAC-Access list configuration mode. permit {any | {host source source-wildcard} any | {destination destinationwildcard}}[vlan vlan-id] Allows traffic if the conditions defined in the permit statement are matched. deny [disable-port] {any | {source sourcewildcard} any | {destination destinationwildcard}}[vlan vlan-id] Allows traffic if the conditions defined in the permit statement are matched.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m ACL Bindings Page The ACL Bindings page contains the following fields: • • Select an Interface—Indicates the interface and interface type to which the ACL is attached. The possible field values are: – Port—Indicates the port number to which the ACL is attached. – LAG—Indicates the LAG to which the ACL is attached. – VLAN—Indicates the VLAN to which the ACL is attached.
3 Define the interface to which the ACL is attached in the Attach ACL to an Interface field. 4 Click Apply Changes. The ACL is attached to the interface. Assigning ACL Membership Using the CLI Commands The following table summarizes the equivalent CLI commands for assigning ACL membership as displayed in the ACL Bindings page. CLI Command Description class-map class-map-name [match-all | match-any] Creates class maps and enters the classmap configuration mode.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Ports Page This section includes the following topics: • Defining Port Parameters • Defining LAG Parameters • Enabling Storm Control • Defining Port Mirroring Sessions Defining Port Parameters The Port Configuration page allows network administrators to define port parameters. To open the Port Configuration page: • 208 Click Switch > Ports > Port Configuration in the Tree View. The Port Configuration page opens.
Port Configuration The Port Configuration page contains the following fields: • Port—Specifies the port number. • Description—Provides a brief interface description, for example Ethernet. • Port Type—Indicates the port type. The possible field values are: • – Ethernet – Fast Ethernet – GE Admin Status—Controls the selected port traffic. By default, this parameter is set to Enable. The possible field values are: – Up—Enables traffic forwarding through the port.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Current Port Status—Specifies the port operational status. The possible field values are: – Up—Indicates the port is currently operating. – Down—Indicates the port is currently non-operational. • Re-Activate Suspended Port—Reactivates a port if the port has been disabled through the Locked Port or ACL security options. • Operational Status—Indicates the port operational status. • Admin Speed—Specifies at what rate the port is running.
– Disable—Disables auto negotiation on the port. This is the default value. – Current Auto Negotiation—Indicates the Auto Negotiation operational status. • Back Pressure—Enables Back Pressure mode on the device. Back Pressure mode is used with Half Duplex mode to disable ports from receiving messages. When Back Pressure is enabled, Head-of-Line blocking is not operational, even if it is set to enable. • The possible field values are: • • – Enable—Enables back pressure on the port.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The following table describes the parameter combination settings required to configure ports. These settings ensure that configuration functionalities are maintained. Auto Negotiation Enabled Disabled Auto legal illegal MDI legal legal MDIX legal legal • • Current MDI/MDIX—Indicates the MDIX operational status. The possible field values are: – MDI – MDIX – Auto—Indicates that the value is set automatically.
P o r t s C o n f i g u r a t i o n Ta b l e In addition to the Port Configuration page fields, the Port Configuration Table also displays the following field: • Unit Number—Indicates the stacking unit number for which the port information is displayed. Configuring Ports with CLI Commands The following examples describe how to set a port to MDIX or MDI mode.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The following table summarizes the equivalent CLI commands for configuring ports as displayed in the Port Configuration. 214 CLI Command Description interface ethernet interface Enters the interface configuration mode to configure an ethernet type interface. description string Adds a description to an interface configuration. shutdown Disables interfaces that are part of the currently set context.
CLI Command Description show interfaces description [ethernet interface | port-channel port-channel-number] Displays the description for all configured interfaces.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m PortPortDuplexSpeed NegFlowBackMDILink ContPresModeState ---------------------------------------------2/e1100-copperFull1000offOffDisableOffDown* Legend Neg : Negotiation Flow Cont: Flow Control Back Pres: Back Pressure *: The interface was suspended by the system.
To open the LAG Configuration page: NOTE: If port configuration is modified while the port is a LAG member, the configuration change is only effective after the port is removed from the LAG. • Click Switch > Ports > LAG Configuration in the Tree View. The LAG Configuration page displays. LAG Configuration Page The LAG Configuration page contains the following fields: • LAG—Indicates the LAG number. • Description—Provides a user-defined LAG description.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • • • • • • • Current LAG Status—Specifies the LAG status. The possible field values are: – Up—Indicates the LAG is currently operating. – Down—Indicates the LAG is currently non-operational. Admin Auto Negotiation—Enables Auto Negotiation on the LAG.
– • • Half—The interface supports transmission between the device and the client in only one direction at a time. Flow Control—Indicates if Flow Control is enabled on the LAG. The possible values are: – Off—Disables Flow Control on the LAG. This is the default value. – On—Enables Flow Control on the LAG. – Auto-negotiation—Enables auto negotiation of Flow Control on the LAG. Current Flow Control—Indicates the current Flow Control setting.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m L A G C o n f i g u r a t i o n Ta b l e Configuring LAGs with CLI Commands The following is an example of how to set up LAG with auto-negotiation disabled, 100Full.
The following message displays: console# sh interfaces status port-channel 1 ch Type Duplex Speed Neg Flow Link Back Control State Pressure .............................................................. ch1 100M Full 100 Disabled Off Up Disabled The following table summarizes the equivalent CLI commands for configuring LAGs as displayed in the LAG Configuration page.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Enabling Storm Control A Broadcast Storm is a result of an excessive amount of broadcast messages simultaneously transmitted across a network by a single port. Forwarded message responses are loaded onto the network, straining network resources or causing the network to time out. Storm Control is enabled for all fast Ethernet ports or for Giga ports by defining the packet type and the rate the packets are transmitted.
• • • • – All Fast Ethernet Ports—Indicates that storm control is enabled for all FE ports. Storm control can be applied individually to GE ports. – Gigabit Ethernet Port—Indicates that storm control is enabled for the selected Gigabit Ethernet port. Storm control is either enabled or disabled for ALL FE ports. Unknown Unicast Control—Enables moderating unknown Unicast packets on the device. The possible field values are: – Enable—Enables moderating unknown Unicast packets on the device.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Displaying the Port Parameters Table: 1 Open the Storm Control page . 2 Click Show All. The Storm Control Settings Table opens. S t o r m C o n t r o l S e t t i n g s Ta b l e Configuring Storm Control with CLI Commands The following table summarizes the equivalent CLI commands for configuring storm control as displayed in the Storm Control page.
[Packets/sec] -------------- -------- --------- -------- ----------Gigaethernet 1 Enabled Disabled Enabled 2000 Gigaethernet 2 Enabled Enabled Enabled 2000 FastEthernet Enabled Enabled Enabled 1000 Defining Port Mirroring Sessions Port mirroring monitors and mirrors network traffic by forwarding copies of incoming and outgoing packets from one port to a monitoring port. Port mirroring can be used as a diagnostic tool and/or debugging feature. Port mirroring also enables switch performance monitoring.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Ports cannot be configured as a destination port. • All packets are tagged when they are transmitted from the destination port. The following restriction applies to ports configured as source ports: • If any packet is received untagged on the source port, the packet is tagged with the default PVID of the source port when it is sent to the port mirroring destination port. All the RX/TX packets should be monitored to the same port.
• Destination Port—Defines the port number to which port traffic is mirrored. A copy port cannot mirror itself, cannot be a VLAN member other than the source port VLAN, and cannot be configured with an IP interface. All traffic on the source port is tagged. • Source Port—Defines the port number from which port traffic is copied. A maximum of 8 ports can be mirrored to one mirroring port. • Type—Specifies the port traffic type that is mirrored.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Deleting a copy port from a port mirroring session: 1 Open the Port Mirroring page. 2 Check the Remove check box. 3 Click Apply Changes. The port mirroring session is deleted, and the device is updated. Configuring a Port Mirroring Session Using CLI Commands The following table summarizes the equivalent CLI commands for configuring a Port Mirroring session as displayed in the Port Mirroring page.
Configuring Address Tables MAC addresses are stored in either the Static Address or the Dynamic Address databases. A packet addressed to a destination stored in one of the databases is forwarded immediately to the port. The Static and Dynamic Address Tables can be sorted by interface, VLAN, and interface type. MAC addresses are dynamically learned as packets from sources arrive at the switch. Addresses are associated with ports by learning the ports from the frame’s source address.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Defining Static Addresses The Static MAC Address page contains a list of static MAC addresses. Static addresses can be added and removed from the Static MAC Address page. In addition, several MAC addresses can be defined for a single port. To open the Static MAC Address page: • Click Switch > Address Tables > Static Address in the Tree View. The Add Static MAC Address page opens.
– Delete on Reset—Indicates the MAC address is deleted when the device is reset. – Timeout—Indicates the MAC address is deleted when the device times out. – Secure—Guarantees that a Locked Port MAC address is not deleted. A secure MAC address is deleted from the Port Security Page. Adding a static address to the Static Address Table: 1 Open the Static Address Table. 2 Click Add. The Add Static MAC Address page opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Removing a static address from the Static Address Table: 1 Open the Static Address Table. 2 Click Show All to open the Static MAC Address Table. 3 Select a single or multiple table entries. 4 Check the Remove check box. 5 Click Apply Changes. The selected static addresses are deleted, and the device is updated.
Viewing Dynamic Addresses The Dynamic Address page contains information about querying the Dynamic Address Table, including the interface type, MAC addresses, VLAN, and table sorting. Packets forwarded to an address stored in the Address Table are forwarded directly to those ports. To open the Dynamic Address Page: • Click Switch > Address Tables > Dynamic Addresses in the Tree View. The Dynamic Address Table Page page opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Address Table Sort Key—Specifies the method by which the Dynamic Address Table is sorted. The possible field values are: – Address—Sorts the query results for a designated MAC address. – VLAN—Sorts the query results by VLAN ID. – Interface—Sorts the query results by interface, and displays all MAC addresses that have been learned on the designated port.
CLI Command Description show bridge address-table [vlan vlan] [ethernet interface | port-channel port-channelnumber] Displays classes of dynamically created entries in the bridge-forwarding database. The following is an example of the CLI commands: Console (config)# bridge aging-time 250 Console (config)# exit Console# show bridge address table Aging time is 250 sec vlan mac address port type ---- -------------- ----- ----1 0060.704C.73FF 5/e8 dynamic 1 0060.708C.73FF 5/e8 dynamic 200 0010.0D48.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m GARP Page This section includes the following topic: • Defining GARP Timers Defining GARP Timers The GARP Timers page contains parameters for enabling GARP on the device. To open the GARP Timers page: • 236 Click Switch > GARP > GARP Timers in the Tree View. The GARP Timers page opens.
GARP Timers Page The GARP Timers page contains the following fields: • Interface—Indicates the type of interface on which GARP Timers are shown. The possible field values are: – Port—Indicates the port for which GARP Timers are displayed. – LAG—Indicates the LAG for which GARP Timers are displayed. • GARP Join Timer (10–2147483647)—Indicates the time in milliseconds that PDUs are transmitted.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m NOTE: The following relationships between the various timer values must be maintained: Leave time must be greater than or equal to three times the join time. Leave-all time must be greater than the leave time. Defining GARP Timers: 1 Open the GARP Timers page. 2 Define the Interface, GARP Join Time, GARP Leave Timer, and GARP Leave All Timer. 3 Click Apply Changes. The GARP parameters are saved to the device.
3 Select an interface in the Copy Parameters from field. 4 Select the interfaces to which the GARP Timers information is copied in the Copy To fields. Defining GARP Timers Using CLI Commands The following table summarizes the equivalent CLI commands for defining GARP timers as displayed in the GARP Timers page. CLI Command Description garp timer {join | leave | leaveall} timer_value Sets the GARP application join, leave, and leaveall GARP timer values.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m S p a n n i n g Tr e e P a g e This section contains the following topics: • Defining STP Global Settings • Defining STP Port Settings • Defining STP LAG Settings • Configuring Rapid Spanning Tree Defining STP Global Settings The Spanning Tree Global Parameters page contains parameters for enabling and configuring STP operation on the device.
S p a n n i n g Tr e e G l o b a l S e t t i n g s P a g e The Spanning Tree Global Parameters page contains the following fields: • • Spanning Tree State—Enables STP on the device. The possible field values are: – Enable—Enables STP on the device. – Disable—Disables STP on the device. STP Operation Mode—Indicates the STP mode by which STP is enabled on the device. The possible field values are: – Classic STP—Enables Classic STP on the device (IEEE 802.1D).
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Max Age (6-40)—Specifies the switch Maximum Age Time. The Maximum Age Time indicates the amount of time in seconds a bridge waits before sending configuration messages. The default maximum age time is 20 seconds. • Forward Delay (4-30)—Specifies the switch forward delay time. The Forward Delay Time indicates the amount of time in seconds a bridge remains in a listening and learning state before forwarding packets. The default is 15 seconds.
CLI Command Description spanning-tree Enables spanning tree functionality. spanning-tree mode {stp | rstp} Configures the spanning tree protocol currently running. spanning-tree priority priority Configures the spanning tree priority. spanning-tree hello-time seconds Configures the spanning tree bridge Hello Time, which is how often the switch broadcasts Hello messages to other switches.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Root ID Priority 32768 Address X.X.X.X.X.X Cost 57 Port 1/e1 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Bridge ID Priority 32769 Address X.X.X.X.X.X Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Number of topology changes 2 last change occurred 00:23:56 ago Times: hold 1, topology change 35, notification 2 hello 2, max age 20, forward delay 15 Interface Port ID Designated Port ID NamePrioCostSts Cost Bridge IDPrio.
STP Port Settings Page The STP Port Settings page contains the following fields: • Select a Port—Indicates the port for which STP statistics are displayed. • STP—Enables STP on the port. The possible field values are: – Enable—Enables STP on the port. – Disable—Disables STP on the port. • Fast Link—Enables Fast Link mode for the port. If Fast Link mode is enabled for a port, the port is automatically placed in the Forwarding State when the port link is up.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • – Learning—The port is currently in the learning mode. The port cannot forward traffic however it can learn new MAC addresses. – Forwarding—The port is currently in the forwarding mode. The port can forward traffic and learn new MAC addresses. Speed—Indicates the port speed. The possible field values are: – 10M – 100M – 1000M • Path Cost—Indicates the amount this port contributes to the Root Path Cost.
Modifying STP Port Properties: 1 Open the STP Port Settings page. 2 Modify the Priority, Path Cost, Default Path Cost, and the Fast Link fields. 3 Click Apply Changes. The STP port parameters are modified, and the device is updated. S T P P o r t Ta b l e P a g e Defining STP Port Parameters Using CLI Commands The following table summarizes the equivalent CLI commands for defining STP port parameters as displayed in the STP Port Settings page.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Console(config-if)# spanning-tree cost 35000 Console(config-if)# spanning-tree port-priority 96 Console(config-if)# exit Console(config)# exit Console# show spanning-tree ethernet 1/e5 Console# show spanning-tree ethernet 1/e5 Interface Port IDDesignated Port ID Name PrioStsEnb CostCost Bridge ID Prio.Nbr ----- ------- --- ---------------------- -------1/e5128DSBLTrue1000 8000 xx.xx.xx.xx.xx.
STP LAG Settings Page The STP LAG Settings page contains the following fields: • Select a LAG—Indicates the user-defined LAG. For more information on defining LAGs, see "Defining LAG Membership". • STP—Enables STP on the LAG. The possible field values are: • – Enable—Enables STP on the LAG. – Disable—Disables STP on the LAG. Fast Link—Enables Fast Link for the LAG. If Fast Link is enabled for a LAG, the LAG is automatically placed in the Forwarding State.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m – Blocking—The LAG is currently blocked and cannot be used to forward traffic or learn MAC addresses. – Listening—The LAG is currently in the listening mode. The LAG cannot forward traffic or learn MAC addresses. – Learning—The LAG is currently in the learning mode. The LAG cannot forward traffic; however, it can learn new MAC addresses. – Forwarding—The LAG is currently in the forwarding mode.
3 Click Apply Changes. The STP LAG parameters are modified, and the device is updated. S T P L A G Ta b l e P a g e Defining STP LAG Parameters Using CLI Commands The following table summarizes the equivalent CLI commands for defining STP LAG parameters as displayed in the STP LAG Settings page. CLI Command Description interface port-channel portchannel-number Enters Port-channel configuration mode. spanning-tree port-priority priority Configures LAG priority.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m STP has the following different port states: • Listening • Learning • Blocking • Forwarding A listening port is either a designated or a root port, and is in the process of moving to the forwarding state. However, after the port is in the forwarding state, there is no way to determine whether the port is a root or designated port. The RSTP addresses this problem by decoupling the port’s role and its state.
The Rapid Spanning Tree (RSTP) page contains the following fields: • Interface—Indicates the interface number on which RSTP is enabled. • Fast Link—Indicates if Fast Link is enabled. NOTE: Fast Link is enabled in the STP Port Settings page or the STP LAG Settings page. For more information about enabling Fast Link, see "Defining STP Port Settings" or "Defining STP LAG Settings". • Point-to-Point Admin—Specify the port link type as point-to-point.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Defining Rapid STP Parameters Using CLI Commands The following table summarizes the equivalent CLI commands for defining RSTP parameters as displayed in the Rapid Spanning Tree (RSTP) page. CLI Command Description spanning-tree link-type {point-topoint | shared} Overrides the default link-type setting, which is determined by the port duplex mode, and enables the Rapid SpanningTree Protocol (RSTP) transitions to the forwarding state.
VLANs function at Layer 2. Since VLANs isolate traffic within the VLAN, a Layer 3 functioning router is needed to allow traffic to flow between VLANs. Layer 3 routers identify segments and coordinate with VLANs. VLANs are broadcast and multicast domains. Broadcast and multicast traffic is only transmitted in the VLAN where the traffic is generated. VLAN tagging provides a method for transferring VLAN information between VLAN groups. VLAN tagging attaches a four byte tag to packet headers.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Defining VLAN LAG Settings • Configuring GVRP Defining VLAN Members The VLAN Membership page allows network managers to define VLAN groups. To open the VLAN Membership page: • Click Switch > VLAN > VLAN Membership in the Tree View. The VLAN Membership page opens.
VLAN Membership Section The VLAN Membership Section contains the following fields: • Show VLAN—Lists and displays specific VLAN information according to: – VLAN ID—Displays VLANs by VLAN ID. The default ID for the VLAN is 1. If the VLAN has an ID that is the current port Port Default VLAN ID (PVID), and the ID is deleted from the port, the port PVID is set to 1. VLAN number 1 cannot be deleted from the system. The VLAN range is 1-4095. VLAN 4095 is the Discard VLAN.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Adding new VLANs: 1 Open the VLAN Membership page. 2 Click Add. The Create New VLAN page opens: Create New VLAN Page 3 Define the VLAN ID and VLAN Name fields. 4 Click Apply Changes. The new VLAN is added, and the device is updated. Modifying VLAN Name Groups: 1 Open the VLAN Membership page. 2 Select a VLAN in the Show VLAN field. 3 Modify the VLAN Name field. 4 Click Apply Changes.
CLI Command Description vlan database Enters the interface configuration (VLAN) mode. vlan {vlan-range} Creates a VLAN. name string Adds a name to a VLAN. The following is an example of the CLI commands: Console # vlan database Console (config-switch)# Console (config-switch)# vlan 1972 Console (config-switch)# exit Console (config)# interface vlan 19 Console (config-if)# name Marketing VLAN Port Membership Table The VLAN Port Membership Table contains a port table for assigning ports to VLANs.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The VLAN Port Membership Table displays the ports and the ports states, as well as LAGs. V L A N P o r t M e m b e r s h i p Ta b l e Assigning ports to a VLAN group: 1 Open the VLAN Membership page. 2 Select a VLAN from the Show VLAN drop-down list. 3 Select ports in the Port Membership Table, and assign the port a value (v, t, f, or b). 4 Click Apply Changes. The ports are assigned to the VLAN group, and the device is updated.
CLI Command Description interface vlan vlan-id Enters the interface configuration (VLAN) mode to configure an existing VLAN. name string Adds a name to a VLAN. interface range ethernet {port-range | all} Enables command execution on multiple ports at the same time.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m VLAN Port Settings Page The VLAN Port Settings page contains the following fields: • Port—Indicates the port number included in the VLAN. • Port VLAN Mode—Designates the port VLAN mode.The possible field values are: • – General—Indicates that the port belongs to one or more VLANs, and each VLAN is user-defined as tagged or untagged (full 802.1Q mode). Ingress filtering can be disabled only in general-mode ports.
– • Admit All—Indicates that both tagged and untagged packets are accepted on the port. Ingress Filtering—Enables Ingress filtering on the port. Ingress filtering discards packets that are associated with a VLAN that does not include the ingress port. The possible field values are: – Enable—Enables ingress filtering on the port. – Disable—Disable ingress filtering on the port. Assigning port settings: NOTE: Ingress filtering can only be disabled on ports set to general VLAN mode.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Assigning Ports to VLAN Groups Using CLI Commands The following table summarizes the equivalent CLI commands for assigning ports to VLAN groups as displayed in the VLAN Port Settings page. CLI Command Description interface ethernet interface Enters the interface configuration mode to configure an ethernet type interface. switchport mode {access | trunk | general} Configures a port VLAN membership mode.
VLAN LAG Setting Page The VLAN LACP Parameters page contains the following fields: • LAG—Indicates the LAG number included in the VLAN. • Port Mode—Indicates the port mode. The possible field values are: – General—Indicates that the LAG belongs to one or more VLANs, and each VLAN is user-defined as tagged or untagged (full 802.1Q compliance). – Access—Indicates that the LAG belongs to a single untagged VLAN.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Ingress Filtering—Enables ingress filtering by the LAG. Ingress filtering discards packets which do not include an ingress port. The possible field values are: – Enable—Enables ingress filtering by the LAG. – Disable—Disable ingress filtering by the LAG. Assigning LAG settings: 1 Open the VLAN LAG Settings page. 2 Define the Port Mode, PVID, Frame Type, and the Ingress Filtering fields. 3 Click Apply Changes.
CLI Command Description switchport general pvid vlan-id Configure the Port VLAN ID (PVID) when the interface is in general mode. switchport general allowed vlan add vlan-list [tagged | untagged] Adds VLANs to a general port. switchport general allowed vlan remove vlan-list [tagged | untagged] Removes VLANs from a general port. switchport general acceptable-frame-types tagged-only Discards untagged frames at ingress. switchport general ingressfiltering off Disables port ingress filtering.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Maximum number of GVRP VLANs after Reset—Sets another value for GVRP VLANs and is used for tuning. This value becomes valid after reset only. The maximum number of GVRP VLANs includes all the VLANs participating in GVRP operation regardless whether they are static or dynamic.
GVRP Parameters Page The GVRP Parameters page contains the following fields: • • • • GVRP Global Status—Enables GVRP on the device. The possible field values are: – Enabled—Indicates GVRP is enabled on the device. – Disabled—Indicates GVRP is disabled on the device. This field value is the default. Interface—Indicates the specific interface for which GVRP is enabled. The possible field values are: – Port—Indicates the specific port for which GVRP is enabled.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m – • Disable—Disables creating VLANs through GVRP. GVRP Registration—Enables GVRP registration status. The possible field values are: – Enable—Enables VLAN registration through GVRP. – Disable—Disables VLAN registration through GVRP. Enabling GVRP on the device: 1 Open the GVRP Parameters page. 2 Select Enable in the GVRP Global Status field. 3 Click Apply Changes. GVRP is enabled on the device.
G V R P P o r t P a r a m e t e r s Ta b l e In addition to the field displayed in the GVRP Parameters page , the GVRP Port Parameters Table page also displays the following fields: • Unit—Indicates the stacking unit number for which the GVRP information is displayed. • Copy Parameters From—Indicates the specific interface from which the GVRP parameters are copied. • Copy To—Indicates the ports to which the GVRP parameters are copied.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CLI Command Description show gvrp configuration [ethernet interface | portchannel port-channelnumber] Displays GVRP configuration information, including timer values, whether GVRP and dynamic VLAN creation is enabled, and which ports are running GVRP. gvrp max-vlan number Configures the maximum number of VLANs when GVRP is enabled.
Aggregated links can be assigned manually or automatically by enabling the Link Aggregation Control Protocol (LACP) on the relevant links. PowerConnect 3324/3348 provides LAG Load Balancing based on both source MAC addresses and destination MAC addresses. Aggregated links are treated as a single logical port by the system. Specifically, the Aggregated link has similar port attributes to a non-aggregated port, including autonegotiation, speed, duplex setting, and so forth.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Link Aggregation Page This section includes the following topics: • Defining LACP Parameters • Defining LAG Membership Defining LACP Parameters The LACP Parameters page contains information for configuring LACP LAGs. Aggregate ports can be linked into link-aggregation port-groups. Each group is comprised of ports with the same speed.
LACP Parameters Page The LACP Parameters page contains the following sections: • Global Parameters • Port Parameters Table Global Parameters Global Parameters contains information for assigning LACP priority. Aggregate ports can be linked into link-aggregation port-groups. LAGs may be set up manually, by explicit user assignment, or automatically by enabling the Link Aggregation Control Protocol (LACP) on the relevant LAGs.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Global Parameters The Global Parameters section contains the following field: • LACP System Priority—Indicates the LACP priority value. The possible range is 1-65535. The default value is 1. Defining Global Parameters: 1 Open the LACP Parameters page. 2 Scroll to the Global Parameters section. 3 Define the LACP System Priority and the LACP Timeout fields. 4 Click Apply Changes. The Global Parameters are defined, and the device is updated.
• LACP Port Priority—Indicates the port LACP priority value. The default is 1. • LACP Timeout—Assigns an administrative LACP timeout.The possible field values are: – Short—Specifies a short timeout value. – Long—Specifies a long timeout value. Defining Port Parameters: 1 Open the LACP Parameters page. 2 Scroll to the Link Aggregation Port Parameters Table. 3 Define the LACP System Priority and the LACP Timeout fields. 4 Click Apply Changes.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Configuring LACP Parameters Using CLI Commands The following table summarizes the equivalent CLI commands for configuring LACP parameters as displayed in the Link Aggregation page. CLI Command Description lacp system-priority value Configures the system priority. lacp port-priority value Configures the priority value for physical ports. lacp timeout {long | short} Assigns an administrative LACP timeout.
Defining LAG Membership The LAG Membership page allows network managers to assign ports to LAGs. LAGs can include up to 8 ports. Currently PowerConnect 3324/3348 supports 6 LAGs per system, whether the device is a standalone device or in a stack. The LAG Membership Table contains the following rows: • LACP—Indicates if the port is dynamic by allowing it to become a LAG member. • LAG—Adds a port to a LAG, and indicates the specific LAG to which the port belongs.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CLI Command Description channel-group port-channelnumber mode {on | auto} Configures a port to a Port channel. show interface port_channel Displays the interfaces attached to a LAG.
To open the Multicast Support page: • Click Switch > Multicast Support in the Tree View. The Multicast Support page opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m When IGMP snooping is globally enabled, the switching ASIC is programmed to forward all IGMP frames to the CPU. The CPU analyzes the incoming frames and determines which ports want to join which Multicast groups, which ports have Multicast routers generating IGMP queries, and what Routing protocols are forwarding packets and Multicast traffic. A port wishing to join a specific multicast group issues an IGMP report specifying that multicast group.
• IGMP Snooping Status—Indicates if IGMP snooping is enabled on the device. The possible field values are: – Enabled—Enables IGMP snooping on the specific VLAN. – Disabled—Disables IGMP snooping on the specific VLAN. This is the default value. Enabling bridge multicast filtering on the device: 1 Open the Multicast Global Parameters page. 2 Select Enable in the bridge multicast filtering field. 3 Click Apply Changes. Bridge Multicast is enabled on the device.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Adding Bridge Multicast Group Members The Bridge Multicast Group page displays the ports and LAGs attached to the multicast service group in the Port and LAG Table. The Port and LAG tables also reflect the manner in which the port or LAGs joined the multicast group. Ports can be added either to existing groups or to new multicast service groups. The Bridge Multicast Group page permits new multicast service groups to be created.
The IGMP Port/LAG Members Table figure displays IGMP Port/LAG member status. I G M P P o r t / L A G M e m b e r s Ta b l e The IGMP Port/LAG Members Table Control Settings Table contains the settings for managing IGMP port and LAG members. I G M P P o r t / L A G M e m b e r s Ta b l e C o n t r o l S e t t i n g s Port Control Definition D Indicates that the port/LAG has joined the multicast group dynamically in the Current row.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Assigning LAGs to receive multicast service: 1 Open the Bridge Multicast page. 2 Define the VLAN ID and the Bridge Multicast Address fields. 3 Toggle the LAG to S to join the LAG to the selected multicast group, or toggle a port to F to forbid the port from joining a multicast group. 4 Click Apply Changes. The LAG is assigned to the multicast group, and the device is updated.
1 0100.5e02.0203 static1/e1, 2/e2 19 0100.5e02.0208 static 1/e1-8 19 0100.5e02.0208 dynamic1/e9-11 Forbidden ports for multicast addresses: VlanMAC AddressPorts ------------------------------------10100.5e02.02032/e8 190100.5e02.02082/e8 Assigning Multicast Forward All Parameters The Bridge Multicast Forward All page allows network managers to enable attaching ports or LAGs to a switch attached to a neighboring multicast router/switch.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Ports Table—Lists the port that can be added to a multicast service. • LAGs Table—Lists the LAGs that can be added to a multicast service. The Bridge Multicast Forward All page contains the settings for managing switch and port settings. B r i d g e M u l t i c a s t Fo r w a r d A l l R o u t e r / P o r t C o n t r o l S e t t i n g s Port Control Definition D Attaches the port to the multicast router or switch as a dynamic port.
CLI Command Description show bridge multicast filtering vlan-id Displays the multicast configuration. bridge multicast forbidden forward-all Disables forwarding multicast packets on a port. bridge multicast forwardall {add | remove} {ethernet interface-list | port-channel portchannel-number-list} Enables forwarding of all multicast packets on a port.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m IGMP Snooping Page The IGMP Snooping page contains the following information: • VLAN ID—Specifies the VLAN ID. • IGMP Snooping Status—Enables IGMP snooping on the device. The possible field values are: • 290 – Enable—Enables IGMP snooping on the device. – Disable—Disables IGMP snooping on the device. Auto Learn—Enables automatically learning new multicast group members.
• Leave Time Out (1-3600000)—Specifies the amount of time in seconds after a port leave message is received before the entry is aged out. The possible field values are: – User-Defined—Indicates the user-defined Leave Timeout period. – Immediate Leave—Specifies an immediate Leave Timeout period. Displaying the IGMP Snooping Table: 1 Open the IGMP Snooping page. 2 Click Show All. The IGMP Snooping Table opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CLI Command Description show ip igmp snooping mrouter [interface vlan-id] Displays information on dynamically learned multicast router interfaces.
SECTION 8 Viewing Statistics Viewing Tables Viewing RMON Information Viewing Charts
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The Statistic pages contains device information for interface, GVRP, etherlike, RMON, and device utilization. To open the Statistics/RMON page: • Click Statistics/RMON in the Tree View. The Statistics/RMON page opens. Statistic/RMON Page This section contains the following topics: • Viewing Tables • Viewing RMON Information • Viewing Charts Viewing Tables The Table View page contains links for displaying statistics in a table form.
Ta b l e V i e w P a g e The Table View page contains the following links: • Viewing Utilization Summary • Viewing Counter Summary • Viewing Interface Statistics • Viewing Etherlike Statistics • Viewing GVRP Statistics Viewing Utilization Summary The Utilization Summary page contains statistics for port utilization. To open the Utilization Summary page: • Click Statistics > Table View > Utilization Summary in the Tree View.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Utilization Summar y Page The Utilization Summary page contains the following fields: • Unit No.—Indicates the unit number for which port statistics are displayed. • Port—Indicates the port number. • Port Status—Indicates the port status. • % Port Utilization—Indicates the port utilization. • % Unicast Received—Indicates the percentage of Unicast packets received on the ports.
Viewing Counter Summary The Counter Summary page contains statistics for port utilization in numeric sums as opposed to percentages. To open the Counter Summary page: • Click Statistics/RMON > Table Views > Counter Summary in the Tree View. The Counter Summary page opens: Counter Summar y Page The Counter Summary page contains the following fields: • Unit No.—Indicates the unit number for which port statistics are displayed. • Port—Indicates the port number. • Port Status—Indicates the port status.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Transmit Non-Unicast Packets—Indicates the number of transmitted non-Unicast packets from the port. • Received Errors—Indicates the number of received errors on the port. • Transmit Errors—Indicates the number of transmitted errors from the port. Viewing counter summary statistics: 1 Open the Counter Summary page. 2 Select a unit in the Unit field. The counter summary statistics display for the selected unit.
The Interface Statistics page contains the following fields: • • Interface—Specifies the interface (type and number) for which the statistics are displayed. – Port—Indicates port statistics are displayed. – LAG—Indicates LAG statistics are displayed. Refresh Rate—Indicates the amount of time that passes before the interface statistics are refreshed. The possible field values are: – 15 Sec—Indicates that the interface statistics are refreshed every 15 seconds.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Transmitted Broadcast Packets—Displays the amount of Broadcast packets transmitted from the selected interface. • Transmitted Unknown Packets—Displays the amount of unknown packets transmitted from the selected interface. • Transmitted Discarded Packets—Displays the amount of discarded packets from the selected interface during transmission.
PortOutOctetsOutUcastPktsOutMcastPktsOutBcastPkts ------------------------------------------------1/e121845032626 Alignment Errors: 0 FCS Errors: 0 Single Collision Frames: 0 Multiple Collision Frames: 0 Deferred Transmissions: 0 Late Collisions: 0 Excessive Collisions: 0 Internal MAC Tx Errors: 0 Carrier Sense Errors: 0 Oversize Packets: 0 Internal MAC Rx Errors: 0 Symbol Errors: 0 Received Pause Frames: 0 Transmitted Pause Frames: 0 Viewing Etherlike Statistics The Etherlike Statistics page contains int
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Etherlike Statistics Page The Etherlike Statistics page contains the following fields: • • 302 Interface—Specifies the interface type for which the statistics are displayed. – Port—Indicates port statistics are displayed. – LAG—Indicates LAG statistics are displayed. Refresh Rate—Indicates the amount of time that passes before the interface statistics are refreshed.
• Single Collision Frames—Displays the amount of Single Collisions Frames errors received on the selected interface. • Multiple Collision Frames—Displays the amount of Multiple Collisions Frames errors received on the selected interface. • Deferred Transmissions—Displays the amount of deferred transmissions on the selected interface. • Late Collision—Displays the amount of late collisions received on the selected interface.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Viewing GVRP Statistics The GVRP Statistics page contains device statistics for GVRP. To open the GVRP Statistics page: • Click Statistics/RMON > Table Views > GVRP Statistics in the Tree View. The GVRP Statistics page opens: GVRP Statistics Page The GVRP Statistics page contains the following fields: • • 304 Interface—Specifies the interface type for which the statistics are displayed. – Port—Indicates port statistics are displayed.
• Join Empty—Displays the device GVRP Join Empty statistics. • Empty—Displays the device GVRP Empty statistics. • Leave Empty—Displays the device GVRP Leave statistics. • Join In—Displays the device GVRP Join In statistics. • Leave In—Displays the device GVRP Leave in statistics. • Invalid Protocol ID—Displays the device GVRP Invalid Protocol ID statistics. • Invalid Attribute Type—Displays the device GVRP Invalid Attribute ID statistics.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CLI Command Description show gvrp error-statistics [ethernet interface| port-channel portchannel-number] Displays GVRP error statistics. The following is an example of the CLI commands: Console# show gvrp statistics GVRP statistics: ---------------Legend: rJE: Join Empty Received .
Viewing RMON Information Remote Monitoring (RMON) allows network managers to view network traffic information from a remote location. To open the RMON page: • Click Statistics/RMON > RMON in the Tree View. The RMON page opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m RMON Statistics Group Page The RMON Statistics Group page contains the following information: • • 308 Interface—Indicates the interface type and number for which statistics are displayed. The possible field values are: – Port—Indicates that port specific statistics are displayed. – LAG—Indicates that LAG specific statistics are displayed. Refresh Rate—Indicates the amount of time that passes before the RMON statistics are refreshed.
• Multicast Packets Received—Indicates the amount of Multicast packets received on the interface since the counters were last cleared. • CRC& Align Errors—Indicates the amount of CRC and Align errors that have occurred on the interface since the counters were last cleared. • Undersize Packets—Indicates the amount of undersized packets received on the interface since the counters were last cleared.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CLI Command Description show rmon statistics [ethernet interface | port-channel port-channel-number] Displays RMON ethernet Statistics.
RMON Histor y Control Page The RMON History Control page contains the following information: • History Entry No.—Specifies the History Control Table entry. • Source Interface—Indicates the source from which the history samples were taken. The possible field values are: – Port—Indicates the history samples were taken from a port. – LAG—Indicates the history samples were taken from a LAG. • Owner—Indicates the RMON station or user that requested the RMON information.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Adding a History Control Entry: 1 Open the RMON History Control page. 2 Click Add. The Add History Entry page opens . Add History Entry 3 Define the History Entry No., Source Interface, Owner, Max No. of Samples to Keep, and the Sampling Interval fields. 4 Click Apply Changes. The History Control Entry is added. Modifying a History Control Table entry: 1 Open the RMON History Control page.
H i s t o r y C o n t r o l Ta b l e Deleting a History Control Table entry: 1 Open the RMON History Control page. 2 Select a History Control Table entry in the History Index field. 3 Check the Remove check box. 4 Click Apply Changes. The RMON History Control Table entry is deleted, and the device is updated. Viewing The RMON History Table The RMON History Table contains interface-specific RMON statistical network samplings.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m R M O N H i s t o r y Ta b l e NOTE: Not all fields are shown in the RMON History Table. The RMON History Table contains the following fields: 314 • Sample No.—Indicates the specific sample that the information in the table reflects. • Drop Events—Indicates the number of dropped packets due to lack of network resources during the sampling interval.
• Oversized Packets—Indicates the number of packets received that are more than 1518 octets long during the sampling session. • Fragments—Indicates the number of packets received that are less than 64 octets long and have a FCS during the sampling session. • Jabbers—Indicates the number of packets received that are more than 1518 octets long and had a FCS during the sampling session. • Collisions—Estimates the total number of packet collisions that occurred during the sampling session.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Console (config-if)# rmon collection history 1 interval 2400 Console# show rmon history 1 throughput Sample set: 1Owner: CLI Interface: 1/e1 Interval: 1800 Requested samples: 50 Granted samples: 50 Maximum table size: 500 Day: Jan 18 2002 TimeOctetsPacketsBroadcastMulticastUtilization -------------------------------------------------23:58:30878128878 7120.87% 23:59:007589876891892932172319.27% 23:59:301717975361937841817328919.
RMON Events Control Page The RMON Events Control page contains the following fields: • Event Entry—Indicates the event. • Community—Specifies the SNMP community to which the event belongs. • Description—Provides a user-defined event description. • Type—Describes the event type. The possible field values are: – Log—Indicates the event type is a log entry. – Trap—Indicates the event type is a trap. – Log and Trap—Indicates the event type is both a log entry and a trap.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Adding a RMON Event: 1 Open the RMON Events Control page. 2 Click Add. The Add New RMON Event page opens. Add New RMON Event 3 Define the New Event Index, Community, Description, Type, and Owner fields. 4 Click Apply Changes. The Event Table entry is added, and the device is updated. Modifying a RMON Event: 1 Open the RMON Events Control page. 2 Select an Event Table entry in the Event Entry field.
R M O N E v e n t s Ta b l e Deleting multiple RMON Event entries: 1 Open the RMON Events Control page. 2 Select an Event Table entry in the Event Index field. 3 Check the Remove check box. 4 Click Apply Changes. The Event Table entry is deleted, and the device is updated. NOTE: A single Event entry can be removed from the RMON Events page using the Remove check box.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 1ErrorsLogCLIJan 18 2002 23:58:17 2High BroadcastLog-TrapdeviceManagerJan 18 2002 23:59:48 Viewing the Events Log The RMON Events Log page contains a list the RMON Events. To open the RMON Events Log: • Click Statistics/RMON > RMON> Events in the Tree View. The RMON Events Log page opens. RMON Events Log Page The RMON Events Log page contains the following fields: 320 • Event—Identifies the RMON Event Log entry number. • Log No.
Viewing RMON Events Log Using the CLI Commands The following table summarizes the equivalent CLI commands for viewing fields displayed in the RMON Events Log page. CLI Command Description rmon table-size log entries Configures maximum number of log table entries. show rmon log [event] Displays the RMON logging table.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Click Statistics/RMON > RMON> Alarms in the Tree View. The RMON Alarm page opens. RMON Alarm Page The RMON Alarm page contains the following fields: • Alarm Entry—Indicates a specific alarm. • Counter Name—Indicates the selected RMON counter. • Counter Value—Indicates the value of the RMON counter. • Sample Type—Specifies the sampling method for the selected variable and compares the value against the thresholds.
• Rising/Falling Event—The mechanism that reports the alarms: LOGed or TRAPed or a combination of both. When LOG is selected, there is no saving mechanism either in the device or in the management system. However, if the device is not being reset, it remains in the device LOG table. If TRAP is selected, a TRAP via SNMP is generated and reported via the TRAP’s general mechanism. The TRAP can be saved using the same mechanism.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m New Alarm Entry 3 Define the New Alarm Index, Sample Variable, Sample Type, Rising Threshold, Rising Event, Falling Threshold, Falling Event, Startup Alarm, Interval, and Owner fields. 4 Click Apply Changes. The RMON alarm is added, and the device is updated. Modifying an Alarm Table entry: 1 Open the RMON Alarm page. 2 Select an RMON Alarm Table entry in the Alarm Entry drop-down box.
R M O N A l a r m Ta b l e Deleting an Alarm Table entry: 1 Open the RMON Alarm page. 2 Select an RMON Alarm in the Alarm Entry drop-down box. 3 Check the Remove check box. 4 Click Apply Changes. The RMON Alarm Table entry is deleted, and the device is updated. Defining and Displaying Device Alarms Using the CLI Commands The following table summarizes the equivalent CLI commands for configuring and displaying fields in the RMON Alarm page.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 31.3.6.1.2.1.2.2.1.10.9CLI Console# show rmon alarm 1 Alarm 1 ------OID: 1.3.6.1.2.1.2.2.1.10.1 Last sample Value: 878128 Interval: 30 Sample Type: delta Startup Alarm: rising Rising Threshold: 8700000 Falling Threshold: 78 Rising Event: 1 Falling Event: 1 Owner: CLI Viewing Charts The Charts page contains links for displaying statistics in a chart form. To open the Charts page: • 326 Click Statistics > Charts in the Tree View.
Charts Page The Charts page contains the following links: • Viewing Port Statistics • Viewing LAG Statistics Viewing Port Statistics The Ports page displays statistics in a chart form for a selected port. To open the Port Statistics page: • Click Statistics > Charts > Ports in the Tree View. The Port Statistics page opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Port Statistics Page The Port Statistics page contains the following fields: • Interface Statistics—Provides interface statistics for the selected unit. • Etherlike Statistics—Provides Etherlike statistics for the selected unit. • RMON Statistics—Provides RMON statistics for the selected unit. • GVRP Statistics—Provides GVRP statistics for the selected unit.
Viewing Port Statistics Using the CLI Commands The following table summarizes the equivalent CLI commands for viewing fields displayed on the Port Statistics page. CLI Command Description clear counters [ethernet interface | port-channel port-channel-number] Clears statistics on an interface. show rmon statistics [ethernet interface | port-channel port-channel-number] Displays RMON ethernet Statistics.
w w w. d e l l . c o m | s u p p o r t . d e l l .
INVPROT : Invalid Protocol Id INVPLEN INVATYP : Invalid Attribute Type INVALEN Length : Invalid PDU Length : Invalid Attribute INVAVAL : Invalid Attribute Value INVEVENT : Invalid Event PortINVPROTINVATYPINVAVALINVPLENINVALENINVEVENT ---------------------------------------------1/e1 0 0 0 0 0 0 1/e2 0 0 0 0 0 0 1/e3 0 0 0 0 0 0 1/e4 0 0 0 0 00 1/e5 0 0 0 0 0 0 1/e6 0 0 0 0 0 0 1/e7 0 0 0 0 0 0 1/e8 0 0 0 0 0 0 Viewing LAG Statistics The LAG Statistics page displays statistics in a chart form for port
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m LAG Statistics Page The LAG Statistics page contains the following fields: • Interface Statistics—Provides interface statistics for trunks. • Etherlike Statistics—Provides Etherlike statistics for trunks. • RMON Statistics—Provides RMON statistics for trunks. • GVRP Statistics—Provides GVRP statistics for trunks. • Refresh Rate—Specifies the amount of time that passes before the device is refreshed.
Viewing LAG Statistics Using the CLI Commands The following table contains the CLI commands for viewing LAG statistics. CLI Command Description show interfaces counters [ ethernet interface | portchannel port-channelnumber] Displays statistics for a physical interface.
w w w. d e l l . c o m | s u p p o r t . d e l l .
SECTION 9 Configuring Quality of Service Quality of Service (QoS) Overview Defining QoS Global Parameters Mapping to Queues
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m This section provides information for defining and configuring Quality of Service (QoS) parameters. • Click Quality of Service in the Tree View. The Quality of Service page opens.
QoS includes traffic such as voice, video, and real-time traffic that can be assigned a high priority queue, while other traffic can be assigned a lower priority queue. The result is an improved traffic flow for traffic with high demand. QoS is defined by: • Classification—Specifies which packet fields are matched to specific values. All packets matching the user-defined specifications are classified together.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CoS Value Forwarding Queue Values 7 q3 C o S t o Q u e u e M a p p i n g Ta b l e D e f a u l t V a l u e s CoS mapping is enabled on a per-system basis. The CoS value order is from zero to seven, where zero is the lowest priority and seven is the highest. DSCP values can be mapped to priority queues.
• Weighted Round Robin—Ensures that a single application does not dominate the forwarding capacity of PowerConnect 3324/3348. Weighted Round Robin (WRR) forwards entire queues in a round robin order. Queue priorities are defined by the queue length. The longer the queue length, the higher the queue's forwarding priority.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m The QoS Global Parameters page contains links for: • Configuring Global QoS Settings • Defining QoS Interface Settings • Defining Queue Settings Configuring Global QoS Settings The QoS Global Settings page allows the user to enable or disable QoS. In addition, the user can select the Trust mode. This mode relies on predefined fields within the packet to determine the output queue, thus determining the service for the packet.
• Trust Mode—Determines which packet fields to use for classifying packets entering the switch. When no rules are defined the traffic containing the predefined packet field (CoS, DSCP or TCP/UDP port) is mapped according to the relevant trust modes table. Traffic not containing a predefined packet field is mapped to best effort. The possible trust mode field values are: – CoS—Indicates the output queue assignment is determined by the IEEE802.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Console (config)# qos trust dscp Defining QoS Interface Settings The QoS Interface Settings page enables the user to define, per interface, if the selected Trust mode is to be activated. The default priority for incoming untagged packets is also selected in the QoS Interface Settings page. To open the QoS Interface Settings page: • Click Quality of Service > Global Parameters > Interface Settings in the Tree View.
• Set Default CoS For Incoming Traffic To—Sets the default CoS tag value untagged packets. The CoS tag values are 0-7. The default value is 0. Assigning QoS/CoS settings for an interface: 1 Open the QoS Interface Settings page. 2 Select an interface in the Interface field. 3 If trust mode is to be disabled on the specific interface, check the Disable "Trust" Mode on Interface check box. 4 Set Default CoS For Incoming Traffic to the required value. 5 Click Apply Changes.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Queue Setting Page The Queue Settings page contains the following fields: • Queues—Indicates the queue number. NOTE: Overloading a queue may cause network congestion. • Strict Priority—Specifies if traffic scheduling is based strictly on the queue priority. The default is enabled. • WRR—Specifies if traffic scheduling for the queue is based on the WRR scheme. • WRR Weight—Assigns WRR weights to egress queues.
Assigning Queue Setting Using the CLI Commands The following table summarizes the equivalent CLI commands for configuring fields in the Queue Settings page. CLI Command Description wrr-queue bandwidth weight1 weight2 . weight_n Assigns Weighted Round Robin (WRR) weights to egress queues. show qos interface [interfaceid] [queuing] Displays interface QoS data.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m 6 - 3 7 - 3 Mapping to Queues The Mapping to Queue page contains links to pages for mapping CoS and DSCP values, as well as TCP and UDP ports to QoS queues. To open the Mapping to Queue page: • Select Quality of Service > Mapping to Queue. The Mapping to Queue page opens.
C o S t o Q u e u e M a p p i n g Ta b l e P a g e The CoS to Queue Mapping Table page contains the following fields: • Class of Service—Specifies the CoS priority tag values, where zero is the lowest and seven is the highest. • Queue—Indicates the traffic forwarding queue to which the CoS priority is mapped. Four traffic priority queues are supported. NOTE: In a stacking configuration, Queue 4 is used for forwarding stacking traffic.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Assigning CoS Values to Queues Using the CLI Commands The following table summarizes the equivalent CLI commands for configuring fields in the Mapping CoS Values to Queues Table. CLI Command Description wrr-queue cos-map queue-id cos1.cosn Maps assigned CoS values to the egress queues.
DSCP Mapping Page The For the list of the DSCP default queue settings, contains the following fields: NOTE: In a stacking configuration, Queue 4 is used for forwarding stacking traffic. Therefore, assigning additional traffic to Queue 4 may interfere with stack control. • DSCP In—Indicates the values of the DSCP field within the incoming packet. • Queue—Indicates the queue to which packets with the specific DSCP value are assigned.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m CLI Command Description qos map dscp-queue dscplist to queue-id Modifies the DSCP to queue mapping. The following is an example of the CLI commands: Console (config)# qos map dscp-queue 33 40 41 to 1 Mapping TCP Port Values to Queues The TCP to Queue page allows network managers to classify specific TCP destination port traffic to queues.
• Insert TCP Port—Enables defining a new TCP port. • Map to Queue—Indicates the traffic queue to which the TCP port is assigned. NOTE: In a stacking configuration, Queue 4 is used for forwarding stacking traffic. Therefore, assigning additional traffic to Queue 4 may interfere with stack control. • Remove—Removes a TCP port mapping. – Checked—Removes a specific TCP port mapping. – Unchecked—Maintains a TCP port mapping. Assigning a TCP port to a Traffic Queue: 1 Open the TCP to Queue page.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m T C P t o Q u e u e M a p p i n g Ta b l e Removing a TCP port mapping from the TCP to Queue Mapping Table: 1 Open the TCP to Queue page. 2 Click Show All. The TCP to Queue Mapping Table opens. 3 Select a port in the TCP Port List drop-down list. The queue to which the port is assigned displays in the Map to Queue drop-down list. 4 Check the Remove check box. 5 Click Apply Changes. The TCP port is removed from the traffic queue.
Console (config)# show qos map tcp-port-queue Tcp port-queue map: Port queue ----- -----6000 1 6001 2 6002 3 Mapping UDP Port Values to Queues The UDP to Queue page allows network managers to classify specific UDP port traffic to queues. To open the UDP to Queue page: • Select Quality of Service >Mapping to Queue > UDP to Queue in the Tree View. The UDP to Queue page opens.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m • Insert UDP Port—A new UDP port may be defined. • Map to Queue—Indicates the traffic queue to which the UDP port is assigned. NOTE: In a stacking configuration, Queue 4 is used for forwarding stacking traffic. Therefore, assigning additional traffic to Queue 4 may interfere with stack control. • Remove—Removes UDP port mapping. – Checked—Removes a UDP port mapping. – Unchecked—Maintains a UDP port mapping.
Assigning UDP Ports to Queues Using the CLI Commands The following table summarizes the equivalent CLI commands for configuring fields in the UDP to Queue page. CLI Command Description qos map udp-port-queue port1.port8 to queue-id Modifies the UDP-Port to queue. show qos map udp-portqueue Displays the UDP-Port to queue. no qos map udp-port-queue Removes the UDP port from a queue.
Configuring Quality of Ser vice w w w. d e l l . c o m | s u p p o r t . d e l l .
SECTION 10 Getting Help Technical Assistance Dell Enterprise Training and Certification Problems With Your Order Product Information Returning Items for Warranty Repair or Credit Before You Call Contacting Dell
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Technical Assistance If you need assistance with a technical problem, use Dell's extensive suite of online services available at Dell Support at support.dell.com for help with installation and troubleshooting procedures. For more information, see "Online Services." If you still have not resolved the problem, call Dell for technical assistance.
• Anonymous file transfer protocol (FTP) ftp.dell.com/ Log in as user:anonymous, and use your e-mail address as your password. • Electronic Support Service support@us.dell.com apsupport@dell.com (Asian/Pacific countries only) support.euro.dell.com (Europe only) • Electronic Quote Service sales@dell.com apmarketing@dell.com (Asian/Pacific countries only) sales_canada@dell.com (Canada only) • Electronic Information Service info@dell.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Technical Support Service Dell's technical support service is available 24 hours a day, 7 days a week, to answer your questions about Dell hardware. Our technical support staff use computer-based diagnostics to provide fast, accurate answers. To contact Dell's technical support service, see "Before You Call" and then see the contact information for your region.
5 Pack the equipment to be returned in the original (or equivalent) packing materials. You are responsible for paying shipping expenses. You are also responsible for insuring any product returned, and you assume the risk of loss during shipment to Dell. Collect-on-delivery (C.O.D.) packages are not accepted. Returns that are missing any of the preceding requirements will be refused at our receiving dock and returned to you. Before You Call NOTE: Have your Express Service Code ready when you call.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Area Codes, Local Numbers, and Toll-Free Numbers Anguilla General Support toll-free: 800-335-0031 Antigua and Barbuda General Support 1-800-805-5924 Argentina (Buenos Aires) Website: www.dell.com.
Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Belgium (Brussels) Website: support.euro.dell.com International Access Code: 00 E-mail: tech_be@dell.com Country Code: 32 E-mail for French Speaking Customers: support.euro.dell.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Cayman Islands General Support Chile (Santiago) Sales, Customer Support, and Technical Support Area Codes, Local Numbers, and Toll-Free Numbers 1-800-805-7541 toll-free: 1230-020-4823 Country Code: 56 City Code: 2 China (Xiamen) Tech Support website: support.ap.dell.
Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Area Codes, Local Numbers, and Toll-Free Numbers Czech Republic (Prague) Website: support.euro.dell.com International Access Code: 00 E-mail: czech_dell@dell.com Country Code: 420 Technical Support 02 2186 27 27 City Code: 2 Customer Care 02 2186 27 11 Fax 02 2186 27 14 TechFax 02 2186 27 28 Switchboard 02 2186 27 11 Denmark (Copenhagen) Website: support.euro.dell.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Finland (Helsinki) Website: support.euro.dell.com International Access Code: 990 E-mail: fin_support@dell.com Country Code: 358 E-mail Support (servers): Nordic_support@dell.
Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Germany (Langen) Website: support.euro.dell.com International Access Code: 00 E-mail: tech_support_central_europe@dell.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Area Codes, Local Numbers, and Toll-Free Numbers Hong Kong Website: support.ap.dell.com International Access Code: 001 E-mail: ap_support@dell.
Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Area Codes, Local Numbers, and Toll-Free Numbers Italy (Milan) Website: support.euro.dell.com International Access Code: 00 E-mail: support.euro.dell.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Japan (Kawasaki) Website: support.jp.dell.
Country (City) International Access Code Country Code City Code Latin America Department Name or Service Area, Website and E-Mail Address Area Codes, Local Numbers, and Toll-Free Numbers Customer Technical Support (Austin, Texas, U.S.A.) 512 728-4093 Customer Service (Austin, Texas, U.S.A.) 512 728-3619 Fax (Technical Support and Customer Service) (Austin, Texas, U.S.A.) 512 728-3883 Sales (Austin, Texas, U.S.A.) 512 728-4397 SalesFax (Austin, Texas, U.S.A.
w w w. d e l l . c o m | s u p p o r t . d e l l .
Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Area Codes, Local Numbers, and Toll-Free Numbers New Zealand E-mail (New Zealand): nz_tech_support@dell.com International Access Code: 00 E-mail (Australia): au_tech_support@dell.com Country Code: 64 Home and Small Business 0800 446 255 Government and Business 0800 444 617 Sales 0800 441 567 0800 441 566 Fax Nicaragua General Support Norway (Lysaker) Website: support.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Portugal Website: support.euro.dell.com International Access Code: 00 E-mail: support.euro.dell.
Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Area Codes, Local Numbers, and Toll-Free Numbers Spain (Madrid) Website: support.euro.dell.com International Access Code: 00 E-mail: support.euro.dell.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Switzerland (Geneva) Website: support.euro.dell.com International Access Code: 00 E-mail: swisstech@dell.com Country Code: 41 E-mail for French-speaking HSB and Corporate Customers: support.euro.dell.
Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Area Codes, Local Numbers, and Toll-Free Numbers U.K. (Bracknell) Website: support.euro.dell.com International Access Code: 00 Customer Care website: support.euro.dell.com/uk/en/ECare/Form/Home.asp Country Code: 44 City Code: 1344 Uruguay E-mail: dell_direct_support@dell.
w w w. d e l l . c o m | s u p p o r t . d e l l . c o m Country (City) International Access Code Country Code City Code Department Name or Service Area, Website and E-Mail Address Area Codes, Local Numbers, and Toll-Free Numbers U.S.A.