User`s Manual - Waters Network Systems
Contents
1. GEPOEL2 SW12 s tom Svs Port Configuration Enable Auto Enable Enable Auto Enable Enable Auto Enable Enable Y Auto Enable Enable Auto Enable Enable Auto Enable Enable Y Auto Enable Enable Y Auto Enable Enable Auta Enable Enable Auto Lnoble Enable Auto Enoble Mirror Bandwidth o5 e NMP IGMP Snooping Max Packet Len DHCP Boot VLAN MAC Table GVRP AAA ZE Alarm Configuration Diagnasth TFTP Server L Enable Y Auto Enable 4 og Firmware Upgrade Reboot Figure 5 12 Port Configuration Function name Port Configuration Function description Used to set the operation mode of each port The switch supports three parameters for each port State Mode Flow control Parameter description State The communication capability of the port is Enabled or Disabled When enabled traffic can be transmitted and received via this port When disabled the port is blocked and no traffic can be Waters Network Systems User s Manual Page 38 GSM 2112 POE transmitted through this port Port State is configurable by the user lf you set a port s state to Disable then that port cannot pass traffic even though Link is displayed Default Enable Mode Set the speed and duplex mode for the port lf the media is 1Gbps fiber it will always be 1000Mbps and the duplex mode can only be full If the media is TP the speed duplex mode is comprised of speeds of 10 100 1000Mbps and the2. 172 31 255 255 Class C 192 168 0 0 192 168 255 255 Please refer to RFC 1597 and RFC 1466 for more information Subnet mask Subnet mask is the sub division of a class based network or a CIDR block The subnet is used to determine how to split an IP address to the network prefix and the host address in bitwise basis It is designed to utilize the IP address more efficiently and make it easier to manage IP Waters Network Systems User s Manual Page 17 GSM 2112 POE networks For a class B network 128 1 2 3 the subnet mask 255 255 0 0 in default in which the first two bytes are all 1s This means more than 60 thousands of nodes in flat IP address will be at the same network This is too large to manage practically Now if we divide it into a smaller network by extending network prefix from 16 bits to say 24 bits its third byte is used to subnet this class B network Now it has a subnet mask 255 255 255 0 in which each bit of the first three bytes is 1 It s now clear that the first two bytes is used to identify the class B network the third byte is used to identify the subnet within this class B network and of course the last byte is the host number Not all IP addresses are available in the sub netted network Two special addresses are reserved They are the addresses with all zero s and all one s For example an IP address 128 1 2 128 what will the reserved IP address look like All Os mean the network itself and all 1s me
3. VLAN Name Valid letters are A Z a z 0 9 and _ characters The maximal length is 15 characters Member Used to enable or disable a member port Enable means the port is a member of the VLAN Select the check box M beside the port x to enable it Port based Group Figure 5 35 Port based Group Add Group Create a new port based VLAN Input the VLAN name and choose the group member by selecting the check box beside the port number Select Apply for the setting to take effect Waters Network Systems User s Manual Page 62 GSM 2112 POE Auto Logout orr Port based VLAN Figure 5 36 Port based VLAN Delete Group Use Delete to remove the selected group entry from the port based group table Auto Logout orr Port based Group Figure 5 37 Port based Group Edit a group To edit a group entry use Edit This allows you to modify a group s description and member set 5 17 4 Tag Rule Function name Tag Rule Function description With the VLAN Tag Rule Setting input a VID number to each port The range of VID number is from 1 to 4094 You can choose ingress filtering rules for each port There are two ingress filtering rules which can be applied to the switch Ingress Filtering Rule 1 Forward only packets with VID matching this port s configured VID Ingress Filtering Rule 2 Drop untagged frame Select the role of each port as Access Trunk or Hybrid Parameter descr
4. b Check the RS 232 cable is to make sure it is connected to console port on the switch and the COM port of PC c Check to make sure the COM port of the PC is enabled Waters Network Systems User s Manual Page 124 GSM 2112 POE 8 0 Troubleshooting All Waters switching products are designed to provide reliability and consistently high performance in all network environments The installation of Waters ProSwitch GSM switch is a straightforward procedure Should problems develop during installation or operation this section is intended to help locate identify and correct these types of problems Please follow the suggestions listed below prior to contacting your supplier However if you are unsure of the procedures described in this section or if the Waters GSM switch is not performing as expected do not attempt to repair the unit instead contact your supplier for assistance or contact Waters Network Systems Customer Support Center at 800 328 2275 or email carolyni watersnet com 8 1 Before Calling for Assistance 1 If difficulty is encountered when installing or operating the unit refer back to the Installation Section of this manual Also check to make sure that the various components of the network are operational and compatible 2 Check the cables and connectors to ensure that they have been properly connected and the cables wires have not been crimped or in some way impaired during installation About 90 of network
5. Default 2 txPeriod 1 65535 s Waters Network Systems User s Manual Page 90 GSM 2112 POE A time period to transmitted EAPOL PDU between the authenticator and the supplicant Default 30 Quiet Period 0 65535 s A period of time during in which access the supplicant will not be attempted Default 60 seconds reAuthEnabled Choose whether regular authentication will take place in this port Default ON reAuthPeriod 1 65535 s A non zero number seconds between the periodic re authentication of the supplicant Default 3600 max Request 1 10 The maximum of number times that the authenticator will retransmit an EAP Request to the supplicant before it times out the authentication session The valid range 1 10 Default 2 times supp Timeout 1 65535 s A timeout condition in the exchange between the authenticator and the supplicant The valid range 1 65535 Default 30 seconds serverTimeout 1 65535 A timeout condition in the exchange between the authenticator and the authentication server The valid range 1 65535 Default 30 seconds Emme Auto Logout orf Port Parameter Setting Figure 5 60 Port Parameter Setting Waters Network Systems User s Manual Page 91 GSM 2112 POE 5 23 Alarm Configuration Alarm Configuration Events Configuration Email SMS Configuration Function name Events Configuration Function description The Trap Events Configuration function is used to en
6. Displays the current root bridge forward delay time The value of Forward Delay time is set by root The Forward Delay time is defined as the time spent from Listening state moved to Learning state or from Learning state moved to Forwarding state of a port in bridge Hello Time Displays the current hello time of the root bridge Hello time is a time interval specified by root bridge It is used to request all other bridges periodically sending hello message to the bridge attached to its designated port STP Topology Change Count STP Topology Change Count expresses the time spent in a unit of seconds since the beginning of the Spanning Tree Topology Change to the end of the STP convergence Once the STP change is converged the Topology Change count will be reset to 0 The figures showing in the screen may not be the exact time it spent but very close to because the time is eclipsing Time Since Last Topology Change Time Since Last Topology Change is the accumulated time in unit of seconds the STP has been since the last STP Topology Change was made When Topology Change is initiated again the counter will be reset to 0 and resume counting once the STP topology change is completed STP Status CET TOO DT CO Oesigneted Rest 222 CO riori u SSS CI Current Max Auetseed gt Current Forward Delay seci CO SO Time Slece Last Tepolvey Changet coc Figure 5 47 STP Status 5 20 2 STP Configuration STP includes
7. Vendor SN 0410210540199989 Packet Length Boot CUIT 0420222 ae COMICIOS none ae Mona RX PWR ort 1 2 a 4 5 6 7 a 9 E Log Firmware Upgrade Reboot Logout Figure 5 11 Port Detail Information Parameter description of Port 11 and Port 12 Connector Type Display the connector type UTP SC ST LC etc Fiber Type Display the fiber mode Multimode or singlemode Tx Central Wavelength Display the fiber optical transmitting central wavelength 850nm 1310nm 1550nm and so on Baud Rate Display the maximum baud rate of the fiber module supported 10M 100M 1G etc Vendor OUI Display the Manufacturer s OUI code which is assigned by IEEE Vendor Name Display the company name of the module manufacturer Vendor P N Display the product name by module manufacturer Vendor Rev Revision Display the module revision Vendor SN Serial Number Serial number assigned by the manufacturer Date Code Date this SFP module was made Temperature Waters Network Systems User s Manual Page 37 GSM 2112 POE Current temperature of SFP module Vcc Working DC voltage for SFP module Mon1 Bias mA Current Bias for SFP module Mon2 TX PWR Transmit power for SFP module Mon3 RX PWR Receiver power for SFP module 5 8 2 Port Configuration Port Configuration is used to modify the setting by port This function allows set and reset the functions described below Auto Logout 3min
8. 1P Time Accaunt fn admin Administrator Managethant Policy guest Guest Virtual Stack Mi B rro andveldth nm 0 EA IGMP Snooping Max Packet Length DHCP Baot VLAN MAC Table GVRP sip Trunk 802 1x Alorm Configuration Diagnostics TFTP Server Log Firmware Uparado Reboot Figure 5 6 Account Configuration Waters Network Systems User s Manual Page 30 GSM 2112 POE 5 6 Management Policy Through the management security configuration the manager can perform the setup to control the switch and limit user to access the switch The following rules are provided for the management of the switch Rule 1 If no lists exists all connections are accepted Accept Rule 2 If accept lists exists all connections will be denied except the connection inside the accepting range Deny Accept Deny Rule 3 If deny lists exists all connections will be accepted except the connection inside the denying range Accept Accept Rule 4 If both accept and deny lists exist all connections will be denied except the connection inside the accepting range Accept Deny Deny Deny Accept Rule 5 If both accept and deny lists exist all connections will be denied except the connection inside of accepting range and NOT inside the denying range
9. 5 24 3 CONFIGURATION FILE E E E A EE da ada ade ada da 97 5257 ADIAGNOSTIES EEA EE a id ts lead ae deca tail 98 526 TPP SERVERS id a a E doc delos 100 A E 100 5287 FIRMWARE UPGRADE E A E EA E AEA aid Maudevethe 101 TAE DN E E 0 diia de 102 5302 EE ETO U ENERET EEEE APEE PEATE EAA EE EA bevbetenect 103 6 0 OPERATION OF CLI MANAGEMENT ooonanccccccnnconononcnccnnacnnanannoconnnnnnnananaronananananan carr nnan an anananannnnnns 104 6 1 LOGIN tect a is ta da Laa ud din se la rr 104 6 2 GOMMANDS OF Glee enter nel tek oi dba a dido 105 7 0 MAINTENANCE a e r ar r aaa eTa r aaa a aa Aae aaa ae T asa aaa a haaa iaaa anaha deai danaa ia 124 7 1 S E IE la E EAE E EAEE EAE AE STE EE EEE e 124 8 0 TROUBLESHOOTING 3s snisecceccciicciceisscceovi si ccdeateas decweducaneste sncedccaueeesne aaduccecddanesveasccbeescadansewaueceusbesa 125 8 1 BEFORE CALLING FOR ASSI AN O E raea aa ra aa aaar aae ea aaae a eaaa ta re ra dirik a Tarnania kaa ae 125 8 2 RETURN MATERIAL AUTHORIZATION RMA PROCEDURE cccocococcccnoconnnonononnnnnnonnnnnncnnnnnnncnnnnnenncnnnnos 126 8 3 SHIPPING AND PACKAGING INFORMATION occccccononoccccnncnnonononoccnnnncnnnnonnnnncnnnnononnannnancnnnnnnnnnccacnnnnns 127 9 0 WARRAN TM tad 128 Waters Network Systems User s Manual Page 3 GSM 2112 POE 1 0 Specifications OPERATIONAL CHARACTERISTICS MAC Address Table 8K Switching Mode Store and forward Memory Buffer Size 400KB Jumbo frame support Performance Non blocking wire speed Auto
10. Shows whether the port is supplying the power to the PD or not AC Disconnect Port Off Port is turned off due to the AC Disconnect function DC Disconnect Port Off Waters Network Systems User s Manual GSM 2112 POE Page 44 Port is turned off due to the DC Disconnect function Overload Port Off The switch will stop supplying PoE power to the port if the attached PD exceeds the class setting Short Circuit Port Off The switch will stop supplying power to the port if it detects a short circuit in the PD linked to the port Over Temp Protection The port of the switch will be disabled due to fast transient rise in temperature to 240 C or slow rise in temperature to 200 C Power Management Port Off If total power required by all PDs linked to the switch exceed the power limit the switch will stop supplying power to this port after determining the priority Function name PoE Configuration Function description You can configure settings for PoE in the PoE Port Management function The switch complies with IEEE 802 3af protocol and is capable of detecting automatically whether the device linked to the port on the switch is PD Powered Device or not The switch also manages the power supplement based on the Class of the PD It will stop supplying power once the power required by the PD exceeds the Class Short Circuit or if over temperature occurs see Over Temperature Protection above Auto Logout OFF s
11. lt contact gt a b lt contact description of the switch length up to 40 c d z and 1 string gt characters 2 3 etc Set device set device Used to set the description of lt device name gt lt device name name lt device the device name of the switch string length up to 40 name gt a b c name string gt characters d z and 1 2 3 etc Set location set location Used to set the description of lt location gt string lt location gt a lt location the location of the switch length up to 40 b c d z and string gt characters 1 2 3 etc Show show Used to display the basic None None information of the switch TFFP Set server set server lt IP gt Used to set the IP address of lt IP gt the IP address lt IP gt TFFP the TFFP server of the TFFP server server IP Show show Used to display information of None None the TFFP server Time Waters Network Systems User s Manual Page 120 GSM 2112 POE range gt lt method gt lt group gt lt active LACP gt trunk including the group number and mode of the trunk as well as LACP mode range syntax 1 5 7 available from 1 to 12 lt method gt static adopt the static link aggregation lacp adopt the dynamic link aggregation link aggregation control protocol lt group gt 1 12 lt active LACP gt active set the LACP Command Syntax Description Argu
12. lt range gt 1 24 lt range gt events range of sms syntax 1 5 7 Show show Used to display the None None configuration of an alarm event Show alarm show Alarm is used to display the None None configuration of Trap SMS or email lt lt sms gt gt Del phone del phone Used to delete SMS phone lt gt mobile phone lt gt 1to6 number number lt gt number number range 1 to 6 Del server del server user Used to delete SMS server None None user user account and password Set phone set phone Used to add SMS phone lt gt mobile phone lt gt 1to6 number number lt gt number number range 1 to 6 lt phone lt phone number gt number gt phone number Set server set server lt ip gt Used to set up the IP address lt ip gt SMS server ip None of SMS sever address or domain name Set user set user Used to set up user account lt username gt SMS None lt username gt and password of SMS server server account Show show Used to display the None None configuration os SMS trap event Autologout Autologout autologout Used to set time for autologout lt time gt range 1 to lt time gt 1 1 lt time gt 3600 seconds 0 for 3600 autologout OFF default setting is 180 seconds Bandwidth Disable disable egress Used to cancel the egress rate lt range gt syntax 1 5 lt range gt 1 to egress rate rate lt range gt of the port 7 available from 1 to 12 12 Disable ingress rate disable i
13. 1 5 7 12 available 1 to 12 Disable sym disable sym Used to drop frames from the lt range gt ports to be lt range gt 1 to vian vian non member port set syntax 1 5 7 12 available 1 to 12 Enable drop enable drop Used to drop the untagged lt range gt ports to be lt range gt 1 to untag untag lt range gt frames set syntax 1 5 7 12 available 1 to 12 Enable sym enable sym Used to drop frames from the lt range gt ports tobe lt range gt 1 to vian vlan lt range gt non member port set syntax 1 5 7 12 available 1 to 12 Set mode set mode Used to switch LVAN mode lt disable gt vlan lt disable port lt disable including disable port based disable tag metro port tag metro tag based metro and double lt tag gt set tag based double tag gt double tag gt tag modes vlan disable port up link lt port gt set port tag metro based vlan double tag lt metro gt set metro up link 11 or mode vlan 12 lt double tag gt enable Q in Q function lt up link gt syntax 1 5 7 available from 11 to 12 only for metro mode vlan Set port group set port group lt name gt lt range gt Used to add or edit a port based VLAN group lt name gt port vlan name lt range gt syntax 1 5 7 available from 1 to 12 lt range gt 1 to 12 Set port role set port role Used to set the egress rule lt range gt ports to be lt range gt 1 to Waters Ne
14. 4 When the download is complete the switch begins upgrading the software You will be prompted to reboot the switch after completing the upgrade The switch must be rebooted so the new software will be applied Note If the download is not successful the switch will return to Software Upgrade Software upgrade is hazardous if power is off Parameter description TFTP Server ATFTP server stores the image file you want to upgrade Path and Filename File path and filename stored the image file you want to upgrade Firmware Upgrade Figure 5 75 Firmware Upgrade 5 29 Reboot There are a few ways to reboot the switch including power up hardware reset and software reset You can press the RESET button in the front panel to reset the switch After upgrading software changing IP configuration or modifying VLAN configurations you must reboot in order for the new configuration to take effect Function name Reboot Function description Reboot the switch Reboot takes the same effect as the RESET button on the front panel of the switch It will take around thirty 30 seconds to complete the system boot Parameter description Save and Reboot Save the current settings as start configuration before rebooting the switch Waters Network Systems User s Manual Page 102 GSM 2112 POE Reboot Reboot the system directly Auto Logout 3 min Reboot the System fe DO OU vea to cantina TTT sieving contiguration
15. GARP application LeaveEmpty Message Packets Number of GARP BPDU with Leave Empty message transmitted by the GARP application Empty Message Packets Number of GARP BPDU with Empty message transmitted by the GARP application Function name GVRP Group Information Function description To show the dynamic group member and their information Parameter description VID VLAN identifier When a GVRP group is created each dynamic VLAN group owns its VID Valid range is 1 4094 Member Port Those are the members belonging to the same dynamic VLAN group Edit Administrative Control When you create a GVRP group use the Administrative Control function to change the Applicant Mode and Registrar Mode of a GVRP group member Refresh Refresh function allows you to see current GVRP group status Auto Logout Orr GVRP VLAN Group Information jovi Member Pert SO Figure 5 46 GVRP VLAN Group Information Waters Network Systems User s Manual Page 73 GSM 2112 POE 5 20 Spanning Tree Configuration STP Configuration The Spanning Tree Protocol STP is a standardized method IEEE 802 1D used to avoid loops in switched networks When STP is enabled only one path is active between any two nodes on the network at a time Once Spanning Tree Protocol has been enabled advanced functions can be configured It is recommend that STP is enabled to ensure a single active path on the network 5 20 1 STP Status Function nam
16. Number of long frames according to max_length register with valid CRC Rx Fragments Number of short frames lt 64 bytes with invalid CRC Rx Jabber Number of long frames according to max_length register with invalid CRC Rx Drops Frames dropped due to the lack of receiving buffer Rx Errors Number of the error packets received Tx Collisions Number of collisions transmitting frames experienced Tx Drops Number of frames dropped due to excessive collision late collision or frame aging Tx FIFO Drops Number of frames dropped due to the lack of transmitting buffer Waters Network Systems User s Manual Page 43 GSM 2112 POE 5 9 POE Function Function name PoE Status Function description Displays information for PoE Auto Logout orr System PoE Status Port pat status do CCT 0 1 v Pot Configuration Himain o a se Emo w CENINY 105 w 37 90 penno sr CIT r Bandwidth Qos SNMP IGMP Snooping Short Circuit Port Off Alara TUA Configuration Diagnostics Power Management Port off TFTP Serv Log Firmware Upgrade Reboot Logout Figure 5 15 PoE Status Parameter description Vmain The volt is supplied by the PoE Imain The sum of the current supplied by every port Pconsume The sum of the power supplied by every port Power Limit The maximal power supplied by the switch Read Only Temperature The temperature of the chip for PoE Port No Port number Port On
17. POE Page 115 Command Syntax Description Argument Possible Value lt type gt lt value gt h ttp s nmp or t elnet or any lt action gt lt value gt No default and must be set Show show Used to show the specific None None management policy record Max pkt len Set len set len lt range gt Used to set the maximum lt range gt port range lt range gt 1 to lt lenth gt length of the packet that each syntax 1 5 7 12 lt length port of the switch can accept available from 1 to bytes gt 12 lt length bytes gt 1518 1343 921 maximum packet 6 length Show show Used to display current setting None None for maximum packet length Mirror Set mirror set mirror Used to set the mirror mode rx lt rx disable gt lt rx diable gt rx mode mode mode or disable rx enable the mode of or disable lt rx disable gt mirror only mirror packets that are received Disable end of the function of mirroring Set monitored port set monitored port lt range gt Used to set the port that will be monitored The packets received by this port will be copied to the monitoring port lt range gt the port that is chosen for monitored port for the mirror function syntax 1 5 7 available from 1 to 12 lt range gt 1 to 12 Set set monitoring Used to set the monitoring port lt gt the monitoring lt gt 1to 12 monitoring port for the mirror function U
18. Packets Number of Tx packets classified as low priority Tx Broadcast Shows the counting number of the transmitted broadcast packet Tx Multicast Shows the counting number of the transmitted multicast packet Rx 64 Bytes Number of 64 byte frames in good and bad packets received Rx 65 127 Bytes Number of 65 126 byte frames in good and bad packets received Rx 128 255 Bytes Number of 127 255 byte frames in good and bad packets received Rx 256 511 Bytes Number of 256 511 byte frames in good and bad packets received Rx 512 1023 Bytes Number of 512 1023 byte frames in good and bad packets received Rx 1024 Bytes Number of 1024 max_length byte frames in good and bad packets received Tx 64 Bytes Number of 64 byte frames in good and bad packets transmitted Tx 65 127 Bytes Number of 65 126 byte frames in good and bad packets transmitted Tx 128 255 Bytes Number of 127 255 byte frames in good and bad packets transmitted Tx 256 511 Bytes Number of 256 511 byte frames in good and bad packets transmitted Tx 512 1023 Bytes Number of 512 1023 byte frames in good and bad packets transmitted Tx 1024 Bytes Number of 1024 max_length byte frames in good and bad packets transmitted Rx CRC Alignment Number of alignment errors and CRC error packets received Rx Undersize Waters Network Systems User s Manual Page 42 GSM 2112 POE Number of short frames lt 64 Bytes with valid CRC Rx Oversize
19. S System POE Configuration Port Pou status Port Na Status state Priority Pavert W Current mA Class Pot Canfiquration diy Normal Enable Normal o o Lor Enable Normal 005 MEA normal Enable Normal SNMP BE normal Enable Normal v Nanrpecmaetn DEB norma Enable Normal DEW normal Enable Y Normal DMB nomoi tnable Y Normal y MA normal Enable Normal DEB normal Enable Normal v DEO Normo Enable Normal Contigaretion DEW normal Enable Y Normal Diagnostics METIA Normo tnable Y Normal Tere a Firmware Upgrade oma Reboot Logout Figure 5 16 PoE Configuration Waters Network Systems User s Manual Page 45 GSM 2112 POE 5 10 Mirror Configuration Function name Mirror Configuration Function description Mirror Configuration is used to monitor the traffic of the network For example if Port A and Port B are Monitoring Port and Monitored Port respectively the traffic received by Port B will be copied to Port A for monitoring Note When configuring the mirror function it is recommended to avoid setting a port to be a sniffer port and an aggregated port at the same time Parameter description Mode Used for the activation or de activation of Port Mirror function Default is disable Monitoring Port Set up the port for monitoring Valid port is Port 1 12 and default is Port 1 Monitored Port Set up the port for being monitored Select the check box MI beside the port num
20. address and is user definable To create a trap host means to create a trap manager by assigning an IP address to the host the trap message In other words the trap host is a network management unit with SNMP manager receiving the trap message from a switch with SNMP agent issuing the trap message Six trap hosts can prevent the important trap message from being lost For each public trap the switch supports the trap event Cold Start Warm Start Link Down Link Up and Authentication Failure Trap They can be enabled or disabled individually When enabled the corresponded trap will actively send a trap message to the trap host when a trap occurs If all public traps are disabled no public trap message will be sent The Enterprise no 6 trap is classified as private trap which is listed in the Trap Alarm Configuration function folder Default for all public traps Enable SNMP Configuration Figure 5 26 Community and trap host setting 5 14 IGMP Snooping IGMP snooping is used to establish the multicast groups to forward multicast packets to member ports IGMP snooping avoids wasting the bandwidth while IP multicast packets are running over the network A switch that does not support IGMP snooping cannot tell a multicast Waters Network Systems User s Manual Page 55 GSM 2112 POE packet from broadcast packet so it treats them as broadcast packets Without IGMP snooping the multicast packet forwarding function is no different from
21. and Reboot GEVOELZ SW1Z Syston su IGMP Seoaping Max Packet Le ax Packet Length RL odoo the System DHCP Hoa N Figure 5 76 Reboot 5 30 Logout You can manually logout by using Logout function You can also configure the switch to logout automatically Function name Logout Function description The switch provides and automatic logout to prevent unauthorized users from using the system If you do not logout and exit the browser the switch will automatically logout You can use Auto Logout Parameter description Auto Logout Default is ON three minutes If no action is taken within three minutes the switch will logout automatically Auto Logout 3 min Logout Le ress Luset N vou wont to aa toeon Figure 5 77 Logout Waters Network Systems User s Manual Page 103 GSM 2112 POE 6 0 Operation of CLI Management Section 4 of this manual provides detailed information for console connection to the switch This section provides detailed syntax and examples for CLI management 6 1 Login The command line interface CLI is a text based interface You can access the CLI through either a direct serial connection to the device or a Telnet session The default login identification is Username admin Password admin After you login successfully the prompt will be shown as if you are the first login person and your authorization is administrator otherwise it may show The
22. at the same time Accept Accept Deny Deny Acc Deny Acc _ Deny Function name Management Security Configuration Function description The switch provides a Management Security Configuration function With this function the manager can easily control the mode that the is used to connect to the switch According to the mode users can be classified into two types Those who are able to connect to the switch Accept and those who are unable to connect to the switch Deny Some restrictions also can be placed on the mode used to connect to the switch For example VLAN VID is able to be accepted or denied by the Waters Network Systems User s Manual Page 31 GSM 2112 POE switch the IP range of the user could be accepted or denied by the switch a user port can be allowed or not allowed to connect with the switch or the way the switch is controlled when connected by via HTTP Telnet or SNMP Auto Logout OFF Management Security Configuration any Firmware Upgrade Reboot Figure 5 7 Security Parameter description Name A name is composed of any letter A Z a z and digit 0 9 with maximal 8 characters VID The switch supports two options for managed valid VLAN VID including any and custom The default is any Custom allows you to supply the VID number The valid VID range is 1 4094 IP Range The switch supports two opti
23. be used as 10 100 1000Base TX ports or with SFP modules for 1000Base SX or LX fiber The following table provides the status and description of the LEDs E b Color Function System LED POWER Green Lit when 5V DC power is on and good CPU LED Green _ Blinks when CPU is activity 10 100 1000Ethernet TP Port 1 to 12 LED Lit when connection with remote device is good LINK ACT Green Blinks when any traffic is present Off when cable connection is not good Green Lit green when 1000Mbps speed is active SPEED Lit amber when 100Mbps speed is active Amper Off when 10Mbps speed is active 1000SX LX Gigabit Fiber Port 11 and 12 LED Lit when connection with the remote device is good SFP LINK ACT Green Blinks when any traffic is present Off when module connection is not good Table 3 1 Waters Network Systems User s Manual Page 8 GSM 2112 POE AC Line 100 240V 50 60 Hz RS 232 DB 9 Connector Figure 3 2 Rear Panel View 3 4 Optional SFP Modules The following lists the SFP modules that are available for the GSM2112 switch SFP 1000SX LC multimode fiber transceiver with LC connector SFP 1000LX LC 10 singlemode 10km fiber transceiver with LC connector SFP 1000LX LC 30 singlemode 30km fiber transceiver with LC connector 3 5 Installation Choose a surface for your switch that is clean smooth and near a power outlet Make sure that there is enough clearance a
24. broadcast packets A switch with IGMP snooping supports the functions of query report and leave A type of packet exchanged between IP multicast router switch and IP multicast host can update the information of the multicast table when a member port joins or leaves an IP multicast destination address With this function once a switch receives an IP multicast packet it will forward the packet to the members who had joined a specified IP multicast group IGMP Snooping EXIME otsabie active IP Multicast Table 239 255 255 250 1 1 Figure 5 27 IGMP Status Function name IGMP Snooping Function description IGMP is used to snoop the status of IP multicast groups and display its associated information in both tagged VLAN and non tagged VLAN networks Enabling IGMP with either passive or active mode you can monitor the IGMP snooping information which contains the multicast member list with the multicast groups VID and member port Parameter description IGMP snooping mode selection The switch supports three kinds of IGMP Snooping status including Passive Active and Disable Disable Use Disable mode to disable IGMP Snooping function Default Disable Active In Active mode IGMP snooping will periodically issue the Membership Query message to all attached hosts and gather the membership report message to update the database of the multicast table This also reduces the unnecessary multi
25. duplex mode is either full or half duplex The following table summarizes the function the media supports Media type NWay Speed Duplex 1000M TP ON OFF _ 10 100 1000M _ Full for all Half for 10 100 1000M Fiber ON OFF _ 1000M Full Table 5 2 In auto negotiation mode there is no default value In forced mode the default value depends on the setting Flow Control There are two modes to choose in flow control including Enable and Disable If flow control is set to Enable both parties can send PAUSE frames to the transmitting device s in case the receiving port is too busy to handle the packets When set to Disable there will be no flow control in the port Packets will be dropped if there is too much to handle Default Enable Wait State For more details about this parameter please refer to Port Configuration Section 5 81 Default Disable 5 8 3 Simple Counter The function of the Simple Counter is to collect information and provide counting about the traffic of the port whether the packet is good or bad In Figure 5 13 the screen shows all ports counter information at the same time Each data field is 20 digits If the counting overflows the counter will be reset and restart counting The data is updated based on the time interval defined by the user The valid range is three to ten seconds The refresh interval is used to set the update frequency Default update time is three seconds W
26. get its associated IP address for accessing Internet You can specify a DNS IP address for the switch The switch can translate a mnemonic name address into an IP address There are two ways to specify the IP address of DNS One is fixed mode which manually specifies its IP address the other is dynamic mode which is assigned by DHCP server while DHCP is enabled DNS can help you easily remember the mnemonic address name with the meaningful words in it No assignment of DNS address is made by default Waters Network Systems User s Manual Page 27 GSM 2112 POE Default 0 0 0 0 5 4 Time Configuration The switch provides a manual and automatic method to set the system time via NTP Manual setting is simple Input Year Month Day Hour Minute and Second within the valid value range indicated in each item If you input an invalid value for example 61 in minute the switch will clamp the figure to 59 NTP is a well known protocol used to synchronize the system time of the switch system time over a network NTP an internet draft standard formalized in RFC 1305 has been adopted on the system is version 3 protocol The switch provides four built in NTP server IP addresses residing in the Internet and an user defined NTP server IP address The time zone is Greenwich centered which uses the expression form of GMT xx hours Function name Time Function description Set the system time by manual input or b
27. lt WATERS NETWORK SYSTEMS OPERATING MANUAL GSM2112 POE Switch CORPORATE HEADQUATERS MANUFACTURING CUSTOMER SERVICE 5001 American Blvd W Suite 605 945 37 Avenue NW Bloomington MN 55437 Rochester MN 55901 Phone 800 441 5319 Phone 800 328 2275 Phone 952 831 5603 Phone 507 252 1951 Fax 952 831 5605 Fax 507 285 1952 Web site http www watersnet com 1 0 SPECIFICATIONS 2 0 PACKAGE CONTENTS 3 0 INTRODUCTION TABLE OF CONTENTS 3 1 HARDWARE FEATURES bi dba 3 2 SOFTWARE FEATURES sci tirita bs ii ia e deca too 3 3 HARDWARE DESCRIPTION isso ia 3 4 OPTIONAL SEP MODULES ceo tido diced e dE Ed da a td DA 3 5 INSTALCATION aa 3 6 OPTIONAL SEP MODULES a eatesdisaerskelce 3 7 TP PORT AND CABLE INSTALLATION ooocccccncocononononcnnnncononennnncnnncnnnnnnnnnnnnnnnnnnnnnnnananannn nono an aia 3 8 POWER ON 0 E A dew DEA adn A A a a is 3 9 INSTALLING CHASSIS TO A 19 INCH WIRING CLOSET RAIL cccccccnonocccccnnononononocincnononononanancn cono nonanancns 3 10 SWITCH TOPOLOGY A Mae ccd te ie daa ki Sd 4 0 NETWORK APPLICATIONS cusco 4 1 USING THE RS 232 SERIAL PORT CONNECTION cccconccccccccncononononoccnncnnonononanancnnnnnnonnanccancn nono nennanans 4 2 CONFIGURING IP SUBNET MASK AND DEFAULT GATEWAY 0 0 00000ceeeeeeeeeeeeeeeeseeeeeeeeeeeeeeeeeeeeeeeeees 4 3 CONFIGURING THE SWITCH VIA THE WEB cccccccnonnnocccccnnonononononcnnnonononenncancnnnnonennananancnnnnonananincninnns 4 4 IP ADDRESS ASSIGNMENT 0ccc
28. lt port of times the state machine will 1 5 7 available from to 12 lt times gt range gt lt times gt retransmit an EAP request 1 to 12 1 10 default is packet to the Supplicant before lt times gt max times 2 it times out the authentication range 1 10 session Set mode set mode This command is used to set up lt port range gt syntax lt port range gt 1 lt port range gt the 802 1x authentication mode 1 5 7 available from to 12 lt mode gt of each port 1 to 12 lt mode gt 0 or 1 lt mode gt set up 802 1x mode O disable the 802 1x function 1 set 802 1x to multihost mode Set port set port control Use this command to set up the lt port range gt syntax lt port range gt 1 control lt port range gt 802 1x status of each port 1 5 7 available from to 12 1 to 12 lt authorized gt lt authorized gt setup 0 1o0r2 the status of each port 0 ForceUnauthorized 1 ForceAuthorized 2 Auto Set quiet set quiet period This command is used to define lt port range gt syntax lt port range gt 1 period lt port range gt periods of time when the 1 5 7 available from to 12 gt Sec gt authenticator state machine will 1to 12 lt SeC gt not attempt to acquire a lt sec gt timer range 0 65535 supplicant 0 65535 default is 60 Set set Use to define whether regular lt port range gt syntax lt port range gt 1 reAuthEnabled reauthenabled reauthentication will take place 1 5 7 avai
29. lt value gt default must lt ip gt lt value gt VLAN ID be set lt port gt lt ip gt lt value gt lt vid gt lt value gt lt value gt Incoming port Range is 1 lt type gt lt type gt lt value gt 4095 and can lt value gt Access type be set to any lt action gt lt action gt lt value gt lt ip gt lt value gt lt value gt a ccept or d eny Any valid IP address lt port gt lt value gt 1 or 1 9 lt type gt lt value gt h ttp s nmp or t elnet or any lt action gt lt value gt No default and must be set Delete delete Used to delete a specific record lt gt a specific or None or range range management security entry Edit the edit lt name gt Used to edit a management lt name gt lt value gt lt name gt specific lt value gt policy record ACL entry name lt value gt No management lt vid gt lt value gt lt vid gt lt value gt default must policy entry lt ip gt lt value gt VLAN ID be set lt port gt lt value gt lt type gt lt value gt lt action gt lt value gt lt ip gt lt value gt Incoming port lt type gt lt value gt Access type lt action gt lt value gt a ccept or d eny lt vid gt lt value gt Range is 1 4095 and can be set to any lt ip gt lt value gt Any valid IP address lt port gt lt value gt 1 or 1 9 Waters Network Systems User s Manual GSM 2112
30. mode of all ports 7 available from 1 to 12 lt auto 1Ohalf 10 12 lt port speed gt full 1 OOhalf 100 lt port speed gt auto auto 10half full 1 gfull gt set auto negotiation 10full 100half mode 100full 1Gfull 10half set speed duplex 10M Half 10full set speed duplex 10M Full 100half set speed duplex 100M half 100full set speed duplex 100M full 1Gfull set speed duplex 1G full Show conf show conf Used to display each port s None None configuration regarding state speed duplex and flow control Show detail show detail Used to display the detailed lt gt port available lt gt 1 12 counter counter lt gt counter number for port traffic from 1 to 12 Show sfp show sfp Used to display the SFP lt port gt SFP port lt port gt 11 12 lt port gt module information available 11 12 Show simple show simple Used to display the summary None None counter counter counter for each port s traffic Show status show status Used to display the port s None None current status QoS Set advance set advance Used to set class of ports on lt port range gt port lt port range gt layer4 layer4 lt port advanced mode for Layer 4 range syntax 1 5 7 1to 12 range gt lt gt Qos available from 1 to 12 lt gt 1 10 lt tcp udp port gt lt gt special lt tcp udp port lt default gt UDP TCP port range gt 0 lt match gt selection range 1 10 65535 lt tcp udp port range gt lt defau
31. modes for selection including Low and High Port You can set the ports 1 12 respectively to allow the Special TDP UDP class function to work To set all ports at the same time select All Special UDP TCP Port Selection The following are port numbers defined by the following specific networks in L4 Down prioritize web browsing e mail FTP and news o port number 80 280 443 25 110 20 21 69 119 2009 Prioritize IP Telephony VoIP 1718 1719 1720 Prioritize iSCS1 3225 3260 3420 Prioritize web browsing e mail FTP transfers and news o 80 280 443 25 110 20 21 69 119 2009 Prioritize Streaming Audio Video 2979 1755 7070 7071 554 8000 Prioritize Databases Oracle IBM DB2 SQL Microsoft 66 1571 1575 523 118 156 3306 1232 1433 1434 Once you have selected Configure for IP TCP UDP port you can choose either the Advanced or Simple Mode Quality of Service QoS Layer 4 Configuration Disable IP TCP UDP Port Classification Dovre prioritize web browsing e mail FTP and noves Prioritize IP Telephosy VoIP Prioritize iSCSI Prioritize web browsing e mail FTP transfers and neves Prioritize Streaming Audio Video Prioritize Databases Oracle IBM DB2 SQL Microsoft Figure 5 23 Advanced Mode Waters Network Systems User s Manual Page 52 GSM 2112 POE Auto Logout ort System Quality of Service QoS Layer 4 Configuration D Disable IP TCP UDP Part Classification Dovre prioritize web browsing e mail F
32. negotiation Auto MDIX Back pressure flow control for half duplex Flow control for full duplex MANAGEMENT FUNCTIONS Web based SNMP v1 v2c CLI or Telnet Port setting for duplex and speed Port trunking 8 groups Port based and tagged VLANs up to 256 IGMP snooping 802 1x access control GVRP GARP Port mirroring Broadcast storm suppression Qos LACP STP RSTP Enterprise MIB RMON RFC1213MIB MIB II RFC1757 Bridge MIB RFC1643 Ethernet MIB RMON Q in Q Subscriber Aggregation Bandwidth control NETWORK STANDARDS IEEE 802 3 IEEE 802 3u IEEE 802 3ab IEEE 802 3z IEEE 802 3x IEEE 802 1q IEEE 802 1p IEEE 802 1d w IEEE 802 1x Waters Network Systems User s Manual Page 4 GSM 2112 POE IEEE 802 3ad EMI SAFETY COMPLIANCE FCC Part 15 Class A amp CE Mark Approval NETWORK CABLE CONNECTORS RJ45 shielded female ports 10 100Mbps CAT5 UTP or better MM or SM with LC connectors POWER SUPPLY Internal power supply Input Voltage 100 to 240 VAC 50 to 60Hz Power Consumption 50 watts maximum OPERATING ENVIRONMENT Ambient Temperature 32 to 122 F 0 to 50 C Ambient Humidity 5 to 90 MECHANICAL Enclosure Rack mountable Cooling Method Fan cooled PHYSICAL CHARACTERISTICS Dimensions 8 23 x 17 4 x 1 73 in 209 x 442 x 44 mm Weight 9 26lbs 4 2kg WARRANTY Limited Lifetime Made in USA 2 0 Package Contents Examine the shipping container for obvious damage prior to installing this prod
33. provides a set of basic system diagnosis Diagnostics provides tests to see if the system in working order The basic system check includes EEPROM test UART test DRAM test and Flash test Auto Logout orf Diagnostics Figure 5 70 Diagnostics Function name Loopback Test Function description In the Loopback Test function there are two loopback tests Internal Loopback Test and External Waters Network Systems User s Manual Page 98 GSM 2112 POE Loopback Test The former test function will not send the test signal outside the switch box The test signal only wraps around in the switch The second function will send the test signal to its link partner If the switch is not connected to active network devices e the ports are link down the switch will report the port numbers failed If they all are okay OK is displayed Note When you choose either of these tests there will be interference with the normal system Packets that are being sent and received will stop temporarily Auto Logout orf Loopback Test Figure 5 71 Loopback Test Function name Ping Test Function description Ping Test function is a tool for detecting whether or not the target device is making a connection through the ICMP protocol which submits report messages The switch provides Ping Test function to let you know whether the target device is available or not You can simply fill in a known IP address and then click Ping After a few
34. symbol allows you to perform administrator functions and have full access to the system The symbol allows you to perform guest functions Guest functions only permit the system to be viewed You will not be able to modify settings on the switch with the guest login L2 Managed Switch GEL2 SWw8 Login admin Password IGEL2 Swo Figure 6 1 Login Screen Waters Network Systems User s Manual Page 104 GSM 2112 POE 6 2 Commands of CLI To see the commands of the mode please input after the prompt then all commands will be listed in the screen All commands can be divided into two categories including global commands and local commands The following global commands can be used in any mode Exit End Help m History Logout Save start Save user Restore default Restore user Command instructions residing in the corresponding modes are local commands The same commands can be used in different modes and will perform a different function resulting in totally different information For example show in IP mode displays the IP information however in system mode it will display the system information L2 Managed Switch GEL2 SW8 Login admin Password GEL2 SW8 802 1x Enter into 802 1x mode account Enter into account mode alarm Enter into alarm mode autologout Change autologout time bandwidth Enter into bandwidth mode config file Enter into config file mo
35. than 126 255 255 255 There are a total of 126 networks can be defined because the address 0 0 0 0 is reserved for default route and 127 0 0 0 8 is reserved for loopback function Waters Network Systems User s Manual Page 16 GSM 2112 POE Bit Oo 1 7 8 0 Network address Host address Class B IP address range between 128 0 0 0 and 191 255 255 255 Each class B network has a 16 bit network prefix followed 16 bit host address There are 16 384 214 16 networks able to be defined with a maximum of 65534 216 2 hosts per network Bit 01 2 15 16 10 Network address Host address Class C IP address range between 192 0 0 0 and 223 255 255 255 Each class C network has a 24 bit network prefix followed 8 bit host address There are 2 097 152 2 21 24 networks able to be defined with a maximum of 254 218 2 hosts per network Bit 012 3 23 24 31 110 Network address Host Class D and E Class D is a class with first 4 MSB most significance bit set to 1 1 1 0 and is used for IP Multicast See also RFC 1112 Class E is a class with first 4 MSB set to 1 1 1 1 and is used for IP broadcast According to IANA internet assigned numbers authority there are three specific IP address blocks reserved and able to be used for extending internal networks This is referred to as Private IP address and listed below Class A 10 0 0 0 10 255 255 255 Class B 172 16 0 0
36. to 40 delay gt available from 1 to 10 lt forward Waters Network Systems User s Manual Page 119 GSM 2112 POE Command Syntax Description Argument Possible Value lt max age gt delay gt 4 to 30 available from 6 to 40 lt forward delay gt available from 4 to 30 Note 2 Forward delay 1 gt MaxAge Max Age gt 2 Hello Time 1 Set port set port Used to set up the port lt range gt syntax 1 5 lt range gt 1 to lt range gt lt path information of STP 7 available from 1 to 12 cost gt lt priority gt 12 lt path cost gt 0 lt edge_port gt lt path cost gt 0 1 1 200000000 lt admin p2p gt 200000000 The lt priority gt O to value zero means 240 auto status lt edge_port gt lt priority gt priority Admin Edge must be a multiple of Port lt yes no gt 16 available from 0 lt admin p2p gt to 240 lt auto true false lt edge_port gt Admin gt Edge Port lt yes no gt lt admin p2p gt Admin point to point lt auto true false gt Set version set version Used to set up the version of lt stp rstp gt stp rstp lt stp rstp gt lt stp rstp gt STP stp tstp Show config show config Used to display the None None configuration of STP Show port show port Used to display the port None None information of STP Show status show status Used to display the status of None None STP System Set contact set contact Used to set the contact lt contact gt string
37. will lose connection with this device if enable DHCP Please use CLI to get the new IP address Figure 5 4 IP Address Configuration Function name IP Configuration Function description Set IP address subnet mask default gateway and DNS for the switch Parameter description DHCP Setting DHOP is the abbreviation of Dynamic Host Configuration Protocol DHCP is disabled by default In this menu you may enable or disable DHCP The switch supports DHCP client used to get an IP address automatically if you set this function Enable When enabled the switch will issue the request to the DHCP server to get an IP address If the DHCP server is down or does not exist the switch will issue the request and notify you that the IP address is being requested until the DHCP server is up Before getting an IP address from DHCP server the device will stop the booting process If the field is set to Waters Network Systems User s Manual Page 26 GSM 2112 POE Disable you will have to input the IP address manually For more details about IP address and DHCP refer to Section 4 4 IP Address Assignment Default Disabled IP address Users can configure the IP settings and enter new values if users set the DHCP function to Disable Click the Apply button to update When DHCP is disabled Default 192 168 1 1 If DHCP is enabled this field is completed by the DHCP server and will not allow user manually set future IP a
38. 0 165995 Figure 5 53 LACP System Priority Waters Network Systems User s Manual Page 83 GSM 2112 POE 5 22 802 1X Configuration 802 1X port based network access control provides a method to restrict users to access network resources via authenticating user s information This restricts users from gaining access to the network resources through a 802 1X enabled port without authentication To access the network through a port under 802 1X control you must first input your account name for authentication and wait to gain authorization before sending or receiving any packets from a 802 1X enabled port Before the devices or workstations can access the network resources through the ports under 802 1X control the devices or workstations must send an authentication request to the authenticator The authenticator passes the request to the authentication server to authenticate and verify and the server informs the authenticator to grant the request for authorization for the ports According to IEEE 802 1X there are three components are implemented Supplicant Authenticator Authentication server shown in Figure 5 54 Supplicant An entity authenticated by an authenticator Used to communicate with the Authenticator PAE Port Access Entity by exchanging the authentication message when the Authenticator PAE performs a request Authenticator An entity facilitates the authentication of the supplicant entity It control
39. 5 1to 12 lt sec gt 1 6553 5 default is 30 Set state set state lt ip gt Used to configure the settings lt ip gt the IP address lt port lt port number gt related to the 802 1x radius of the radius server number gt 1 65 lt secret key gt server lt port number gt the 535 default is service port of radius 1812 server authorization port lt secret key gt set up the value of secret Ikey and the length of secret key is from 1 to 31 Set set A timer is provided by the lt port range gt syntax lt port range gt 1 suppTimeout supptimeout Backend Authentication state 1 5 7 available 1to to 12 lt port range gt machine to determine timeout 12 lt sec gt lt sec gt conditions in the exchanges lt sec gt timer range 1 65535 between the Authenticator and 1 65535 default is 30 the Supplicant or Authentication Server The initial value is either suppTimeout or serverTimout as determined by the operation of the Backend Authentication state machine Set txPeriod set txperiod A time used by the lt port range gt syntax lt port range gt 1 lt port range gt Authenticator PAE state 1 5 7 available 1 to to12 lt sec gt machine to determine when an 12 lt sec gt EAPOL PDU is to be lt sec gt timer range 1 65535 transmitted 1 65535 default is 30 Show mode show mode Displays the mode of each port None None Show show Displays the parameters of None None para
40. 55 255 255 240 This means it is a small network accommodating a maximum of 15 nodes in the network Default Gateway For the routed packets if the destination is not in the routing table all traffic is put into the device with the designated IP address known as default router Basically it is a routing policy The gateway setting is used for Trap Events Host only in the switch Waters Network Systems User s Manual Page 19 GSM 2112 POE For assigning an IP address to the switch check the IP address of the network that will be connected to the switch Use the same network address and append your host address Auto Logout 3 min IP Configuration nce semm EPA Padres 192 169 1 1 CL 255 255 2550 CT 192 108 1 253 Note You will lose connection with this device if enable DHCP Please use CLI to get the new IP address Log Firmware Upgrade Reboot Figure 4 4 IP Configuration First IP Address as shown in the Figure 4 4 enter 192 168 1 1 for example An IP address such as 192 168 1 x must be set on your PC Second Subnet Mask as shown in the Figure 4 4 enter 255 255 255 0 Any subnet mask such as 255 255 255 x is allowable in this case DNS The Domain Name Server translates the human readable machine name to IP address Every machine on the Internet has a unique IP address A server generally has a static IP address To connect to a server the client needs to know the IP of the server However generally t
41. Detailed Information Function description Displays the detailed information of the LACP trunking group Parameter description Actor The switch you are using to view LACP Partner The peer system from the aggregator s view System Priority Displays the System Priority of a system ID MAC Address Displays the MAC Address of a system ID Port Displays the port number of an LACP port ID Key Displays the key value of the aggregator The key value is determined by the LACP protocol entity and can t be set through management Trunk Status Displays the trunk status of a single member port means not ready Waters Network Systems User s Manual Page 82 GSM 2112 POE Auto Logout orr System Aggregator 3 Information EXT MAC Address ET A Addres 32708 D0 40 c7 ec 00 d9 32768 00 00 00 00 00 00 Port Kev Trenk Status Port Figure 5 52 Aggregator 3 Information Function name LACP System Priority Function description Used to set the priority of the LACP system ID LACP will only aggregate together the ports whose peer link partners are all on a single system Each system supports LACP will be assigned a globally unique System Identifier for this purpose A system ID is a 64 bit field comprising a 48 bit MAC Address and 16 bit priority value The System Priority can be set by the user lts range is from 1 to 65535 Default 32768 Auto Logout orr Syston LACP System Priority erime 9776
42. Figure 5 30 VLAN Mode Up link Port This function is enabled only when metro mode is chosen in VLAN mode Port 11 Except Port 11 the switch ports cannot transmit packets with each other Each port groups a VLAN with Port 11 thus eleven groups consisting of two members are formed Port 12 Except Port 12 the switch ports cannot transmit packets with each other Each port groups a VLAN with Port 12 thus eleven groups consisting of two members are formed Ports 11 and 12 Waters Network Systems User s Manual Page 59 GSM 2112 POE Except Port 11 and Port 12 the switch ports cannot transmit packets with each other Each port groups a VLAN with Port 11 and Port 12 thus ten groups consisting of three members are formed Figure 5 31 VLAN Metro Mode 5 17 2 Tag based Group Function name Tag based Group Configuration Function description Displays tag based VLAN groups Use this option to create edit and delete a tag based VLAN groups Add a new VLAN group by inputting a new VLAN name and VLAN ID Parameter description VLAN Name Valid letters are A Z a z 0 9 and _ characters The maximum length is 15 characters VID VLAN identifier Each tag based VLAN group has a unique VID used in tag based and Double tag mode SYM VLAN While the SYM VLAN function of the group is enabled all packets with this group VID will be dropped if they are transmitted from the ports that do not belong to thi
43. NG THE PRODUCTS THEIR FITNESS FOR ANY PURPOSE THEIR QUALITY THEIR MERCHANTABILITY OR OTHERWISE WATERS NETWORK SYSTEMS LIABILITY UNDER THE WARRANTY SHALL BE LIMITED TO PRODUCT REPAIR OR REPLACEMENT OF THE BUYER S PURCHASE PRICE IN NO EVENT SHALL WATERS NETWORK SYSTEMS BE LIABLE FOR THE COST OF PROCUREMENT OF SUBSTITUTE GOODS BY THE CUSTOMER OR FOR ANY CONSEQENTIAL OR INCIDENTAL DAMAGES FOR BREACH OR WARRANTY Waters Network Systems User s Manual Page 128 GSM 2112 POE
44. Prioritize iSCSI Belongs to the QoS in L4 Select the option button and click Apply Click Advance to set special TCP UDP port for QoS Prioritize web browsing e mail FTP transfers and news Belong to the QoS in L4 Select the option button and click Apply Click Advance to set special TCP UDP port for QoS Prioritize Streaming Audio Video Belongs to the QoS in L4 Select the option button and click Apply Click Advance to set special TCP UDP port for QoS Prioritize Databases Oracle IBM DB2 SQL Microsoft Belongs to the QoS in L4 Select the option button and click Apply Click Advance to set special TCP UDP port for QoS Advanced Mode Display the TCP UDP port number in L4 QoS In the Disable IP TCP UDP Port Classification mode you can randomly choose a TCP UDP port number that L4 QoS will affect As to other special L4 QoS events special TCP UDP port number will take action You can add or modify the port number at random For instance if you choose Down prioritize web browsing e mail FTP and news as the QoS of L4 and enter the Advanced Mode then we can see that special port numbers 80 280 443 25 110 20 21 69 119 2009 have already been configured You can also modify these port numbers See Figure 5 23 Special TCP UDP class Waters Network Systems User s Manual Page 51 GSM 2112 POE There are two modes for selection including Low and High Default class all other TCP UDP ports There are two
45. Rapid Spanning Tree Protocol RSTP STP has six parameters to be configured These parameters are described below Function name STP Configuration Function description Set the following Spanning Tree parameters to control STP function enable disable Select mode RSTP STP and affect STP state machine behavior to send BPDU in the switch The default setting of STP is Disable Parameter description Spanning Tree Protocol Set 802 1W Rapid STP function Enable Disable Default is Disable Waters Network Systems User s Manual Page 75 GSM 2112 POE Bridge Priority The lower the number for bridge priority the higher the priority it will have Usually the bridge with the highest bridge priority is the root If you want this switch to be the root bridge set the value lower than that of the bridge in the LAN The valid value is O 61440 The default is 32768 Hello Time Hello Time is used to determine the periodic time to send normal BPDU from designated ports among bridges lt decides how long a bridge should notify other bridges to say that it is up and connected If the GSM switch is the root bridge of the LAN for example all other bridges will use the hello time assigned by this switch to communicate with each other The valid value is 1 10 in unit of second Default is 2 seconds Max Age When the GSM switch is the root bridge the whole LAN will apply the number set by the switch as their maximum age time When
46. Supports QoS for real time applications based on the information taken from layer 2 to layer 4 such as VolP Supports port mirror function with ingress traffic Supports rapid spanning tree Supports 802 1x port security SNMP access can be disabled to prevent illegal SNMP access Supports sending of trap events while monitoring events Supports default configuration which can be restored to overwrite the current configuration Built in web based management and CLI management providing a convenient user interface Supports network time synchronization and daylight saving Supports 120 event log records in the main memory and display on the local console Supports Ingress non unicast and Egress bandwidth rating management with a resolution of 1Mbps Trap event and alarm messages can be transferred via email and mobile phones Diagnostics available to inform network administrator of hardware status Supports external loopback test to check to see if the link is okay TFTP for firmware upgrade Waters Network Systems User s Manual Page 7 GSM 2112 POE 3 3 Hardware Description Fiber Port Status Indication Giaabit Ethernet PoE Port Status Indication RESET Button RESET button is used to reset the management system TP Port Status Indication Figure 3 1 Front View of GSM2112 Figure 3 1 shows the front view of the GSM2112 switch The switch chassis has twelve PoE 10 100 1000Base TX ports and two dual media slots Those slots can
47. TION ccccconoccccnccnnonnnonncnnnoncnnnnononnnnnnnnononnnnnnnnnnnn none naar nnnnnnnnnnnn nana cnn AREAK EEan ennnen 5 14 IGMP SNOOPING 0 E A E A t A A E E E E A E A A aan 5 15 MAXIMUM PACKET LENGTH ooococcccccconononocnnnnncnnononenannnnnnnnnonancnnnnnnn nono na nanannnnnnnnnnannnnnnnnnnnnncnccncnnnnns 5 Grr DACRE BOOT ta a tt ita tr nta do T ARS S A E IN S SEEE S da trial tit da 5 17 1 AVR IN EVO DI a E E E E E E E E trad AE 5 17 2 TAGS BASED GROUP tdt EES E E EE 5 17 3 PORTEBASED O OUP a ld cid iaa 5 17 4 AEE RULE R EA AE EA EE EA EA E EAEE EAE AE 5 18 MAC Te E AEE a ti 5 19 GVRP CONFIGURATIONS sicario ia a o aa 5 20 SPANNING TREE CONFIGURATION STP CONFIGURATION cceeeeeeeeeeeceeeesaaeeeeeeeeeeeeeeeaaeeeeeeeeeas 5 20 1 SPAS TAT OS ek E o hacen ios 5 20 2 STP GONFIGURATION a taa Waters Network Systems User s Manual Page 2 GSM 2112 POE 5 20 3 STP PORT CONFIGURATION e r a a a a a a e a ad aa aean a aan 77 5 21 TRUNKING CONFIGURATION 0occcccccononononoccnncnnononenncnnnncnnononnnnnnnnnnnnnnnnnnn anna nono nn nana ARARE EEEE Eann Ennen ann 78 5 22 8021 CONFIGURATION sica ca dd dia uds 84 5 23 ALARM CONFIGURATION 0cccccccccceeeeeececccececeaeeeeeseeceseuueueesseeeseuueaueeseceeeeseuaueasaeeeeueeaeaneeeeeeeeaeanees 92 524 WGONRIGURATION uta o tds 93 5 24 1 CONFIGURATION FILE aa dada 95 5 24 2 RESTORE DEFAULT CONFIGURATION occccccncnonoccncnncnnonononancnnnononononnnannnnnnonnnnnnnnnn nono nn nan ananccnnnnnnn 95
48. TP and noves Prioritize IP Telephosy VoIP Prioritize iSCSI Prioritize web browsing e mail FTP transfers amd neves Prioritize Streaming Audio Video Prioritive Databases Oracte IBM DBZ SQL Microrett Figure 5 24 Simple Mode Simple Mode Select Simple to return to the screen that all L4 port number will disappear See Figure 5 24 Function name IP Diffserv Classification Function description In the late 1990s the IETF redefined the meaning of the 8 bit SERVICE TYPE field to accommodate a set of differentiated services DS Under the differentiated services interpretation the first six bits comprise a codepoint which is sometimes abbreviated DSCP and the last two bits are left unused IP Diffserve Classification function can form total 64 0 63 kinds of Traffic Class based on the arrangement of 6 bit field in DSCP of the IP packet Sixty four types of Class that belong to High or Low Priority can be set Parameter description IP Differentiated Services DiffServ Configuration Used to set the IP Differentiated Services Configuration QoS Diffserv Display 64 0 63 DiffServ Priority items Class 64 types of traffic Can set High Priority or Low Priority for each port respectively Waters Network Systems User s Manual Page 53 GSM 2112 POE IP Differentiated Services DiffServ Configuration class Miah y Lene a men igh High Migh m High Wigh Migh m High Migh m Migh w High
49. VRP None None groups Hostname Hostname hostname Used to set the hostname of the lt name gt hostname lt name gt hostna lt name gt switch max 40 characters me max 40 characters IGMP Set igmp_ set Use to set the most for IGMP lt status gt 0 disable lt status gt O 1 snooping igmp_snooping snooping 1 active or 2 lt status gt 2 passive Show show Used to display IGMP snooping None None mode and IP multicast table IP Disable DHCP disable dhcp Used to disable the DHCP None None function Enable DHCP enable dhcp Used to enable the DHCP lt manuallauto gt set lt manuallauto gt function and set DNS server for DHCP with either manual or auto manual or auto mode manual or auto mode Set DNS set dns Used to set the IP address of lt ip gt dns ip address 168 95 1 1 the DNS server Set IP set lt ip gt Used to set the system IP lt ip gt ip address lt ip gt 192 168 1 lt mask gt address subnet mask and lt mask gt subnet mask 2 or others lt gateway gt gateway lt gateway gt default lt mask gt 255 25 gateway 5 255 0 or others lt gateway gt 192 168 1 253 or others Show show Used to display the system s None None DHCP state IP address subnet mask default gateway DNS mode DNS server IP address and current IP address Log Clear clear Used to clear the log data None None Disable auto disable auto Used to disable the auto upload None None upload upload function Enable auto enable auto Used to enable the
50. a bridge received a BPDU originating from the root bridge and if the message age conveyed in the BPDU exceeds the Max Age of the root bridge the bridge will treat the root bridge as malfunctioning and issue a Topology Change Notification TCN BPDU to all other bridges All bridges in the LAN will re calculate to determine who the root bridge is The valid value of Max Age is 6 40 seconds Default is 20 seconds Forward Delay You can set the root bridge forward delay time This figure is set by the root bridge only The forward delay time is defined as the time spent from Listening state moved to Learning state and also from Learning state moved to Forwarding state of a port in bridge The forward delay time contains two states Listening state to Learning state and Learning state to Forwarding state It assumes that forward delay time is 15 seconds then total forward delay time will be 30 seconds The valid value is 4 30 seconds default is 15 seconds Force Version Two options are offered for the STP algorithm One is RSTP and the other is STP If STP is chosen RSTP will run as a legacy STP The switch supports RSTP 802 1w which is backward compatible with STP 802 1d STP Configuration Disable v Note 2 Forward Delay 1 gt Max Age Max Age gt 2 Hello Time 1 Note You will lose connection with this device for a while if you enable STP Figure 5 48 STP Configuration Waters Network Systems User s Man
51. able 300 Secs 10609595 Remove all nom static mac entry Log Firmware Upgrade Reboot Figure 5 40 MAC Maintenance Waters Network Systems User s Manual Page 66 GSM 2112 POE Function Name Static Forward Function Description Static Forward is a function that allows the user in the static forward table to access a specified port of the switch The static forward table associated with a specified port of a switch is set up by manually inputting MAC address and an alias name When a MAC address is assigned to a specific port all of the switch s traffic is sent to this MAC address will be forwarded to this port For adding a MAC address entry in the allowed table fill in four parameters MAC address associated port VID and Alias Select the existing MAC address entry and select Delete for removal Parameter description MAC Six byte Ethernet hardware address and usually expressed by hex and separated by hyphens For example 00 40 C7 D6 00 01 Port No Port number of the switch It is 1 12 VID VLAN identifier This will be filled only when tagged VLAN is used Valid range is 1 4094 Alias Assigned MAC alias name Figure 5 41 Static Forwarding MAC Waters Network Systems User s Manual Page 67 GSM 2112 POE Function name Static Filter Function Description Static Filter is a function that denies the packet forwarding if the packet s MAC Address is listed in the filterin
52. able the switch to send out trap information while pre defined trap events occur The switch provides 23 different trap events The trap information can be sent out in three ways including email mobile phone SMS short message system and trap The message will be sent if you check Mi the trap event individually on the web page shown below Parameter description Trap Cold Start Warm Start Link Down Link Up Authentication Failure User login User logout STP STP Topology Changed STP Disabled STP Enabled LACP LACP Disabled LACP Enabled LACP Member Added LACP Port Failure GVRP GVRP Disabled GVRP Enabled VLAN VLAN Disabled Port based VLAN Enabled Tag based VLAN Enabled Metro mode VLAN Enabled Double tag VLAN Enabled Module Swap Module Inserted Module Removed Dual Media Swapped Auto Logout orr System Trap Events Configuration Port Pot si Figure 5 61 Trap Events Configuration Function name Email SMS Configuration Waters Network Systems User s Manual Page 92 GSM 2112 POE Function description Alarm configuration is used to configure the recipients of the alarm message via email or SMS or both The method is dependent on the settings An email address or a mobile phone number has to be set in the alarm configuration See Figure 5 60 If set properly you can read the trap information from your email or mobile phone This function provides up to six email addresses and up to six mobile phone
53. address subnet mask and gateway Argument lt ip gt ip address lt mask gt subnet mask lt gateway gt default gateway Possible value lt ip gt 192 168 1 2 or others lt mask gt 255 255 255 0 or others lt gateway gt 192 168 1 253 or others Example GEPoEL 2 SW12 set ip 192 168 1 2 255 255 255 0 192 168 1 253 Once you have set the IP address of the switch you must save the configuration The CLI command is save start A detailed list of CLI commands can be found in Section 6 0 Waters Network Systems User s Manual Page 14 GSM 2112 POE 4 3 Configuring the Switch via the Web You can configure and monitor the switch through CLI Web browser SNMP manager The user interface for SNMP is not covered at this time Assign an IP address For example IP 192 168 1 100 Subnet Mask 255 255 255 0 Default Gatewav 192 168 1 254 Figure 4 2 Front Switch View Before you are able to communicate with the switch you must know the IP address of the switch Once you know the IP address follow these instructions 1 Connect the switch with a UTP cable to your workstations Note If the workstation connects to the switch you will have to setup the same subnet mask between them 2 Access your web browser or use the console connection Note If you make changes to the configuration you must save the configuration before rebooting the switch Waters Network Systems User s Manual P
54. age 15 GSM 2112 POE 4 4 IP Address Assignment Please Input Username Password Username p admin Figure 4 3 Login Screen via a Web browser For IP address configuration the following three parameters are required P address Subnet Mask Default Gateway and DNS IP Address The address of the network device is used for internetworking communication IP addresses are split into predefined address classes or categories This is referred to as classful addressing because the address is spilt into three predefined classes groupings or categories Each IP address comprises two parts network identifier address and host identifier address The network identifier identifies the network on which the host resides while the host identifier identifies the particular host on the given network The host identifier must be unique in the same LAN Each class has its own network range between the network identifier and host identifier in the 32 bits address IP address is known as IPv4 32 bits 1l Network identifier Host identifier With classtul addressing the IP address is divided into three classes class A class B and class C The rest of IP addresses are for multicast and broadcast The bit length of the network prefix is the same as that of the subnet mask and is denoted as IP address X for example 192 168 1 0 24 Each class has its address range described below Class A Address is less
55. an IP broadcast Network Subne All Os 128 1 2 128 11000000 All 1s 128 1 2 255 111111111 In this diagram the subnet mask with 25 bit long 255 255 255 128 contains 126 members in the sub netted network The length of network prefix equals the number of the bit with 1s in that subnet mask With this you can easily count the number of IP addresses matched The following table shows the result Waters Network Systems User s Manual Page 18 GSM 2112 POE Prefix Length No of IP matched No of Addressable IP 32 1 31 2 30 4 2 29 8 6 28 16 14 27 32 30 26 64 62 25 128 126 24 256 254 23 512 510 22 1024 1022 21 2048 2046 20 4096 4094 n9 8192 8190 118 16384 16382 117 32768 32766 116 65536 65534 Table 4 2 According to the scheme above a subnet mask 255 255 255 0 will partition a network with the class C This means there will be a maximum of 254 effective nodes existing in this sub netted network and is considered a physical network in an autonomous network It owns a network IP address which may look like 168 1 2 0 With the subnet mask a bigger network can be divided into smaller pieces If you want to have more than two independent networks in a LAN the network must be partitioned The subnet mask must be applied For different network applications the subnet mask may look like 2
56. and non participant Normal In the normal participant mode the switch participates normally in GARP protocol exchanges The default setting is Normal Non Participant In the non participant mode the switch does not send or reply any GARP messages The switch listens for messages and reacts for the received GVRP BPDU Default Registrar Mode There are three types of parameters for registrar mode registrar administrative control value normal registrar fixed registrar and forbidden registrar Normal The Registrar responds normally to incoming GARP messages The default setting is Normal Fixed The Registrar ignores all GARP messages and all members remain in the registered IN state Forbidden The Registrar ignores all GARP messages and all members remain in the unregistered EMPTY state Restricted Mode This function is used to restrict dynamic VLAN be created when this port received GVRP PDU There are two modes disable and enable Disabled In this mode the switch dynamic VLAN will be created when this port received GVRP PDU The default setting is Normal Enabled In this mode the switch does not create dynamic VLAN when this port received GVRP PDU Except received dynamic VLAN message of the GVRP PDU is an existed static VLAN in the switch This port will be added into the static VLAN members dynamically Function name GVRP Counter Function description Waters Network Systems Use
57. aters Network Systems User s Manual Page 39 GSM 2112 POE Auto Logout OFF Simple Counter Refresh interval 3 sec Y Time elapsed since last reset 0 Days O Hours 55 Mins 36 Secs o o o o o o o a o o a o Figure 5 13 Simple Counter Function name Simple Counter Function description Displays the summary counting of each port s traffic including Tx Byte Rx Byte Tx Packet Rx Packet Tx Collision and Rx Error Packet Parameters description Tx Byte Total transmitted bytes Rx Byte Total received bytes Tx Packet The counting number of the packets transmitted Rx Packet The counting number of the packet received Tx Collision Number of collisions transmitting frames experienced Rx Error Packet Number of bad packets received 5 8 4 Detail Counter The function of the Detail Counter is to collect information and provide the counting for the traffic of the port whether the packet is good or bad In Figure 5 14 the counter is displayed one port at a time To see another port s counter pull down the Select list The figures for the port you have chosen will be displayed Waters Network Systems User s Manual Page 40 GSM 2112 POE Each data field is 20 digits If the counting overflows the counter will be reset and counting will be restarted The data is updated based on the time interval defined by the user The valid range is three to ten seconds The refresh interval is used to set the update
58. ause this will have the port fast transited to forwarding state There are three parameters Auto True and False used to configure the type of the point to point link If the parameter is configured to Auto RSTP will use the duplex mode resulting from the auto negotiation If it goes into half duplex the port will not transit to Forwarding state If it is set as True the port is treated as point to point link by RSTP and unconditionally transited to Forwarding state If it is set to False fast transition to Forwarding state will not occur on this port Default Auto M Check Migration Check Forces the port sending out an RSTP BPDU instead of a legacy STP BPDU at the next transmission The only benefit of this operation is to make the port quickly get back to act as an RSTP port Select M Check to send a RSTP BPDU from the port you specified Auto Logout orF STP Port Configuration 2000000 000000 2000000 DISCARDING Figure 5 49 STP Port Configuration Trunking Configuration The Port Trunking Configuration is used to configure the settings of Link Aggregation More than one port can be bundled with the same speed full duplex and the same MAC to be a single logical port The logical port aggregates the bandwidth of these ports This means you can Waters Network Systems User s Manual Page 78 GSM 2112 POE apply your current Ethernet equipment to build the bandwidth aggregation For example if there are three Fas
59. auto upload None None upload upload function Show show Used to display a list of the trap None None log events When a log event occurs it is recorded Show is used to query the log functions Up to 120 records are supported Upload upload Used to upload log data through None None Waters Network Systems User s Manual Page 113 GSM 2112 POE Command Syntax Description Argument Possible Value tffp Mac Table lt lt alias gt gt Del del lt mac gt Used to delete the MAC alias lt mac gt mac address lt mac gt mac entry format 00 02 03 04 address 05 06 Set set lt mac gt Used to set the MAC alias lt mac gt mac address None lt alias gt entry format 00 02 03 04 05 06 lt alias gt mac alias name max 15 characters Show show Used to display the MAC alias None None entry lt lt nformation gt gt Search search lt port gt Used to find the relative MAC lt port gt set up the lt port gt 1 to 12 lt mac gt lt vid gt information in the MAC table range of the ports to lt vid gt 0 search for 1 4094 Syntax 1 5 7 available from 1 to 12 lt mac gt mac address format 01 02 03 04 05 06 can be used lt vid gt vlan id from 1 to 4094 as don t care 0 as untagged show show Used to display all MAC table None None information lt lt maintain gt gt Set aging set aging Used to set up the age out time lt gt age timer in l
60. ber Valid ports are Port 1 12 Auto Logout OFF Mirror IGMP Snooping Max Packet Lem DHCP Boot ath Alarm Contiguration Dlagnostics TFTP Server Log Firmware Upgrade Reboot Logout Figure 5 17 Mirror 5 11 Bandwidth Management Function name Bandwidth Management Function description Bandwidth Management function is used to set up the limit of Ingress and Egress bandwidth for each port Waters Network Systems User s Manual Page 46 GSM 2112 POE Note Each port on the switch has a 16KB packet buffer The packet buffer size will be reduced when the bandwidth rate limitation is enabled which may cause the jumbo frame to not be forwarded It is recommended to avoid enabling jumbo frame and bandwidth rating functions at the same time Auto Logout OFF System Bandwidth Management Configuration Port IGMP Snooping e s 3 Incoming traffic is discarded if rate is exceeded en Pocket Length Airai Oisoble Pause frames are generated if flow control is enabled EA Disable Y Incoming troffic is discarded W rate is exceeded Egress Rate Limiting Shoping mattie State EL po Packet transmission is delayed if rate is exceeded orm amiramie piola Traffic may be lost if egress buffers run full Configuration Dlognostics yee areas co E Log Firmveare Upgrade Reboot Logout Figure 5 18 Bandwidth Management Parameter description Port Number Choose the port number to use for band
61. cast traffic Passive Waters Network Systems User s Manual Page 56 GSM 2112 POE In passive snooping mode IGMP snooping will not periodically poll the hosts in the groups The switch will send a Membership Query message to all hosts only when it has received a Membership Query message from a router IP Address Shows all multicast groups IP addresses that are registered on this device VLAN ID Shows VLAN ID for each multicast group Member Port Shows member ports that join each multicast group 5 15 Maximum Packet Length Function name Max Packet Length Function description The switch is capable of handling with 9k jumbo frames Parameter description Jumbo Frame bytes Set up the maximum length of the packet that each port of the switch can accept Maximum length can be up to 1532 bytes or 9216 bytes The default is 1532 bytes Maximum Packet Length Figure 5 28 Maximum Packet Length 5 16 DHCP Boot The DHCP Boot function is used to spread the request broadcast packet into a bigger time frame to prevent the traffic congestion due to broadcast packets from many network devices which may seek its NMS boot server DHCP server and predefined connections in case the whole building or block loses power When this happens the switch has to be rebooted Switches or other network devices on the LAN will try their best to find the server to return to their services or try to set up the predefined links Many broa
62. cceccccceceseeeeeceeceeseaeaueeseceseuaeaueaseceeesseeaueaeeseseesueeaueaseseeeeeeaneneeseees 5 0 WEB BASED MANAGEMENT cccccccssssseceeueesnecsssseeseeuceseansaseseuueeseaeagsseeueesuagaaeseueeusnauanensesens 5 1 OVERVIEW OF WEB MANAGEMENT 000ccccccceceeeeececceececeaueeseseceeeeaueuseseeeeueuaeaueesaeeeeseeeaueaseeeeeeseeanas 5 2 SYSTEM INFORMATION iced ani ceed dan tisteeh sien oh a Lewd ats pete a a 5 3 IP CONFIGURATION aorta ii bial hare dl ten eh aa ods mat HE 5 4 LIME CONFIGURATION 2 ed a date i Oe kha leg as te De 5 5 ACCOUNT GONFIGURATION 4 020 eee bert heed mete thane ti teil hme ei oa tr ed 5 6 MANAGEMENT POLICY 2 i tesencncacius behest at eee al 5 7 VIRTUAL STACK at ola na nich ds oa a bid th EE tat han Matas deta e 5 8 PORT GONFIGURATION PANA AEE di betaine tek teint ata ab Oe TAE ENA elt ee 58m PORTESTATUS mre ai onan ne nie di o dd Naan aR lo 5 8 2 PORT CONFIGURATION AAAA DAE AE EEEE EEA EAA AEE EAE SE AEE EE as 58 37 SIMPLE COUNTER a dd o a HA 5 84 DETAL COUNTER 2 A tt E 5 9 POEFUNCTION cutre e a e aa A 5 10 MIRROR CONFIGURATION cccccccccceeeseececccececeseeeeeeeceesuseauesseeeueuaeaueeseceeeeueuaueasaeeeeueeaeaueeeeeeseuaeanens 5 11 BANDWIDTH MANAGEMENT cocococcncncnonononononononononononononononnnnnnn nono nn nn nn nono nono reno nn nene nene nene nene 5 12 QOS QUALITY OF SERVICE CONFIGURATION ccoonocononcconcccconccnnnnnnnnonnnnn cn narra naar cnn cnn arrancan 5 13 SNMP CONFIGURA
63. ccess control does not work on the port 802 1X with multihost In multihost mode the devices connected to this port can access the network once a supplicant is authorized Auto Logout orf GEVOELZ SW 12 Syste a 9 N ja x z a z w ES 5 Di Muni host Figure 5 58 802 1x Setting Function name Port Security Management Function description Displays each port status In multihost mode the port number and its status authorized or unauthorized are displayed Parameter description Disable Mode If Disable mode is selected for a port in the function 802 1X Port Mode Configuration the port is in the uncontrolled port state and does not apply the 802 1X authenticator Any node attached to this port can access the network without the admittance of 802 1X authenticator The Port Status will display the following screen Port Number The port number to be chosen to show its 802 1X Port Status The valid number is Port 1 12 Port Status The current 802 1X status of the port In Disable mode this field is Disabled 802 1X with Multihost mode Select 802 1X with Multihost mode for a port With the function 802 1X Port Mode Waters Network Systems User s Manual Page 89 GSM 2112 POE Configuration devices can access the network through this port once the authenticator is authorized The Port Status will display the following screen If the port is granted to access the network the por
64. ccurred in the system In the report table No Time and Events are three fields contained in each trap record Emme Auto Logout 3 min Log Data a Login admin IGMP Savoping w STP Topology Changed Port 1 Max Packet Length w i Lisk Up Port 1 DHCP Boot u Lek Daven Port 1 VLAN Login STP Topelogy Changed Port 1 1 HAC Tolle Link Up Port 1 owns bled Teg based VLAN Enabled Port based VLAN Enabled Tag based VLAN Enabled VLAN Disabled Login admin Tag based VLAN Enabled Figure 5 74 Log Data Parameter description No Displays the order number of the traps Time Displays the time of the trap Events Displays the trap event name Auto Upload Enable Switch the enabled or disabled status of the auto upload function Upload Log Upload log data through tftp Clear Log Clear log data 5 28 Firmware Upgrade A software upgrade tool is used to upgrade the software functions and to fix or improve the functionality of the switch The switch provides a TFTP client for software upgrade which is done through the network connection Function name Firmware Upgrade Function description Waters Network Systems User s Manual Page 101 GSM 2112 POE The switch supports software upgrade through a TFTP server To apply a firmware upgrade follow this procedures 1 Specify the IP address TFTP server 2 Specify the filename and the full path for the location of the file 3 Select Upgrade
65. connected together instead of a single one the link ports connecting the two switches may have to perform two port roles authenticator and supplicant because the traffic is bi directional Authentication server Figure 5 55 Supplicant A Waters Network Systems User s Manual Page 85 GSM 2112 POE Figure 5 54 illustrates the procedure of 802 1X authentication There are steps for the login based on 802 1X port access control management The protocol used in the right side is EAPOL and the left side is EAP f 2 10 At the initial stage supplicant A is unauthenticated so the port acting as an authenticator is in unauthorized state Access is blocked in this stage Either authenticator or supplicant can initiate the message exchange If supplicant initiates the process it sends EAPOL start packet to the authenticator PAE and authenticator will immediately respond EAP Request Identity packet The authenticator periodically sends EAP Request Identity to the supplicant to request the identity it wants to be authenticated If the authenticator doesn t send EAP Request Identity the supplicant will initiate EAPOL beginning the process by sending it to the authenticator The Supplicant replies an EAP Response Identity to the authenticator The authenticator will embed the user ID into Radius Access Request command and send it to the authentication server for identity confirmation After receiving the Radius Access Request the a
66. d port 1 is not member of VLAN 100 the packet will be dropped Role This is an egress rule of the port You can choose Access Trunk or Hybrid Trunk means the outgoing packets must carry VLAN tag header Access means the outgoing packets carry no VLAN tag header If packets have double VLAN tags one will be dropped and the other will still be left Hybrid is similar to Trunk and both of them will tag out When the port is set to Hybrid its packets will be untagged out if the VID of the outgoing packets with tag is the same as the one in the field of Untag VID of this port Untag VID Valid range is 1 4094 Works only when Role is set to Hybrid VLAN Tag Rule Figure 5 38 VLAN Tag Rule Waters Network Systems User s Manual Page 64 GSM 2112 POE 5 18 MAC Table MAC Table Configuration gathers many functions including MAC Table Information MAC Table Maintenance Static Forward Static Filter and MAC Alias which cannot be categorized to some function type They are described below Function name MAC Table Information Function Description Displays the static or dynamic learning MAC entry and the state for the selected port Parameter description Port Select the port Search Set up the MAC entry The default is 22 22 22 22 22 MAC Displays the MAC address of the entry selected from the searched MAC entries table Alias Set up the Alias for the selected MAC entry Set Alias Save the Alias of MAC e
67. d set gid lt gid gt Used to set the group ID lt gid gt group ID lt gid gt a z A Z 0 9 Set role set role Used to set role lt master slave gt lt master slave gt lt master slave gt master act as master or master slave actas slave slave Show show Used to display the None None configuration of the virtual stack Waters Network Systems User s Manual Page 123 GSM 2112 POE 7 0 Maintenance The possible causes for a no link LED status are as follows The attached device is not powered on The cable may not be the correct type or is faulty The installed building premise cable is faulty The port may be faulty 7 1 Examples 1 Computer A connects to Computer B but cannot connect to Computer C a The network cable from Computer C may be faulty Check the link act status of Computer C on the LED indicator Try another network device with this connection b The network configuration of Computer C may be faulty Verify the network configuration on Computer C 2 The uplink connection function fails to work a Please check the uplink setup of the Managed Switch to verify the uplink function is enabled 3 The console interface does not appear on the console port connection a The COM port default parameters are Baud Rate 57600 Data Bits 8 Parity Bits None Stop Bit A Flow Control None Check the COM port to confirm that it is working property in the terminal program and that you are using the correct COM port
68. dcast packets will be issued The switch supports a random delay time for DHCP and boot delay for each device This Waters Network Systems User s Manual Page 57 GSM 2112 POE suppresses the broadcast storm while all devices are booting at the same time The maximum user defined delay time is 30 seconds If DHCP Broadcasting Suppression function is enabled the delay time is set randomly ranging from 0 to 30 seconds The exact delay time is computed by the switch itself The default is Disable DHCP Boot Figure 5 29 DHCP 5 17 VLANs The switch supports Tag based VLAN 802 1q and Port based VLANs 256 active VLANs are supported and VLAN ID can range from 1 4094 VLAN configuration is used to partition your LAN into small segments based on your LAN requirements By properly configuring VLANs you can improve security and increase performance 5 17 1 VLAN Mode Function name VLAN Mode Setting Function description The VLAN Mode Selection function includes five modes Port based Tag based Metro Mode Double tag and Disable Choose a mode by using the drop down list and selecting an item Click Apply and the settings will take effect immediately Parameter description VLAN Mode Disable Stop VLAN function on the switch In this mode no VLAN is applied to the switch Disable is the default setting for the VLAN mode Port based Port based VLAN is defined by port Any packet coming in or out from any one port of a por
69. ddresses Subnet mask The purpose of the subnet mask is to get more network addresses An IP device in a network must own its IP address composed of Network address and Host address otherwise communication with other devices cannot be made The network classes A B and C are all too large to fit for almost all networks so the subnet mask is introduced to solve this problem Subnet mask uses some bits from host address and makes an IP address look at the Network address Subnet mask number and host address It is shown in the following figure This reduces the total of IP numbers that a network is able to support by the power of 2 32 bits t Newomio HostiD Network 10 Subnet number The subnet mask is used to set the subnet mask value which should be the same value as that of the other devices resided in the same network it attaches Default gateway Set an IP address for a gateway to handle those packets that do not meet the routing rules predefined in the device If a packet does not meet the criteria for other pre defined path it must be forwarded to a default router on a default path This means any packet with undefined IP address in the routing table will be sent to this device unconditionally Default 192 168 1 254 DNS The Domain Name Server is used to serve the translation between IP address and name address The switch supports DNS client function to re route the mnemonic name address to DNS server to
70. de dhep hoot Enter into dhecp boot mode diag Enter into diag mode firmware Enter into firmware mode gvrp Enter into gvrp mode hostname Change hostname igmp Enter into igmp mode ip Enter into ip mode lag Enter into log mode mac table Enter into mac table mode management Enter into management mode max pkt len Enter into max packet length mode mirror Enter into mirror mode Figure 6 2 Command List Waters Network Systems User s Manual Page 105 GSM 2112 POE The following table lists the CLI commands and descriptions Command Syntax Description Argument Possible Value Global Commands End end Return to top mode None None Exit exit Returns to previous mode None None Help help Displays available commands When you use help all commands are displayed This command will help you distinguish between local and global commands None None History history Displays the list of commands you have been using during the session CLI supports up to 256 records If no argument is entered CLI will list total records up to 256 If an argument is provided CLI would display the number of records equal to the argument Optional Show last number of history records 1 2 3 256 Logout logout If you use this command via Telnet connection you will logout and disconnect If you used this command through direct console connection you will be logged out of the system a
71. description Waters Network Systems User s Manual Page 49 GSM 2112 POE Quality of Service QoS VLAN Tag Configuration Used for setting up the QoS belongs to VLAN operation Port Set the ports 1 12 respectively to allow the VLAN Tag QoS function to work Use Select All to set all the ports at the same time Bit 0 Bit 1 Bit 2 According to the arrangement of VLAN tagged priority eight types of traffic can be formed including 0 0 0 0 0 1 O 1 0 0 1 1 1 0 0 1 O 1 1 1 0 and 111 Class Set High Priority or Low Priority for each port respectively for the eight types of traffic Function name IP ToS Classification Function description Another QoS function is the application of Layer 3 on network framework This focus is on the TOS field of the IP header There are three bits in TOS field Bit 5 7 of TOS field will be used According to these three bits we could arrange eight traffics 000 001 010 011 100 101 110 111 As long as we change bit 5 7 of TOS field of IP header we will create the eight traffic packets High priority or Low priority can be set for each traffic class For instance if we set TOS 0 0 O to high priority and TOS 0 O 1 to Low Priority the packets that have bit 5 7 of TOS Field are 0 0 O from Port 2 and the packets that have bit 5 7 of TOS Field are 0 0 1 from Port 3 The two kinds of packets are transmitted for Port 1 until the port results in congestion The result is that the packets will be dropped pa
72. downtime can be attributed to wiring and connector problems 3 Make sure that an AC power cord is properly attached to the GSM 4 Be certain that each AC power cord is plugged into a functioning electrical outlet Use the PWR LEDs to verify each unit is receiving power 5 If the problem is isolated to a network device other than the Waters GSM switch it is recommended that the problem device be replaced with a known good device Verify whether or not the problem is corrected If not go to next step If the problem is corrected the Waters GSM switch and its associated cables are functioning properly 6 If the problem continues contact Waters Network Systems Customer Service at 800 328 2275 or email carolyni watersnet com for assistance When Calling for Assistance Please be prepared to provide the following information 1 Acomplete description of the problem including the following a The nature and duration of the problem b Situations when the problem occurs c The components involved in the problem d Any particular application that when used appears to create the problem 2 An accurate list of Waters Network Systems product model s involved Include the date s Waters Network Systems User s Manual Page 125 GSM 2112 POE 8 2 that you purchased the products from your supplier It is useful to include other network equipment models and related hardware including personal computers workstations terminals and prin
73. dress or domain name Set user set user Used to set up the account for lt username gt email None lt username gt the email server server account and password Show Show Used to display email None None configuration lt lt email gt gt Del all del all lt range gt Used to disable email sms and lt range gt del the lt range gt 1 24 trap of events range of events syntax 1 5 7 Del email del email Used to disable email of events lt range gt del the lt range gt 1 24 lt range gt range of email syntax 1 5 7 Del sms del sms Used to disable sms of events lt range gt del the lt range gt 1 24 lt range gt range of sms syntax 1 5 7 Del trap del trap Used to disable trap of events lt range gt del the lt range gt 1 24 lt range gt range of trap syntax 1 5 7 Set all set all lt range gt Used to enable email sms and lt range gt set the lt range gt 1 24 trap of events range of events syntax 1 5 7 Set email set email Used to enable email of the lt range gt set the lt range gt 1 24 lt range gt events range of email Waters Network Systems User s Manual GSM 2112 POE Page 109 Command Syntax Description Argument Possible Value syntax 1 5 7 Set sms set sms Used to enable the SMS of the lt range gt set the lt range gt 1 24 lt range gt events range of sms syntax 1 5 7 Set trap set trap Used to enable the trap of lt range gt set the
74. e STP Status Function description Spanning Tree Status displays the current status of 12 parameters The 12 parameters are described below Parameter description STP State Displays the current STP Enabled Disabled status Default is Disabled Bridge ID Displays the switch s bridge ID which is the MAC address of this switch Bridge Priority Displays the switch s current bridge priority setting Default is 32768 Designated Root Displays the root bridge ID of this network segment If this switch is a root bridge the Designated Root will show this switch s bridge ID Designated Priority Displays the current root bridge priority Root Port Displays port number connected to root bridge with the lowest path cost Root Path Cost Displays the path cost between the root port and the designated port of the root bridge Current Max Age Displays the current root bridge maximum age time Maximum age time is used to monitor STP topology When a bridge does not receive a hello message from root bridge until the maximum age time is counted down to 0 the bridge will treat the root bridge as malfunctioned and issue a Topology Change Notification TCN BPDU to all other bridges All bridges in the LAN will re learn and determine the root bridge Maximum Age time is assigned by root bridge in unit of seconds Default is 20 seconds Current Forward Delay Waters Network Systems User s Manual Page 74 GSM 2112 POE
75. e gt 1 to lt range gt system priority from 1 to 65535 65535 default 32768 Set trunk set trunk lt port Used to set up the status of lt port range gt port lt port range gt 1 to 12 lt method gt static lacp lt group gt 1 to 12 lt active LACP gt active passive Waters Network Systems User s Manual GSM 2112 POE Page 121 Command Syntax Description Argument Possible Value to active mode passive set the LACP to passive mode Show aggtr show aggtr Used to display the aggregator None None view view list Show lacp show lacp Used to display the detailed lt agatr gt aggregator lt aggtr gt 1 to detail detail lt aggtr gt information of the LACP trunk available from 1 to 12 12 group Show lacp show lacp Used to display the value of None None priority priority LACP priority Show status show status Used to display the aggregator None None status and the settings of each port VLAN Del port group Del tag group del port group lt name gt del tag group Used to delete the port based VLAN group Used to delete the tag based VLAN group lt name gt VLAN group to be deleted lt vid gt VLAN group to be deleted lt name gt port VLAN name lt vid gt 1 to 4094 Disable drop disable drop Used to set untagged frames to lt range gt ports to be lt range gt 1 to untag untag lt range gt not be dropped set syntax
76. e three speeds 10Mbps 100Mbps and 1000Mbps supported for TP media Duplex mode is half duplex and full duplex If the media is 1Gbps fiber it is 1000Mbps only The status of speed duplex mode is determined by Negotiation of both the local port and the link partner in Auto Speed mode User setting in Force mode The local port has to be preset according to its capability Default None depends on the result of the negotiation Flow Control Show each port s flow control status There are two types of flow control in Ethernet backpressure for half duplex operation and pause flow control IEEE802 3x for full duplex operation The switch supports both Default Disabled Wait State There is no side effect for the 10 100Mbps ports The setting of Wait State for the Gigabit ports will remove the issue of ignored pause frames and will resolve the minimum interframe gap of at least 14 bytes instead of the usual 12 bytes This applies for uncongested traffic as well The larger interframe gap will result in throughput rates less than 100 percent For example a stream of 64 byte frames and a stream of 1518 byte frames the maximum throughput is 97 7 percent and 99 9 percent respectively Waters Network Systems User s Manual Page 36 GSM 2112 POE Auto Logout OFF Port 11 Detail Information System Pen FeannectorTyoe 5r c CA i mode MM o Baud Rate 16 it 00 30 43 ma MFBR 5710L SNMP 1GMP Snooping Max Packet
77. each other Virtual Stack is disabled by default Auto Logout OFF Virtual Stack Configuration Disable v Deapenianl Policy h Virtual Stack fh Port f PoE Mi ETA rror Bandveldth Qos Note You should be logout every time when aw you change the state of Virtual Stack IGMP Snooping Max Packet Length DHCP Boot N Figure 5 8 Virtual Stack Waters Network Systems User s Manual Page 33 GSM 2112 POE Parameter description State Used for the activation or de activation of VSM Role The role that the switch would like to play in virtual stack Two types of roles including master and slave are offered The default is Master Group ID It is the group identifier GID which signs for VSM Valid letters are A Z a z 0 9 and _ characters The maximum length is 15 characters DOA 1 FEML2 SW System Virtual Stack Configuration System Information 1P Time CT enabie_y Management Policy Virtual Stack CI EE Port Note You should be logout every time when you change the state of Virtual Stack Configuration Diagnostics Figure 5 9 Virtual Stack 5 8 Port Configuration Port configuration includes the following functions Port Configuration Simple Counter Detail Counter Waters Network Systems User s Manual Page 34 GSM 2112 POE 5 8 1 Port Status The port status function gathers the current status for all ports The information is displayed by
78. ectively Auto Logout OFF System Per Port Priority Porno class porno class High y ME High CA GEE CTO High High High v High High High High 2 High arm Contiguration lagnostics TFTP Server Log Firmware Upgrade Reboot Logout Figure 5 20 Per Port Priority Function name VLAN Tag Priority Function description In VLAN tag there are three bits belonging to priority According to these three bits we could arrange eight traffics 000 001 010 011 100 101 110 1 1 1 We can set High priority or Low priority for each traffic class For instance if we set VLAN tagged priority 0 O O to high priority and VLAN tagged priority 0 0 1 to Low Priority and then include ports 1 2 3 in VLAN 2 that means the packets that have the value 000 in VLAN tagged field and VID equals two from Port 2 and the packets that have the value 0 0 1 in VLAN tagged field and VID equals two from Port 3 into the switch The two kinds of packets are transmitted for Port 1 until the port results in congestion The result is that the packets will be dropped partially from Port 3 because the packets belong to Low Priority For the use of VLAN Tag Priority function use the Configure button See ever were ae Auto Logout OFF e TE VLAN Tag Priority Mirror E VAN TOO Prieta Sen es mania AA A CI A NV O A A ES a re e ae e a a AT ora 1 1 1 High oe Firmware Upgrade Figure 5 21 VLAN Tag Priority Parameter
79. er device and the others will become the slave devices VSM offers a simple centralized management function It is not necessary to remember the address of all devices because the manager is capable of managing the network with the address of the Master device VSM is only available in Web UI While one switch become the Master two rows of buttons for the group device will appear on the top of the Web Ul You can use these buttons to connect to the Web UI of the devices of the group without logging into these devices The top left button is only for Master device See Figure3 9 The background color of the button you press will be changed to represent that the device is under your management Note It If you login via the console the grouping will be removed temporarily The device of the group will be shown as station address the last number of IP Address device name on the button e g 196 GEPoEL2 SW12 If no corresponding device exists will be displayed Once the devices successfully join the group they can be managed via the Master device and cannot be managed via telnet console web individually Up to 16 devices can be grouped for VSM however only one Master is allowed to exist in each group For Master redundancy you may configure more than two devices as Master device however the Master device with the smaller MAC value will be the Master All of these 16 devices can become the Master device and back up with
80. et of VLANs associated with currently active members and through which ports these members can be reached The following three functions are supported with GVRP GVRP Configuration DODO Timo Loavoaii Timo EA ee A 1 Figure 5 44 GVRP Configuration GVRP cannot be enabled unless the VLAN mode is set to Tag based Function name GVRP Config Function description The function of GVRP Config is used to configure each ports GVRP operation mode There are seven parameters to be configured which are described below Parameter description GVRP State Setting This function allows you to enable or disable the GVRP function Use the drop down list and select the Downward arrow key to choose Enable or Disable Select Apply and the function will take effect immediately Join Time Used to declare the Join Time in unit of centisecond Valid time range 20 100 centisecond Default 20 centisecond Leave Time Waters Network Systems User s Manual Page 70 GSM 2112 POE Used to declare the Leave Time in unit of centisecond Valid time range 60 300 centisecond Default 60 centisecond Leave All Time A registered device will be de registered at the end of this time period If someone still issues a new join then a registration will be kept in the switch Valid range 1000 5000 unit time Default 1000 unit time Default Applicant Mode There are two modes that indicate the type of participant normal participant
81. frequency Default update time is three seconds Auto Logout OFF POLLa S Waz Sy Detail Counter Configuration Select Porti Refresh Interval 3sec Y ple Counter Time elapsed since last reset O Days O Hours 56 Mins 7 Sees Pot Mirror OOOO Receive otal Tetai CT Prada Qos 1000 125056 XT IGMP Snooping Max Packet Length DHCP Boot Vian MAC Table CA GVRP om Rx Low Priority Pockets Receive Size Counters CUSE 65 127 Bytes Alorm Rx 120 255 Bytes Comfia Re 250 511 Avene Fri TEE vie es Log 2 Firmware Upgrade Reboot a Figure 5 14 Detail Counter Function name Detail Counter Function description Displays the detailed counting number of each port s traffic In Figure 5 14 the window shows all counter information for one port at a time Parameter description Rx Packets The counting number of the packets received RX Octets Total received bytes Rx High Priority Packets Number of Rx packets classified as high priority Rx Low Priority Packets Number of Rx packets classified as low priority Rx Broadcast Shows the counting number of the received broadcast packet Rx Multicast Shows the counting number of the received multicast packet Tx Packets The counting number of the packet transmitted TX Octets Waters Network Systems User s Manual Page 41 GSM 2112 POE Total transmitted bytes Tx High Priority Packets Number of Tx packets classified as high priority Tx Low Priority
82. g Static Filter table Maintain the table by filling in MAC Address VID VLAN ID and Alias fields individually You can delete the entry by using Delete Parameter description MAC Six byte Ethernet hardware address and usually expressed by hex and separated by hyphens For example 00 40 C7 D6 00 02 VID VLAN identifier This will be filled only when tagged VLAN is applied Valid range is 1 4094 Alias Assigned MAC alias name Auto Logout Orr Static Filtering MAC Figure 5 42 Static Filtering MAC Function name MAC Alias Function description MAC Alias function is used to assign MAC address an English name This will help identify which MAC address belongs to a user in the illegal access report At the initial time all pairs of the existing alias name and MAC address are shown There are three MAC alias functions in this function folder including MAC Alias Add MAC Alias Edit and MAC Alias Delete Use Create Edit to add modify a new or an existing alias name for a specified MAC address or mark an existing entry for deletion Alias name must be composed of A Z Waters Network Systems User s Manual Page 68 GSM 2112 POE a z and 0 9 only and has a maximal length of 15 characters Function name MAC Alias Create Edit or Delete Function description In the MAC Alias function MAC Alias Add Edit function is used to let you add or modify an association between MAC address and an English name Se
83. he name is used to connect to the server Thus the switch DNS client program such as a browser will ask the DNS to resolve the IP address of the named server Waters Network Systems User s Manual Page 20 GSM 2112 POE 5 0 Web Based Management This section illustrates the configuration and management of the GSM switch through a web interface Management through the web interface allows you to easily access and monitor the switch through any port The default values of the managed switch are listed in the table below IP Address 192 168 1 1 Subnet Mask 255 255 255 0 PREMIACENA VEN 192 168 1 254 Username admin Password admin Table 5 1 Once the GSM switch has been configured via the switch s serial interface you are ready to use the web management function You must be connected to the switch via one of the Ethernet ports Access your web browser and type in http 192 168 1 1 or the assigned IP address in the address field The login screen will be displayed see Figure 5 1 requesting the username and password for login authentication The default username and password are both admin Click on the Login button The login process now is completed If you forget the password click the link Forget Password in WebUl See Figure 5 1 or input Ctrl Z in from the CLI s login screen The system will display a serial number Write down this serial number and contact your vendor The vend
84. ilepath gt upgrade lt filepath gt path path lt filepath gt firmware upgrade file path upgrade file path Show show Used to display information for None None ftip server Upgrade upgrade Used to run the upgrade None None function Waters Network Systems User s Manual Page 111 GSM 2112 POE Command Syntax Description Argument Possible Value GVRP Disable disable Used to disable the GVRP None None function Enable enable Used to enable the GVRP None None function Group group lt group Used to modify a GVRP group s lt group number gt lt group number gt setting The applicant or enter the GVRP number gt registrar mode of an existing group you have 1 4094 GVRP group per port can be changed created using the VID Available range 1 to 4094 Set applicant set applicant lt range gt lt normal non participant gt Used to set default applicant mode for each port lt range gt port range syntax 1 5 7 available from 1 to 12 lt normal gt set applicant as normal mode lt non participant gt set applicant as non partipant mode lt range gt 1 to 12 Set registrar set registrar lt range gt lt normall fixed forbidden gt Used to set default registrar mode for each port lt range gt port range syntax 1 5 7 available from 1 to 12 lt normal gt set registrar as normal mode lt fixed gt set registrar as fixed mode lt forbidden gt set registrar as fo
85. ion retrieves the previous confirmed working configuration stored in the flash memory to update start configuration When restoring the configuration the system s start configuration is updated and will be changed its system settings after rebooting the system Waters Network Systems User s Manual Page 96 GSM 2112 POE Eee Auto Logout orf Restore User Configuration Successfully Figure 5 68 Restore User Configuration Message 5 24 3 Configuration File Function name Config File Function description Use this function to back up or reload the configuration files of Save As Start or Save As User via TFTP Eee Auto Logout orf Configure Export Import File Path CA o Figure 5 69 Configure Export Import Path Parameter description Export File Path Export Start Export Save As Start s configuration file stored in flash Export User Cont Export Save As User s configuration file stored in flash Import File Path Waters Network Systems User s Manual Page 97 GSM 2112 POE Import Start Import Save As Start s configuration file stored in flash Import User Cont Import Save As User s configuration file stored in flash 5 25 Diagnostics Three functions including Diagnostics Loopback Test and Ping Test are available for device self diagnostics Each of them will be described in detail in the following sections Loopback Test Function name Diagnostics Function description Diagnostics
86. iption Waters Network Systems User s Manual Page 63 GSM 2112 POE Port 1 12 Port number PVID This PVID range will be 1 4094 Before you set a number x as PVID you have to create a tag based VLAN with VID x For example if port x receives an untagged packet the switch will apply the PVID assume as VID y of port x to tag this packet The packet then will be forwarded as the tagged packet with VID y Rule 1 Forward only packets with VID matching this port s configured VID You can apply Rule 1 to filter unwanted traffic In Rule 1 in order to determine whether or not to forward a packet the port checks to see if it is a member of the VLAN For example if port 1 receives a tagged packet with VID 100 VLAN name VLAN100 and if rule 1 is enabled the switch will check if port 1 is a member of VLAN100 If it is the received packet is forwarded otherwise the received packet is dropped Rule 2 Drop untagged frame You can configure a given port to accept all frames Tagged and Untagged or only tagged frames If you choose all frames the packets with tagged or untagged will be processed If you choose only tagged frames only the packets carrying VLAN tag will be processed The remainder of the packets will be discarded Note For example if rule 1 is enabled port 1 receives an untagged packet the switch will apply the PVID of port 1 to tag this packet The packet then will be forwarded But if the PVID of port 1 is 100 an
87. k accordingly and display this value in the field of Path Cost Status Otherwise the value set by the administrator set up will be displayed 802 1w RSTP recommended value Valid range 1 200 000 000 10 Mbps 2 000 000 100 Mbps 200 000 1 Gbps 20 000 Default 0 Priority Port Priority and Port Number are combined to form the Port ID Port IDs are often compared in order to determine which port of a bridge would become the Root Port The range is 0 240 Default is 128 Waters Network Systems User s Manual Page 77 GSM 2112 POE 5 21 Admin Edge Port If you select Yes this port will be an edge port An Edge Port is a port connected to a device that knows nothing about STP or RSTP Usually the connected device is an end station Edge Ports will immediately transit to forwarding state and skip the listening and learning state because the edge ports cannot create bridging loops in the network This will expedite the convergence When the link on the edge port toggles the STP topology keeps unchanged Unlike the designate port or root port though an edge port will transit to a normal spanning tree port immediately if it receives a BPDU Default No Admin Point To Point A port is a point to point link from RSTP s view if it is in full duplex mode It is a shared link if it is in half duplex mode RSTP fast convergence can only happen on point to point links and on edge ports This can expedite the convergence bec
88. k on Apply to save the settings With QoS configurations the Default Class is either set to high or low When you set one of the five QoS functions listed above packets that do not belong to this QoS setting are viewed as Default Class For example if you set QoS function as VLAN Tag Priority mode and then choose Default Class as High the priority of the packets with no tag will be considered as High priority The initial value of the Default Class is High Auto Logout OFF Quality of Service QoS Configuration Per Port Priority VLAN Tag Priority IP Tos Classification OIP TCP UDP Port Classification 1P Diffserv Classification Log Firmware Upgrade boot Logout Figure 5 19 QoS Configuration The QoS functions listed in Figure 5 19 are listed below Function name Per Port Priority Function description QoS priority can be assigned including High and Low for each port For example if IP packets from Port 2 and Port 3 are transmitted at the speed of 1Gbps to Port 1 and the Class of Port 2 is set as High and Port 3 is set as Low then the packets of Port 3 will be dropped when the congestion happens because Port 2 has a higher precedence of transmitting packets Parameter description Waters Network Systems User s Manual Page 48 GSM 2112 POE Port No Choose the port 1 12 respectively with Priority Class on Per Port Priority function Class Set High Priority or Low Priority for each port resp
89. lable 1to to12 gt port range gt lt ebl gt on a particular port 12 lt ebl gt 0 OFF Disable reauthentication 1 ON Enable reauthentication lt ebl gt 0 or 1 default is 1 Set reAuthMax set reauthmax Use to set the number of reauthentication attempts that are permitted before the port lt port range gt syntax 1 5 7 available 1 to 12 lt port range gt 1to12 lt max gt 1 10 Waters Network Systems User s Manual GSM 2112 POE Page 107 Command Syntax Description Argument Possible Value becomes unauthorized lt max gt max value default is 2 range 1 10 Set Set This command sets a constant lt port range gt syntax lt port range gt 1 ReAuthPeriod reauthperiod that defines a non zero number 1 5 7 available 1 to to 12 lt port range gt of seconds between periodic 12 lt Sec gt lt sec gt reauthentication of the lt sec gt timer range 1 65535 supplicant 1 65535 default is 3600 Set set This command sets a timer lt port range gt syntax lt port range gt server Timeout servertimeout lt port range gt lt sec gt used by the Backend Authentication state machine to determine timeout conditions in the exchanges between the Authenticator and the Supplicant or Authentication Server The initial value of this time is either suppTimeout or serverTimeout 1 5 7 available 1 to 12 lt sec gt timer range 1 6553
90. lect Create Edit to add a new record with name Select the MAC Alias Delete function to remove an alias name from a MAC address You can select an existing MAC address or alias name for removal Auto Logout orr MAC Alias oo 40 e7 66 00 Jor aac 1 00 40 c7 d6 00 02 Hello COMET 6 00 01 Log Firmware Upgrade Reboot Figure 5 43 MAC Alias Parameter description MAC Address Six byte Ethernet hardware address and usually expressed by hex and separated by hyphens For example 00 40 C7 D6 00 01 Alias MAC alias name you assign Note If there are too many learned MAC addresses it is recommended to input the MAC address and alias name directly Waters Network Systems User s Manual Page 69 GSM 2112 POE 5 19 GVRP Configuration GVRP is an application based on the Generic Attribute Registration Protocol GARP mainly used to automatically and dynamically maintain the group membership information of the VLANs GVRP provides the VLAN registration service through a GARP application The GARP Information Declaration GID is used to maintain the ports associated with their attribute database and GARP Information Propagation GIP to communicate among switches and end stations With GID information and GIP GVRP state machine maintain the contents of Dynamic VLAN Registration Entries for each VLAN and propagate these information to other GVRP aware devices to setup and update their knowledge database the s
91. lt gt 1 or 0 65535 0 lt default gt default class all other TCP UDP ports 1 high O low lt match gt special lt match gt 1 or 0 Waters Network Systems User s Manual GSM 2112 POE Page 117 Command Set default Syntax set default lt class gt Description Used to set priority class of the packets that QoS doesn t affect Argument TCP UDP class 1 high O low lt class gt class of service setting 1 high 0 low Possible Value lt class gt 1 or 0 Set diffserv set diffserve lt ds range gt lt class gt Used to set class of ports on IP DiffServe QoS lt ds range gt dscp field syntax 1 5 7 available from 0 to 63 lt class gt class of service setting 1 high O low lt ds range gt 0 to 63 lt class gt 1 or 0 Set mode set mode lt port pri_tax to s layer4 diffserv gt Used to set QoS priority mode of the switch lt port gt per port priority lt pri_tag gt vlan tag priority lt tos gt ip tos classification lt diffserv gt ip diffserv classification Port pri_tag tos layer4 diffserv Set port lt range gt lt class gt set port lt range gt lt class gt Used to set class of ports on port based QoS lt range gt port range syntax 1 5 7 available from 1 to 12 lt class gt class of service setting 1 high O low lt range gt 1 to 12 lt class gt 1 or 0 Set pri tag set p
92. ment Possible n_a Set Set Used to set daylight savings hr daylight saving hr daylight 5 daylightsaving daylightsaving time hour range 5 to 5 to 5 lt hr gt MM daylight saving MM 01 12 lt MM DD HH gt start month 01 12 DD 01 31 lt mm dd hh gt DD daylight saving HH 01 23 start Day 01 31 mm 01 12 HH daylight saving dd 01 31 start hour 01 23 hh 00 23 mm daylight saving end month 01 12 dd daylight saving end day 01 31 hh daylight saving end hour 00 23 Set manual set manual Used to set the current time YYYY Year 2000 YYYY 2000 lt YYYY MM DD manually 2036 2036 gt lt hh mm ss gt MM Month 01 12 MM 01 12 DD Day 01 31 DD 01 31 hh Hour 00 23 hh 00 23 mm minute 00 59 mm 00 59 ss second 00 59 ss 00 59 Set ntp set ntp lt ip gt Used to set the current time via lt IP gt ntp server IP lt timezone gt lt timezone gt the NTP server address or domain 12 11 0 name 1 13 lt timezone gt time zone GMT range 12to 13 Show show Used to show the time None None configuration including current time NTP server timezone daylight saving daylight saving start and daylight saving endl Trunk Del trunk del trunk lt port Used to delete the truanking lt port range gt port lt port range gt 1 range gt port range syntax 1 5 7 to12 available from 1 to 12 Set priority set priority Used to set up the LACP lt range gt available lt rang
93. meter parameter each port Show security show security Displays the authentication None None status of each port Waters Network Systems User s Manual Page 108 GSM 2112 POE Command Syntax Description Argument Possible Value Show state Show state Displays the Radius server None None configuration Account Commands Add add Used to create a new guest lt name gt new At least 5 user When a new guest user account name characters is created the new password must be entered and confirmed Del del lt name gt Used to delete an existing lt name gt existing None account user account Modify modify lt name gt Used to modify the username lt name gt existing None and password of an existing user account account Show show Used to display the system None None account including account name and identity Alarm lt lt email gt gt Del mail del mail Used to remove the lt gt email address lt gt 1to6 address address lt gt configuration of an email number range 1 to 6 address Del server del server user Used to remove the None None user configuration of the server user account and password Set mail set mail Used to set up an email lt gt email address lt gt 1106 address address lt gt address number range 1 to 6 lt mail address gt Set server set server lt ip gt Used to set up the IP address lt ip gt email server ip None of the email server ad
94. minutes seconds year For instance Wed Apr 23 12 10 10 2004 BIOS version The version of the BIOS Firmware version The firmware version Hardware Mechanical version The version of Hardware and Mechanical The figure before the hyphen is the version of electronic hardware the one after the hyphen is the version of mechanical Serial number The serial number is assigned by the manufacturer Host IP address The IP address of the switch Host MAC address It is the Ethernet MAC address of the management agent in this switch Waters Network Systems User s Manual Page 25 GSM 2112 POE Device Port Show all types and numbers of the port in the switch RAM size The size of the DRAM in this switch Flash size The size of the flash memory in this switch 5 3 IP Configuration IP configuration is one of the most important configurations in the switch Without the proper setting the network manager will not be able to manage or view the device The switch supports both manual IP address setting and automatic IP address setting via DHCP server When IP address is changed you must reboot the switch so the setting takes effect and uses the new IP for management access The IP Configuration Menu is accessed from the System Menu When you click on System the submenu commands are displayed Click on IP to make changes to the IP setting Auto Logout 3 min Y GEPOLL2 5W12 a System IP Configuration 0 0 0 0 Note You
95. nd return to the login prompt None None Restore restore default Default Restore user restore user Use this command to restore the startup configuration provided by factory default If the restore is successful you will be prompted to reboot Once rebooted startup configuration will be reset to factory default Restores startup configuration as defined by user configuration If restoring is successful you will be prompted to reboot After restoring the user defined configuration all changes in the startup configuration would be lost After rebooting the entire startup configuration will replace the user defined configuration None None None None Save Start save start Waters Network Systems Use this command to save the current configuration as the startup configuration This command must be used in User s Manual GSM 2112 POE None None Page 106 Command Syntax Description Argument Possible Value order to use the current configuration if the switch is rebooted Save User save user Use this command to save the None None current configuration as the user defined configuration This command saves your current configuration into the non volatile FLASH as the user defined configuration Local Commands 802 1x Set max set max This command sets the number lt port range gt syntax lt port range gt 1 request request
96. ng and cannot be altered Working Configuration The working configuration is the current configuration and can be changed any time The configurations you are using are saved into this configuration file This is updated each time you click on Apply User Configuration User configuration is the specified file for backup purposes and can be updated while confirming the configuration You can retrieve this configuration by performing Restore User Configuration Configuration Save as Start Configuration avo as User Configuration Restore Default Configuration Included default ip address Restore Orteult Configuration withowt changing current lp address Figure 5 63 Configuration Waters Network Systems User s Manual Page 94 GSM 2112 POE 5 24 1 Configuration File Function name Save As Start Configuration Function description Save the current configuration as a start configuration file in flash memory Auto Logout OFF Configuration Save as Start Configuration Save as User Configuration Restore Default Configuration included default ip address Restore Ortoult Configuration withowt changing current ip address Restore User Configuration Log Firmware Upgrade Reboot Logout Figure 5 64 Configuration Function name Save As User Configuration Function description Save the current configuration as a user configuration file in flash memory Configuration Auto Logout orr CEVOELZ SW1Z Sy
97. ngress rate lt range gt Used to cancel the ingress rate of the port lt range gt syntax 1 5 7 available from 1 to 12 lt range gt 1 to 12 Disable storm rate disable store rate lt range gt Used to cancel the storm rate of the port lt range gt syntax 1 5 7 available from 1 to 12 lt range gt 1 to 12 Enable egress rate enable egress rate lt range gt lt data_rate gt Used to set the egress rate of the port lt range gt syntax 1 5 7 available from 1 to 12 lt data rate gt 0 1000 lt range gt 1 to 12 lt data rate gt 0 1000 Enable ingress rate enable ingress rate lt range gt Used to set up the Ingress rate of the port lt range gt syntax 1 5 7 available from 1 to lt range gt 1 to 12 Waters Network Systems User s Manual GSM 2112 POE Page 110 Command Enable storm rate Syntax lt data_rate gt enable storm rate lt range gt lt data_rate gt Description Used to set the storm rate of the port Argument 12 Possible Value lt data rate gt 0 lt data rate gt 0 1000 1000 lt range gt syntax 1 5 lt range gt 1 to 7 available from 1 to 12 12 lt data rate gt 0 lt data rate gt 0 1000 1000 Show Show Used to display all current None None settings for bandwidth Config file E
98. nt screen will remain on The left side of the screen displays the main menu tree for the web functions This a hierarchical menu When you make a selection a sub menu may be displayed with additional function in the sub menu The functions of each folder are described in this section The following list is the full function tree for web user interface System Port Mirror Bandwidth QoS SNMP IGMP Snooping Max Packet Length DHCP Boot VLAN MAC Table GVRP STP Trunk 802 1X Alarm Configuration Diagnostics TFTP Server Log Firmware Upgrade Reboot Logout Waters Network Systems User s Manual Page 24 GSM 2112 POE 5 2 System Information Function name System Information Function description Show the basic system information Parameter description Model name The model name of this device System description Describes the device L2 Managed Switch Location The location where this switch is being used User defined Contact For the purpose of managing and maintaining the device enter the contact person and phone to be used for help You can configure this parameter through the device s user interface or SNMP Device name The name of the switch User defined Default is GEPoEL2 SW12 System up time The time accumulated since this switch was powered up The format is day hour minute and second Current time Show the system time of the switch The format day of week month day hours
99. ntry you set up Search Find the entry that meets your setup Previous Page Move to the previous page Next Page Move to the next page Alias The Alias of the searched entry MAC Address The MAC address of the searched entry Port The port that exists in the searched MAC Entry VID VLAN Group that MAC Entry exists Waters Network Systems User s Manual Page 65 GSM 2112 POE State Displays the method for this MAC entry It may show Dynamic MAC or Static MAC hee Auto Logout orr MAC Table Information Faroe Dos al MBa non gt E setect Unselect al P Smonping mac rr rr rr rr Max Packet Length Ea ENS as LN A A A eS SND IGM Figure 5 39 MAC Table Information Function Name MAC Table Maintenance Function Description This function allows the user to set up the processing mechanism of the MAC Table An idle MAC address exceeding MAC address age out time will be removed from the MAC Table The range of age out time is 10 65535 seconds and the setup of this time will have no effect on static MAC addresses Parameter description Aging Time Deletes a MAC address which is idling for a period of time from the MAC Table which will not affect static MAC address Range of MAC address aging time is 10 65535 seconds The default aging time is 300 seconds Flush Remove all entries that do not belong to the static MAC entry from the MAC table 4 System MAC Maintenance En
100. numbers The 23 trap events will be sent out to SNMP Manager when trap event occurs Once trap events have been selected enter your desired email addresses and mobile phone numbers Select Apply to complete the alarm configuration The alarm settings will take effect in a few seconds Note SMS may not work in your mobile phone system It is customized for different systems Parameter description Email Mail Server IP address of the server transferring your email Username Username on the mail server Password Password on the mail server Email Address 1 6 Additional email addresses that would like to receive the alarm message SMS SMS Server IP address of the server transferring your SMS Username Username in ISP Password Password in ISP Mobile Phone 1 6 Additional mobile phone numbers that would like to receive the alarm message Auto Logout orr Alarm Configuration Max Packet DHCP Hoot VLAN MAC Table ces se Trunk 802 1 Figure 5 62 Alarm Configuration 5 24 Configuration The switch supports three copies of configurations including the default configuration working configuration and user configuration for your configuration management The three copies are described below Note l you make changes to the configuration you must save the configuration before rebooting the switch Waters Network Systems User s Manual Page 93 GSM 2112 POE Default Configuration The factory setti
101. ompletion the configuration is unchanged 3 1 Hardware Features The GSM switch provides the comprehensive features listed below for users to perform network administration functions efficiently and provide maximum network security Conforms to IEEE 802 3 802 3u 802 3x and 802 3ab and 802 3z 10 auto sensing 10 100 1000 ports Two 10 100 1000Base TX or 1000Mbps SFP Fiber module slots 208KB on chip frame buffer Jumbo frame support Programmable classifier for QoS Layer 4 Multimedia 8K MAC address and 4K VLAN support IEEE802 1Q Per port shaping policing and broadcast storm control IEEE802 1Q in Q nested VLAN support Full duplex flow control IEEE802 3x and half duplex backpressure Extensive front panel diagnostic LEDs System Power TP Port1 12 LINK ACT 10 100 1000Mpbs SFP Ports 11 and 12 LINK ACT 3 2 Software Features The following lists management highlights of the GSM switch Supports the status of port configuration Provides the status of each port and allows for port configuration Supports per port traffic monitoring counters Supports a snapshot of the system information upon login Supports static trunk function Three user login only first login administrator can configure the device The rest of the users can only view the switch Maximum packet length can be up to 9208 bytes for jumbo frame application Supports DHCP broadcasting suppression Waters Network Systems User s Manual Page 6 GSM 2112 POE
102. ons for managed valid IP Range including any and custom The default is any Custom allows you to assign an effective IP range The valid range is 0 0 0 0 255 255 255 255 Incoming Port The switch supports two options for managed valid Port Range including any and Custom The default is any Custom allows you to select the ports that should be used and the ports that should be restricted in the management security configuration Access Type The switch supports two options for managed valid Access Type including any and Custom The default is any HTTP Telnet and SNMP if Custom has been chosen HTTP Telnet and SNMP can be used to access and managing the switch Action The switch supports options for managed valid Action Type including deny and accept The default is deny Deny restricts access switch management Accept provides the authority to manage the switch Edit Create A new entry of Management Security Configuration can be created after the initial parameters have been setup Use the Edit Create button Delete Waters Network Systems User s Manual Page 32 GSM 2112 POE Removes the existed entry of management security configuration from the management security table 5 7 Virtual Stack Function name Virtual Stack Function description Virtual Stack Management VSM is the group management function VSM configuration automatically groups switches in the same LAN One switch among the group will be the mast
103. onvenient function for browsing the information for a single port To view a single port click on the port and an information window will be displayed See Figure 5 3 Auto Logout 3 min Port 1 Detail Information Mirror up Bandwidth 095 State Enabled oe auto NeaotTatien n obea IGMP Sapopino C T 100 Fw Max Packet Length ten neue Flow Control Enabled ve iragress all state ois ob e d MAC Table Je ress J Y i Rat 9 M cvo inoress Storm stne v sobies Tunk ET o 02 1 CTE Os abies Alarm Egress All Rate OM Configuration Dlognostics 303763 TETP Server CO 270573 tog CLC 2 17 Firmware Upgrade Reboot 1226 Logout Tx Collision o Rx Error Pocket o Figure 5 3 Port Detail Information Figure 5 3 shows basic information of the selected port You will be able to view port status traffic status and bandwidth rating for egress and ingress respectively Waters Network Systems User s Manual Page 23 GSM 2112 POE On the left top corner there is a pull down list for Auto Logout For additional switch security an auto logout function is available to protect you from illegal users if you don t logout of the management functions when you are finished The Auto Logout default is set to three minutes You may change the time by using the pull down list for Auto Logout The system will automatically log out if there has been no activity during the time you choose There is also an option for OFF If OFF is selected the manageme
104. or will provide you with a temporary password Use this new password as ID and Password to temporarily login This new password is a limited use password and will only allow you log into the system one time Therefore modify your password one you login to the system The switch supports a simple user management function allowing only one administrator to configure the system at a time If there are two or more users using administrator s identity the switch will allow the one who logins first to configure the system The rest of users even with administrator s identity can only monitor the system Without administrator s identity you can only monitor the system A maximum of three users are able to login simultaneously in the switch To optimize the display effect we recommend you use Microsoft IE 6 0 and above Netscape V7 1 and above or FireFox V1 00 and above with a resolution 1024 x 768 Waters Network Systems User s Manual Page 21 GSM 2112 POE Please Input Username amp Password Username admin Figure 5 1 Login Screen 5 1 Overview of Web Management Once you have logged into the switch the opening screen displays the System Information On the left side of the screen the function tree for all of the management functions is displayed We will explore these functions in this chapter The following information is listed on the opening screen Model System Description Location Contact Device Name Sys
105. pplicant issues an EAP Logoff message to Authentication server the active port being used is set to unauthorized Waters Network Systems User s Manual Page 86 GSM 2112 POE LJ mai Bridge A on LAN Radius Server PC Port connect 0 Access blocked EAPOL Start EAPOL Authenticator EAP Request Identity Radius Access Request EAP Response Identity Radius Access Challenge EAP Request EAP Response cred Radius Access Request EAP Success Radius Access Accept EAP Failure EAP Logoff Access allowed Figure 5 56 802 1x Authentication The type of authentication supported in the switch is multihost 802 1x In this mode once a supplicant is authorized the devices connected to this port can access the network resources 802 1X Port based Network Access Control function supported by the switch is complex Support by basic multihost mode can distinguish the device s MAC address and its VID The following table summarizes the combination of the authentication status and the port status versus the status of port mode set in 802 1X Port mode port control state set in 802 1X port setting Entry Authorized means MAC entry is authorized Port Mode Port Control Authentication Port Status Disable Don t Care Don t Care Port Uncontrolled Multihost Auto Successful Port Authorized Multihost Auto Failure Port Unauthorized Multihost ForceUna
106. r s Manual Page 71 GSM 2112 POE GVRP counters are divided into Received and Transmitted categories which allows you monitor the GVRP actions They are GARP packets GVRP Counter Porth Figure 5 45 GVRP Counter Parameter description Received Total GVRP Packets Total GVRP BPDU received by the GVRP application Invalid GVRP Packets Number of invalid GARP BPDU received by the GARP application LeaveAll Message Packets Number of GARP BPDU with Leave All message received by the GARP application JoinEmpty Message Packets Number of GARP BPDU with Join Empty message received by the GARP application JoinIn Message Packets Number of GARP BPDU with Join In message received by the GARP application LeaveEmpty Message Packets Number of GARP BPDU with Leave Empty message received by the GARP application Empty Message Packets Number of GARP BPDU with Empty message received by the GARP application Transmitted Total GVRP Packets Total GARP BPDU transmitted by the GVRP application Invalid GVRP Packets Number of invalid GARP BPDU transmitted by the GVRP application LeaveAll Message Packets Number of GARP BPDU with Leave All message transmitted by the GARP Waters Network Systems User s Manual Page 72 GSM 2112 POE application JoinEmpty Message Packets Number of GARP BPDU with Join Empty message transmitted by the GARP application JoinIn Message Packets Number of GARP BPDU with Join In message transmitted by the
107. rbidden mode lt range gt 1 to 12 lt normall fixed forbidden gt nor mal or fixed or forbidden Set restricted set restricted Used to set the restricted mode lt range gt port range lt range gt 1 to lt range gt for each port syntax 1 5 7 12 lt enable available from 1 to 12 lt enable disable gt lt enable gt set disable gt restricted enabled enable or lt disabled gt set disable restricted disabled Set timer set timer Used to set GVRP join time lt range gt port range lt range gt 1 to lt range gt lt join gt leave time and leaveall time for syntax 1 5 7 12 lt leaveall gt each port available from 1 to 12 lt join gt 20 to lt join gt join timer 100 available from 20 to lt leave gt 60 to 100 300 lt leave gt leave timer lt leaveall gt available from 60 to 300 lt leaveall gt 1000 to 5000 Leave time must be equal to or greater to the join time 1000 to 5000 Waters Network Systems User s Manual GSM 2112 POE Page 112 Command Show config Show counter Syntax show config show counter Description To display the GVRP configuration Used to display the counter number of the port Argument None lt port gt port number Possible Value None lt port gt available from 1to 8 Show group show group Used to display the G
108. re 3 4 Port based VLAN Diagram 1 Asa member of a VLAN you cannot be a member of a VLAN in another switch 2 As a member of a VLAN you cannot access a member of another VLAN Waters Network Systems User s Manual Page 11 GSM 2112 POE 3 The switch manager has to assign different names for each VLAN group at one switch Case 2b Port based VLAN See Figure 3 5 ma gt AA i gt Figure 3 5 Port based VLAN Diagram This is an example of how VLANs can be set up between two switches 1 VLAN1 members cannot access VLAN2 VLAN3 and VLAN4 members 2 VLAN2 members cannot access VLAN1 and VLAN3 members but they can access VLAN4 members VLAN3 members cannot access VLAN1 VLAN2 and VLAN4 VLAN4 members cannot access VLAN1 and VLAN3 members but they can access VLAN2 members PO Example 3a The same VLAN members can be at different switches with the same VID See Figure 3 6 Figure 3 6 Attribute based VLAN Waters Network Systems User s Manual Page 12 GSM 2112 POE 4 0 Network Applications There are three ways to access switch management functions 1 RS 232 serial port connection CLI 2 Telnet 3 Web Note Before accessing management functions through Telnet or the Web you must modify the IP address subnet mask default gateway and DNS through the RS 232 connection 4 1 Using the RS 232 Serial Port Connection To configure the switch via the RS 232 serial port connection follo
109. ri_tax lt port range gt lt tag range gt lt class gt Used to set class of ports on VLAN tag based QoS lt range gt port range syntax 1 5 7 available from 1 to 12 lt tag range gt tag priority level syntax 1 5 7 available 0 to 7 lt class gt class of service setting 1 high O low lt port range gt 1 to 12 lt tag range gt 0 to 7 lt class gt 1 or 0 Set simple layer4 set simple layer4 lt gt Used to set class of ports on simple mode of Layer 4 QoS lt gt layer4 configuration mode valid values are as follows O disable ip tcp udp port classification 1 down prioritize web browsing e mail FTP and news 2 prioritize IP telephony VoIP 3 prioritize iSCSI 4 prioritize web browsing email FTP transfers and news 5 prioritize streaming audio video lt gt 0 6 Waters Network Systems User s Manual GSM 2112 POE Page 118 Command Syntax Description Argument Possible Value 6 prioritize databases Oracle IBM DB2 SQL Microsoft Set tos set tos lt port Used to set class of ports on IP lt port range gt lt port range gt 1 range gt lt tos TOS QoS syntax 1 5 7 to 12 range gt lt class gt available from 1 to lt tos range gt 0 12 lt tos range gt tos to 7 precedence field lt class gt 1 or 0 syntax 1 5 7 available from 0 to 7 lt class gt clas
110. round the switch to allow attachment of cables power cord and air circulation 1 Plug in the power cord into the switch 2 Install the proper cable for network connection 3 Plug the power cord into the power source 3 6 Optional SFP Modules The SFP modules are hot swappable so you can plug or unplug the modules before and after the switch is turned on If you are installing the optional SFP fiber transceivers follow these guidelines Verify that the SFP module is the correct module and conforms to the chassis Slide the module along the slot Seat the module against the slot socket connector Install the proper cable for network connection NS 3 7 TP Port and Cable Installation Twisted pair port supports MDI MDI X auto crossover so both types of cable straight through Cable pin outs for RJ 45 jack 1 2 3 6 to 1 2 3 6 in 10 100M TP 1 2 3 4 5 6 7 Waters Network Systems User s Manual Page 9 GSM 2112 POE 8 to 1 2 3 4 5 6 7 8 in Gigabit TP and cross over Cable pin outs for RJ 45 jack 1 2 3 6 to 3 6 1 2 can be used Use CAT5 grade RJ45 TP cable to connect to a TP port of the switch to a network aware device such as a workstation or a server Repeat the above steps for each RJ45 port to be connected to a Gigabit 10 100 1000 TP device 3 8 Power On Once the switch is on the bootloader loads the firmware into the memory It will take about 30 seconds Once the firmware is loaded the
111. rtially from Port 3 because the packets belong to Low Priority Quality of Service QoS ToS Configuration o o o Lew Port 1 1 1 1 Figure 5 22 QoS ToS Configuration Parameter description Quality of Service QoS ToS Configuration Used for setting the QoS in Layer 3 Port Set the ports 1 12 respectively to allow the TOS QoS function to work Use Select All to set all the ports at the same time Waters Network Systems User s Manual Page 50 GSM 2112 POE Bit 0 Bit 1 Bit 2 According to the arrangement of Bit 5 Bit 7 in TOS Field of IP Header eight types of traffic can be formed including000 001 010 011 100 101 110and111 Class Set High Priority or Low Priority for each port respectively for the eight types of traffic Function name IP TCP UDP Port Classification Function description In the L4 QoS Configuration one of the following seven special network transmission events can be chosen Parameter description Disable IP TCP UDP Port Classification Belongs to the QoS in L4 Select the option button and click Apply Click Advance set special TCP UDP port for QoS Down prioritize web browsing e mail FTP and news Belongs to the QoS in L4 Select the option button and click Apply Click Advance to set special TCP UDP port for QoS Prioritize IP Telephony VoIP Belongs to the QoS in L4 Select the option button and click Apply Click Advance to set special TCP UDP port for QoS
112. s Daylight Saving Daylight saving is adopted in some countries If set it will adjust the time lag or advance in unit of hours according to the starting date and the ending date For example if you set the daylight saving to be one hour when the time passes over the starting time the system time will be increased one hour after one minute at the time since it passed over And when the time passes Waters Network Systems User s Manual Page 28 GSM 2112 POE over the ending time the system time will be decreased one hour after one minute at the time since it passed over The switch supports valid configurable daylight saving time is 5 5 step one hour The zero for this parameter means it need not have to adjust current time equivalent to in act daylight saving You don t have to set the starting ending date as well If you set daylight saving to be non zero you have to set the starting ending date as well otherwise the daylight saving function will not be activated Default for Daylight Saving O The following parameters are configurable for the function Daylight Saving and described in detail Daylight Saving Start This is used to set when to start performing the daylight saving time Month Range is 1 12 Default 1 Day Range is 1 31 Default 1 Hour Range is 0 23 Default 0 Daylight Saving End This is used to set when to stop performing the daylight saving time Month Range is 1 12 Defa
113. s group Member Used to enable or disable a member port Enable means the port is a member of the VLAN Select the check box M beside Port X to enable it Waters Network Systems User s Manual Page 60 GSM 2112 POE Auto Logout orf CEPOELZ SWIZ je Tag based Group el vian wa T vio 1 deta 1 mD IGMP Sneoping Max Packet Length DHCP Hoot VLAN Mode Taq based Grass fo Port based Greap Figure 5 32 Tag based Group Add Group Create a new Tag based VLAN Input the VLAN name and the VID Configure the SYM VLAN function and choose the member by selecting the check box beside the port number Press Apply so the setting will take effect Auto Logout orf Tag based VLAN 100 Disabie La A 20 100 Figure 5 33 Tag based VLAN Delete Group Press Delete to remove the selected group entry from the tag based group table Auto Logout Orr ster Tag based Group Figure 5 34 Tag based Group Edit a group Select a group entry and select Edit This allows you to modify the group s description SYM Waters Network Systems User s Manual Page 61 GSM 2112 POE VLAN and member set 5 17 3 Port Based Group Function name Port based Group Configuration Function description Displays the information for the existing port based VLAN groups Use this function to create edit and delete a port based VLAN group Add a new VLAN group by inputting a new VLAN name Parameter description
114. s or components at no additional charge as set for herein This limited warranty does not include service to repair damage resulting from accident disaster misuse neglect lightning acts of God tampering or product modification Service under the warranty may be obtained by contacting Waters Network Systems and receiving a Return Material Authorization RMA number from Waters Network Systems Returned product accompanied with the issued RMA number and prepaid shipping will be repaired or replaced by Waters Network Systems Repaired or replaced products will be returned at no cost to the original Buyer and shipped via the carrier and method of delivery chosen by Waters Network Systems Specific warranty by product family is as follows ProSwitch Secure Limited Lifetime see note ProSwitch SecureAir Limited Lifetime ProSwitch Lite 3 Years from date of manufacture see note ProSwitch Xpress Limited Lifetime ProSwitch PSX Limited Lifetime ProSwitch Xtreme Limited Lifetime see note ProSwitch FlexPort Limited Lifetime ProSwitch FixPort Limited Lifetime ProSwitch CS and CSX 3 Years from date of manufacture see note ProMedia Converters 3 Years from date of manufacture see note Note Warranty period for any and all external power supplies is one 1 year from date of purchase EXCEPT FOR THE EXPRESS WARRANTY SET FORTH ABOVE WATERS NETWORK SYSTEMS GRANTS NO OTHER WARRANTIES EXPRESSED OR IMPLIED BY STATUTE OR OTHERWISE REGARDI
115. s the state of the port authorized or unauthorized according to the result of authentication message exchanged between it and a supplicant PAE The authenticator may request the supplicant to re authenticate itself at a configured time period Once re authenticating has begun the controlled port remains in the authorized state until re authentication fails A port acting as an authenticator is thought to be two logical ports a controlled port and an uncontrolled port A controlled port can only pass packets when the authenticator PAE is authorized Otherwise an uncontrolled port will unconditionally pass the packets with PAE group MAC address which has the value of 01 80 c2 00 00 03 and will not be forwarded by MAC bridge at any time Authentication server A device provides authentication service through EAP to an authenticator by using authentication credentials supplied by the supplicant to determine if the supplicant is authorized to access the network resource The overview of operation flow for the Figure 5 53 is quite simple When Supplicant PAE issues a request to Authenticator PAE Authenticator and Supplicant exchanges authentication message Then Authenticator passes the request to RADIUS server to verify Finally RADIUS server replies if the request is granted or denied During the authentication process the message packets encapsulated by Extensible Authentication Protocol over LAN EAPOL are exchanged between an a
116. seconds the switch will report to the pinged device the result of the Ping Parameter description IP Address An IP address with the version of v4 e g 192 168 1 1 Default Gateway IP address of the default gateway For more details please see the section of IP address in Section 4 4 Waters Network Systems User s Manual Page 99 GSM 2112 POE Auto Logout 3 min Ping Test EC L92 168 1 10M CCT 192 100 1 252 COLI 102 100 1 105 ls alive Input an address to ping ex 192 168 1 1 Figure 5 72 Ping Test 5 26 TFTP Server Function name Trivial File Transfer Protocol TFTP Server Function description Set up IP address of TFTP server Parameter description Specify the IP address of the TFTP server Once you have entered the IP of the TFTP server click on Apply so the setting will take effect Auto Logout 3 min Syston TFTP Server Figure 5 73 TFTP Server 5 27 Log Data This function displays the log data The switch provides system log data for users There are eighteen private trap logs and five public trap logs The switch supports a total 120 log entries For more details on log items please refer to Section 5 22 for Trap Alarm Configuration and SNMP Configuration Function name Waters Network Systems User s Manual Page 100 GSM 2112 POE Log Data Function description The Trap Log Data displays the log items including all SNMP Private Trap events SNMP Public traps and user logs o
117. ser port that is chosen for port can observe the packets of the the mirror function monitored port received by this Only one port is port allowed to configure available from 1 to 12 Show show Used to display the setting None None status of the Mirror function Port Clear counter clear counter Used to clear all ports counter None None Disable flow control Disable state disable flow control lt range gt disable state lt range gt information including simple and detailed port counter Used to disable the flow control function of the port Used to disable the communication capability of the port lt range gt syntax 1 5 7 available from 1 to 12 lt range gt syntax 1 5 7 available from 1 to 12 lt range gt 1 12 lt range gt 1 12 Waters Network Systems User s Manual GSM 2112 POE Page 116 Command Syntax Enable flow enable flow control control lt range gt Description Used to enable the flow control function of the port Argument lt range gt syntax 1 5 7 available from 1 to 12 Possible Value lt range gt 1 12 Enable state enable state Used to enable the lt range gt syntax 1 5 lt range gt 1 12 lt range gt communication capability of the 7 available from 1 to port 12 Set speed set speed Used to set the speed and lt range gt syntax 1 5 lt range gt 1 to duplex duplex lt range gt duplex
118. ser s Manual Page 126 GSM 2112 POE 8 3 Shipping and Packaging Information Should you need to ship the unit back to Waters Network Systems please follow these instructions Package the unit carefully It is recommended that you use the original container if available Units should be wrapped in a bubble wrap plastic sheet or bag for shipping protection You may retain all connectors and this Installation Guide CAUTION Do not pack the unit in Styrofoam popcorn type packing material This material may cause electro static shock damage to the unit Clearly mark the Return Material Authorization RMA number on the outside of the shipping container Waters Network Systems is not responsible for your return shipping charges Ship the package to Waters Network Systems Attention Customer Service 945 37 Avenue NW Rochester MN 55901 Waters Network Systems User s Manual Page 127 GSM 2112 POE 9 0 Warranty Waters Network Systems Warranty Statement Waters Network Systems products are warranted against defects in materials and workmanship The warranty period for each product will be provided upon request at the time of purchase Unless otherwise stated the warranty period is for the useable life of the product In the event of a malfunction or other indication of product failure attributable directly to faulty materials and or workmanship Waters Network Systems will at its option repair or replace the defective product
119. sof service setting 1 high O low Show show Used to display the information None None of the mode you have chosen Reboot Reboot reboot Used to reboot the switch None None SNMP Disable disable set Disable used in this mode will None None ability deactivate SNMP or set disable snmp community Enable enable set Enable used in this mode will None None ability activate SNMP or set enable snmp community Set set get Set used in this mode is used to lt gt trap number lt gt 1to6 community set up get community set lt ip gt IP address or lt port gt 1 6553 lt community gt community trap host IP host domain name 5 set set port and trap community lt port gt trap port community lt community gt trap lt community gt community name set trap lt gt lt ip gt port community show show Used to display the None None configuration of SNMP STP Mcheck mcheck Used to force the port to lt range gt syntax 1 5 lt range gt 1 to lt range gt transmit RST BPDUs 7 available form 1 to 12 12 Disable disable Used to disable the STP None None function Enable enable Used to enable the STP None None function Set config set config Used to set the parameters of lt bridge priority gt bridge priority gt lt bridge STP priority must be a 0 to 61440 priority gt lt hello multiple of 4096 lt hello time gt 1 time gt available from 0 to to 10 lt max age gt 61440 lt max age gt 6 lt forward lt hello time gt
120. ston Save as Start Configuration Save as User Configuration Restore Default Configuration Included default ip address Restore Defoult Configuration withowt changing current ip address Restore User Configuration Figure 5 65 Configuration 5 24 2 Restore Default Configuration Function name Restore Default Configuration includes default IP address Function description Waters Network Systems User s Manual Page 95 GSM 2112 POE Restore Default Configuration function can retrieve the factory setting to replace the start configuration If the factory settings are restored the IP address of the switch will be restored to 192 168 1 1 Auto Logout ort Restore Default Configuration Successfully Redest the wrstes to taha effect fur the soting Andes Figure 5 66 Restore User Configuration Function name Restore Default Configuration excludes current IP address Function description Restore Default Configuration function can retrieve the factory setting to replace the start configuration However by using this restore the switch s current IP address will not be changed and will NOT be restored to 192 168 1 1 Auto Logout orn Restore Default Configuration Successfully _Rebest the svitem to taba affect fur the setting Andes Figure 5 67 Restore Default Configuration Message Function name Restore User Configuration Function description Restore User Configuration funct
121. switch will flash all of the LEDs once and automatically perform a self test 3 9 Installing Chassis to a 19 inch Wiring Closet Rail Caution Allow a proper spacing and proper air ventilation for the cooling fan at both sides of the chassis Wear a grounding device for electrostatic discharge Screw the mounting accessory to the front side of the switch Place the chassis into the 19 inch wiring closet rail Secure the chassis with the screws 3 10 Switch Topology Theoretically the switch partitions the collision domain for each port so you may link switches without limitations However network extension cascading levels amp overall diameter must follow IEEE 802 3 802 3u 802 3z and other 802 1 series protocol specifications in which the limitations are the timing requirement from physical signals defined by 802 3 series specification of Media Access Control MAC and PHY and layer 2 protocols such as 802 1d 802 1q and LACP The following table describes the cable and devices bit time delay round trip 1000Base X TP Fiber 100Base TX TP 100Base FX Fiber Round trip Delay 4096 Round trip Delay 512 CAT5 11 12 m CAT5 1 12 m Fiber Cable 10 10 m TP to fiber converter 56 Bit time unit 1ns 1sec 1000 Mega bit Bit time unit 0 01us 1sec 100 Mega bit Table 3 2 Sum up all elements bit time delay and the overall bit time delay of wires devices must be within Round Trip Delay bit times in a half d
122. t gt 0 10 to of dynamic learning MAC seconds 0 10 to 65535 65535 The value 0 means to disable aging Set flush set flush Used to delete all MACs None None learned dynamically Show show Used to display the age timer None None settings lt lt static mac gt gt Add add lt mac gt Used to add the static MAC lt mac gt mac address lt mac gt mac lt port gt lt vid gt entry format 00 02 03 04 address alias 05 06 lt port gt 0 12 lt port gt 0 12 The lt vid gt 0 1 4094 value 0 means this alias mac entry is a filtering alias name entry lt vid gt vlan id 0 1 4094 VID must be zero if vlan mode is not tag based alias mac alias name max 15 Waters Network Systems User s Manual Page 114 GSM 2112 POE Command Syntax Description Argument Possible Value characters Del del lt mac gt Used to remove the static MAC lt mac gt mac address lt mac gt mac lt vid gt entry format 00 02 03 04 address 05 06 lt vid gt 0 1 lt vid gt vlan id 0 1 4094 4094 VID must be zero if VLAN mode is not tag based Show filter show filter Used to display the static filter None None table Show forward show forward Used to display the static None None forward table Management Add set lt name gt Used to set management policy lt name gt lt value gt lt name gt lt value gt records ACL entry name lt value gt No lt vid gt lt value gt lt vid gt
123. t Ethernet ports aggregated in a logical port then this logical port has bandwidth three times as high as a single Fast Ethernet port The switch supports two types of port trunking methods LACP Ports using Link Aggregation Control Protocol according to IEEE 802 3ad specification as their trunking method can choose their unique LACP GroupID 1 8 to form a logic trunked port The benefit of using LACP is that a port makes an agreement with its peer port before it becomes a ready member of a trunk group also called aggregator LACP is safer than the other trunking method static trunk The switch LACP does not support the followings Link Aggregation across switches Aggregation with non IEEE 802 3 MAC link Operating in half duplex mode Aggregate the ports with different data rates Static Trunk Ports using Static Trunk as their trunk method can choose their unique Static Group ID also 1 8 this Static group ID can be the same with another LACP group ID to form a logic trunked port The benefit of using Static Trunk method is that a port can immediately become a member of a trunk group without handshaking with its peer port This is a disadvantage because the peer ports of the static trunk group may not know that they should be aggregate together to form a logic trunked port Using Static Trunk on both end of a link is strongly recommended Low speed links will stay in not ready state when
124. t based VLAN will be accepted No filtering criterion applies in port based VLAN The only criterion is the physical port you connect to For example for a port based VLAN named PVLAN 1 contains port members Ports 1 2 3 amp 4 and if you are connected to Port 1 you can communicate with Port 2 4 If you are connected to Port 5 you cannot communicate with those ports Each port based VLAN must be assigned a group name This switch can support up to a maximum of 12 port based VLAN groups Waters Network Systems User s Manual Page 58 GSM 2112 POE Tag based Tag based VLAN identifies its member by VID Tag based VLANs are different from port based VLANs If there are additional rules in ingress filtering list or egress filtering list the packet will be screened with filtering criteria to determine if it can be forwarded The switch supports 802 1q Each tag based VLAN must be assigned a VLAN name and VLAN ID Valid VLAN ID is 1 4094 You may create total up to 64 Tag VLAN groups Metro Mode The Metro Mode is a quick configuration VLAN environment method on Port based VLAN You can create 10 or 11 port based VLAN groups Double tag Double tag mode belongs to the tag based mode however it would treat all frames as the untagged ones which means that tag with PVID will be added into all packets Then these packets will be forwarded as Tag based VLAN So the incoming packets with tag will become the double tag ones VLAN Mode
125. t have the same community name Once the setting has been completed click Apply and the setting will take effect Parameters description SNMP The term SNMP is used for the activation or de activation of SNMP Default is Enable Get Set Trap Community Community name is used as the password for authenticating if the requesting network management unit belongs to the same community group If they don t have the same community name they don t belong to the same group Hence the requesting network management unit cannot access a device with a different community name via SNMP protocol If they both have the same community name they can talk each other Community name is user definable with a maximum length of 15 characters and is case sensitive No blank spaces are permitted in the community name string Any printable character Waters Network Systems User s Manual Page 54 GSM 2112 POE is allowed The community name for each function works independently Each function has its own community name The community name for GET only works for the GET function and can t be applied to other function such as SET and Trap Default SNMP function Enable Default community name for GET Public Default community name for SET Private Default community name for Trap Public Default Set function Enable Default trap host IP address 0 0 0 0 Default port number 162 Trap There are six supported trap hosts Each has its own community name and IP
126. t status is authorized otherwise unauthorized Auto Logout 3 min Port Security Management a disable stulth host Authorized Molti host Unauthorized disable disable disable disable disable disable disable disable disable Log Firmware Upgrade Reboot Logout x Figure 5 59 Port Security Management Function name Parameter Setting Function description This function is used to configure the parameters for each port in 802 1X port security application Refer to the following parameters description for details Parameter description Port The port number to be selected for configuring its associated 802 1X parameters which are Port control reAuthMax txPeriod Quiet Period reAuthEnabled reAuthPeriod max Request suppTimeout serverTimeout and Controlled direction Port Control This is used to set the operation mode for authorization There are three types of operation mode supported ForceUnauthorized ForceAuthorized Auto e ForceUnauthorized The controlled port remains in the unauthorized state e ForceAuthorized The controlled port remains in the authorized state e Auto The controlled port is set to be in authorized state or unauthorized state depends on the result of the authentication exchange between the authentication server and the supplicant Default Auto reAuthMax 1 10 The number of authentication attempts that is permitted before the port becomes unauthorized
127. tem Up Time Current Time BIOS Version Firmware Version Hardware Mechanical Version Serial Number Host IP Address Host MAC Address Device Port RAM Size Flash Size Figure 5 2 displays the System Information screen Waters Network Systems User s Manual Page 22 GSM 2112 POE Auto Logout 3 min GLOES System Port PoE GEPOFL2 SWi2 sited EXT Bandwidth System Description L2 Managed Switch Qos fescation gt SNMP IGMP Snooping Max Packet Length le GEPOEL2 SW12 inten a e 0 Days 0 Hours 10 Mins 58 Secs MAC Table Tue Jan 24 16 29 27 2006 GVRP 5 v512 4096 E remar veros KRY Trunk 202 1X 0 00 v256 00 Alarm Serial Number 108000004 Seles CEI 192 160 11 Dlagnastics TFTP Server OE 00 40 C9 00 40 C7 UART 1 TP 10 Dual Media Port RIAS SFP 2 CEI 55200 M Logout Flosh Size 65535 M System Information Log Firmware Upgrade Reboot Figure 5 2 System Information The top of the screen displays the front panel of the switch The linked ports will be displayed in green and the ports that are not connected will be dark The optional modules will display a cover plate if no module exists and will show a module if a module is present The image of module depends on the installed module If the module port is not connected the port be dark and if linked green The front panel displayed at the top of the screen provides clicking functions that allow you to view information about the switch This is a very c
128. ters plus the various network media types being used A record of changes that have been made to your network configuration prior to the occurrence of the problem Any changes to system administration procedures should all be noted in this record Return Material Authorization RMA Procedure All returns for repair must be accompanied by a Return Material Authorization RMA number To obtain an RMA number call Waters Network Systems Customer Service at 800 328 2275 during business hours of 8 00 am to 5 00 pm CT or email carolyni watersnet com When calling please have the following information readily available Name and phone number of your contact person Name of your company institution Your shipping address Product name Failure symptoms including a full description of the problem Waters Network Systems will carefully test and evaluate all returned products will repair products that are under warranty at no charge and will return the warranty repaired units to the sender with shipping charges prepaid see Warranty Information at the end of this manual for complete details However if Waters cannot duplicate the problem or condition causing the return the unit will be returned as No Problem Found Waters Network Systems reserves the right to charge for the testing of non defective units under warranty Testing and repair of product that is not under warranty will result in a customer user charge Waters Network Systems U
129. the order of port number link status port state auto negotiation status speed duplex and flow control If a fiber module is installed in one or both of the slots the current status for those ports will be displayed See Figure 5 10 Auto Logout 3 min System Port Current Status Port status Ln Contiourduion Media tink State auto Nego Spoed Dublex Flow Control Walt state Simple Counter TP Up Enabled Enabled 100M Full Enabled Disabled Detail Counter TP DovnEnabled Enabled A Disabled Pot TP DownEnabled Enabled ed Disabled TP DovinEnabled Enabled TP DovinEnabled Enabled TP DownEnabied Enabled TP DownEnobled Enabled TP DownEnabled Enabled TP Down Enabled Enabled TP Downtnabled Enabled TP DownEnabled Enabled TP DownFnabled Enabled uto Enabled Mirror Bandwidth Qos SNMP IGMP Snooping REssexonaun Alarm Configuration TFTP Server Li og Firmware Upgrade Reboot Y Figure 5 10 Port Status Function name Port Status Function Description Port status reports the current status of all ports in the switch The screen will be automatically refreshed approximately every five seconds as port parameters change Parameter Description Port No Displays the port number The number is 1 12 Ports 11 and 12 may be fiber SFP modules Media Shows the media type used in all ports Ports 11 and 12 are optional SFP modules which support fiber Gigabit Ethernet Since the fiber port could be m
130. thod This determines the method a port uses to aggregate with other ports None default A port does not aggregate with other ports LACP A port uses LACP as its trunk method to aggregate with other ports also using LACP Static A port uses Static Trunk as its trunk method to aggregate with other ports also using Static Trunk Group Ports choosing the same trunking method other than None must be assigned a unique Group number i e Group ID valid value is from 1 to eight so they can aggregate with each other Active LACP This field is only available when a port s trunking method is LACP Active An Active LACP port begins to send LACPDU to its link partner as soon as the LACP protocol entity takes control of this port Passive A Passive LACP port will not actively send LACPDU out until it receives an LACPDU from its link partner Aggtr Aggtr is an abbreviation of aggregator Every port is also an aggregator and its own aggregator ID is the same as its own port number An aggregator is a representative of a trunking group Ports with same Group ID and using same trunking method will have the opportunity to aggregate to a particular aggregator port This aggregator port is usually the port with the smallest port number within the trunking group Status This field represents the trunking status of a port which uses a trunking method other than None It also represents the management link sta
131. tus of a port which uses the None trunking method means not ready Waters Network Systems User s Manual Page 80 GSM 2112 POE Auto Logout OFF System Trunk Port Setting Status Trunk Port Setting oe ne oy Active o Active ov Active o Active Active o Active ov Active vert de o Active Aygr gator view LACP System Price 02 1 o Active o Active 0 Active Bw EQ En EM e Ea Say a E aa o Active Log cateo ga aa KOT Reboot Logout Figure5 50 Trunk Port Setting Status Function name Aggregator View Function description To display the current port trunking information from the aggregator point of view Parameter description Aggregator Displays the aggregator ID from 1 to 12 of every port Every port is also an aggregator and its own aggregator ID is the same as its own port number Method Displays the method a port uses to aggregate with other ports Member Ports Displays all member ports of an aggregator port Ready Ports Displays only the ready member ports within an aggregator port Waters Network Systems User s Manual Page 81 GSM 2112 POE Aggregator View Bees ges Method Nene None Nono None Nono None Nene None Nono Nene Nene Nene P ssoreuator ESSE a gt SEs e Figure 5 51 Aggregator View Function name LACP Detail LACP Aggregator
132. twork Systems User s Manual GSM 2112 POE Page 122 Command Syntax lt range gt lt access trunk hybrid gt vid Description Configure the port roles Argument set syntax 1 5 7 available from 1 to 12 lt access gt do not tag frames lt trunk gt tag all frames lt hybrid gt tag all frames except a specific VID lt vid gt untag vid for hybrid port Possible Value 12 lt vid gt 1 to 4094 Set pvid set pvid lt range gt lt pvid gt Used to set the PVID of the VLAN lt range gt ports to be set PVID s 1 5 7 lt range gt 1 to 12 available from 1 to 12 lt pvid gt 1 to lt pvid gt PVIDs to be 4094 set available 1 to 4094 Set tag group set tag group Used to add or edit the tag lt vid gt vlan ID range lt vid gt 1 to lt vid gt lt name gt based vlan group from 1 to 4094 4094 lt range gt lt gt lt name gt tag vlan name lt range gt 1 to 12 lt range gt vlan group lt H gt 0 or 1 members syntax 1 5 7 available from 1 to 12 lt gt sym asym vlan setting 1 symmetric vlan 0 asymmetric vlan Show group show group Used to display the VLAN mode None None and VLAN group Show pvid show pvid Used to display pvid None None ingress egress rule VS Disable disable Used to disable the virtual stack None None Enable enable Used to enable the virtual stack None None Set gi
133. ual Page 76 GSM 2112 POE 5 20 3 STP Port Configuration Function name STP Port Setting Function description In the STP Port Setting one item selection and five parameters are available for setup You can disable and enable each port You can set Path Cost and Priority for each port and set Admin Edge Port and Admin Point To Point Parameter description Port Status Displays the current state of a port for viewing only There are three possible states according to 802 1w specification DISCARDING state indicates that this port can neither forward packets nor contribute learning knowledge LEARNING state indicates this port can now contribute its learning knowledge but cannot forward packets FORWARDING state indicates this port can both contribute its learning knowledge and forward packets normally Note Three other states Disable state BLOCKING state and LISTENING state defined in the 802 1d specification are now represented as DISCARDING state Path Cost Status The contribution value of the path through this port to Root Bridge STP algorithm determines a best path to Root Bridge by calculating the sum of path cost contributed by all ports on this path A port with a smaller path cost value would become the Root Port Configured Path Cost The range is 0 200 000 000 If the path cost is set to zero the STP will get the recommended value resulted from auto negotiation of the lin
134. uct Notify the carrier of any damage that you believe occurred during shipment Ensure that the items listed below are included If an item is missing please contact your supplier GSM2112 POE 185 or 135 watt Ethernet switch chassis SFP Modules optional Mounting Accessory for 19 rack shelf User s manual AC power cord RS 232 Cable Waters Network Systems User s Manual Page 5 GSM 2112 POE 3 0 Introduction The Waters GSM2112 switch is a managed Ethernet switch chassis with ten 10 100 1000Base TX PoE ports and two dual media slots The dual media slots can be used for either 10 100 1000Base TX ports or 1000Base SX or LX fiber The GSM2112 meets all IEEE802 3 u x z specifications The switch can be managed through RS 232 serial port via direct connection or through an Ethernet port using CLI or Web based management unit associated with SNMP agent With the SNMP agent the network administrator can logon the switch to monitor configure and control each port s activity through easy to use menu options The switch features comprehensive and useful functions such as QoS Quality of Service Spanning Tree VLAN Port Trunking Bandwidth Control Port Security SNMP RMON IGMP Snooping capability via the intelligent software The switch is suitable for both metro LAN and office applications For upgrading firmware please refer to Section 5 27 for more details The switch will not stop operating while upgrading firmware and upon c
135. ult 1 Day Range is 1 31 Default 1 Hour Range is 0 23 Default 0 Waters Network Systems User s Manual Page 29 GSM 2112 POE Auto Logout 3min GEPORL2 SWI a ve System Time Setting System Information w Time COU tue san 24 16 32 29 2006 Account Management Policy Virtual Stack Veer 2000 2036 Month 1 12 Port Day 1 31 Nour 0 23 Pot Minute 0659 Second 0 59 Mirror Bandwidth Qos 5 sP O 209 81 9 7 USA IGMP Snooping 137 109 9 174 HK 7 Max Packet Length 133 100 9 201P Zens GMT B 00 DNCP Boot O 131 100 3 222 Germany VLAN MAC Table 3 GVRP sT Trunk Configuration Diagnostics TFTP Server Log Figure 5 5 System Time Setting 5 5 Account Configuration Only the administrator can create modify or delete the username and password The administrator can modify other guest identities password without confirming the password Guest equivalent identity can modify his password only Please note that you must confirm administrator guest identity in the field of Authorization in advance before configuring the username and password Only one administrator is allowed to exist and unable to be deleted Up to four guest accounts can be created The default setting for user account is Username admin Password admin The default setting for guest user account is Username guest Password guest Auto Logout OFF a System Account Configuration System Information
136. ultimode or singlemode the information will be based on the actual media installed in the switch with reference to connector distance fiber mode etc The module port information is displayed in Figure 5 11 Link Displays an active or inactive port If the link is connected to a working device the link will show that is it Up otherwise it will show Down This is determined by the hardware on both devices of the connection No default value State Waters Network Systems User s Manual Page 35 GSM 2112 POE Displays the communication function of the port is Enabled or Disabled When it is enabled traffic can be transmitted and received via this port When it is disabled no traffic can be transferred through this port Port State is configured by user Default Enabled Auto Negotiation Displays the exchange mode of Ethernet MAC There are two modes supported in the switch They are auto negotiation mode Enabled and forced mode Disabled When in Enabled mode this function will be automatically negotiated by the hardware itself and exchange the capability of speed and duplex mode The best communication mode will be used When in Disabled mode both parties must have the same setting of speed and duplex otherwise there will be no link In this case the link result is Down Default Enabled Speed Duplex Mode Displays the speed and duplex mode of all ports There ar
137. uplex network segment collision domain This will not be applied for full duplex operation You may use the TP Fiber module to extend the TP Waters Network Systems User s Manual Page 10 GSM 2112 POE node distance over fiber optic and provide the long haul connection A hierarchical network with minimum levels of switching may reduce the timing delay between server and client station Basically with this approach it will minimize the number of switches in any one path will lower the possibility of network loop and will improve network efficiency If more than two switches are connected in the same network select one switch as Level 1 switch and connect all other switches to it at Level 2 It is recommended to connect the Server Host to the Level 1 switch This generally applies if no VLAN or other special requirements are applied Example 1 All switch ports are in the same local area network All ports can access each other See Figure 3 2 Figure 3 3 No VLAN Configuration Diagram If VLAN is enabled and configured each node in the network that can communicate with each other directly is contained in the same VLAN area In Example 2 the VLAN area is defined by the configured VLAN The switch supports both port based VLAN and tag based VLAN They are different in practical deployment especially in physical locations The following diagram shows how the VLAN works Example 2a Port based VLAN See Figure3 4 Figu
138. using static trunk to aggregate with high speed links The switch supports a maximum of eight trunk groups for LACP and additional eight trunk groups for Static Trunk In the system capability view only eight real trunked groups are supported An LACP trunk group with more than one ready member ports is a real trunked group An LACP trunk group with only one or less than one ready member ports is not a real trunked group Any Static trunk group is a real trunked group Per Trunking Group supports a maximum of 12 ready member ports Please note that some decisions will automatically be made by the system while you are configuring your trunking ports Some configuration examples are listed below 12 ports have already used Static Trunk Group ID 1 the 13th port willing to use the same Static Trunk Group ID will be automatically set to use the None trunking method and its Group ID will turn to O This means the port won t aggregate with other ports 14 ports use LACP Trunk Group ID 1 At most 12 ports can aggregate together and transit into the ready state A port using the None trunking method or Group ID 0 will be automatically set to use the None trunking method with Group ID 0 Waters Network Systems User s Manual Page 79 GSM 2112 POE Function name Port Setting Status Function description Port setting status is used to configure the trunk setting for the ports Parameter description Me
139. uthentication server sends Radius Access Challenge to the supplicant asking for inputting user password via the authenticator PAE The supplicant will convert the user password into the credential information perhaps in MD5 format and replies an EAP Response with this credential information as well as the specified authentication algorithm MD5 or OTP to Authentication server via the authenticator PAE As per the value of the type field in message PDU the authentication server knows which algorithm should be applied to authenticate the credential information EAP MD5 Message Digest 5 or EAP OTP One Time Password or other algorithm If user ID and password is correct the authentication server will send a Radius Access Accept to the authenticator If not correct the authentication server will send a Radius Access Reject When the authenticator PAE receives a Radius Access Accept it will send an EAP Success to the supplicant At this time the supplicant is authorized and the port is connected to the supplicant and is under 802 1X control in the authorized state The supplicant and other devices connected to this port can access the network If the authenticator receives a Radius Access Reject it will send an EAP Failure to the supplicant This means the supplicant has failed to authenticate The port connected is in the unauthorized state the supplicant and the devices connected to this port won t be allowed to access the network When the su
140. uthenticator PAE and a supplicant PAE The Authenticator exchanges the message to authentication server using EAP encapsulation Before successfully authenticating the supplicant can only touch Waters Network Systems User s Manual Page 84 GSM 2112 POE the authenticator to perform authentication message exchange or access the network from the uncontrolled port Authentication Authenticator s System Server s System Supplicant s System Services Offered by Authenticator Supplicant Authentication Authenticator PAE PAE e g Bridge Relay Server Controlled port Uncontrolled port Port Authorize a MAC Enable Figure 5 54 Authentication Figure 5 55 represents a typical configuration a single supplicant an authenticator and an authentication server B and C are in the internal network D is the Authentication server running RADIUS switch at the central location which acts as Authenticator connecting to PC A Ais a PC outside the controlled port running Supplicant PAE In this case PC A wants to access the services on device B and C lt first must exchange the authentication message with the authenticator on the port it connected via EAPOL packet The authenticator transfers the supplicant s credentials to Authentication server for verification If successful the authentication server will notify the authenticator PC A is then allowed to access B and C via the switch If there are two switches directly
141. uthorized Don t Care Port Unauthorized Multihost ForceAuthorized Don t Care Port Authorized Table 5 3 Waters Network Systems User s Manual Page 87 GSM 2112 POE Function name 802 1X State Setting Function description This function is used to configure the global parameters for RADIUS authentication in 802 1X port security application Parameter description Radius Server RADIUS server IP address for authentication Default 192 168 1 1 Port Number The port number to communicate with RADIUS server for the authentication service The valid value ranges 1 65535 Default port number is 1812 Secret Key The secret key between authentication server and authenticator It is a string with the length 1 31 characters The character string may contain upper case lower case and 0 9 without spaces Default Radius Auto Logout orr 802 1X State Setting Figure 5 57 802 1X Setting Function name 802 1X Mode Setting Function description Set the operation mode of 802 1X for each port In this device multihost operation mode is supported Parameter description Port Number Indicate which port is selected to configure the 802 1X operation mode Waters Network Systems User s Manual Page 88 GSM 2112 POE 802 1X Mode 802 1X operation mode There are two options including Disable and Multihost mode Default is Disable Disable The chosen port acts as a plain port which means 802 1X port a
142. w High nigh CZJ E en BS ay 10 aa EM EE EN EE EA zw Es ss ECE BERE REE EEE NE FERREIRA RRE FRER AAA Lecaros Figure 5 25 IP Differentiated Services 5 13 SNMP Configuration Any Network Management System NMS running the Simple Network Management Protocol SNMP can manage devices equipped with the SNMP agent provided that the Management Information Base MIB is installed correctly on the managed devices SNMP is a protocol that is used to govern the transfer of information between SNMP manager and agent This protocol traverses the Object Identity OID of the management Information Base MIB described in the form of SMI syntax SNMP is passive except for the issuing the trap information The switch supports a function to turn on or off the SNMP agent If you set the field SNMP to Enable the SNMP agent will be launched All supported MIB OIDs including RMON MIB can be accessed via SNMP manager If SNMP is set to Disable the SNMP agent will not be activated The related Community Name Trap Host IP Address Trap and all MIB counters will be ignored Function name SNMP Configuration Function description This function is used to configure SNMP settings community name trap host and public traps as well as the throttle of SNMP A SNMP manager must pass authentication by identifying both community names then it can access the MIB information of the target device So both parties mus
143. w these steps 1 Connect the serial cable included with your switch to your workstation 2 Connect the serial cable to console connector on the back of your switch 3 Run the terminal emulator Example HyperTerminal using the following settings a Baud rate bits per second 57600 b Data bits 8 c Parity N d Stop bits 1 e Flow control None 4 When you complete the connection press the Enter key 5 Turn on the switch 6 The default login is a Username admin b Password admin 4 2 Configuring IP Subnet Mask and Default Gateway The default settings for your switch are listed in the following table Default Value GSM2112 IP Address 192 168 1 1 Sunet 255 255 255 0 MEME CGE 192 168 1 254 Table 4 1 You may either change the IP address of the switch or change the IP address of your workstation To change the IP address of the switch via the console connection you will have to use the CLI command listed below A complete list of CLI commands is in Section 6 0 of this manual Waters Network Systems User s Manual Page 13 GSM 2112 POE 1 Once you have logged into the switch you will see the following screen 2 Managed Switch GEPoEL2 SwW12 ogin admin assword EPoEL2 5W12 PM Figure 4 1 Login Screen 2 To set the IP Address of the switch use the following commands Syntax set ip lt ip gt lt mask gt lt gateway gt Description To set the system IP
144. width management Valid range of the port is 1 12 All Traffic for Ingress Rate Limiting Policing Set up the limit of Ingress bandwidth for the port you chose Incoming traffic will be discarded if the rate exceeds the value you set up in Data Rate field Pause frames are also generated if flow control is enabled The format of the packet limits to unicast broadcast and multicast Valid range is 0 1000 Broadcast amp Multicast for Ingress Rate Limiting Policing Set up the limit of Ingress bandwidth for the port you choose Incoming traffic will be discarded if the rate exceeds the value you set in Data Rate field The format of the packet limits to broadcast and multicast Valid range is 0 1000 All Traffic for Egress Rate Limiting Shaping Set up the limit of Egress bandwidth for the port you choose Packet transmission will be delayed if the rate exceeds the value you set in Data Rate field Traffic may be lost if egress buffers run full The format of the packet limits to unicast broadcast and multicast Valid range is O 1000 Waters Network Systems User s Manual Page 47 GSM 2112 POE 5 12 QoS Quality of Service Configuration The switch provides the following powerful QoS functions Per Port Priority VLAN Tag Priority IP TOS Classification IP TCP UDP Port Classification IP DiffServe Classification Click on Configure next to the desired QoS function Once you have set the configurations remember to clic
145. xport start export start Used to run the export start None None function Export user export user Used to export user conf None None conf conf function Import start import start Used to run the import start None None function Import user import user Used to run the import user None None conf conf conf function Set export set export path Used to set the filepath and lt filepath gt filepath lt filepath gt filep path lt filepath gt filename that will be exported and filename ath and filename Set import set import path Used to set the filepath and lt filepath gt filepath lt filepath gt file path lt filepath gt filename that will be imported and filename path and filename Show show Used to display the config file None None information DHCP boot Set dhcp boot set dhcp boot Used to set the delay time for lt sec gt range syntax lt sec gt 0 30 lt Sec gt DHCP boot 0 1 30 the value o is used to disable DHCP boot delay Show show Used to display the status of None None DHCP boot Diag Diag diag Used to determine whether None None UART DRAM Flash and EEPROM is normal or not normal Loopback loopback Used for internal external None None loopback test Ping ping lt ip gt Used to confirm the remote lt ip gt ip address or IP address e g end station or switch itself is domain name 192 168 2 65 or making a connection domain name e g yahoo com Firmware Set upgrade set upgrade Used to download the image for lt f
146. y synchronizing from Time servers The function also supports daylight savings Parameter description Current Time Show the current time of the system Manual Use this function to adjust the time manually Enter the valid figures in the fields of Year Month Day Hour Minute and Second respectively and press the Apply button The time is adjusted The valid figures for the parameter Year Month Day Hour Minute and Second are gt 2000 1 12 1 31 0 23 0 59 and 0 59 respectively Input the wrong figure and press the Apply button the device will reject the time adjustment request There is no time zone setting in Manual mode Default Year 2000 Month 1 Day 1 Hour 0 Minute 0 Second 0 NTP NTP is Network Time Protocol and is used to synchronize the network time based Greenwich Mean Time GMT If used in the NTP mode and have selected a built in NTP time server or manually specify an user defined NTP server as well as Time Zone the switch will synchronize the time shortly after pressing the Apply button Though it synchronizes the time automatically NTP does not update the time periodically without user s processing Time Zone is an offset time off GMT To set select the time zone first and then perform time synchronization via NTP The switch will combine this time zone and updated NTP time to arrive at the local time The switch supports configurable time zone from 12 to 13 step 1 hour Default Time zone 8 Hr
Download Pdf Manuals
Related Search