GE Security GE-DSH-73/DSH-82/DSH-82-PoE User Manual P/N 1069172 • REV 1.
Copyright © 2010 GE Security, Inc. This document may not be copied in whole or in part or otherwise reproduced without prior written consent from GE Security, Inc., except where specifically permitted under US and international copyright law. Disclaimer The information in this document is subject to change without notice. GE Security, Inc.
Content Chapter 1 Introduction 1 Package Contents 2 Chapter 2 Installation 11 Hardware Description 11 Installing the Switch 23 Chapter 3 Network Application 33 Chapter 4 Console Management 37 Chapter 5 Web-Based Management 43 About Web-based Management 43 Requirements 44 Logging on the Switch 44 System 46 Port Management 65 Protocol 76 Security 118 Digital Input/Output (GE-DSH-73) 129 Power Over Ethernet (GE-DSH-82-PoE) 131 Factory Default 135 Save Configuration 135 System Reboot 136 Chapter 6 Command Sets
SNTP Commands Set 159 X-ring Commands Set 160 PoE Command Set 161 Chapter 7 Switch Operation 163 Address Table 163 Chapter 8 Power Over Ethernet Overview 165 What is PoE? 165 Appendix A RJ-45 Pin Assignment 171 Switch's RJ-45 Pin Assignments 171 10/100Mbps, 10/100Base-TX 172 Appendix B Troubleshooting 175 ii GE-DSH-73/DSH-82 and DSH-82-PoE User Manual
Chapter 1 Introduction GE-DSH-82 GE-DSH-82-PoE GE-DSH-73 The GE Security Managed Industrial Ethernet Switch series - the GE-DSH-82, GE-DSH82-PoE and GE-DSH-73 are multiple 10/100Mbps ports Ethernet Switches with Gigabit TP/SFP fiber optical combo connective ability and robust layer 2 features.
Chapter 1: Introduction Package Contents What’s in the box Open the Managed Industrial Switch box and carefully unpack it.
Chapter 1: Introduction Fast Recovery to a Redundant Ethernet Network The GE-DSH-82 / GE-DSH-73 series features strong and rapid self-recovery capability to prevent interruptions and outside intrusions. It incorporates advanced redundant data Ring technology; Rapid Spanning Protocol (IEEE 802.1w RSTP) and a redundant power supply system into customers' industrial automation network to enhance system reliability and uptime in the harsh factory environments.
Chapter 1: Introduction 1 RJ-45 Console interface for Switch basic management and setup o GE-DSH-82-PoE (Power Over Ethernet) 2-Port 10/100/1000Base-T TP combo interfaces 2 mini-GBIC / SFP slots shared with Gigabit copper ports and support 100/1000 Dual Mode 1 RJ-45 Console interface for Switch basic management and setupGEDSH-73 Supports 48VDC, 15.4 watts PoE power outputs to 9 IEEE 802.
Chapter 1: Introduction • Layer 2 Features o Complies with the IEEE 802.3, IEEE 802.3u, IEEE 802.3ab, IEEE 802.3z Gigabit Ethernet standards o Supports Auto-negotiation and half duplex/full duplex modes for all 10BaseT/100Base-TX and 1000Base-T ports o Auto-MDI/MDI-X detection on each RJ-45 port o Prevents packet loss with back pressure (Half-Duplex) and IEEE 802.3x PAUSE frame flow control (Full-Duplex) o Supports VLANs IEEE 802.
Chapter 1: Introduction • Security o IEEE 802.
Chapter 1: Introduction Share Data Buffer 1Mbit Maximum Frame Size 1522 Bytes packet Flow Control LED Back pressure for Half-Duplex IEEE 802.
Chapter 1: Introduction Layer 2 function Management Interface Console, Telnet, Web Browser, SNMP v1, v2c and v3 Port disable/enable. Port Configuration Auto-negotiation 10/100Mbps full and half duplex mode selection. Flow Control disable / enable. Bandwidth control on each port. Port Status VLAN Spanning Tree Display each port’s speed duplex mode, link status, Flow control status. Auto negotiation status Port-Based VLAN, up to 9 VLAN groups IEEE 802.
Chapter 1: Introduction RFC-1213 MIB-II RFC-2863 Interface MIB SNMP MIBs RFC-1493 Bridge MIB RFC-2819 RMON MIB (Group 1, 2, 3, 9) RFC-2674 Extended Bridge MIB (Q-Bridge) Private MIB Standards Conformance Regulation Compliance FCC Part 15 Class A, CE IEEE 802.3 10Base-T IEEE 802.3u 100Base-TX/100Base-FX IEEE 802.3z Gigabit SX/LX IEEE 802.3ab Gigabit 1000T IEEE 802.3x Flow Control and Back pressure IEEE 802.1d Spanning tree protocol IEEE 802.1w Rapid spanning tree protocol IEEE 802.
Chapter 1: Introduction 10 GE-DSH-73/DSH-82 and DSH-82-PoE User Manual
Chapter 2 Installation Hardware Description Physical Dimensions GE-DSH-82 (W x D x H): 2.83” x 4.13” x 5.98” / 72mm x 105mm x 152mm.
Chapter 2: Installation GE-DSH-82-PoE (W x D x H): 2.83” x 4.13” x 5.98” / 72mm x 105mm x 152mm Figure 2-2: GE-DSH-82-PoE panel layout GE-DSH-73 (W x D x H): 2.83” x 4.13” x 5.
Chapter 2: Installation Front / Rear Panel The Front Panel and Rear Panel of the GE-DSH-82 Managed Industrial Switch are shown below: Figure 2-4: Front and Rear Panel of GE-DSH-82 1. Model Name 9. 10/100/1000Base-T port 2. System Power: LED 10. 1000Base-SX/LX SFP slot 3. Ring Master: LED indicator 11. LED indicators for 1000Base-SX/LX ort 4. LED for power 1 input 12. 6-Pin Terminal Block 5. LED for power 2 input 13. Ground Screw 6. FAULT: LED indicator 14. Screw holes for Wall Mounting kit 7.
Chapter 2: Installation The Front Panel and Rear Panel of the GE-DSH-82-PoE Managed Industrial Switch are shown below: Figure 2-5: Front and Rear Panel of GE-DSH-82-PoE 14 1. Model Name 9. 10/100/1000Base-T port 2. System Power: LED 10. 1000Base-SX/LX SFP slot 3. Ring Master: LED indicator 11. LED indicators for 1000Base-SX/LX ort 4. LED for power 1 input 12. LED indicators for PoE power output 5. LED for power 2 input 13. 6-Pin Terminal Block 6. FAULT: LED indicator 14. Ground Screw 7.
Chapter 2: Installation The Front Panel and Rear Panel of the GE-DSH-73 Managed Industrial Switch are shown below: Figure 2-6: Front and Rear Panel of GE-DSH-73 1. Model Name 9. 1000Base-SX/LX SFP slot (Port-7) 2. System Power: LED 10. 1000Base-SX/LX SFP slots (Port-9 / Port-10) 3. Ring Master: LED indicator 11. 10/100/1000Base-T ports (Port-9 / Port-10) 4. LED for power 1 input 12. 6-Pin Terminal Block 5. LED for power 2 input 13. Ground Screw 6. FAULT: LED indicator 14.
Chapter 2: Installation Top View The top panel of the GE-DSH-82 Managed Industrial Switch has one terminal block connector of two DC power inputs and one fault alarm.
Chapter 2: Installation The top panel of the GE-DSH-73 Managed Industrial Switch has two terminal block connectors: • Power connector - consists of two DC power inputs and one fault alarm. • DI/DO connector - comprises two digital inputs-DI0 and DI1and two digital outputs-DO0 and DO1.
Chapter 2: Installation LED Indicators The diagnostic LEDs that provide real-time information of system and optional status are located on the front panel of the GE-DSH series. The following table provides the description of the LED status and their meanings for the Managed Industrial Switch. GE-DSH-82 LED Indicators • System • LED Color PWR Green R.M. Green PWR1 Green PWR2 Green FAULT Red Status Meaning On The switch unit is power on. Off No power.
Chapter 2: Installation • 10/100Base-TX Ports – Port-9, Port-10 LED Color Status On Green Port 9, Port 10 (RJ-45) Link/Active (P9, P10 SFP) (Upper LED) Blinking Meaning A network device is detected. The port is transmitting or receiving packets from the TX device. Off No device attached Green On 1000M (Lower LED) Off 10/100M On The SFP port is linking Green Blinking Off The port is transmitting or receiving packets from the TX device.
Chapter 2: Installation • 10/100Base-TX Ports – Port-1 to Port-8 LED Color Status On Green Port-1 ~ 6 & Port-8 Amber Blinking A network device is detected. The port is transmitting or receiving packets from the TX device. Off No device attached. On The port is operating in full-duplex mode. Blinking Off • Meaning Collision of Packets occurs. The port is in half-duplex mode or no device is attached.
Chapter 2: Installation GE-DSH-82-PoE LED Indicators • • System LED Color PWR Green R.M. Green PWR1 Green PWR2 Green FAULT Red Status Meaning On The switch unit is power on. Off No power. On The industrial switch is the master of X-Ring group. Off The industrial switch is not a ring master in X-Ring group. On Power 1 is active. Off Power 1 is inactive. On Power 2 is active. Off Power 2 is inactive. On Power or port failure. Off No failure.
Chapter 2: Installation • PoE port link – Port-1 to Port-8 LED FWD (P1 to P8) • Color Green Status Meaning On An IEEE 802.3af PoE power device is detected. Off No IEEE 802.3af PoE power device attached 10/100/1000Base-T / SFP combo interface - Port-9, Port-10 LED Color Status On Green Port 9, Port 10 (RJ-45) Link/Active (P9, P10 SFP) (Upper LED) Blinking A network device is detected. The port is transmitting or receiving packets from the TX device.
Chapter 2: Installation Installing the Switch This section describes how to install your Managed Industrial Switch and make connections to the Managed Industrial Switch. Please read the following topics and perform the procedures in the order being presented. To install your switch on a desktop or shelf, simply complete the following steps. In this paragraph, we will describe how to install the 8 10/100TX w/ X-Ring Managed Industrial Switch and the installation points attended to it. Installation Steps 1.
Chapter 2: Installation DIN-Rail Mounting The DIN-Rail is screwed on the Industrial Switch when out of factory. If the DIN-Rail is not screwed on the Industrial Switch, please see the following pictures to screw the DIN-Rail on the Switch. Follow the steps below to hang the Industrial Switch. Figure 2-10: Rear Panel - DIN-Rail Kit 1. Insert the top of DIN-Rail into the track.
Chapter 2: Installation 2. Lightly push the DIN-Rail into the track. Figure 2-12: DIN-Rail mounting 3. Check if the DIN-Rail is tightened on the track or not. 4. To remove the industrial switch from the track, reverse above steps. Wall Mount Plate Mounting Follow the steps below to mount the Industrial Switch with wall mount plate. 1. Remove the DIN-Rail from the Industrial Switch; loose the screws to remove the DIN-Rail. 2. Place the wall mount plate on the rear panel of the Industrial Switch. 3.
Chapter 2: Installation Figure 2-13: Wall mounting Wiring the Power Inputs The 6-contact terminal block connector on the top panel of GE-DSH-82-PoE is used for two DC redundant power inputs. NOTE: This product is intended to be supplied by a UL Listed Direct Plug-In Power Unit marked "Class 2" or "LPS" and output rated 48 VDC, 380 mA minimum. Please follow the steps below to insert the power wire. 1.
Chapter 2: Installation Figure 2-14: Wiring the redundant power inputs 3. Tighten the wire-clamp screws to prevent the wires from coming loose. Figure 2-15: Wiring the redundant power inputs 1 2 3 4 5 6 Power 2 Power 1 - - + + NOTE: The wire gauge for the terminal block should be in the range between 12 ~ 24 AWG. For the GE-DSH-82-PoE, A 48VDC, 3A power input is required for full PoE load on the PoE.
Chapter 2: Installation forms an open circuit. The following illustration shows an application example for wiring the fault alarm contacts. Figure 2-16: 6-Pin Terminal Block Fault Alarm contact NOTE: The wire gauge for the terminal block should be in the range between 12 ~ 24 AWG. Figure 2-17: Power Fault Alarm trigger description Wiring the Digital Inputs / Outputs (GE-DSH-73) There is another terminal block comprising two sets of digital input/output contacts on the topside of GE-DSH-73.
Chapter 2: Installation Figure 2-18: DI/DO terminal block of GE-DSH-73 Installing the SFP transceiver The section describes how to insert an SFP transceiver into an SFP slot. The SFP transceivers are hot pluggable and hot swappable. You can plug-in and out the transceiver to/from any SFP port without having to power down the Industrial Switch. Shown in Figure 2-19.
Chapter 2: Installation Approved GE Security SFP Transceivers GE Security Industrial Switch supports both Single mode and Multi-mode SFP transceiver.
Chapter 2: Installation Figure 2-20: LC fiber optical cable connects to the transceiver • Remove the transceiver module 1. Make sure there is no network activity by consulting or checking with the network administrator or through the management interface of the switch/converter (if available) to disable the port in advance. 2. Remove the Fiber Optic Cable gently. Figure 2-21: Pull out the SFP transceiver 3. Turn the handle of the MGB module horizontally. 4.
Chapter 2: Installation Figure 2-22: Pull out from the transceiver NOTE: Never pull out the module without pull the handle or the push bolts on the module. Pulling out the module with too much force could damage the module and SFP module slot of the Managed Industrial Switch.
Chapter 3 Network Application This chapter discusses how the Switches function in various Network environments. A couple sample applications of the industrial switch are shown below.
Chapter 3: Network Application Transportation Networking and Public Wireless Service 34 GE-DSH-73/DSH-82 and DSH-82-PoE User Manual
Chapter 3: Network Application X-Ring Application The industrial Switch supports the Rapid Ring (X-Ring) protocol that can help the network system to recovery from network connection failure within 20ms or less, and make the network system more reliable. The X-Ring algorithm is similar to spanning tree protocol (STP) algorithm but its recovery time is faster than STP. The following figure is a sample X-Ring application.
Chapter 3: Network Application Coupling Ring Application In the network, it may have more than one X-Ring group. By using the coupling ring function, it can connect each X-Ring for the redundant backup. It can ensure the transmissions between two ring groups not to fail. The following figure is a sample of coupling ring application. Dual Homing Application Dual Homing function is to prevent the connection lose from between X-Ring group and upper level/core switch.
Chapter 4 Console Management Connecting to the Console Port The supplied cable which one end is RS-232 connector and the other end is RJ-45 connector. Attach the end of RS-232 connector to PC or terminal and the other end of RJ-45 connector to the console port of the switch. The connected terminal or PC must support the terminal emulation program.
Chapter 4: Console Management Login in the Console Interface To configure the system, connect a serial cable to a COM port on a PC or notebook computer and to RJ-45 type serial (console) port of the Managed Industrial Switch. The console port of the Managed Industrial Switch is DCE already, so that you can connect the console port directly through PC without the need of Null Modem.
Chapter 4: Console Management Figure 4-3: The COM1 properties window 2. Once the terminal has connected to the device, power on the GE-DSH series Managed Industrial Switch, the terminal will display that it is running testing procedures. 3. Then, the following message asks the login password. The factory default password as following and the login screen in below figure appears.
Chapter 4: Console Management NOTE: For security reasons, please change and memorize the new password after this first setup. Only enter commands in lowercase letters when in the console interface. CLI Management The system supports the console management-CLI command. After you log in on to the system, you will see a command prompt. To enter CLI management interface, type in "enable" command.
Chapter 4: Console Management CLI commands and descriptions Modes User EXEC Access Method Begin a session with your switch. Prompt switch> Exit Method Enter logout or quit. About This Model The user commands available at the user level are a subset of those available at the privileged level. Use this mode to: • Perform basic tests. • Display system information. The privileged command is the advanced mode. Privileged EXEC Enter the enable command while in User EXEC mode.
Chapter 4: Console Management 42 GE-DSH-73/DSH-82 and DSH-82-PoE User Manual
Chapter 5 Web-Based Management About Web-based Management The Managed Industrial Switch offers management features that allow users to manage the Managed Industrial Switch from anywhere on the network through a standard browser such as Microsoft Internet Explorer. The Web-Based Management supports Internet Explorer 6.0. It is based on Java Applets with an aim to reduce network bandwidth consumption, enhance access speed and present an easy viewing screen. NOTE: By default, IE 6.
Chapter 5: Web-Based Management Requirements • Workstations of subscribers running Windows 98/ME, NT4.0, 2000/2003/XP, MAC OS9 or later, Linux, UNIX or other platform compatible with TCP/IP protocols. • Workstation installed with Ethernet NIC (Network Card) • Ethernet Port connect o Network cables - Use standard network (UTP) cables with RJ45 connectors. o Above PC installed with WEB Browser and JAVA runtime environment Plug-in NOTE: We recommend using Internet Explorer 6.
Chapter 5: Web-Based Management Figure 5-1: Login screen 3. After entering the username and password, the main screen appears as shown in Figure 5-2. Figure 5-2: Default main page 4. The Switch Menu on the left of the Web page let you access all the commands and statistics the Switch provides. Now, you can use the Web management interface to continue the switch management or manage the Managed Industrial Switch by Web interface.
Chapter 5: Web-Based Management NOTE: 1. We recommend using Internet Explorer 6.0 or above to access GE-DSH-82 series Managed Industrial Switch. 2. The changed IP address take effect immediately after clicking on the Save button. You need to use the new IP address to access the Web interface. 3. For security reasons, please change and memorize the new password after this first setup. 4. Only enter commands in lowercase letters when using the web interface.
Chapter 5: Web-Based Management System Information The System Info page provides information for the current device information. The System Information page helps a switch administrator to identify the hardware MAC address, software version and system uptime. The screen in Figure 5-3 appears.
Chapter 5: Web-Based Management IP Configuration The IP Configuration includes the IP Address, Subnet Mask and Gateway. The Configured column is used to view or change the IP configuration. Fill up the IP Address, Subnet Mask and Gateway for the device. The screen in Figure 5-4 appears. Figure 5-4: IP configuration interface This page includes the following fields: Object Description DHCP Client: Enable or disable the DHCP client function.
Chapter 5: Web-Based Management DHCP Server DHCP is the abbreviation of Dynamic Host Configuration Protocol that is a protocol for assigning dynamic IP addresses to devices on a network. With dynamic addressing, a device can have a different IP address every time it connects to the network. In some systems, the device's IP address can even change while it is still connected. DHCP also supports a mix of static and dynamic IP addresses.
Chapter 5: Web-Based Management This page includes the following fields: Object Description DHCP Server: Enable or Disable the DHCP Server function. Enable—the switch will be the DHCP server on your local network. Low IP Address: Type in an IP address. Low IP address is the beginning of the dynamic IP range. For example, dynamic IP is in the range between 192.168.0.101 ~ 192.168.0.200. In contrast, 192.168.0.101 is the Low IP address. High IP Address: Type in an IP address.
Chapter 5: Web-Based Management This page includes the following fields: Object Description IP Addr Specifies the Client's IP Address. Client ID Specifies the Client's Hardware Address. Type Specifies the Type of Binding: Dynamic / Manual. Lease Specifies the Lease time left in seconds. Port and IP Bindings Assign the dynamic IP address bound with the port to the connected client. The user is allowed to fill each port column with one particular IP address.
Chapter 5: Web-Based Management TFTP It provides the functions allowing the user to update the switch firmware via the Trivial File Transfer Protocol (TFTP) server. Before updating, make sure the TFTP server is ready and the firmware image is located on the TFTP server. Update Firmware Use this menu to download a file from specified TFTP server to the Managed Industrial Switch.
Chapter 5: Web-Based Management Figure 5-9: Restore Configuration interface This page includes the following fields: Object Description TFTP Server IP Address: Type in the TFTP server IP. Restore File Name: Type in the correct file name for restoring. Backup Configuration You can back up the current configuration from flash ROM to the TFTP server for the purpose of recovering the configuration later. It helps you to avoid wasting time on configuring the settings by backing up the configuration.
Chapter 5: Web-Based Management This page includes the following fields: Object Description TFTP Server IP Address: Type in the TFTP server IP. Backup File Name: Type in the file name. System Event Log This page allows the user to decide whether to send the system event log, and select the mode which the system event log will be sent to client only, server only, or both client and server.
Chapter 5: Web-Based Management Figure 5-11: Syslog Configuration interface This page includes the following fields: Object Description Select the system log mode—Client Only, Server Only, or Both. Client Only: the system event log will only be sent to this interface of the switch Syslog Client Mode: Server Only: the system log will only be sent to the remote system log server with its IP assigned. Both: the system event log will be sent to the remote server and this interface.
Chapter 5: Web-Based Management System Event Log-SMTP Configuration Simple Mail Transfer Protocol (SMTP) is the standard for email transmissions across the network. You can configure the SMTP server IP, mail subject, sender, mail account, password, and the recipient email addresses, which the e-mail alert will send to. There are also five types of event-Device Cold Start, Device Warm Start, Authentication Failure, X-Ring Topology Change, and Port Event-available to be issued as the e-mail alert.
Chapter 5: Web-Based Management Object Description Authentication: Having ticked this checkbox, the mail account, password and confirm password column fields will then show up. Configure the email account and password for authentication when this switch logs in to the SMTP server. Mail Account: Set up the email account, e.g. jack, to receive the email alert. It must be an existing email account on the mail server. Password: Type in the password for the email account.
Chapter 5: Web-Based Management This page includes the following fields: Object Description There are 4 event types—Device Cold Start, Device Warm Start, Authentication Failure, and X-ring Topology Change. The checkboxes are not available for ticking unless the Syslog Client Mode on the Syslog Configuration tab and the E-mail Alert on the SMTP Configuration tab are enabled first.
Chapter 5: Web-Based Management Fault Relay Alarm The Fault Relay Alarm function provides the Power Failure and Port Link Down/Broken detection. With both power input 1 and power input 2 installed and the check boxes of power 1/power 2 ticked, the FAULT LED indicator will then be possible to light up when any one of the power failures occurs.
Chapter 5: Web-Based Management SNTP Configuration SNTP (Simple Network Time Protocol) is a simplified version of NTP, which is an Internet protocol used to synchronize the clocks of computers to some time reference. Because time usually just advances, the time on different node stations will be different. With the communicating programs running on those devices, it would cause time to jump forward and back, a non-desirable effect.
Chapter 5: Web-Based Management UTC Timezone: Universal Time, Coordinated. Set the switch location time zone. The following table lists the different location time zone for your reference. SNTP Sever URL: Set the SNTP server IP address. You can assign a local network time server IP address or an internet time server IP address.
Chapter 5: Web-Based Management Local Time Zone Conversion from UTC Time at 12:00 UTC November Time Zone - 1 hour 11am Oscar Time Zone -2 hours 10 am ADT - Atlantic Daylight -3 hours 9 am -4 hours 8 am -5 hours 7 am -6 hours 6 am -7 hours 5 am -8 hours 4 am ALA - Alaskan Standard -9 hours 3 am HAW - Hawaiian Standard -10 hours 2 am Nome, Alaska -11 hours 1 am +1 hour 1 pm EET - Eastern European, USSR Zone 1 +2 hours 2 pm BT - Baghdad, USSR Zone 2 +3 hours 3 pm ZP4 - U
Chapter 5: Web-Based Management Local Time Zone Conversion from UTC Time at 12:00 UTC CCT - China Coast, USSR Zone 7 +8 hours 8 pm JST - Japan Standard, USSR Zone 8 +9 hours 9 pm +10 hours 10 pm +12 hours Midnight EAST - East Australian Standard GST Guam Standard, USSR Zone 9 IDLE - International Date Line NZST - New Zealand Standard NZT - New Zealand IP Security IP security function allows the user to assign 10 specific IP addresses that have permission to manage the switch through the http
Chapter 5: Web-Based Management This page includes the following fields: Object Description IP Security Mode: Having set this selection item in the Enable mode, the Enable HTTP Server, Enable Telnet Server checkboxes and the ten security IP column fields will then be available. If not, those items will appear in grey.
Chapter 5: Web-Based Management This page includes the following fields: Object User name: Password: Confirm password: Description Type in the new user name The default user name is ‘admin’ Type in the new password The default is ‘admin’ Re-type the new password Port Management Port Statistics The following chart provides the current statistic information, which displays the realtime packet transfer status for each port.
Chapter 5: Web-Based Management This page includes the following fields: Object Description Port: The port number. Type: Displays the current speed of connection to the port. Link: The status of linking—‘Up’ or ‘Down’. State: It’s set by Port Control. When the state is disabled, the port will not transmit or receive any packet. Tx Good Packet: The counts of transmitting good packets via this port.
Chapter 5: Web-Based Management Figure 5-19: Port Control interface This page includes the following fields: Object Description Port: Use the scroll bar and click on the port number to choose the port to be configured. State: Current port state. The port can be set to disable or enable mode. If the port state is set as ‘Disable’, it will not receive or transmit any packet. Negotiation: Auto and Force. Being set as Auto, the speed and duplex mode are negotiated automatically.
Chapter 5: Web-Based Management Port Trunk Port trunking is the combination of several ports or network cables to expand the connection speed beyond the limits of any one single port or network cable. Link Aggregation Control Protocol (LACP), which is a protocol running on layer 2, provides a standardized means in accordance with IEEE 802.3ad to bundle several physical ports together to form a single logical channel.
Chapter 5: Web-Based Management Aggregator setting This section provides Port Trunk-Aggregator Setting of each port from the Switch, the screen in Figure 5-20 appears. Figure 5-20: Port Trunk-Aggregator Setting interface (two ports are added to the left field with LACP enabled) This page includes the following fields: Object Description System Priority: A value which is used to identify the active LACP.
Chapter 5: Web-Based Management Object Description Work ports: This column field allows the user to type in the total number of active port up to four. With LACP static trunk group, e.g. you assign four ports to be the members of a trunk group whose work ports column field is set as two; the exceed ports are standby/redundant ports and can be aggregated if working ports fail. If it is a static trunk group (non-LACP), the number of work ports must equal the total number of group member ports.
Chapter 5: Web-Based Management Figure 5-22: Static Trunking Group information This page includes the following fields: Object Description Group Key: This is a read-only column field that displays the trunk group ID. Port Member: This is a read-only column field that displays the members of this static trunk group. • LACP enabled Having set up the aggregator setting with LACP enabled, you will see the trunking group information between two switches on the tab of Aggregator Information.
Chapter 5: Web-Based Management Figure 5-23: Aggregation Information of Switch 1 5. Click on the tab of Aggregator Information to check the trunked group information as the illustration shown above after the two switches configured. o Switch 2 configuration 6. Set System Priority of the trunk group. For example: 32768. 7. Select a trunk group ID by pull down the drop-down menu bar. 8. Enable LACP. 9.
Chapter 5: Web-Based Management Figure 5-25: Switch 1 Aggregator Information State Activity Having set up the LACP aggregator on the tab of Aggregator Setting, you can configure the state activity for the members of the LACP trunk group. You can tick or cancel the checkbox beside the state label. When you remove the tick mark of the port and click APPLY, the port state activity will change to Passive.
Chapter 5: Web-Based Management Figure 5-27: State Activity of Switch 2 NOTE: A link having two passive LACP nodes will not perform dynamic LACP trunk because both ports are waiting for an LACP protocol packet from the opposite device. Port Mirroring The Port mirroring is a method for monitor traffic in switched networks. Traffic through ports can be monitored by one specific port, which means traffic goes in or out monitored (source) ports will be duplicated into mirror (destination) port.
Chapter 5: Web-Based Management This page includes the following fields: Object Description Destination Port: There is only one port can be selected to be destination (mirror) port for monitoring both RX and TX traffic which come from source port. Or, use one of two ports for monitoring RX traffic only and the other one for TX traffic only. User can connect mirror port to LAN analyzer or Netxray. Source Port: The ports that user wants to monitor.
Chapter 5: Web-Based Management Figure 5-29: Rate Limiting interface • All the ports support port ingress and egress rate control. For example, assume port 1 is 10Mbps, users can set it's effective egress rate is 1Mbps, ingress rate is 500Kbps. The switch performs the ingress rate by packet counter to meet the specified rate o Ingress: Enter the port effective ingress rate (The default value is "0"). o Egress: Enter the port effective egress rate (The default value is "0").
Chapter 5: Web-Based Management VLAN Configuration VLAN Overview A Virtual LAN (VLAN) is a logical network grouping that limits the broadcast domain. It allows you to isolate network traffic so only members of the VLAN receive traffic from the same VLAN members. Basically, creating a VLAN from a switch is logically equivalent of reconnecting a group of network devices to another Layer 2 switch. However, all the network devices are still plug into the same switch physically.
Chapter 5: Web-Based Management Tagging - The act of putting 802.1Q VLAN information into the header of a packet. Untagging - The act of stripping 802.1Q VLAN information out of the packet header. • 802.1Q VLAN Tags The figure below shows the 802.1Q VLAN tag. There are four additional octets inserted after the source MAC address. Their presence is indicated by a value of 0x8100 in the Ether Type field. When a packet's Ether Type field is equal to 0x8100, the packet carries the IEEE 802.1Q/802.1p tag.
Chapter 5: Web-Based Management • Port VLAN ID Packets that are tagged (are carrying the 802.1Q VID information) can be transmitted from one 802.1Q compliant network device to another with the VLAN information intact. This allows 802.1Q VLAN to span network devices (and indeed, the entire network - if all network devices are 802.1Q compliant). Every physical port on a switch has a PVID. 802.1Q ports are also assigned a PVID, for use within the switch.
Chapter 5: Web-Based Management VLAN Configuration A Virtual LAN (VLAN) is a logical network grouping that limits the broadcast domain. It allows you to isolate network traffic so only members of the VLAN receive traffic from the same VLAN members. Basically, creating a VLAN from a switch is logically equivalent of reconnecting a group of network devices to another Layer 2 switch. However, all the network devices are still plug into the same switch physically.
Chapter 5: Web-Based Management Figure 5-31: VLAN - Port Based interface • Pull down the selection item and focus on Port Based then press to set the VLAN Operation Mode in Port Based mode. Click ADD to add a new VLAN group (The maximum VLAN groups are up to 64). Figure 5-32: VLAN - Port Based Add interface • Enter the group name and VLAN ID. Add the selected port number into the right field to group these members to be a VLAN group, or remove any of them listed in the right field from the VLAN.
Chapter 5: Web-Based Management Figure 5-33: VLAN-Port Based Edit/Delete interface • Use DELETE to delete the VLAN. • Use EDIT to modify group name, VLAN ID, or add/remove the members of the existing VLAN group. NOTE: Remember to execute the "Save Configuration" action, otherwise the new configuration will be lost when switch power off. 802.1Q VLAN Virtual Local Area Network (VLAN) can be implemented on the Industrial Switch to logically create different broadcast domain. When the 802.
Chapter 5: Web-Based Management • 802.1Q VLAN Port Configuration This page is used for configuring the Industrial Switch port VLAN. The VLAN per Port Configuration page contains fields for managing ports that are part of a VLAN. The port default VLAN ID (PVID) is configured on the VLAN Port Configuration page. All untagged packets arriving to the device are tagged by the ports PVID. Understanding the nomenclature of the Switch • IEEE 802.1Q Tagged and Untagged Every port on an 802.
Chapter 5: Web-Based Management • Hybrid: The port belongs to VLANs, and each VLAN is user-defined as tagged or untagged (full 802.1Q mode). Ports will strip the 802.1Q tag from all packets that out of those ports.
Chapter 5: Web-Based Management This page includes the following fields: Object Description Enable GVRP Protocol: GVRP (GARP VLAN Registration Protocol) is a protocol that facilitates control of virtual local area networks (VLANs) within a larger network. GVRP conforms to the IEEE 802.1Q specification, which defines a method of tagging frames with VLAN configuration data. This allows network devices to dynamically exchange VLAN configuration information with other devices.
Chapter 5: Web-Based Management Object Description Tagged VID: This column field is available when Link Type is set as Trunk Link and Hybrid Link. Assign a number in the range between 1 an 4094. NOTE: Access Link: Because the access port doesn't have an understanding of tagged frame, the column field of Tagged VID is not available. NOTE: Trunk Link 1. A trunk port doesn't insert tag into an untagged frame, and therefore the untagged VID column field is not available. 2.
Chapter 5: Web-Based Management Figure 5-35: 802.1Q VLAN interface • Group Configuration Edit the existing VLAN Group. • Select the VLAN group in the table list. • Click EDIT.
Chapter 5: Web-Based Management • You can modify the VLAN group name and VLAN ID. Figure 5-37: Group Configuration interface • Click APPLY. Rapid Spanning Tree Protocol The Rapid Spanning Tree Protocol (RSTP) is an evolution of the Spanning Tree Protocol and provides for faster spanning tree convergence after a topology change. The system also supports STP and the system will auto-detect the connected device that is running STP or RSTP protocol.
Chapter 5: Web-Based Management protocol allows for the duplicate links to be used in the event of a failure of the primary link. Once the Spanning Tree Protocol is configured and enabled, primary links are established and duplicated links are blocked automatically. The reactivation of the blocked links (at the time of a primary link failure) is also accomplished automatically without operator intervention. This automatic network reconfiguration provides maximum uptime to network users.
Chapter 5: Web-Based Management The communication between switches via BPDUs results in the following: • One switch is elected as the root switch. • The shortest distance to the root switch is calculated for each switch. • A designated switch is selected. This is the switch closest to the root switch through which packets will be forwarded to the root. • A port for each switch is selected. This is the port providing the best path from the switch to the root switch.
Chapter 5: Web-Based Management A port transitions from one state to another as follows: • From initialization (switch boot) to blocking. • From blocking to listening or to disabled. • From listening to learning or to disabled. • From learning to forwarding or to disabled. • From forwarding to disabled. • From disabled to blocking. Figure 5-38: STP Port State Transitions You can modify each port state by using management software.
Chapter 5: Web-Based Management RSTP Parameters RSTP Operation Levels The Switch allows for two levels of operation: the switch level and the port level. The switch level forms a spanning tree consisting of links between one or more switches. The port level constructs a spanning tree consisting of groups of one or more ports. The STP operates in much the same way for both levels.
Chapter 5: Web-Based Management The following are the user-configurable STP parameters for the port or port group level: Variable Description Default Value Port Priority A relative priority for each port –lower numbers give a higher priority and a greater chance of a given port being elected as the root port 128 Port Cost A value used by STP to evaluate paths – STP calculates path costs and selects the path with the minimum cost as the active path 200,000-100Mbps Fast Ethernet ports 20,000-1000Mbps
Chapter 5: Web-Based Management NOTE: The Hello Time cannot be longer than the Max. Age. Otherwise, a configuration error will occur. Max. Age – The Max Age can be from 6 to 40 seconds. At the end of the Max Age, if a BPDU has still not been received from the Root Bridge, your Switch will start sending its own BPDU to all other Switches for permission to become the Root Bridge. If it turns out that your Switch has the lowest Bridge Identifier, it will become the Root Bridge.
Chapter 5: Web-Based Management the Priority setting, or influencing STP to choose a particular port to block using the Port Priority and Port Cost settings is, however, relatively straight forward. Figure 5-39: Before Applying the STA Rules In this example, only the default STP values are used.
Chapter 5: Web-Based Management The switch with the lowest Bridge ID (switch C) was elected the root bridge, and the ports were selected to give a high port cost between switches B and C. The two (optional) Gigabit ports (default port cost = 4) on switch A are connected to one (optional) Gigabit port on both switch B and C. The redundant link between switch B and C is deliberately chosen as a 100 Mbps Fast Ethernet link (default port cost = 19).
Chapter 5: Web-Based Management This page includes the following fields: Object Description RSTP mode: The user must enable the RSTP function first before configuring the related parameters. Priority (0-61440): The switch with the lowest value has the highest priority and is selected as the root. If the value is changed, the user must reboot the switch. The value must be a multiple of 4096 according to the protocol standard rule.
Chapter 5: Web-Based Management Figure 5-42: RSTP Port Configuration interface This page includes the following fields: Object Description Path Cost: The cost of the path to the other bridge from this transmitting bridge at the specified port. Enter a number 1 through 200,000,000. Priority: Decide which port should be blocked by setting its priority as the lowest. Enter a number between 0 and 240. The value of priority must be the multiple of 16.
Chapter 5: Web-Based Management NOTE: Path cost "0" is used to indicate auto-configuration mode. When the short path cost method is selected and the default path cost recommended by the IEEE 8021w standard exceeds 65,535, the default is set to 65,535. By default, the system automatically detects the speed and duplex mode used on each port, and configures the path cost according to the values shown below. Table 5-1: Recommended STP Path Cost Range Port Type IEEE 802.1D-1998 IEEE 802.
Chapter 5: Web-Based Management System Configuration Figure 5-43: SNMP System Configuration interface This page includes the following fields: Object Description Community Strings: Here you can define the new community string set and remove the unwanted community string. String: Fill the name string. RO: Read only. Enables requests accompanied by this community string to display MIB-object information. RW: Read/write.
Chapter 5: Web-Based Management Figure 5-44: Trap Managers interface This page includes the following fields: Object Description IP Address: Enter the IP address of the trap manager. Community: Enter the community string for the trap station. Trap Version: Select the SNMP trap version type—v1 or v2c. SNMPV3 Configuration Configure the SNMP V3 function.
Chapter 5: Web-Based Management • Context Table Configure SNMP v3 context table. Assign the context name of context table. Click ADD to add context name. Click REMOVE to remove unwanted context name. • User Table Configure SNMP v3 user table. This page includes the following fields: Object Description User ID: Set up the user name. Authentication Password: Set up the authentication password. Privacy Password: Set up the private password. • Group Table Configure SNMP v3 group table.
Chapter 5: Web-Based Management This page includes the following fields: Object Description Security Name (User ID): Assign the user name that you have set up in user table. Group Name: Set up the group name. • Access Table Configure SNMP v3 access table. Figure 5-47: SNMP V3 configuration interface - Access Table This page includes the following fields: Object Description Context Prefix: Set up the context name. Group Name: Set up the group. Security Level: Select the access level.
Chapter 5: Web-Based Management • MIBview Table Configure MIB view table. Figure 5-48: SNMP V3 configuration interface - MIBView Table This page includes the following fields: Object Description ViewName: Set up the name. Sub-Oid Tree: Fill the Sub OID. Type: Select the type – exclude or included.
Chapter 5: Web-Based Management QoS Configuration Quality of Service (QoS) is an advanced traffic prioritization feature that allows you to establish control over network traffic. QoS enables you to assign various grades of network service to different types of traffic, such as multi-media, video, protocolspecific, time critical, and file-backup traffic. QoS reduces bandwidth limitations, delay, loss, and jitter.
Chapter 5: Web-Based Management QoS Policy and Priority Type Here you can choose to use an 8-4-2-1 queuing scheme or a strict priority scheme, or select the priority type to configure QoS policy. Figure 5-49: QoS Configuration interface This page includes the following fields: Object Description Select the QoS policy rule. Using the 8,4,2,1 weight fair queue scheme: The switch will follow 8:4:2:1 rate to process priority queue from High to lowest queue.
Chapter 5: Web-Based Management Port-based Priority Configure the priority level for each port. With the drop-down selection item of Priority Type above being selected as Port-based, this control item will then be available to set the queuing policy for each port. Figure 5-50: QoS Configuration - Port-Based Priority This page includes the following fields: Object Description Port x: Each port has 4 priority levels—High, Middle, Low, and Lowest—to be chosen.
Chapter 5: Web-Based Management Figure 5-51: 802.1p Tag Priority 802.1Q Tag and 802.1p priority User Priority CFI 3 bits TPID (Tag Protocol Identifier) Destination Address Source Address 6 bytes 6 bytes 12 bits TCI (Tag Control Information) 2 bytes Preamble VLAN ID (VID) 1 bits 2 bytes VLAN TAG 4 bytes 2 bytes Ethernet Type Data FCS 46-1517 bytes 4 bytes Set up the COS priority level.
Chapter 5: Web-Based Management TOS Configuration DiffServ Code Point (DSCP) - is the traffic prioritization bits within an IP header that are encoded by certain applications and/or devices to indicate the level of service required by the packet across a network. The Quality of Service page provides fields for defining output queue to specific DSCP fields.
Chapter 5: Web-Based Management IGMP Snooping Theory The Internet Group Management Protocol (IGMP) lets host and routers share information about multicast groups memberships. IGMP snooping is a switch feature that monitors the exchange of IGMP messages and copies them to the CPU for feature processing. The overall purpose of IGMP Snooping is to limit the forwarding of multicast frames to only ports that are a member of the multicast group.
Chapter 5: Web-Based Management Figure 5-55: Multicast flooding Figure 5-56: IGMP Snooping multicast stream control GE-DSH-73/DSH-82 and DSH-82-PoE User Manual 111
Chapter 5: Web-Based Management IGMP Versions 1 and 2 Multicast groups allow members to join or leave at any time. IGMP provides the method for members and multicast routers to communicate when joining or leaving a multicast group. IGMP version 1 is defined in RFC 1112. It has a fixed packet size and no optional data. The format of an IGMP packet is shown below: IGMP Message Format Octets 0 8 Type 16 31 Response Time Checksum Group Address (all zeros if this is a query).
Chapter 5: Web-Based Management IGMP version 2 introduces some enhancements such as a method to elect a multicast queried for each LAN, an explicit leave message, and query messages that are specific to a given group. The states a computer will go through to join or to leave a multicast group are shown below: Figure 5-57: IGMP State Transitions • IGMP Querier A router, or multicast-enabled switch, can periodically ask their hosts if they want to receive multicast traffic.
Chapter 5: Web-Based Management Figure 5-58: IGMP Configuration interface This page includes the following fields: Object Description IGMP Protocol: Enable or disable the IGMP protocol. IGMP Query: Enable or disable the IGMP query function. The IGMP query information will be displayed in IGMP status section. X-Ring X-Ring provides a faster redundant recovery than Spanning Tree topology. The action is similar to STP or RSTP, but the algorithms between them are not the same.
Chapter 5: Web-Based Management Figure 5-59: X-Ring Application In the network, it may have more than one X-Ring group. By using the coupling ring function, it can connect each X-Ring for the redundant backup. It can ensure the transmissions between two ring groups not to fail. The following figure is a sample of coupling ring application.
Chapter 5: Web-Based Management Figure 5-60: Coupling Ring Application Dual Homing Application Dual Homing function is to prevent the connection lose from between X-Ring group and upper level/core switch. Assign two ports to be the Dual Homing port that is backup port in the X-Ring group. The Dual Homing function only works when the XRing function is active. Each X-Ring group only has one Dual Homing port.
Chapter 5: Web-Based Management X-Ring Configuration The Managed Industrial Switch supports the function and interface for setting the switch as the ring master or not. The ring master can negotiate and place command to other switches in the X-Ring group. If there are 2 or more switches in master mode, the software will select the switch with lowest MAC address number as the ring master. The X-Ring master ring mode can be enabled by setting the X-Ring configuration interface.
Chapter 5: Web-Based Management ports as the member ports. 1st Ring Port is the working port and 2nd Ring Port is the backup port. When 1st Ring Port fails, the system will automatically upgrade the 2nd Ring Port to be the working port. To enable the couple ring function, tick the checkbox beside the Enable Couple Ring string label. Enable Couple Ring: Couple Port: Assign the member port which is connected to the other ring group.
Chapter 5: Web-Based Management connected to a switch port before making available any services offered by the switch or the LAN. Until the client is authenticated, 802.1X access control allows only Extensible Authentication Protocol over LAN (EAPOL) traffic through the port to which the client is connected. After authentication is successful, normal traffic can pass through the port.
Chapter 5: Web-Based Management the client. In this release, the Remote Authentication Dial-In User Service (RADIUS) security system with Extensible Authentication Protocol (EAP) extensions is the only supported authentication server; it is available in Cisco Secure Access Control Server version 3.0. RADIUS operates in a client/server model in which secure authentication information is exchanged between the RADIUS server and one or more RADIUS clients. • Switch (802.
Chapter 5: Web-Based Management authentication succeeds or fails. If the authentication succeeds, the switch port becomes authorized. The specific exchange of EAP frames depends on the authentication method being used. "Figure 5-64" shows a message exchange initiated by the client using the OneTime-Password (OTP) authentication method with a RADIUS server.
Chapter 5: Web-Based Management In contrast, when an 802.1X-enabled client connects to a port that is not running the 802.1X protocol, the client initiates the authentication process by sending the EAPOLstart frame. When no response is received, the client sends the request for a fixed number of times.
Chapter 5: Web-Based Management This page includes the following fields: Object Description IEEE 802.1x Protocol: Enable or disable 802.1x protocol. Radius Server IP: Assign the RADIUS Server IP address. Server Port: Set the UDP destination port for authentication requests to the specified RADIUS Server. Accounting Port: Set the UDP destination port for accounting requests to the specified RADIUS Server.
Chapter 5: Web-Based Management This page includes the following fields: Object Description Reject: The specified port is required to be held in the unauthorized state. Accept: The specified port is required to be held in the authorized state. Authorize: The specified port is set to the Authorized or Unauthorized state in accordance with the outcome of an authentication exchange between the Supplicant and the authentication server.
Chapter 5: Web-Based Management This page includes the following fields: Object Description Quiet Period: Set the period, which the port doesn’t try to acquire a supplicant. TX Period: Set the period the port waits for retransmit next EAPOL PDU during an authentication session. Supplicant Timeout: Set the period of time the switch waits for a supplicant response to an EAP request. Server Timeout: Set the period of time the switch waits for a server response to an authentication request.
Chapter 5: Web-Based Management Figure 5-68: Static MAC Addresses interface This page includes the following fields: Object Description MAC Address: Enter the MAC address of the port that should permanently forward traffic, regardless of the device network activity. Port No.: Pull down the selection menu to select the port number.
Chapter 5: Web-Based Management MAC Filtering By filtering MAC address, the switch can easily filter the pre-configured MAC address and reduce the un-safety. You can add and delete filtering MAC address. Figure 5-69: MAC Filtering interface This page includes the following fields: Object Description MAC Address: Enter the MAC address that you want to filter. All MAC Addresses You can view all of the MAC addresses learned by the selected port. • Select the port number.
Chapter 5: Web-Based Management Figure 5-70: All MAC Address interface Multicast Filtering Multicasts are similar to broadcasts, they are sent to all end stations on a LAN or VLAN. Multicast filtering is the function, which end stations can receive the multicast traffic if the connected ports had been included in the specific multicast groups. With multicast filtering, network devices only forward multicast traffic to the ports that are connected to the registered end stations.
Chapter 5: Web-Based Management Digital Input/Output (GE-DSH-73) The 7 10/100TX + 3 10/100/1000T/100/1000 SFP Combo w/ X-Ring L2 Managed Industrial Switch contains two digital inputs and two digital outputs. The digital inputs may be used to receive the voltage-changing signal of the remote equipment to sense the state of the remote equipment like heater, pump, and other electrical equipment.
Chapter 5: Web-Based Management • Condition: The system will send an electrical Low-to-High or High-to-Low signal to First Digital Output (DO0)/Second Digital Output (DO1) when the condition of ticked checkbox is met. o Port Fail: Having ticked this checkbox, DO0/DO1 will output an electrical Lowto-High or High-to-Low signal when port failure occurs. o Power Fail: Having ticked this checkbox, DO0/DO1 will output an electrical Low-to-High or High-to-Low signal when power failure occurs.
Chapter 5: Web-Based Management Power Over Ethernet (GE-DSH-82-PoE) Providing up to 8 PoE, in-line power interface, the GE-DSH-82-PoE Industrial PoE Switch can easily build a power central-controlled IP phone system, IP Camera system, AP group for the enterprise. For instance, 8 camera / AP can be easily installed around the corner in the company for surveillance demands or build a wireless roaming environment in the office.
Chapter 5: Web-Based Management Power Management In a power over Ethernet system, operating power is applied from a power source (PSU-power supply unit) over the LAN infrastructure to powered devices (PDs), which are connected to ports. Under some conditions, the total output power required by PDs can exceed the maximum available power provided by the PSU.
Chapter 5: Web-Based Management This page includes the following fields: Object Maximum Power Available Description Displays the maximum power supply in Watt. Actual Power Consumption This column shows the real-time total power consumption. System Power Limit User can modify the value to this column field to limit the total output power for the system. Main Supply Voltage This column shows the output voltage of the system for PoE ports.
Chapter 5: Web-Based Management Object Description Determined Class Displays the PD’s class. Class 0 is the default for PDs. However, to improve power management at the PSE, the PD may opt to provide a signature for Class 1 to 3. The PD is classified based on power. The classification of the PD is the maximum power that the PD will draw across all input voltages and operational modes. A PD shall return Class 0 to 3 in accordance with the maximum power draw as specified by Table 5-12-1.
Chapter 5: Web-Based Management Factory Default Reset switch to default configuration. Click to reset all configurations to the default value. Figure 5-75: Factory Default interface Save Configuration Save all configurations that you have made in the system. To ensure the all configuration will be saved. Click SAVE to save the all configuration information to flash memory.
Chapter 5: Web-Based Management System Reboot Reboots the switch with a software reset. Click REBOOT to reboot the system.
Chapter 6 Command Sets System Commands Set Commands Level Description Example show config E Show switch configuration switch>show config show terminal P Show console information switch#show terminal write memory P Save user configuration into switch#write memory permanent memory (flash rom) system name [System Name] G Configure system name switch(config)#system name xxx system location [System G Location] Set switch system location string switch(config)#system location xxx system desc
Chapter 6: Command Sets Commands Level Description Example reload G Halt and perform a cold restart switch(config)#reload default G Restore to default switch(config)#default admin username [Username] G Changes a login username.
Chapter 6: Command Sets Commands Level Description Example server security ip [Index(1..10)] G [IP Address] Set the IP security list switch(config)#security ip 1 192.168.1.
Chapter 6: Command Sets Port Commands Set Commands Level Description Example interface fastEthernet [Portid] G Choose the port for modification. switch(config)#interface fastEthernet 2 duplex [full | half] I Use the duplex switch(config)#interface fastEthernet configuration command to 2 specify the duplex mode of switch(config-if)#duplex full operation for Fast Ethernet.
Chapter 6: Command Sets Commands Level Description Example giga ports, and zero means no limit. bandwidth out [Value] Set interface output bandwidth. Rate Range is from 100 kbps to 102400 kbps or to 256000 kbps for giga ports, switch(config)#interface fastEthernet 2 switch(config-if)#bandwidth out 100 and zero means no limit.
Chapter 6: Command Sets Trunk Commands Set Commands Level Description Example aggregator priority G Set port group system priority switch(config)#aggregator priority 22 G Set activity port switch(config)#aggregator activityport 2 G Assign a trunk group with LACP active. switch(config)#aggregator group 1 1-4 lacp workp 2 [GroupID] :1~3 or [Port-list]:Member port list, This parameter could be a port range(ex.1-4) or a port list separate by a comma(ex.
Chapter 6: Command Sets VLAN Commands Set Commands Level Description Example vlan database P Enter VLAN configure mode switch#vlan database Vlanmode V To set switch VLAN mode. switch(vlan)#vlanmode portbase or [portbase| 802.1q | gvrp] switch(vlan)#vlanmode 802.
Chapter 6: Command Sets Commands Level Description vlan 8021q port V Assign a trunk link for VLAN switch(vlan)#vlan 8021q port 3 by port, if the port belong to trunk-link tag 2,3,6,99 a trunk group, this or command can’t be applied. switch(vlan)#vlan 8021q port 3 trunk-link tag 3-20 V Assign a hybrid link for VLAN switch(vlan)#vlan 8021q port 3 by port, if the port belong to hybrid-link untag 4 tag 3,6,8 a trunk group, this or command can’t be applied.
Chapter 6: Command Sets Spanning Tree Commands Set Commands Level Description Example spanning-tree enable G Enable spanning tree switch(config)#spanning-tree enable spanning-tree priority [0~61440] G Configure spanning tree priority parameter switch(config)#spanning-tree priority 32768 spanning-tree max-age G [seconds] Use the spanning-tree max- switch(config)#spanning-tree maxage global configuration age 15 command to change the interval between messages the spanning tree receives from the r
Chapter 6: Command Sets Commands Level Description Example stp-path-cost I Use the spanning-tree cost interface configuration command to set the path cost for Spanning Tree switch(config)#interface fastEthernet 2 [1~200000000] switch(config-if)#stp-path-cost 20 Protocol (STP) calculations. In the event of a loop, spanning tree considers the path cost when selecting an interface to place into the forwarding state.
Chapter 6: Command Sets QOS Commands Set Commands Level Description qos policy G Select QOS policy scheduling switch(config)#qos policy weightedfair G Setting of QOS priority type G Configure Port-based Priority switch(config)#qos priority portbased 1 low [weighted-fair|strict] qos prioritytype Example switch(config)#qos prioritytype [port-based|cosonly|tos-only|cosfirst|tos-first] qos priority portbased [Port] [lowest|low|middle|high] qos priority cos G [Priority][lowest|low|mid dle|high] Co
Chapter 6: Command Sets IGMP Commands Set Commands Level Description Example igmp enable G Enable IGMP snooping function switch(config)#igmp enable Igmp-query auto G Set IGMP query to auto mode switch(config)#Igmp-query auto Igmp-query force G Set IGMP query to force mode switch(config)#Igmp-query force show igmp configuration P Displays the details of an IGMP configuration.
Chapter 6: Command Sets MAC / Filter Table Commands Set Commands Level Description Example mac-address-table static hwaddr I Configure MAC address table of interface (static).
Chapter 6: Command Sets SNMP Commands Set Commands Level Description Example snmp system-name G Set SNMP agent system name switch(config)#snmp system-name l2switch G Set SNMP agent system location switch(config)#snmp system-location lab G Set SNMP agent system contact switch(config)#snmp system-contact where G Select the agent mode of SNMP switch(config)#snmp agent-mode v1v2cv3 G Add SNMP community string.
Chapter 6: Command Sets Commands Level snmpv3 access context- G name [Context Name ] Description Example Configure the access table of SNMPV3 agent switch(config)#snmpv3 access context-name Test group G1 securitylevel AuthPriv group match-rule Exact views V1 V1 V1 [Group Name ] security-level [NoAuthNoPriv|AuthNoPr iv|AuthPriv] match-rule [Exact|Prifix] views [Read View Name] [Write View Name] [Notify View Name] G Configure the mibview table switch(config)#snmpv3 mibview view of SNMPV3 agent V1 t
Chapter 6: Command Sets Commands Level Description Example G Remove specified mibview table of SNMPV3 agent. switch(config)#no snmpv3 mibview view V1 type Excluded sub-oid 1.3.6.
Chapter 6: Command Sets Port Mirroring Commands Set Commands Level Description Example monitor I Configure source port of monitor function switch(config)#interface fastEthernet 2 [RX|TX|Both] switch(config-if)#monitor RX monitor rx [Port ID] G Set RX destination port of monitor function switch(config)#monitor rx 2 monitor tx [Port ID] G Set TX destination port of monitor function switch(config)#monitor tx 3 show monitor P Show port monitor information switch#show monitor show monitor
Chapter 6: Command Sets 802.1x Commands Set Commands Level Description Example 8021x enable G Use the 802.1x global configuration command to enable 802.1x protocols. switch(config)# 8021x enable 8021x system radiusip G Use the 802.1x system switch(config)# 8021x system radiusip radius IP global 192.168.1.1 configuration command to change the radius server IP. [IP address] 8021x system serverport G [port ID] 8021x system accountport Use the 802.
Chapter 6: Command Sets Commands Level Description 8021x misc servertimeout [sec.] G Use the 802.1x misc server switch(config)#8021x misc timeout global configuration servertimeout 20 command to set the server timeout. 8021x misc maxrequest G [number] Use the 802.1x misc max switch(config)# 8021x misc request global configuration maxrequest 3 command to set the MAX requests. 8021x misc reauthperiod [sec.] G Use the 802.
Chapter 6: Command Sets TFTP Commands Set Commands Level Description backup flash:backup_cfg G Save configuration to TFTP and switch(config)#backup need to specify the IP of TFTP flash:backup_cfg server and the file name of image. restore flash:restore_cfg G Get configuration from TFTP switch(config)#restore server and need to specify the flash:restore_cfg IP of TFTP server and the file name of image.
Chapter 6: Command Sets SystemLog, SMTP and Event Commands Set Commands Level Description Example systemlog ip G Set System log server IP address. switch(config)# systemlog ip 192.168.1.100 G Specified the log mode switch(config)# systemlog mode both show systemlog E Displays system log.
Chapter 6: Command Sets Commands Level Description Example event smtp I Set port event for SMTP switch(config)#interface fastethernet 3 [Link-UP|LinkDown|Both] switch(config-if)#event smtp both show event P Show event selection switch#show event no event device-coldstart G Disable cold start event type switch(config)#no event device-coldstart no event authentication- G failure Disable Authentication failure event typ switch(config)#no event authentication-failure no event ring-topology-
Chapter 6: Command Sets SNTP Commands Set Commands Level Description Example sntp enable G Enable SNTP function switch(config)#sntp enable sntp daylight G Enable daylight saving time, switch(config)#sntp daylight if SNTP function is inactive, this command can’t be applied. sntp daylight-period G Set period of daylight saving switch(config)# sntp daylight-period time, if SNTP function is 20060101-01:01 20060202-01:01 inactive, this command can’t be applied.
Chapter 6: Command Sets X-ring Commands Set Commands Level Description Example ring enable G Enable X-ring switch(config)#ring enable ring master G Enable ring master switch(config)#ring master ring couplering G Enable couple ring switch(config)#ring couplering ring dualhoming G Enable dual homing switch(config)#ring dualhoming ring ringport G Configure 1st/2nd Ring Port switch(config)#ring ringport 7 8 G Configure Coupling Port switch(config)#ring couplingport 1 G Configure Cont
Chapter 6: Command Sets PoE Command Set Commands Level Description Example poe P Configure PoE function switch# poe exit PoE Exit the PoE command mode switch(poe)# exit port [PortNumber] state Set PoE port State switch(poe)# port 1 state enable PoE Set PoE port Power Limit from Classification switch(poe)# port 1 plfc enable PoE Set PoE port Legacy switch(poe)# port 1 legacy enable PoE Set PoE port Priority switch(poe)# port 1 priority critical port [PortNumber] powerlimit [Value] Po
Chapter 6: Command Sets 162 GE-DSH-73/DSH-82 and DSH-82-PoE User Manual
Chapter 7 Switch Operation Address Table The Switch is implemented with an address table. This address table composed of many entries. Each entry is used to store the address information of some node in network, including MAC address, port no, etc. This information comes from the learning process of Ethernet Switch. Learning When one packet comes in from any port, the Switch will record the source address, port no. And the other related information in address table.
Chapter 7: Switch Operation Store-and-Forward Store-and-Forward is one type of packet-forwarding techniques. A Store-andForward Ethernet Switching stores the incoming frame in an internal buffer, do the complete error checking before transmission. Therefore, no error packets occurrence, it is the best choice when a network needs efficiency and stability.
Chapter 8 Power Over Ethernet Overview What is PoE? Based on the global standard IEEE 802.3af, PoE is a technology for wired Ethernet, the most widely installed local area network technology adopted today. PoE allows the electrical power necessary for the operation of each end-device to be carried by data cables rather than by separate power cords. New network applications, such as IP Cameras, VoIP Phones, and Wireless Networking, can help enterprises improve productivity.
Chapter 8: Power Over Ethernet Overview PoE System Architecture The specification of PoE typically requires two devices: the Powered Source Equipment (PSE) and the Powered Device (PD). The PSE is either an End-Span or a MidSpan, while the PD is a PoE-enabled terminal, such as IP Phones, Wireless LAN, etc. Power can be delivered over data pairs or spare pairs of standard CAT-5 cabling.
Chapter 8: Power Over Ethernet Overview Figure 8-2 - Power Supplied over the Data Pins When to install PoE? Consider the following scenarios: • • You're planning to install the latest VoIP Phone system to minimize cabling building costs when your company moves into new offices next month.
Chapter 8: Power Over Ethernet Overview The PoE Provision Process While adding PoE support to networked devices is relatively painless, it should be realized that power cannot simply be transferred over existing CAT-5 cables. Without proper preparation, doing so may result in damage to devices that are not designed to support provision of power over their network interfaces. The PSE is the manager of the PoE process.
Chapter 8: Power Over Ethernet Overview The signature resistor lies in the PD's PoE front-end, isolated from the rest of the PD's circuitries till detection is certified. Classification Once a PD is detected, the PSE may optionally perform classification, to determine the maximal power a PD is to consume. The PSE induces 15.5-20.5 VDC, limited to 100 mA, for a period of 10 to 75 ms responded by a certain current consumption by the PD, indicating its power class.
Chapter 8: Power Over Ethernet Overview down power within 50 to 75 milliseconds, while limiting current drain during this period to protect the cabling infrastructure. Immediate voltage drop is avoided to prevent shutdown due to random fluctuations. Power Disconnection Scenarios The IEEE 802.3af standard requires that devices powered over Ethernet be disconnected safely (i.e. power needs be shut down within a short period of time following disconnection of a PD from an active port).
Appendix A RJ-45 Pin Assignment Switch's RJ-45 Pin Assignments 1000Mbps, 1000Base T Contact MDI MDI-X 1 BI_DA+ BI_DB+ 2 BI_DA- BI_DB- 3 BI_DB+ BI_DA+ 4 BI_DC+ BI_DD+ 5 BI_DC- BI_DD- 6 BI_DB- BI_DA- 7 BI_DD+ BI_DC+ 8 BI_DD- BI_DC- Implicit implementation of the crossover function within a twisted-pair cable, or at a wiring panel, while not expressly forbidden, is beyond the scope of this standard.
Appendix A: RJ-45 Pin Assignment 10/100Mbps, 10/100Base-TX When connecting your 10/100Mbps Ethernet Switch to another switch, a bridge or a hub, a straight or crossover cable is necessary. Each port of the Switch supports auto-MDI/MDI-X detection. That means you can directly connect the Switch to any Ethernet devices without making a crossover cable.
AppendixAppendix AAppendix AAppendix A: RJ-45 Pin Assignment There are 8 wires on a standard UTP/STP cable and each wire is color-coded.
: RJ-45 Pin Assignment 174 GE-DSH-73/DSH-82 and DSH-82-PoE User Manual
Appendix B Troubleshooting • Verify that is using the right power cord/adapter (DC 24-48V), please don't use the power adapter with DC output higher than 48V, or it may damage this device. • Select the proper UTP/STP cable to construct the user network.