D-Link Combo (des-3250tg1) Networking Switch
Contents
1. Le crossover CABLE Switch or Hub STRAIGHT CABLE Figure 4 2 Switch connected to a port on a hub or switch using a straight or crossover cable 10BASE T Device For a 10BASE T device the Switch LED indicators should display the following e Link Act indicator is ON 100BASE TX Device For a 100BASE TX device the Switch LED indicators should display the following e Link Act is ON 11 D Link DES 3250TG Standalone Layer 2 Switch SWITCH MANAGEMENT AND OPERATING CONCEPTS This chapter discusses many of the concepts and features used to manage the switch as well as the concepts necessary for the user to understand the functioning of the switch Further this chapter explains many important points regarding these features Configuring the switch to implement these concepts and make use of its many features is discussed in detail in the next chapters Local Console Management A local console is a terminal or a workstation running a terminal emulation program that is connected directly to the switch via the RS 232 serial console port on the front of the switch A console connection is referred to as an Out of Band connection meaning that console is connected to the switch using a different circuit than that used for normal network communications So the console can be used to set up and manage the switch even if the network is down Local console management uses the terminal connect2. Master Port Member Ports ros 9 obn sa s a 637 LO a alo as ls loa lo So TS iS iS ig i6 nl ol 15 i0 16 i8 i0 i0 10 10 15 15 i5 15 15 15 19 Type Static y Apply Note It is only valid to set up at most 8 member ports of any one trunk group and a port can be a member of only one trunk group at a time Member Ports Show All Link Aggregation Group Entries Figure 6 38 Link Aggregation Settings window Enter the desired LACP settings on this window and click Apply to let your changes take effect 77 LACP Port D Link DES 3250TG Standalone Layer 2 Switch Lacp Port Settings Portl Portl y Passive Apply Lacp Port Table 1 Passive 2 Passive 3 Passive 4 Passive 5 Passive 6 Passive 7 Passive 8 Passive 9 Passive 10 Passive 11 Passive 2 Passive ils Passive 14 Passive 15 Passive 16 Passive alg Passive 18 Passive 19 Passive 20 Passive 21 Passive 22 Passive 23 Passive 24 Passive 29 Passive 26 Passive a Passive 28 Passive 29 Passive 30 Passive 31 Passive 32 Passive 88 Passive 34 Passive 35 Passive 36 Passive 37 Passive 38 Passive 39 Passive 40 Passive 41 Passive 42 Passive 43 Passive 44 Passive 45 Passive 46 Passive 47 Passive 48 Passive 49 Passive 50 Passive Figure 6 39 Link Aggregation Settings window D Link DES 3250TG Standalone Layer 2 Switch Enter the port range in the From and To fields select the desired Mode in the next field and then click Apply to let your
3. IP TCP sends its packets to IP with the source and destination IP addresses IP is only concerned with these IP addresses It is not concerned with the contents of the packet or the TCP header IP finds a route for the packet to get to the other end of the TCP connection IP adds its own header to the packet to accomplish this The IP header contains the source and destination addresses the protocol number and another checksum The protocol number tells the receiving IP which protocol to give the packet to Although most IP traffic uses TCP other protocols can be used such as UDP The checksum is used by the receiving IP in the same way as the TCP checksum 31 D Link DES 3250TG Standalone Layer 2 Switch IP Header Octets 0 1 2 3 4 Version Length Service Type Total Length Identification Flags Fragment Offset Time to Live Protocol Header Checksum Source IP Address Destination IP Address IP Options Padding Begining of Data Figure 5 9 IP Packet Header The flags and fragment offset are used to keep track of packets that must be divided among several smaller packets to cross networks for which they are too large The Time to Live TTL is the number of gateways the packet is allowed to cross between the source and destination This number is decremented by one when the packet crosses a gateway and when the TTL reaches zero the packet is dropped This helps reduce netwo
4. To complete SNTP configuration fill in the desired values in the Current Time Set Current Time section and then click Apply Time Zone and DST To make time zone and Daylight Savings Time changes to the SNTP configuration click SNTP Settings in the Configuration folder and then click Time Zone and DST 67 D Link DES 3250TG Standalone Layer 2 Switch Disabled y Figure 6 30 Time Zone and DST Settings window This window allows you to set the Daily Saving Time repeated and annual settings Click Apply to let your changes take effect Port Security A given port s or a range of port s dynamic MAC address learning can be locked such that the current source MAC addresses entered into the MAC address forwarding table can not be changed once the port lock is enabled The port can be locked by changing the Admin State pull down menu to Enabled and clicking Apply This is a security feature that prevents unauthorized computers with source MAC addresses unknown to the switch prior to locking the port or ports from connecting to the switch s locked ports and gaining access to the network 68 D Link DES 3250TG Standalone Layer 2 Switch Port Admin State Max Learning Addr Lock Address Mode 1 Disabled 1 DeleteOnReset 2 Disabled 1 DeleteOnReset 3 Disabled 1 DeleteOnReset 4 Disabled 1 DeleteOnReset 5 Disabled 1 DeleteOnReset 6 Disabled 1 DeleteOnReset hi Disabled 1 DeleteOnReset 8 Disabled 1 DeleteOnReset 9 Dis
5. A Port VLAN Identifier classification mechanism associates a port with a specific VLAN and is used to forwarding decisions for untagged packets received by the port For example if port 2 is assigned a PVID of 3 then all untagged packets received on port 2 will be assigned to VLAN 3 This number is generally the same as the VID number assigned to the port in the Modify 802 10 VLANs menu above VLAN 64 Enter the desired ports in these two This field can be toggled using the space bar between Enabled and Disabled Enabled enables the port to compare the VID tag of an incoming packet with the PVID number assigned to the port If the two are different the port filters drops the D Link DES 3250TG Standalone Layer 2 Switch packet Disabled disables Ingress filtering To enable or disable GVRP globally on the switch Go to the Configuration menu and click Advanced Settings Toggle the drop down menu for GVRP Status between Enabled and Disabled Click Apply to let your change take effect Port Bandwidth The Bandwidth Settings window allows you to set and display the Ingress bandwidth and Egress bandwidth of specified ports on the switch Port1 y Port he RX Disabled y 1 Apply RX Rate Mbit sec TX Rate Mbit sec 1 no limit no limit 2 no limit no lirnit 3 no limit no limit 4 no_limit no_limit 5 no_limit no_limit 6 no limit no limit id no limit no limit 8 no limit no limit 9 no l
6. D Link DES 3250TG Standalone Layer 2 Switch The system fans are used to dissipate heat The sides of the system also provide heat vents to serve the same purpose Do not block these openings and leave at least 6 inches of space at the rear and sides of the switch for proper ventilation Be reminded that without proper heat dissipation and air circulation system components might overheat which could lead to system failure The AC power connector is a standard three pronged connector that supports the power cord Plug in the female connector of the provided power cord into this socket and the male side of the cord into a power outlet Supported input voltages range from 100 240 VAC at 50 60 Hz Side Panels Each side panel contains heat vents to help to dissipate heat 0000000000000000000000000000000000000000000000 o oooooooo00000000000000000000000000000000000000 ooooooo0o000000000000000000000000000000000000000 o o o ejo o Y 0000000000000000000000000000000000000000000000 o0000000000000000000000000000000oVcO OOOO VO VO Vo oooooo0oo0o000000000000000000000000000000000000000 a 0 o o Figure 3 3 Side panel views of the Switch The system fans are used to dissipate heat The sides of the system also provide heat vents to serve the same purpose Do not block these openings and leave at least 6 inches of space at the rear and sides of the switch for proper ventilation Be reminded that without proper heat di
7. VLAN Name Query Interval Max Time Response Robustness Value Last Member Query Interval Host Timeout 1 16711450 Router Timeout 1 16711450 Leave Timer 1 16711450 configured Allows the entry of the name of the VLAN for which IGMP Snooping is to be configured Allows the entry of a value between 1 and 65535 seconds with a default of 125 seconds This specifies the length of time between sending IGMP queries Sets the maximum amount of time allowed before sending an IGMP response report A value between 1 and 25 seconds can be entered with a default of 10 seconds A tuning variable to allow for VLANs that are expected to lose a large number of packets A value between 2 and 255 can be entered with larger values being specified for VLANs that are expected to lose larger numbers of packets Specifies the maximum amount of time between group specific query messages including those sent in response to leave group messages The default is 1 second Specifies the maximum amount of time a host can be a member of a multicast group without the switch receiving a host membership report The default is 260 seconds Specifies the maximum amount of time a route will remain in the switch s forwarding table without receiving a membership report The default is 260 seconds Specifies the maximum amount of time between the switch receiving a leave group message from a host and the switch issuin
8. dest port mask Specify a TCP port mask for the destination port in hex form hex Ox0 Oxffff Select Udp to use the UDP port number contained in an incoming packet as the forwarding criterion Selecting UDP requires that you specify a source port mask and or a destination port mask src port mask Specify a TCP port mask for the source port in hex form hex Ox0 Oxffff dest port mask Specify a TCP port mask for the destination port in hex 81 D Link DES 3250TG Standalone Layer 2 Switch form hex Ox0 Oxffff Select protocol id to instruct the switch to examine each frame s Protocol ID field user mask Specify that the rule applies to the IP protocol ID and the mask options behind the IP header Mode Select permit to specify that the packets that match the access profile are forwarded by the switch according to any additional rule added see below Select deny to specify that packets that do not match the access profile are not forwarded by the switch and will be filtered To establish the rule for a previously created Access Profile Select the Access Profile entry from the Access Profile Table window and then click the Modify button for that individual entry Add Profle ID Show All Access Profile Entries Figure 6 43 Access Rule Table window To create a new rule set for the access profile click the Add button A new window is displayed To remove a previously created rule select it and c
9. 2 1 Enabled Disabled 3 1 Enabled Disabled 4 1 Enabled Disabled 5 1 Enabled Disabled 6 1 Enabled Disabled 7 1 Enabled Disabled 8 1 Enabled Disabled 9 1 Enabled Disabled 10 1 Enabled Disabled 11 1 Enabled Disabled 12 1 Enabled Disabled 13 1 Enabled Disabled 14 1 Enabled Disabled WS 1 Enabled Disabled 16 1 Enabled Disabled 17 1 Enabled Disabled 18 1 Enabled Disabled 19 1 Enabled Disabled 20 1 Enabled Disabled 2l 1 Enabled Disabled 22 1 Enabled Disabled BS 1 Enabled Disabled 24 1 Enabled Disabled 25 1 Enabled Disabled 26 1 Enabled Disabled 27 1 Enabled Disabled 28 1 Enabled Disabled 29 1 Enabled Disabled 30 1 Enabled Disabled 63 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 The following fields can be set Parameter D Link DES 3250TG Standalone Layer 2 Switch 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled il Enabled Disabled il Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled il Enabled Disabled 1 Enabled Disabled 1 Enabled Disabled Figure 6 27 802 10 Port Settings window Description From and To PVID GVRP lt Disabled gt The Group VLAN Registration Protocol GVRP enables the port to dynamically become a member of a Ingress lt Disabled gt fields
10. 512 1023 The total number of packets including bad packets received that were between 512 and 1023 octets in length inclusive excluding framing bits but including FCS octets 1024 1518 The total number of packets including bad packets received that were between 1024 and 1518 octets in length inclusive excluding framing bits but including FCS octets Show Hide Check whether or not to display 64 65 127 128 255 256 511 512 1023 and 1024 1518 packets received Clear Clicking this button clears all statistics counters on this window View Table Clicking this button instructs the switch to display a table rather than a line graph View Line Chart Clicking this button instructs the Switch to display a line graph rather than a table MAC Address This allows the switch s dynamic MAC address forwarding table to be viewed When the switch learns an association between a MAC address and a port number it makes an entry into its forwarding table These entries are then used to forward packets through the switch To view the MAC address forwarding table from the Monitoring menu click the MAC Address link 111 D Link DES 3250TG Standalone Layer 2 Switch a gt O MAC Address 00 0 0 00 00 00 00 el eS a Ml oi a aes Mia a es re dl md a ree eer 00 00 81 48 70 01 00 00 81 9a db 39 00 00 81 b6 52 a6 00 00 81 e9 50 01 00 00 81 e9 50 03 00 00 86 47 47 58 00 00 aa cc aa cc 00 00 e2 44 b8 bd 00 00 e2 4
11. 57 03 00 00 e2 54 22 81 00 00 e2 61 53 18 00 00 e2 64 e3 3e 00 00 e2 90 52 df 00 01 02 03 04 00 00 01 30 10 2c c 00 01 30 fa 5 00 00 01 53 00 41 72 00 02 3 70 d8 fe 00 02 3 71 3e ce 00 03 47 74 c8 91 Total Entries 455 Figure 6 81 MAC Address Table window The following fields can be set Parameter View All Entry Delete All Entry Find Delete Find Delete a SS Dynamic Parr Dynamic 27 Dynamic 27 Dynamic 27 Dynamic 27 Dynamic 27 Dynamic 27 Dynamic Pai Dynamic 27 Dynamic 27 Dynamic 27 Dynamic 27 Dynamic 27 Dynamic Ar Dynamic 27 Dynamic 27 Dynamic Pay Dynamic Pa Dynamic Description VLAN ID MAC Address Port Find VID MAC Address Enter a VLAN ID for the forwarding table to be browsed by Enter a MAC address for the forwarding table to be browsed by Enter a port number for the forwarding table to be browsed by Allows the user to move to a sector of the database corresponding to a user defined port VLAN or MAC address The VLAN ID of the VLAN the port is a member of The MAC address entered into the 112 D Link DES 3250TG Standalone Layer 2 Switch address table Port The port that the MAC address above corresponds to Learned How the switch discovered the MAC address The possible entries are Dynamic Self and Static Next Click this button to view the next page of the address table IGMP Snooping Group This allows the sw
12. UDP also uses a checksum to verify that data is received uncorrupted The Internet Control Message Protocol ICMP is also a simplified protocol used for error messages and messages used by TCP IP ICMP like UDP processes messages that will fit into a single packet ICMP does not however use ports because its messages are processed by the network software Internet Group Management Protocol IGMP End users that want to receive multicast packets must be able to inform nearby routers that they want to become a multicast group member of the group these packets are being sent to The Internet Group Management Protocol IGMP is used by multicast routers to maintain multicast group membership IGMP is also used to coordinate between multiple multicast routers that may be present on a network by electing one of the multicast routers as the querier This router then keep track of the membership of multicast groups that have active members on the network IGMP is used to determine whether the router should forward multicast packets it receives to the subnetworks it is attached to or not A multicast router that has received a multicast packet will check to determine if there is at least one member of a multicast group that has requested to receive multicast packets from this source If there is one member the packet is forwarded If there are no members the packet is dropped 34 D Link DES 3250TG Standalone Layer 2 Switch WEB BASED SWITC
13. both both both both both both both both both both both Aaa a LT nN Y IN JY JIN eo N jN 153 IS IS IS 2 IS N auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto auto j no q Quiet Supp Server 30 60 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 60 84 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 30 NNNMNNNNYNNNYNNNNNNNNNNNNNNNNNYN NY DY DY 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 3600 ReAuth ReAuth Period Enabled no no no no no no no no no no no no no no no no no no no no no no no no no no no no D Link DES 3250TG Standalone Layer 2 Switch 29 both auto 30 60 30 30 2 3600 no 30 both auto 30 60 30 30 2 3600 no gil both auto 30 60 30 30 2 3600 no B2 both auto 30 60 30 30 2 3600 no E both auto 30 60 30 30 2 3600 no 34 both auto 30 60 30 30 2 3600 no gb both auto 30 60
14. in the following sections Configuration The Configuration menu consists of the following folders and screens IP Address Switch Information Advanced Settings Port Configuration Port Mirroring Link Aggregation IGMP Spanning Tree Forwarding Filtering VLANs Port Bandwidth QoS LACP Access Profile Table System Log Servers and PAE Access Entity See below for further description 40 D Link DES 3250TG Standalone Layer 2 Switch IP Address The Switch needs to have an IP address assigned to it so that an In Band network management system for example the Web Manager or Telnet client can find it on the network The IP Address Settings window allows you to change the settings for the Ethernet interface used for in band communication To set the switch s IP address Click IP Address on the Configuration menu to open the following window P Agaress Setings OOOO Apply Figure 6 8 IP Address Settings window Note The switch s factory default IP address is 10 90 90 90 with a subnet mask of 255 0 0 0 and a default gateway of 0 0 0 0 To manually assign the switch s IP address subnet mask and default gateway address Select Manual from the Get IP From drop down menu Enter the appropriate IP address and subnet mask If you want to access the switch from a different subnet from the one it is installed on enter the IP address of the gateway If you will manage the switch from the subnet on which it is instal
15. lt Disabled gt This field can be toggled between Enabled and Disabled This is used to turn a link aggregation group on or off This is useful for diagnostics to quickly isolate a bandwidth intensive network device or to have an absolute backup link aggregation group that is not under automatic control Master Port lt Port The Master port of link aggregation I gt group Member Port Allows the specification of the ports that will make up the link 49 D Link DES 3250TG Standalone Layer 2 Switch aggregation group Type lt Static gt Select Static or LACP Link Aggregation Control Protocol IGMP IGMP Snooping To configure IGMP Snooping From the Configuration menu select the IGMP folder and then click IGMP Snooping to open the following window default Disabled Disabled Modify Figure 6 15 Current IGMP Snooping Group Entries window To edit an IGMP Snooping entry on the switch click the Modify button next to the entry on the Current IGMP Snooping Group Entries window VLAN ID 1 Queries A Robustness Value gt Last Member Query Interval Host Timeout 1 16711450 Router Timeout 1 16711450 Leave Timer 1 16711450 Apply Show All IGMP Group Entries Figure 6 16 IGMP Snooping Settings window The following fields can be set Parameter Description VLAN ID Allows the entry of the VLAN ID for which IGMP Snooping is to be D Link DES 3250TG Standalone Layer 2 Switch
16. 128 Apply Traffic Control Information Table 1 1 8 Disabled Disabled Disabled 128 2 9 16 Disabled Disabled Disabled 128 3 17 24 Disabled Disabled Disabled 128 4 25 32 Disabled Disabled Disabled 128 5 33 40 Disabled Disabled Disabled 128 6 41 48 Disabled Disabled Disabled 128 49 Disabled Disabled Disabled 128 8 50 Disabled Disabled Disabled 128 Figure 6 32 Traffic Control Setting window The following fields can be set Parameter Description Group lt gt Select the desired group of ports from the drop down menu Broadcast Storm This field can be toggled between lt Disabled gt Enabled and Disabled using the drop down menu This enables or disables globally the Switch s reaction to Broadcast storms triggered at the threshold set in the last field Multicast Storm This field can be toggled between lt Disabled gt Enabled and Disabled using the drop down menu This enables or disables globally the Switch s reaction to Multicast storms triggered at the threshold set above Destination This field can be toggled between Lookup Fail Enabled and Disabled using the lt Disabled gt drop down menu This enables or disables globally the Switch s reaction to Destination Address Unknown storms triggered at the D Link DES 3250TG Standalone Layer 2 Switch threshold set above Threshold lt 128 gt This is the value in units of packets per second beyond which the ingress port for that block disc
17. 13 None 14 None 15 None 16 None 17 None 18 None 19 None 20 None 21 None 22 None 23 None 24 None 25 None 26 None 27 None 28 None 29 None 30 None 31 None 32 None 33 None 34 None 85 None 36 None Bi None 38 None 39 None 40 None 41 None 42 None 43 None 44 None 45 None 46 None 47 None 48 None 49 None 50 None Figure 6 49 802 1X Capability Settings window 87 D Link DES 3250TG Standalone Layer 2 Switch To set up the switch s 802 1x port based authentication select which ports are to be configured in the From and To fields Next enable the ports by selecting Authenticator from the drop down menu under Capability Click Apply to let your change take effect Configure the following 802 1x port settings Parameter Description From and To Capability Ports being configured for 802 1x settings Two role choices can be selected Authenticator A user must pass the authentication process to gain access to the network None The port is not controlled by the 802 1x functions Initialize Port s Existing 802 1x port settings are displayed and can be configured using the window below Click Initialize Port s on the PAE Access Entity folder on the Configuration menu to open the Initialize Port window Port MAC Address Auth PAE State Backend State Oper Dir PortStatus Figure 6 50 Initialize Port window This window allows you to initialize a port or group of ports
18. 19 inch rack which can be placed in a wiring closet with other equipment To install attach the mounting brackets on the switch s side panels one on each side and secure them with the screws provided Figure 2 2 Attaching the mounting brackets to the switch Then use the screws provided with the equipment rack to mount the switch on the rack 7 f 0 80 00 0 0 Figure 2 3 Installing the switch on an equipment rack D Link DES 3250TG Standalone Layer 2 Switch Power on The DES 3250TG switch can be used with AC power supply 100 240 VAC 50 60 Hz The power switch is located at the rear of the unit adjacent to the AC power connector and the system fan The switch s power supply will adjust to the local power source automatically and may be turned on without having any or all LAN segment cables connected After the power switch is turned on the LED indicators should respond as follows e All LED indicators will momentarily blink This blinking of the LED indicators represents a reset of the system e The power LED indicator is always on after the power is turned ON e The console LED indicator will blink while the Switch loads onboard software and performs a self test It will remain ON if there is a connection at the RS 232 port otherwise this LED indicator is OFF Power Failure As a precaution in the event of a power failure unplug the switch When the power supply is restored p
19. 26 1 50 27 1 50 28 1 50 29 1 50 30 1 50 sil 1 50 32 1 50 25 1 50 34 1 50 Em 1 50 36 1 50 37 1 50 38 1 50 39 1 50 40 1 50 41 1 50 42 1 50 43 1 50 44 1 50 45 1 50 46 1 50 47 1 50 48 1 50 49 1 50 50 1 50 Figure 6 36 Traffic Segmentation Setting window Enter a source port number in the first field and the range of the ports that you want to segment in the second field For example if you enter 5 in the first field and 5 8 in the second field packets from 76 D Link DES 3250TG Standalone Layer 2 Switch port 5 will only be forwarded to ports 5 to 8 Packets to port 9 then will be dropped Click Apply to let your changes take effect LACP The DES 3250TG supports Link Aggregation Control Protocol LACP allows you to bundle several physical ports together to form one logical port After the LACP negotiation these candidates for trunking ports can be trunked as a logical port If any one of the connected port pairs does not have LACP capability these two ports will stand as regular ports until the LACP negotiation is successfully completed Like the traditional port trunking explained earlier in this manual the member ports of an LACP trunk group can only be from a trunk with a peer LACP trunk group Link Aggregation Add New Link Aggregation Group Figure 6 37 Port Link Aggregation Group window Click Add to add an entry to the table in the bottom part of this window Disabled y
20. 30 30 2 3600 no 36 both auto 30 60 30 30 2 3600 no By both auto 30 60 30 30 2 3600 no 38 both auto 30 60 30 30 2 3600 no 89 both auto 30 60 30 30 2 3600 no 40 both auto 30 60 30 30 2 3600 no 41 both auto 30 60 30 30 2 3600 no 42 both auto 30 60 30 30 2 3600 no 43 both auto 30 60 30 30 2 3600 no 44 both auto 30 60 30 30 2 3600 no 45 both auto 30 60 30 30 2 3600 no 46 both auto 30 60 30 30 2 3600 no 47 both auto 30 60 30 30 2 3600 no 48 both auto 30 60 30 30 2 3600 no 49 both auto 30 60 30 30 2 3600 no 50 both auto 30 60 30 30 2 3600 no Figure 6 47 First 802 1X Authenticator Settings window Click the selection button on the far left that corresponds to the port you want to configure e o QuietPeriod i Supp Timeout end nin gt Serveto six rt nn Renn MaxReqg ReAuthPeriod ReAuth Disabled y 3600 Show Authenticators Setting Apply Figure 6 48 Second 802 1X Authenticator Settings window Configure the following 802 1x port settings Parameter Description Port Port being configured for 802 1x settings AdmDir From the pull down menu select whether a controlled Port that is 85 D Link DES 3250TG Standalone Layer 2 Switch unauthorized will exert control over communication in both receiving and transmitting directions or just the receiving direction Ctl Stat This displays whether a controlled Port that is unauthorized will exert control over communication in both receiving and t
21. 802 1Q Tag Port VLAN ID Packets that are tagged are carrying the 802 1Q VID information can be transmitted from one 802 1Q compliant network device to another with the VLAN information intact This allows 802 1Q VLANs to span network devices and indeed the entire network if all network devices are 802 1Q compliant Unfortunately not all network devices are 802 1Q compliant These devices are referred to as tag unaware 802 1Q devices are referred to as tag aware Prior to the adoption 802 1Q VLANs port based and MAC based VLANs were in common use These VLANs relied upon a Port VLAN ID PVID to forward packets A packet received on a given port would be assigned that ports PVID and then be forwarded to the port that corresponded to the packet s destination address found in the switch s forwarding table If the PVID of the port that received the packet is different from the PVID of the port that is to transmit the packet the switch will drop the packet Within the switch different PVIDs mean different VLANs remember that two VLANs cannot communicate without an external router So VLAN identification based upon the PVIDs cannot create VLANs that extend outside a given switch or switch stack Every physical port on a switch has a PVID 802 1Q ports are also assigned a PVID for use within the switch If no VLANs are defined on the switch all ports are then assigned to a default VLAN with a PVID equal to 1 Untagged packe
22. 802 1Q VLAN If it is not the packet is dropped If the destination port is a member of the 802 1Q VLAN the packet is forwarded and the destination port transmits it to its attached network segment If the packet is not tagged with VLAN information the ingress port will tag the packet with its own PVID as a VID if the port is a tagging port The switch then determines if the destination port is a member of the same VLAN has the same VID as the ingress port If it does not the packet is dropped If it has the same VID the packet is forwarded and the destination port transmits it on its attached network segment This process is referred to as ingress filtering and is used to conserve bandwidth within the switch by dropping packets that are not on the same VLAN as the ingress port at the point of reception This eliminates the subsequent processing of packets that will just be dropped by the destination port The Default VLAN The switch initially configures one VLAN VID 1 called the default VLAN The factory default setting assigns all ports on the switch to the default VLAN Packets cannot cross VLANs If a member of one VLAN wants to connect to another VLAN the link must be through an external router If no VLANs are configured on the switch then all packets will be forwarded to any destination port Packets with unknown destination addresses will be flooded to all ports Broadcast and multicast packets will also b
23. C should be in the blocking state but since it can no longer receive BPDUs from port 2 on B it will transition to the forwarding state If the failure exists at boot STP will not converge and rebooting the bridges will have no effect Note Rebooting would help temporarily in the previous example This type of failure is difficult to detect because the Link state LEDs for Ethernet links rely on the transmit side of the cable to detect a link If a unidirectional failure on a link is suspected it is usually required to go to the console or other management software and look at the packets received and transmitted for the port A unidirectional port will have many packets transmitted but none received or vice versa for example Packet Corruption Packet corruption can lead to the same type of failure If a link is experiencing a high rate of physical errors a large number of consecutive BPDUs can be dropped and a port in the blocking state would transition to the forwarding state The blocking port would have to have the BPDUs dropped for 50 seconds at the default settings and a single BPDU would reset the timer If the MAX AGE is set too low this time is reduced Resource Errors The DES 3250TG Layer 2 switch performs its switching and routing functions primarily in hardware using specialized ASICs STP is implemented in software and is thus reliant upon the speed of the CPU and other factors to converge If the CPU is over utilized it
24. Cat 5 100 m EIA TIA 568 100 ohm STP 100 m Mini GBIC IEC 793 2 1992 Type Ala 50 125um multimode Type Alb 62 5 125um multimode SC optical connector Number of Ports 48x 10 100 Mbps NWay ports 2 Gigabit Ethernet ports 1000BASE T included or Mini GBIC optional Physical and Environmental AC input amp 100 120 200 240 VAC 50 60 Hz internal External universal power supply Redundant Power Supply 124 Power Consumption DC fans Operating Temperature Storage Temperature Humidity Dimensions Weight EMI Safety D Link DES 3250TG Standalone Layer 2 Switch Physical and Environmental 30 watts maximum 2 built in 40 x 40 x10 mm fans O to 40 degrees Celsius 40 to 70 degrees Celsius Operating 5 to 95 RH non condensing Storage 0 to 95 RH non condensing 441 mm x 309 mm x 44 mm 1U 19 inch rack mount width 4 4 kg FCC Class A CE Class A C Tick VCCI Class A CSA International Performance Transmission Method Store and forward RAM Buffer 64M Bytes per device Filtering Address Table Packet Filtering Forwarding Rate MAC Address Learning Forwarding Table Age Time Priority Queues 8K MAC address per device Full wire speed for all connections 148 800 pps per port for 100Mbps 1 488 000 pps per port for 1000Mbps Automatic update Mex age 10 1 000 000 seconds Default 300 4 Priority Queues per
25. II ip i5 I5 i5 iS i8 ip eIn JE ee ee e se we we eo Ss ee IR ooo wo oe wo 1E JE as El a Y E da a c 1 c gQ 2 9 g WW 9 9 9 2 9 o g 9 9 o fF fe fe O CIE JE JE JE JR JE JE JE 1E JE JE IE JE IE JS JE JE JE IE JE IE IE JE IE Se 2627 2902 33 34 35 36 87 Ba Bo 0 Las las 7 las lao o E w J iS A i5 15 IA m m u u a leaps le e e lag S ja 313 3 5 eisl o ale E A 8 f EJ Q a oo o a olo olo o w ol ol o olo w w wl o w oos Egress CRE CREE EE EERE ERE EEEE EEE amp oo oo o oo oo oo 0 oo 9 9 oo ol o krj o a a Show All Static VLAN Entries Figure 6 26 Modify 802 1Q Static VLAN window The following fields can then be set in either of the two 802 1Q Static VLAN windows Parameter Description VLAN ID VID Allows the entry of a VLAN ID in the Add window or displays the VLAN ID of an existing VLAN in the Modify window VLANs can be identified by either the VID or the VLAN name VLAN Name Allows the entry of a name for the new VLAN in the Add window or for editing the VLAN name in the Modify window Advertisement Advertising can be enabled or disabled using this pull down menu Advertising allows members to join this VLAN through GVRP Port Allows an individual port to be specified as member of a VLAN Tagged None Allows an individual port to be specified as Tagging A check in the
26. ISO A A sabes aa dun Red ana 117 Ping Testor atese A A A A A A E AA 117 Save CANAS A ducted Ged oboe a dis 118 REDOOE SERVICES 000 E E A Daas A A A EE 118 LOU E Or ri 120 O a NO 121 All countries and regions except USA ooococcnccncnnoncnncncnncnnoncnncnncncnno nono ncrna nor nec eaeeneceeeeeeeaeeeeeeeaeaeeneees 121 USA OMY oriee ne aa a is 122 Technical Specification it A A A ia 124 Understanding and Troubleshooting the Spanning Tree Protocol occoccocccnncncnncnncncnnanocnnnnananncncnnonnss 126 A A ES iN ESOL os CEPA EEL ARE in PATS BE RR a 135 D Link DES 3250TG Standalone Layer 2 Switch Intended Readers The DES 3250 User s Guide contains information for setup and management and of the DES 3250TG switch This guide is intended for network managers familiar with network management concepts and terminology Notes Notices and Cautions NOTE A NOTE indicates important information that helps you make better use of your device NOTICE A NOTICE indicates either potential damage to hardware or loss of data and tells you how to avoid the problem CAUTION A CAUTION indicates a potential for property damage personal injury or death D Link DES 3250TG Standalone Layer 2 Switch Safety Instructions Use the following safety guidelines to ensure your own personal safety and to help protect your system from potential damage Throughout this safety section the caution icon A is used to indicate cautions and precautions that you
27. Packets Port 2 lt v Learning Network Segment Troubleshooting STP Spanning Tree Protocol Failure A failure in the STA generally leads to a bridging loop A bridging loop in an STP environment comes from a port that should be in the blocking state but is forwarding packets A Root Port 1 Port 2 Port 1 B C Port 1 Designated Port 2 Port 2 131 D Link DES 3250TG Standalone Layer 2 Switch In this example B has been elected as the designated bridge and port 2 on C is in the blocking state The election of B as the designated bridge is determined by the exchange of BPDUs between B and C B had a better BPDU than C B continues sending BPDUs advertising its superiority over the other bridges on this LAN Should C fail to receive these BPDUs for longer than the MAX AGE default of 20 seconds it could start to transition its port 2 from the blocking state to the forwarding state It should be noted A port must continue to receive BPDUs advertising superior paths to remain in the blocking state There are a number of circumstances in which the STA can fail mostly related to the loss of a large number of BPDUs These situations will cause a port in the blocking state to transition to the forwarding state Full Half Duplex Mismatch A mismatch in the duplex state of two ports is a very common configuration error for a point to point link If one port is configured as a full duplex and the other port is
28. Tagged field specifies the port as a Tagging member of the VLAN When an untagged packet is transmitted by the port the packet header is changed to include the 32 bit tag associated with the VID VLAN Identifier see below When a tagged packet exits the port the packet header is unchanged None Allows an individual port to be 61 D Link DES 3250TG Standalone Layer 2 Switch specified as None When an untagged packet is transmitted by the port the packet header remains unchanged When a tagged packet exits the port the tag is stripped and the packet is changed to an untagged packet Egress Egress Member specifies the port as being a static member of the VLAN Egress Member Ports are ports that will be transmitting traffic for the VLAN These ports can be either tagged or untagged Forbidden Forbidden Non Member specifies the port as not being a member of the VLAN and that the port is forbidden from becoming a member of the VLAN dynamically The 802 1Q Port Settings window shown below allows you to determine whether the switch will share its VLAN configuration information with other GVRP GARP VLAN Registration Protocol enabled switches In addition Ingress can be used to limit traffic by filtering incoming packets whose PVID does not match the PVID of the port 62 D Link DES 3250TG Standalone Layer 2 Switch Port VLAN ID PVID Port1 y Port 1 Disabled y Disabled F Apply 1 1 Enabled Disabled
29. The Initialize Port Table in the bottom half of the window displays the current status of the port s once you have clicked Apply This window displays the following information Parameter Description Port MAC Address Auth PAE State Backend _ State The port number The MAC address of the switch where the port resides The Authenticator PAE State will display one of the following Initialize Disconnected Connecting Authenticating Authenticated Aborting Held ForceAuth ForceUnauth and N A The Backend Authentication State will display one of the following 88 D Link DES 3250TG Standalone Layer 2 Switch Request Response Success Fail Timeout Idle Initialize and N A Oper Dir The Operational Controlled Directions are both and in PortStatus The status of the controlled port can be authorized unauthorized or N A Reauthenticate Port s This window allows you to reauthenticate a port or group of ports The Reauthenticate Port Table displays the current status of the port s once you have clicked Apply Click Reauthenticate Port s on the PAE Access Entity folder on the Configuration menu to open the Reauthenticate Port s window Port1 y Port 1 y Apply Figure 6 51 Reauthenticate Port window This window displays the following information Parameter Description Port The port number MAC Address The MAC address of the switch where the port resides Au
30. address and for all hosts on the network the broadcast address This also applies to subnets A subnet address cannot be all O s or all 1 s A 1 bit subnet mask is also not allowed Calculating the Number of Subnets and Nodes To calculate the number of subnets and nodes use the formula 2 2 where n the number of bits in either the subnet mask or the node portion of the IP address Multiplying the number of subnets by the number of nodes available per subnet gives the total number of nodes for the entire network Example 00001010 00101010 01001001 11010010 10 42 73 210 Class A IP address 11111111 11100000 00000000 00000000 255 224 0 0 Subnet Mask 00001010 00100000 00000000 00000000 10 32 0 0 Network Address 00001010 00101010 11111111 11111111 10 32 255 255 Broadcast Address This example uses an 11 bit subnet mask There are three additional bits added to the default Class A subnet mask So the number of subnets is 22 2 8 2 6 Subnets of all 0 s and all 1 s are not allowed so two subnets are subtracted from the total The number of bits used in the node part of the address is 24 3 21 bits so the total number of nodes is 2 2 2 097 152 2 2 097 150 Multiplying the number of subnets times the number of nodes gives 12 582 900 possible nodes Note that this is less than the 16 777 214 possible nodes that an unsubnetted class A network would have Subnetting reduces the number of p
31. ae awe 50 Spannine tE a a tia 53 Forwarding Filtering enre saina i N Gass oan tote dns de Mes ean de yaa dite Ges wa Vantin vga des rap etsy Wo TAAN Mn don TAR a de 58 O A dh g vad Sot See E cunead es 60 Pott Bandwidth reco A ale ins sd Se maw ee aad Sale a ie ios Gv ae ais a te 65 DOIN PSG CEN SS a4 segeaneen diel O iaa 66 POTES ECU shire eshte io se E ea vada ede eee bs woes enw Tee E Ng eda von Ta gee ome dae wanes a RADA A 68 OOS Quality OF SeTVICE recita ste EA TA eden Unda A iced aN NAAF at 70 LACRA A ag ce icv Laid e gos Wao oe eae ite Wha ate E vane eons we eee POE eh ew ase 77 ACCESS Prole Table ti ada al 79 System LOS SETyeTS ieoi A A A A A EA Gels Seedy ta di 83 PAE ACCESS Entity icicle is ld ti iii Ai i 84 MINA EME di tty aes A AA dle stay A id 91 SECT a ad aii 91 USC ACOSO A TRO RIE Es 91 SNM PVI anat deae on a id Doa 92 MODITOTIAS aenea a TE EE Pour tala Deas Ae PAA O TEE eee tue A gece vat dae TEE eluted raaa S 100 Porte UHIA ON s ta NAS A e a Sean at aaa O EEO A daa 100 Packs a A A N IMS SEL ES 101 ELTON a a ii wigs noes Yor di os ER din ne in Aida dao Sale dci aos 106 EA E E A eM ROE RH Ea tc 109 MAG AAGAreSS ui a a o c nica 111 IGMP Snooping Grou PD asii AA AT A A dee a CARA A 113 IGMP Snooping FO Ward Barna SS de ei ei A de asi 113 NEAN SAUS A a Baldy onde Pee Seid e Tighe Se cba A a aaa 114 Router Porta a a A e A atado 114 Port ACCESS CO Ea 115 Matt CET A A OUTER Gate boa icbw vd EE 115 LES Eco nee eee 115 SWitCH
32. and firmware updates and to obtain the switch s MAC address for entry into another network device s address table if necessary D Link DES 3250TG Standalone Layer 2 Switch You can also enter the name of the System its location and the name and telephone number of the System Administrator It is recommended that the person responsible for the maintenance of the network system that this switch is installed on be listed here Advanced Settings Click Advanced Settings on the Configuration menu t auto logout time 10 Minutes y Ag foo Syslog Global State Disabled Apply Note When Set Asymmetric Vlan status Disabled change vlan setting to default value Figure 6 10 Switch Information Advanced Settings window The following fields can be set Parameter Description serial_port auto Set the age out timer for the serial port logout time lt 10 to 2 minutes 5 minutes 10 minutes 15 minutes gt minutes or Never MAC Address The MAC Address Aging Time specifies Aging Time lt 300 gt the length of time a learned MAC Address will remain in the forwarding table without being accessed that is how long a learned MAC Address is allowed to remain idle The Aging Time can be set to any value between 10 and 1 000 000 seconds IGMP Snooping IGMP Snooping allows the switch to lt Disabled gt read the Multicast Group IP address and the corresponding MAC address from IGMP packets that pass through the swit
33. be entered into non volatile ram using the Save Changes command on the Maintenance menu if you want these changes to be permanent SNMPV3 The DES 3250TG supports the Simple Network Management Protocol SNMP versions 1 2c and 3 The SNMP version used to monitor and control the switch can be specified by the administrator The three versions of SNMP vary in the level of security provided between the management station and the network device SNMP settings are configured using the menus located on the SNMP V3 folder of the Web manager Workstations on the network that are allowed SNMP privileged access to the switch can be restricted with the Management Station IP Address window SNMP User Table Use the SNMP User Table to create a new SNMP user and add the user to an existing SNMP group or to a newly created group Add Total Entries 1 Note It is allowed insert 10 entries into the table only initial initial V3 Figure 6 56 SNMP User Table window To delete an existing entry click the selection button in the Delete column on the far right that corresponds to the port you want to configure To create a new entry click the Add button a separate window will appear 92 D Link DES 3250TG Standalone Layer 2 Switch User Name O Group Name fo Show All SNMP User Table Entries Figure 6 57 SNMP User Table Configuration window To display the current SNMP User Table Configuration click the User Name in the first c
34. changes take effect Access Profile Table Access profiles allow you to establish criteria to determine whether the switch will forward packets based on the information contained in each packet s header These criteria can be specified on a basis of VLAN MAC address or IP address Creating an access profile is divided into two basic parts The first is to specify which part or parts of a frame the switch will examine such as the MAC source address or the IP destination address The second part is entering the criteria the switch will use to determine what to do with the frame The entire process is described below in two parts Click Access Profile Table on the Configuration menu to open the Access Profile Table window Add Profle ID Figure 6 40 Access Profile Table window To create an Access Profile Mask Click the Add button in the window above A new window is displayed Use this to create an access profile and specify what criteria are used to examine frames Once the profile has been created you can set up the rule applied to the profile as described later in this section DS Permit Deny Show All Access Profile Table Entries Figure 6 41 Access Profile Ethernet Configuration window D Link DES 3250TG Standalone Layer 2 Switch Profile ID 1 255 Vlan Source IP Mask Mode JHE 3 2 o E ES o p 2 8 ia p 2 Fa 1 IP y r Poon Papo r T ICMP FT type I code C IG
35. defective software product with product which substantially conforms to D Link s applicable product documentation Purchaser assumes responsibility for the selection of appropriate application and system platform software and associated reference materials D Link makes no warranty that its software products will work in combination with any hardware or any application or system platform software product provided by any third party excepting only such products as are expressly represented in D Link s applicable product documentation as being compatible D Link s obligation under this warranty shall be a reasonable effort to provide compatibility but D Link shall have no obligation to provide compatibility when there is fault in the third party hardware or software D Link makes no warranty that operation of its software products will be uninterrupted or absolutely error free and no warranty that all defects in the software product within or without the scope of D Link s applicable product documentation will be corrected USA Only Subject to the terms and conditions set forth herein D Link Systems Inc D Link provides this Limited warranty for its product only to the person or entity that originally purchased the product from D Link or its authorized reseller or distributor and Products purchased and delivered within the fifty states of the United States the District of Columbia U S Possessions or Protectorates and U S Military In
36. essential difference between the two protocols is in the way ports transition to a forwarding state and the in the way this transition relates to the role of the port forwarding or not forwarding in the topology RSTP combines the transition states disabled blocking and listening used in 802 1d and creates a single state discarding In either case ports do not forward packets in the STP port transition states disabled blocking or listening or in the RSTP port state discarding there is no functional difference the port is not active in the network topology Table 5 1 below compares how the two protocols differ regarding the port state transition 16 D Link DES 3250TG Standalone Layer 2 Switch 802 1d STP 802 1w RSTP Forwarding Learning Disabled Discarding No No Blocking Discarding No No Listening Discarding No No Learning Learning No Yes Forwarding Forwarding Yes Yes Table 5 1 Comparing Port States RSTP is capable of more rapid transition to a forwarding state it no longer relies on timer configurations RSTP compliant bridges are sensitive to feedback from other RSTP compliant bridge links Ports do not need to wait for the topology to stabilize before transitioning to a forwarding state In order to allow this rapid transition the protocol introduces two new variables the edge port and the point to point P2P port Edge Port The edge port is a configurable designation used for a port that is directly connected to a
37. firmly connected to the system Avoid sudden stops and uneven surfaces A General Precautions for Rack Mountable Products Observe the following precautions for rack stability and safety Also refer to the rack installation documentation accompanying the system and the rack for specific caution statements and procedures Systems are considered to be components in a rack Thus component refers to any system as well as to various peripherals or supporting hardware CAUTION Installing systems in a rack without the front and side stabilizers installed could cause the rack to tip over potentially resulting in bodily injury under certain circumstances Therefore always install the stabilizers before installing components in the rack After installing system components in a rack never pull more than one component out of the rack on its slide assemblies at one time The weight of more than one extended component could cause the rack to tip over and may result in serious injury Before working on the rack make sure that the stabilizers are secured to the rack extended to the floor and that the full weight of the rack rests on the floor Install front and side stabilizers on a single rack or front stabilizers for joined multiple racks before working on the rack vii D Link DES 3250TG Standalone Layer 2 Switch Safety Instructions continued Always load the rack from the bottom up and load the heaviest item in the rack first Make sure
38. forwarding state does the following Forwards packets received from the network segment to which it is attached Forwards packets sent from another port on the switch for forwarding Incorporates station location information into its address database Receives BPDUs and directs them to the system CPU Receives and responds to network management messages 129 D Link DES 3250TG Standalone Layer 2 Switch Network Segment Port 1 Forwarding lt A i Addresses EDNER ata BPDUs Management Packers Packets A Forwarding Database oy A NS Switch Fabric Addresses al BPDUs Port 2 lt v Learning Network Segment Disabled State A port in the disabled state does not participate in frame forwarding or STP A port in the disabled state is virtually non operational A disabled port does the following Discards packets received from the network segment to which it is attached Discards packets sent from another port on the switch for forwarding Does not add addresses to its forwarding database Receives BPDUs but does not direct them to the system CPU Does not receive BPDUs for transmission from the system CPU Receives and responds to network management messages 130 D Link DES 3250TG Standalone Layer 2 Switch Network Segment Port 1 Forwarding dl i Addresses il ASE ata BPDUs Management Packers Packets A Forwarding Database GY y A Switch Fabric Discard BPDUs A Data
39. from either being received or transmitted Ingress Selecting this option mirrors only received packets Egress Selecting this option mirrors only transmitted packets Both Selecting this option mirrors both received and transmitted packets Target Port This port is where information will be duplicated and sent for capture and network analysis Status Toggle between Enabled and Disabled Link Aggregation Link aggregation allows several ports to be grouped together and to act as a single link This gives a bandwidth that is a multiple of a single link s bandwidth Link aggregation is most commonly used to link a bandwidth intensive network device or devices such as a server to the backbone of a network The switch allows the creation of up to six link aggregation groups each group consisting of up to eight links ports All of the ports in the group must be members of the same VLAN Further the aggregated links must all be of the same speed and should be configured as full duplex The configuration of the Master Port in the group becomes the configuration for all of the ports in the aggregation group All configuration options including the VLAN configuration that can be applied to the Master Port are applied to the entire link aggregation group Load balancing is automatically applied to the ports in the aggregated group and a link failure within the group causes the network traffic to be directed to the
40. it will become the Root Bridge The Bridge Hello Time can be set from 1 to 10 seconds This is the interval between two transmissions of BPDU packets sent by the Root Bridge to tell all other switches that it is indeed the Root Bridge The Bridge Forward Delay can be from 4 to 30 seconds This is the time any port on the switch spends in the listening state while moving from the blocking state to the forwarding state A Bridge Priority for the switch can be set from O to 65535 This number is used in the voting process between switches on the network to determine which switch will be the root switch A low number indicates a high priority and a high probability that this switch will be elected as the root switch Choose rstp or StpCompatibility Both versions use STP parameters in the same way RSTP is fully compatible with IEEE 802 1d STP and will function with legacy equipment This is the maximum number of Hello packets transmitted per interval The count can be specified from 1 to 10 The default value is 3 This allows you to control whether or not to forward Bridge Protocol Data Units Disabling this setting can be useful if for example the present switch has been designated as the root bridge and you do not want that status to change The Hello Time cannot be longer than the Max Age Otherwise a configuration error will occur Observe the following formulas when setting the above parameters Max Age
41. left in auto negotiation mode the second port will end up in half duplex because ports configured as half or full duplex do not negotiate A Half duplex Root Port 1 Port 2 Port 1 Full duplex i C Port 1 Designated B Port 2 y Port 2 Blocked In the above example port 1 on B is configured as a full duplex port and port 1 on A is either configured as a half duplex port or left in auto negotiation mode Because port 1 on Bis configured as a full duplex port it does not do the carrier sense when accessing the link B will then start sending packets even if A is using the link A will then detect collisions and begin to run the flow control algorithm If there is enough traffic between B and A all packets including BPDUs will be dropped If the BPDUs sent from A to B are dropped for longer than the MAX AGE B will lose its connection to the root A and will unblock its connection to C This will lead to a data loop Unidirectional Link Unidirectional links can be caused by an undetected failure in one side of a fiber cable or a problem with a ports transceiver Any failure that allows a link to remain up while providing one way communication is very dangerous for STP 132 D Link DES 3250TG Standalone Layer 2 Switch A Root Port 1 Port 2 Port 1 B l i C Port 1 Designated Port 2 Port 2 BPDUs Lost Blocked gt In this example port 2 on B can receive but not transmit packets Port 2 on
42. need to review and follow A Safety Cautions To reduce the risk of bodily injury electrical shock fire and damage to the equipment observe the following precautions Observe and follow service markings Do not service any product except as explained in your system documentation Opening or removing covers that are marked with the triangular symbol with a lightning bolt may expose you to electrical shock Only a trained service technician should service components inside these compartments If any of the following conditions occur unplug the product from the electrical outlet and replace the part or contact your trained service provider The power cable extension cable or plug is damaged An object has fallen into the product The product has been exposed to water The product has been dropped or damaged The product does not operate correctly when you follow the operating instructions e Keep your system away from radiators and heat sources Also do not block cooling vents e Do not spill food or liquids on your system components and never operate the product in a wet environment If the system gets wet see the appropriate section in your troubleshooting guide or contact your trained service provider e Do not push any objects into the openings of your system Doing so can cause fire or electric shock by shorting out interior components e Use the product only with approved equipment e Allow the product to co
43. or replace the defective Hardware the price paid by the original purchaser for the defective Hardware will be refunded by D Link upon return to D Link of the defective Hardware All Hardware or part thereof that is replaced by D Link or for which the purchase price is refunded shall become the property of D Link upon replacement or refund Limited Software Warranty D Link warrants that the software portion of the product Software will substantially conform to D Link s then current functional specifications for the Software as set forth in the applicable documentation from the date of original retail purchase of the Software for a period of ninety 90 days Warranty Period provided that the Software is properly installed on approved hardware and operated as contemplated in its documentation D Link further warrants that during the Warranty Period the magnetic media on which D Link delivers the 122 D Link DES 3250TG Standalone Layer 2 Switch Software will be free of physical defects D Link s sole obligation shall be to replace the non conforming Software or defective media with software that substantially conforms to D Link s functional specifications for the Software or to refund at D Link s sole discretion Except as otherwise agreed by D Link in writing the replacement Software is provided only to the original licensee and is subject to the terms and conditions of the license granted by D Link for the Software S
44. port 125 D Link DES 3250TG Standalone Layer 2 Switch UNDERSTANDING AND TROUBLESHOOTING THE SPANNING TREE PROTOCOL When the spanning tree algorithm determines a port should be transitioned to the forwarding state the following occurs e The port is put into the listening state where it receives BPDUs and passes them to the switch s CPU BPDU packets from the CPU are processed If no BPDUs that suggest the port should go to the blocking state are received e The port waits for the expiration of the forward delay timer It then moves to the learning state e In the learning state the port learns station location information from the source address of packets and adds this information to its forwarding database e The expiration of the forwarding delay timer moves the port to the forwarding state where both learning and forwarding are enabled At this point packets are forwarded by the port Blocking State A port in the blocking state does not forward packets When the switch is booted a BPDU is sent to each port in the switch putting these ports into the blocking state A switch initially assumes it is the root and then begins the exchange of BPDUs with other switches This will determine which switch in the network is the best choice for the root switch If there is only one switch on the network no BPDU exchange occurs the forward delay timer expires and the ports move to the listening state All STP enabled ports enter
45. remaining links in the group 48 D Link DES 3250TG Standalone Layer 2 Switch The Spanning Tree Protocol will treat a link aggregation group as a single link STP will use the port parameters of the Master Port in the calculation of port cost and in determining the state of the link aggregation group If two redundant link aggregation groups are configured on the switch STP will block one entire group in the same way STP will block a single port that has a redundant link Add New Link Aggregation Group Figure 6 13 Port Link Aggregation Group window To configure a link aggregation group click Add on the Port Link Aggregation Group window above Disabled 7 Porti aped s 7 ss omo pese hs ho popi 22 23 24 m m m a m m m m mj m m a mj a m m a mj m II mj m Member Ports m m m m mi m mi mi m m m m m m mj m IO ez Note It is only valid to set up at most 8 member ports of any one trunk group and a port can be a member of only one trunk group at a time Member Ports Type Show All Link Aggregation Group Entries Figure 6 14 Port Link Aggregation Settings window The following fields can be set Parameter Description Group ID 1 6 Allows the entry of a number used to identify the link aggregation group when adding a new group Displays the Group ID of the currently selected link aggregation group when editing and existing entry State
46. represent the corresponding subnet mask 2 Alternatively you can enter the commands config ipif System ipaddress KXX KXX XXX XXX Z at the command line prompt Where the x s represent the IP address to be assigned to the IP interface named System and the z represents the corresponding number of subnets in CIDR notation Using this method the switch can be assigned an IP address and subnet mask that can then be used to connect a management station to the switch s Web based management agent Starting and Stopping the Web based Manager Do the following to use the Web based manager 1 Start a Java enabled Web browser from any machine with network access to the switch Preferred browsers include Opera Internet Explorer 4 0 or above or Netscape Navigator 4 0 or above 2 Enter the IP address for the switch you want to manage in the URL field of the browser 3 The screen below will appear prompting you to enter the user name and password for management access Enter Network Password E 21x gt Please type your user name and password Site 10 90 90 90 Realm DES 3250 User Name I Password Save this password in your password list Cancel Figure 6 6 Password dialog box 1 There is no default User Name or Password Click the OK button to continue The default user has Admin privileges 2 The full application will now launch A three frame page will display with a switch graphic located in the upper righ
47. seconds The default value is one second 103 D Link DES 3250TG Standalone Layer 2 Switch Record Number Select number of times the Switch 200 will be polled between 20 and 200 The default value is 20 Unicast Counts the total number of good packets that were received by a unicast address Multicast Counts the total number of good packets that were received by a multicast address Broadcast Counts the total number of good packets that were received by a broadcast address Show Hide Check whether or not to display Multicast Broadcast and Unicast Packets Clear Clicking this button clears all statistics counters on this window View Table Clicking this button instructs the Switch to display a table rather than a line graph View Line Chart Clicking this button instructs the Switch to display a line graph rather than a table Transmitted TX Clear Wiew Table Bytes Packets Time Interval Record Number Show Hide V Bytes IV Packets Figure 6 73 Tx Packets Analysis window line graph for Bytes and Packets 104 D Link DES 3250TG Standalone Layer 2 Switch Figure 6 74 Tx Packets Analysis window table for Bytes and Packets The following fields can be set Parameter Description Time Interval 1s Record Number 200 Bytes Packets Show Hide Clear View Table View Line Chart Select the desired setting between Is and 60s where s
48. segment where a loop cannot be created An example would be a port connected directly to a single workstation Ports that are designated as edge ports transition to a forwarding state immediately without going through the listening and learning states An edge port loses its status if it receives a BPDU packet immediately becoming a normal spanning tree port P2P Port A P2P port is also capable of rapid transition P2P ports may be used to connect to other bridges Under RSTP all ports operating in full duplex mode are considered to be P2P ports unless manually overridden through configuration 802 1d 802 1w Compatibility RSTP can interoperate with legacy equipment and is capable of automatically adjusting BPDU packets to 802 1d format when necessary However any segment using 802 1 STP will not benefit from the rapid transition and rapid topology change detection of RSTP The protocol also provides for a variable used for migration in the event that legacy equipment on a segment is updated to use RSTP Link Aggregation Link aggregation is used to combine a number of ports together to make a single high bandwidth data pipeline The participating parts are called members of a link aggregation group with one port 17 D Link DES 3250TG Standalone Layer 2 Switch designated as the master port of the group Since all members of the link aggregation group must be configured to operate in the same manner the configuration of the master
49. set from 1 to 200000000 The lower the number the greater the probability the port will be chosen to forward packets Default port cost 100Mbps port 200000 Gigabit ports 20000 A Port Priority can be from O to 240 The lower the number the greater the probability the port will be chosen as the Root Port Select Yes or No Choosing Yes will enable the port to migrate from 802 1d STP status to 802 1w RSTP status RSTP can coexist with standard STP however the benefits of RSTP are not realized on a port where an 802 1d network connects to an 802 1w enabled network Migration should be enabled Yes on ports connected to network stations or segments that will be upgraded to 802 1w RSTP on all or some portion of the segment Select Yes or No Choosing Yes designates the port as an edge port Edge ports cannot create loops however an edge port can lose edge port status if a topology change creates a potential for a loop An 57 D Link DES 3250TG Standalone Layer 2 Switch edge port normally should not receive BPDU packets If a BPDU packet is received it automatically loses edge port status No indicates the port does not have edge port status P2P lt No gt Select Yes or No Choosing Yes indicates a point to point p2p shared link These are similar to edge ports however they are restricted in that a p2p port must operate in full duplex Like edge ports p2p ports transition to a forwarding state rapidly thus
50. software program called an agent that processes SNMP requests but the user program that makes the requests and collects the responses runs on a management station a designated computer on the network The SNMP agent and the user program both use the UDP IP protocol to exchange packets Authentication The authentication protocol ensures that both the router SNMP agent and the remote user SNMP application program discard packets from unauthorized users Authentication is accomplished using community strings which function like passwords The remote user SNMP application and the router SNMP must use the same community string Traps Traps are messages that alert network personnel of events that occur on the Switch The events can be as serious as a reboot someone accidentally turned OFF the Switch or less serious like a port status change The Switch generates traps and sends them to the trap recipient or network manager Trap recipients are special users of the network who are given certain rights and access in overseeing the maintenance of the network Trap recipients will receive traps sent from the Switch they must immediately take certain actions to avoid future failure or breakdown of the network You can also specify which network managers may receive traps from the Switch by entering a list of the IP addresses of authorized network managers Up to ten trap recipient IP addresses and ten corresponding SNMP community str
51. stands for seconds The default value is one second Select number of times the Switch will be polled between 20 and 200 The default value is 20 Counts the number of bytes successfully sent from the port Counts the number of packets successfully sent on the port Check whether or not to display Bytes and Packets Clicking this button clears all statistics counters on this window Clicking this button instructs the Switch to display a table rather than a line graph Clicking this button instructs the Switch to display a line graph rather than a table 105 D Link DES 3250TG Standalone Layer 2 Switch Errors The Web Manager allows port error statistics compiled by the Switch s management agent to be viewed as either a line graph or a table Four windows are offered Received RX Clear View Table 1000 EAR CreError 900 800 Und 700 600 Fragment 500 Jabber Drop Time Interval Record Number 200 Show Hide IM CrcError IV UnderSize M OverSize I Fragment I Jabber Y Drop Figure 6 75 Rx Error Analysis window line graph View LineChart Figure 6 76 Rx Error Analysis window table The following fields can be set Parameter Description 106 D Link DES 3250TG Standalone Layer 2 Switch Time Interval 1s Record Number 200 CrcError UnderSize OverSize Fragment Jabber Drop Show Hide Clear View Table View Line Chart Selec
52. that the rack is level and stable before extending a component from the rack Use caution when pressing the component rail release latches and sliding a component into or out of a rack the slide rails can pinch your fingers After a component is inserted into the rack carefully extend the rail into a locking position and then slide the component into the rack Do not overload the AC supply branch circuit that provides power to the rack The total rack load should not exceed 80 percent of the branch circuit rating Ensure that proper airflow is provided to components in the rack Do not step on or stand on any component when servicing other components in a rack NOTE A qualified electrician must perform all connections to DC power and to safety grounds All electrical wiring must comply with applicable local or national codes and practices CAUTION Never defeat the ground conductor or operate the equipment in the absence of a suitably installed ground conductor Contact the appropriate electrical inspection authority or an electrician if you are uncertain that suitable grounding is available CAUTION The system chassis must be positively grounded to the rack cabinet frame Do not attempt to connect power to the system until grounding cables are connected Completed power and safety ground wiring must be inspected by a qualified electrical inspector An energy hazard will exist if the safety ground cable is omitted or disconnected Pr
53. the blocking state following switch boot A port in the blocking state does the following e Discards packets received from the network segment to which it is attached e Discards packets sent from another port on the switch for forwarding e Does not add addresses to its forwarding database e Receives BPDUs and directs them to the CPU e Does not transmit BPDUs received from the CPU e Receives and responds to network management messages 126 D Link DES 3250TG Standalone Layer 2 Switch Network Segment Port 1 Forwarding lt A Addresses i Network ata BPDUs Management kets Packets Forwarding Database CPU A Switching Fabric Discard BPDUs A Data Packets l Port 2 lt Blocking A Network Segment Listening State The listening state is the first transition for a port from the blocking state Listening is an opportunity for the switch to receive BPDUs that may tell the switch that the port should not continue to transition to the forwarding state but should return to the blocking state that is a different port is a better choice There is no address learning or packet forwarding from a port in the listening state A port in the listening state does the following e Discards frames received from the network segment to which it is attached e Discards packets sent from another port on the switch for forwarding e Does not add addresses to its forwarding database e Receives BPDUs and directs them t
54. the last three octets x 42 73 210 To specify the network address for a given IP address the node part is set to all 0 s In our example 10 0 0 0 specifies the network address for 10 42 73 210 When the node part is set to all 1 s the address specifies a broadcast address So 10 255 255 255 is the broadcast address for the network 10 0 0 0 Subnet Masking A subnet mask can be applied to an IP address to identify the network and the node parts of the address A bitwise logical AND operation between the IP address and the subnet mask results in the Network Address For example 00001010 00101010 01001001 11010010 10 42 73 210 Class A IP address 11111111 00000000 00000000 00000000 255 0 0 0 Class A Subnet Mask 00001010 00000000 00000000 00000000 10 0 0 0 Network Address The Default subnet masks are e Class A 11111111 00000000 00000000 00000000 255 0 0 0 e Class B 11111111 11111111 00000000 00000000 255 255 0 0 e Class C 1111111 11111111 11111111 00000000 255 255 255 0 Additional bits can be added to the default subnet mask for a given Class to further subnet a network When a bitwise logical AND operation is performed between the subnet mask and the IP address the result defines the Subnet Address 24 D Link DES 3250TG Standalone Layer 2 Switch Some restrictions apply to subnet addresses Addresses of all 0 s and all 1 s are reserved for the local network when a host does not know it s network
55. the switch s console will give unusually high values in this case The priority for most cases is to restore connectivity as soon as possible The simplest remedy is to manually disable all of the ports that provide redundant links Disabling ports one at a time and then checking for a restoration of the user s connectivity will identify the link that is causing the problem if time allows Connectivity will be restored immediately after disabling a data loop 134 D Link DES 3250TG Standalone Layer 2 Switch 100BASE TX Devicesin nu 11 1OBASE T Device ienne it 11 S02 D E A S 16 AC MPUtS ti a eens 122 AG power Cord aneas nahiei ne sekoa dsd ads 4 Accessory packi nerecnisie notae d u ia E EE dudes ds 4 Adios 37 Aging Time definition Of oononcnncnncnonnnonononononnnnnnancnncnnos 16 Aging Time range Ofiri oer keneen eai iess 16 Auto polarity detectiON ooocoonccnnccnncnnncnocnconnconnconoconcnnncnnoon 1 auto negotiate seseeseesseseeeeeseeeesstrersreressrrersserersteseesesset 1 BOOTP protocolares ea ARAN 41 BOOTP Serveras hpa eE oea 41 Bidee Hello TIME coros 54 Bidse Max Acura 53 Configura coa as 43 Connections Switch to End Node c oooooccconcoccnncncconononononnnonccnncnnonacnnonos 10 Switch to Hub or SWitChH oooonccncnocncononononoccnncnnonacinonos 10 CONSOLE DOTE minita tdt 1 7 Console port RS 232 DCE ccoooccnococinococonnninnccnonaconncconos 12 Console port Settings oooocnncnnonnooccoononnnonnconoconoconoc
56. there is reception or transmission i e Activity Act of data occurring at a port D Link DES 3250TG Standalone Layer 2 Switch 4 CONNECTING THE SWITCH This chapter describes how to connect the DES 3250TG to your Ethernet Fast Ethernet Gigabit Ethernet network The Switch s auto detection feature allows all 48 10 100 ports to support both MDI II and MDI X connections Switch to End Node End nodes include PCs outfitted with a 10 100 or 10 100 Mbps RJ 45 Ethernet Fast Ethernet Network Interface Card NIC and most routers An end node can be connected to the Switch via a two pair Category 3 4 or 5 UTP STP cable The end node should be connected to any of the ports 1x 48x on the switch aaa aaa SAO OSO L AAA AAA D Link Lee ma RJ 45 Connector Figure 4 1 Switch connected to an End Node e The Link Act LEDs in the top row for each UTP port light green when the link is valid A blinking LED in the top row indicates packet activity on that port Switch to Hub or Switch These connections can be accomplished in a number of ways using a normal cable e A 10BASE T hub or switch can be connected to the Switch via a two pair Category 3 4 or 5 UTP STP cable e A 100BASE TX hub or switch can be connected to the Switch via a two pair Category 5 UTP STP cable 10 D Link DES 3250TG Standalone Layer 2 Switch aia iaa OLI
57. to open the following window Add new 802 10 VLAN default Mody X Figure 6 24 802 1Q Static VLANs window To delete an existing 802 1Q VLAN click the corresponding click box to the left of the VLAN you want to delete from the switch and then click the Delete button To create a new 802 1Q VLAN click the Add button Disabled y 78 9 hol his ha hs hs 17s is po b1 2 25 ps Iv Vw iv aj 3 Will vr lv lv rv lr lv rv eo fe fe fe fe ie fe fe fe fe ie fe fe fe fe fe fe fe fo g IE JE JE JE JE JE JE JE JE J16 JE J JE JE JE JE IE ME IE IE IE CIE JE JE JE JE JE ee oo oe JE JE IE IR IR JE IE IE 0 ps VMMw lv lv lv lv lv lv lv lv lv lv lv lv lv lv lv lv lv lv lv lv lv lv fC AA le le le de de de de de de e e e e e o ol LIE 9y CIE IE JE LIE JE JE CIE JE 5 eje e e Cc o vooy IE JE JS JE JE JE JE IE IE JE IE nn E LIR 2 0 ez FAERIE E FAERIE E ejeje ls olje e a E jn 14 oO mo E vile n a cla pul 5 E E ed da da a a Y Ej 3 E ES E Sy 5 Figure 6 25 Add 802 1Q Static VLAN window 60 D Link DES 3250TG Standalone Layer 2 Switch To edit an existing 802 1Q VLAN click the corresponding pointer icon in the Modify column on the 802 1Q Static VLANs window The following window will open VLAN Name adverse Enabled gt Ll dl fs 6 7 fb ho na 131516 1780910 1 p23 abs iS iS i9 i9 i9 i5 i5 iS ip i9 i5 i9 i5 i5 iS
58. top part of the window above and click the Apply button This will add the new string to the SNMP Community Table Configure the following for the new SNMP Community entry Parameter Description Community Name Type an alphanumeric string of up to 32 characters that is used to identify members of an SNMP community This string is used like a password to give remote SNMP managers access to MIB objects in the switch s SNMP agent View Name Type an alphanumeric string of up to 32 characters that is used to identify the group of MIB objects that a remote SNMP manager is allowed to access on the switch The view name must exist in the SNMP View Table Access Right Use the pull down menu to select the access right Read_Only Specifies that SNMP community members using the community string created with this command can only read the contents of the MIBs on the switch Read_Write Specifies that SNMP community members using the community string created with this command can read from and write to the contents of the MIBs on the switch 98 D Link DES 3250TG Standalone Layer 2 Switch SNMP Host Table Use the SNMP Host Table to set up trap recipients Add Total Entries 0 Note It is allowed insert 10 entries into the table only Host IP Address SNMP Version Community Nama SNMEY3 Delete User Name Figure 6 65 SNMP Host Table window To delete an existing entry click the selection button in the Delet
59. will put the VID number priority and other VLAN information into the header of all packets that flow into and out of it If a packet has previously been tagged the port will not alter the packet thus keeping the VLAN information intact The VLAN information in the tag can then be used by other 802 1Q compliant devices on the network to make packet forwarding decisions Ports with untagging enabled will strip the 802 1Q tag from all packets that flow into and out of those ports If the packet doesn t have an 802 1Q VLAN tag the port will not alter the packet Thus all packets received by and forwarded by an untagging port will have no 802 1Q VLAN information Remember that the PVID is only used internally within the switch Untagging is used to send packets from an 802 1Q compliant network device to a non compliant network device Ingress Checking A port on a switch where packets are flowing into the switch and VLAN decisions must be made is referred to as an ingress port If ingress filtering is enabled for a port the switch will examine the VLAN information in the packet header if present and decide whether or not to forward the packet If the packet is tagged with VLAN information the ingress port will first determine if the ingress port itself is a member of the tagged VLAN If it is not the packet will be dropped If the ingress port is a member of the 802 1Q VLAN the switch then determines if the destination port is a member of the
60. 10M Full and 10M Half There is no automatic adjustment of port settings with any option other than Auto Port Mirroring To configure a port for port mirroring Click Port Mirroring on the Configuration menu 6 BB o a ss ss os o po Pr p2 Ps ss E lt AAA ARANA AAA So oa oa a ao oo oa ooo o slol olol l olol l lo l lol l olol l olol lo l lo nares oa aa oa oo asas ee wlelelel el elelelelelsialia olaaa al TO oo oo oo oo lo oe ele el elele s Apply Note 1 The Source Port and Target Port should be different or the setup will be invalid Note 2 The target port should be a non trunked port The Trunking Ports None 47 D Link DES 3250TG Standalone Layer 2 Switch Figure 6 12 Setup Port Mirroring window The target port is where information will be duplicated and sent for capture and network analysis This is the port where a network analyzer would be attached to capture packets duplicated from the source port It should be noted that a faster port a 1000 Mbps Gigabit Ethernet port for example should not be mirrored to a slower port one of the 48 100 Mbps Fast Ethernet ports because many packets will be dropped The following fields can be set Parameter Description Source Port Allows multiple ports to be mirrored These ports are the sources of the packets to be duplicated and forwarded to the Target port None Selecting this option prevents any packets
61. 11110001 00111000 3 01111101 01010111 00000000 00000001 The dots are included to make the numbers easier to read Eight binary bits are called a byte or an octet An octet can represent any decimal value between 0 00000000 and 255 11111111 IP addresses represented in decimal form are four numbers whose value is between 0 to 255 The total range of IP addresses are then Lowest possible IP address 0 0 0 0 Highest possible IP address 255 255 255 255 To convert decimal numbers to 8 bit binary numbers and vice versa you can use the following chart Binary Octet Digit 2 212 2 2 22 2 Decimal Equivalent 128 64 32 16 8 4 2 1 Binary Number 1 1 1 1 1 1 1 1 128 64 32 16 8 4 2 1 Table 5 2 Binary to Decimal Conversion Each digit in an 8 bit binary number an octet represents a power of two The left most digit represents 2 raised to the 7th power 2x2x2x2x2x2x2 128 while the right most digit represents 2 raised to the Oth power any number raised to the Ot power is equal to one by definition IP addresses actually consist of two parts one identifying the network and one identifying the destination node within the network The IP address discussed above is one part and a second number called the Subnet mask is the other part To make this a bit more confusing the subnet mask has the same numerical form as an IP address 23 D Link DES 32
62. 14820 28 18 255 255 255 1 26 262142 62 16252804 92 19 255 255 255 2 27 525286 30 15728580 24 20 255 255 255 2 28 104857 14 14680036 40 4 21 255 255 255 2 29 209715 6 12582900 48 0 22 255 255 255 2 30 419430 2 8388604 52 2 Table 5 3 Class A Subnet Masks of Subnet Mask CIDR of of Total Bits Notation Subnets Hosts Hosts 2 255 255 192 18 2 16382 32764 3 255 255 224 0 19 6 8190 49140 4 255 255 240 0 20 14 4094 57316 5 255 255 248 0 21 30 2046 61380 6 255 255 252 0 22 62 1022 63364 7 255 255 254 0 23 126 510 64260 8 255 255 255 0 24 254 254 64516 9 255 255 255 128 25 510 126 64260 10 255 255 255 192 26 1022 62 63364 11 255 255 255 224 27 2046 30 61380 12 255 255 255 240 28 4094 14 57316 13 255 255 255 248 29 8190 6 49140 14 255 255 255 252 30 16382 2 32764 Table 5 4 Class B Subnet Masks of Subnet Mask CIDR of of Total Bits Notation Subnets Hosts Hosts 2 255 255 255 192 26 2 62 124 3 255 255 255 224 27 6 30 180 4 255 255 255 240 28 14 14 196 5 255 255 255 248 29 30 6 180 6 255 255 255 252 30 62 2 124 Table 5 5 Class C Subnet Masks Internet Protocols This is a brief introduction to the suite of Internet Protocols frequently referred to as TCP IP It is intended to give the reader a reasonable understanding of the available faci
63. 50TG Standalone Layer 2 Switch Address Classes Address classes refer to the range of numbers in the subnet mask Grouping the subnet masks into classes makes the task of dividing a network into subnets a bit easier There are five address classes The first four bits in the IP address determine which class the IP address falls in Class A addresses begin with Oxxx or 1 to 126 decimal Class B addresses begin with 10xx or 128 to 191 decimal Class C addresses begin with 110x or 192 to 223 decimal Class D addresses begin with 1110 or 224 to 239 decimal Class E addresses begin with 1111 or 240 to 254 decimal Addresses beginning with 01111111 or 127 decimal are reserved They are used for internal testing on a local machine called loopback The address 127 0 0 1 can always be pinged from a local node because it forms a loopback and points back to the same node Class D addresses are reserved for multicasting Class E Addresses are reserved for future use They are not used for node addresses The part of the IP address that belongs to the network is the part that is hidden by the 1 s in the subnet mask This can be seen below e ClassA NETWORK node node node e ClassB NETWORK NETWORK node node e ClassC NETWORK NETWORK NETWORK node For example the IP address 10 42 73 210 is a Class A address so the Network part of the address called the Network Address is the first octet 10 x x x The node part of the address is
64. 700 ExColl 600 SingColl 500 Coll 400 300 200 100 Unit packet sec Time Interval Record Number Show Hide IV ExDefer LateColl IV ExColl Y SingColl Y Coll Figure 6 77 Tx Error Analysis window line graph View LineChart Figure 6 78 Tx Error Analysis window table The following fields can be set Parameter Description Time Interval Is Select the desired setting between Is and 60s where s stands for seconds The default value is one second Record Number Select number of times the Switch 200 will be polled between 20 and 200 The default value is 20 108 D Link DES 3250TG Standalone Layer 2 Switch ExDefer Counts the number of frames for which the first transmission attempt on a particular interface was delayed because the medium was busy LateColl Counts the number of times that a collision is detected later than 512 bit times into the transmission of a packet Show Hide Check whether or not to display ExDefer LateColl ExColl SingColl and Coll errors Clear Clicking this button clears all statistics counters on this window View Table Clicking this button instructs the Switch to display a table rather than a line graph View Line Chart Clicking this button instructs the Switch to display a line graph rather than a table Size The Web Manager allows packets received by the Switch arranged in six groups to be viewed as either a line graph or
65. AuthNoPriv Specifies that authorization will be required but there will be no encryption of packets sent between the switch anda remote SNMP manager AuthPriv Specifies that authorization will be required and that packets sent between the switch and a remote SNMP manger will be encrypted SNMP Community Table Use this table to create an SNMP community string to define the relationship between the SNMP manager and an agent The community string acts like a password to permit access to the agent on the switch One or more of the following characteristics can be associated with the community string e An Access List of IP addresses of SNMP managers that are permitted to use the community string to gain access to the switch s SNMP agent e An MIB view that defines the subset of all MIB objects that will be accessible to the SNMP community e Read write or read only level permission for the MIB objects accessible to the SNMP community 97 D Link DES 3250TG Standalone Layer 2 Switch Ee Only Apply Total Entries 2 Note It is allowed insert 10 entries into the table only private Community View Read_Wnite x public Community View Read_Only x Figure 6 64 SNMP Community Table Configuration window To delete an existing entry click the selection button in the Delete column on the far right that corresponds to the port you want to configure To create a new entry configure the parameters as desired in the
66. D Link DES 3250TG Standalone Layer 2 Switch User s Guide Information in this document is subject to change without notice 2003 D Link Computer Corporation All rights reserved Reproduction in any manner whatsoever without the written permission of D Link Computer Corporation is strictly forbidden Trademarks used in this text D Link and the D Link logo are trademarks of D Link Computer Corporation Microsoft and Windows are registered trademarks of Microsoft Corporation Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products D Link Computer Corporation disclaims any proprietary interest in trademarks and trade names other than its own FCC Warning This equipment has been tested and found to comply with the limits for a Class A digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference when the equipment is operated in a commercial environment This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with this user s guide may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense CE Mark Warning This is a Class A product In a domest
67. D Link to confirm the same The original product owner must obtain a Return Material Authorization RMA number from the Authorized D Link Service Office and if requested provide written proof of purchase of the product such as a copy of the dated purchase invoice for the product before the warranty service is provided After an RMA number is issued the defective product must be packaged securely in the original or other suitable shipping package to ensure that it will not be damaged in transit and the RMA number must be prominently marked on the outside of the package Do not include any manuals or accessories in the shipping package D Link will only replace the defective portion of the Product and will not ship back any accessories The customer is responsible for all shipping charges to D Link No Charge on Delivery COD is allowed Products sent COD will either be rejected by D Link or become the property of D Link Products should be fully insured by the customer and shipped to D Link Systems Inc 53 Discovery Drive Irvine CA 92618 D Link will not be held responsible for any packages that are lost in transit to D Link The repaired or replaced packages will be shipped via UPS Ground or any common carrier selected by D Link with shipping charges prepaid Expedited shipping is available if shipping charges are prepaid by the customer D Link may reject or return any product that is not packaged and shipped in strict compl
68. E MAIL info dlink france fr D Link Central Europe D Link Deutschland GmbH Schwalbacher Strasse 74 D 65760 Eschborn Germany TEL 49 6196 77990 FAX 49 6196 7799300 URL www dlink de BBS 49 0 6192 971199 analog BBS 49 0 6192 971198 ISDN INFO 00800 7250 0000 toll free HELP 00800 7250 4000 toll free REPAIR 00800 7250 8000 E MAIL info dlink de India Italy Japan Netherlands Norway Russia Singapore South Africa Spain Sweden Taiwan Turkey U A E D Link India Plot No 5 Bandra Kurla Complex Rd Off Cst Rd Santacruz East Mumbai 400 098 India TEL 91 022 652 6696 6578 6623 FAX 91 022 652 8914 8476 URL www dlink india com www dlink co in amp tushars dlink india com E MAIL service dlink india com D Link Mediterraneo Srl D Link Italia Via Nino Bonnet n 6 B 20154 Milano Italy TEL 39 02 2900 0676 FAX 39 02 2900 1723 URL www dlink it E MAIL info dlink it D Link Japan 10F 8 8 15 Nishigotahda Shinagawa Tokyo 141 Japan TEL 81 3 5434 9678 FAX 81 3 5434 9868 URL www d link co jp E MAIL kida d link co jp D Link Benelux Fellenoord 1305611 ZB Eindhoven the Netherlands TEL 31 40 2668713 FAX 31 40 2668666 URL www d link benelux nl D Link Norway Waldemar Thranesgate 77 0175 Oslo Norway TEL 47 22 991890 FAX 47 22 207039 URL www dlink no D Link Russia Michurinski Prospekt 49 117607 Moscow Russia TEL 7 095 737 3389 amp 7 095 737 3492 FA
69. H MANAGEMENT Introduction The DES 3250TG offers an embedded Web based HTML interface allowing users to manage the switch from anywhere on the network through a standard browser such as Netscape Navigator Communicator or Microsoft Internet Explorer The Web browser acts as a universal access tool and can communicate directly with the Switch using the HTTP protocol The Web based management module and the Console program and Telnet are different ways to access the same internal switching software and configure it Thus all settings encountered in web based management are the same as those found in the console program Note This Web based Management Module does not accept Chinese language input or other languages requiring 2 bytes per character Before You Start The DES 3250TG switch supports a wide array of functions and gives great flexibility and increased network performance by eliminating the routing bottleneck between the WAN or Internet and the Intranet Its function in a network can be thought of as a new generation of router that performs routing functions in hardware rather than software It is a router that also has up to 48 2 independent Ethernet collision domains This flexibility and rich feature set requires a bit of thought to arrive at a deployment strategy that will maximize the potential of the DES 3250TG Getting Started The first step in getting started in using Web based management for your Switch is t
70. ITW Rapid Spaning Tree yi scsissedest ironian eak Arat ain A A ra EEA 16 Link AS TO SATION Were dics tencia Hash eave oy Was EON NINETO AAE as Van AEE vn as Weds vanes Gave as 17 MAGARIN ft nn O A ao adios 18 IR A ATES SES ics eat ice A A SAS A i RAE EERE IEEE TON Si AL EN 23 ternet Protocols ie cise dis cece ons A ltd ia dai 26 Packet HEAT Cr ads 30 Web Based Switch Management snr E A eO rre nn a near ne a E E Et 35 LAO ACI A A AA EENE E E 35 Before YOU STATE A A Taga Baie ow ae ES E A Oe SOE ES 35 Getting Started x decscenen avs cvea tetrad io vases pated in eyaca E E a tees We aees eee enti 35 Configuring the Switch aes A ees da Rea eet eae dee 36 Us r Accounts Managemen te c ncivncie nereo a n EER eE dla ia AE da ii a sepa edenteet 36 Save CHANGES vires vine ce conde vane toupee vas caw cat ves ee vie v dais edge vate pee de velo ENE ea tay ees da syd tee tide yee EESTE ae sane te AA 37 Using Web Based Management A OAE EA rAr EE SERE ON O iain ini 38 iii Configurations i vcasvehte ate ene eat A eee es 40 IPAddress Beate Sa Sere are eae Gaal alia aia Dn ale Ba ce ai URN SBE RO SS al ee ole N BRL TOGO OEE 41 WATCH A fOPMATION ioaea Said Sed dake hun swede Se E Ea lad ced oak a Ta Deiat cleo unis SRS a Cad co aside a dation 43 Advanced SOLES rara n Eae verte A A abo A ae ea eaves 44 Port Contursi ida 45 Port MITTOTIA Sort e dE A Cale A AA Na ARA A 47 Link AGSre CATION iii A A LA A a a EN NAAA a 48 TAMPA a ow A A A A A E ATA
71. MITATION WILL APPLY EVEN IF D LINK HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGE IF YOU PURCHASED A D LINK PRODUCT IN THE UNITED STATES SOME STATES DO NOT ALLOW THE LIMITATION OR EXCLUSION OF LIABILITY FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES SO THE ABOVE LIMITATION MAY NOT APPLY TO YOU Limited Warranty Hardware D Link warrants each of its hardware products to be free from defects in workmanship and materials under normal use and service for a period commencing on the date of purchase from D Link or its Authorized Reseller and extending for the length of time stipulated by the Authorized Reseller or D Link Branch Office nearest to the place of purchase If the product proves defective within the applicable warranty period D Link will provide repair or replacement of the product D Link shall have the sole discretion whether to repair or replace and replacement product may be new or reconditioned Replacement product shall be of equivalent or better specifications relative to the defective product but need not be identical Any product or part repaired by D Link pursuant to this warranty shall have a warranty period of not less than 90 days from date of such repair irrespective of any earlier expiration of original warranty period When D Link provides replacement then the defective product becomes the property of D Link After an RMA number is issued the defective product must be packaged securely in the original or other suitable sh
72. MP I type I src port mask TCP I dest port mask I src port mask UDP M dest port mask C protocol id l user mask m Permit C Deny Show All Access Profile Table Entries Figure 6 42 Access Profile IP Configuration window Parameter Configure the following Access Profile settings Description Profile ID 1 255 Access Profile Vlan Source MAC IP Mask Destination MAC IP Mask 802 1p Type in a unique identifier number for this profile set This value can be set from 1 to 255 Select profile based on Ethernet MAC Address or IP address This will change the menu according to the requirements for the type of profile Select Ethernet to instruct the switch to examine the layer 2 part of each packet header Select IP to instruct the switch to examine the IP address in each frame s header Selecting this option instructs the switch to examine the VLAN part of each packet header and use this as the or part of the criterion for forwarding Source MAC Mask address mask for the address Enter a MAC source MAC Source IP Mask Enter an IP address mask for the source IP address Destination MAC Mask Enter a MAC address mask for the destination MAC address Destination IP Mask Enter an IP address mask for the destination IP address Selecting this option instructs the switch to examine the 802 1p priority value of 80 D Link DES 3250TG Standalone Layer 2 Switch Ds
73. Novell NetWare ONetWare Lite OSCO Unix Xenix OPC NFS O3Com 3 Open OBanyan Vines ODECnet Pathwork OWindows NT Windows 2000 Windows XP DOthers 5 What network management program does your organization use OD View OHP OpenView Windows OHP OpenView Unix OSunNet Manager Novell NMS ONetView 6000 LiOthers 6 What network medium media does your organization use OFiber optics OThick coax Ethernet Thin coax Ethernet 110BASE T UTP STP O100BASE TX 0100BASE T4 0100VGAnyLAN DOthers 7 What applications are used on your network ODesktop publishing OSpreadsheet Word processing DCAD CAM ODatabase management DAccounting Others 8 What category best describes your company OAerospace DEngineering Education OFinance OHospital Legal Olnsurance Real Estate Manufacturing ORetail Chainstore Wholesale Government OTransportation Utilities Communication OVAR OSystem house company OOther 9 Would you recommend your D Link product to a friend OYes ONo ODon t know yet 10 Your comments on this product
74. P There are many applications that do not require long messages that cannot fit into a single packet Looking up computer names is an example Users wanting to make connections to other computers will usually use a name rather than the computer s IP or MAC address The user s computer must be able to determine the remote computer s address before a connection can be made A designated computer on 33 D Link DES 3250TG Standalone Layer 2 Switch the network will contain a database of computer names and their corresponding IP and MAC addresses The user s computer will send a query to the name database computer and the database computer will send a response Both the query and the response are very short There is no need to divide the query or response between multiple packets so the complexity of TCP is not required If there is no response to the query after a period of time the query can simply be resent The User Datagram Protocol UDP is designed for communications that do not require division among multiple packets and subsequent reassembly UDP does not keep track of what is sent UDP uses port numbers in a way that is directly analogous to TCP There are well known UDP port numbers for servers that use UDP UDP Header Octets 0 1 2 3 4 Source UDP Port Destination UDP Port UDP Message Length UDP Checksum Begining of Data Figure 5 11 UDP Packet Header The UDP header is shorter than a TCP header
75. S 3250TG Standalone Layer 2 Switch MIB II RFC 1213 IF MIB RFC 2233 Entity MIB RFC 2737 RMON MIB RFC 1757 4 groups The RMON specification defines the Counters for the Receive function only However the DES 3250TG implements counters for both receive and transmit functions 802 1p MIB RFC 2674 Ether Like MIB RFC 2358 dot3StatsTable e Supports Web based management e CLI management support e TFTP support e BOOTP support e DHCP Client support e Password enabled Fast Ethernet Technology 100Mbps Fast Ethernet or 100BASE T is a standard specified by the IEEE 802 3 LAN committee It is an extension of the 10Mbps Ethernet standard with the ability to transmit and receive data at 100Mbps while maintaining the Carrier Sense Multiple Access with Collision Detection CSMA CD Ethernet protocol Gigabit Ethernet Technology Gigabit Ethernet is an extension of IEEE 802 3 Ethernet utilizing the same packet structure format and support for full duplex and management objects but with a tenfold increase in theoretical throughput over 100Mbps Fast Ethernet and a one hundred fold increase over 10Mbps Ethernet Since it is compatible with all 10Mbps and 100Mbps Ethernet environments Gigabit Ethernet provides a straightforward upgrade without wasting a company s existing investment in hardware software and trained personnel D Link DES 3250TG Standalone Layer 2 Switch UNPACKING AND SET
76. SIBILITY OF SUCH DAMAGES THE SOLE REMEDY FOR A BREACH OF THE FOREGOING LIMITED WARRANTY IS REPAIR REPLACEMENT OR REFUND OF THE DEFECTIVE OR NON CONFORMING PRODUCT THE MAXIMUM LIABILITY OF D LINK UNDER THIS WARRANTY IS LIMITED TO THE PURCHASE PRICE OF THE PRODUCT COVERED BY THE WARRANTY THE FOREGOING EXPRESS WRITTEN WARRANTIES AND REMEDIES ARE EXCLUSIVE AND ARE IN LIEU OF ANY OTHER WARRANTIES OR REMEDIES EXPRESS IMPLIED OR STATUTORY Governing Law This Limited Warranty shall be governed by the laws of the state of California Some states do not allow exclusion or limitation of incidental or consequential damages or limitations on how long an implied warranty lasts so the foregoing limitations and exclusions may not apply This limited warranty provides specific legal rights and the product owner may also have other rights which vary from state to state 123 D Link DES 3250TG Standalone Layer 2 Switch TECHNICAL SPECIFICATIONS Standards IEEE 802 3 10BASE T Ethernet IEEE 802 3u 100BASE TX Fast Ethernet IEEE 802 3z 1000BASE SX Gigabit Ethernet IEEE 802 3ab 1000BASE T Gigabit Ethernet IEEE 802 1 P Q VLAN IEEE 802 3x Full duplex Flow Control ANSI IEEE 802 3 Nway auto negotiation Data Transfer Rates Half duplex Full duplex Ethernet 10 Mbps 20Mbps Fast Ethernet 100Mbps 200Mbps Gigabit Ethernet n a 2000Mbps Network Cables 10BASE T 2 pair UTP Cat 3 4 5 100 m EIA TIA 568 100 ohm STP 100 m 100BASE TX 2 pair UTP
77. SNMP Group Table Display window The following parameters are used in the SNMP Group Table windows Parameter Description Group Name Type an alphanumeric string of up to 32 characters This is used to identify the new SNMP group of SNMP users Read View Name This name is used to specify the SNMP group created can request SNMP messages Write View Name Specify a SNMP group name for users that are allowed SNMP write privileges to the switch s SNMP agent Notify View Name Specify a SNMP group name for users that can receive SNMP trap messages generated by the switch s SNMP agent Security Model Use the pull down menu to select the SNMP version Select one of the following SNMPv1 Specifies that SNMP 96 D Link DES 3250TG Standalone Layer 2 Switch version 1 will be used SNMPv2 Specifies that SNMP version 2c will be used The SNMP v2c supports both centralized and distributed network management strategies It includes improvements in the Structure of Management Information SMI and adds some security features USM Specifies that the SNMP version 3 will be used SNMP v3 provides secure access to devices through a combination of authentication and encrypting packets over the network Security Level Use the pull down menu to select the SNMP version NoAuthNoPriv Specifies that there will be no authorization and no encryption of packets sent between the switch and a remote SNMP manager
78. TG supports Simple Network Time Protocol SNTP an adaptation of the Network Time Protocol NTP As specified in RFC 1305 MIL92 NTP is used to synchronize computer clocks in the global Internet It provides comprehensive mechanisms to access national time and frequency dissemination services organize the time synchronization subnet and adjust the local clock in each participating subnet peer The access paradigm is identical to the UDP TIME Protocol and in fact it is usually easy to adapt a UDP TIME client implementation to operate using SNTP Moreover SNTP is also designed to operate in a dedicated server configuration including an integrated radio clock With careful design and control of the various latencies in the system it is possible to deliver time accurate to the order of microseconds Current Time Settings To enable SNTP on the Switch click SNTP Settings in the Configuration folder and then click Current Time Settings 66 D Link DES 3250TG Standalone Layer 2 Switch Figure 6 29 Current Time window To use SNTP toggle the SNTP State in the Current Time SNTP Settings section to Enabled and enter the IP address of the relay the SNTP Primary Server and or the SNTP Secondary Server Enter an SNTP polling interval in the bottom field The default setting of 720 seconds is usually fine for most network configurations a greater polling frequency will draw more network resources Click Apply to let your changes take effect
79. The switch will now save any changes to its non volatile ram and reboot You can logon again and are now ready to continue configuring the Switch Save Changes The DES 3250TG has two levels of memory normal RAM and non volatile or NV RAM Configuration changes are made effective by clicking the Apply button When this is done the settings will be immediately applied to the switching software in RAM and will immediately take effect Some settings though require you to restart the switch before they will take effect Restarting the switch erases all settings in RAM and reloads the stored settings from the NV RAM Thus it is necessary to save all setting changes to NV RAM before rebooting the switch To retain any configuration changes permanently click Save Changes from the Maintenance menu The following window will appear Save system settings to NV RAM Save Configuration Figure 6 4 Save Configuration window 37 D Link DES 3250TG Standalone Layer 2 Switch Click the Save Configuration button to save the current switch configuration in NV RAM The following dialog box will confirm that the configuration has been saved Microsoft Internet Explore x AN Complete Figure 6 5 Save Configuration Confirmation dialog box Click the OK button to continue Once the switch configuration settings have been saved to NV RAM they become the default settings for the switch These settings will be used every time the switch i
80. UP This chapter provides unpacking and setup information for the Switch Unpacking Open the shipping carton of the Switch and carefully unpack its contents The carton should contain the following items e One DES 3250TG Standalone Layer 2 Switch e Mounting kit 2 mounting brackets and screws e Four rubber feet with adhesive backing e One AC power cord e This User s Guide with Registration Card If any item is found missing or damaged please contact your local D Link reseller for replacement Installation Use the following guidelines when choosing a place to install the Switch e The surface must support at least 5 kg e The power outlet should be within 1 82 meters 6 feet of the device e Visually inspect the power cord and see that it is secured to the AC power connector e Make sure that there is proper heat dissipation from and adequate ventilation around the switch Do not place heavy objects on the switch Desktop or Shelf Installation When installing the Switch on a desktop or shelf the rubber feet included with the device should first be attached Attach these cushioning feet on the bottom at each corner of the device Allow adequate space for ventilation between the device and the objects around it D Link DES 3250TG Standalone Layer 2 Switch 2 Rubber Feet gt Figure 2 1 Installing rubber feet for desktop installation Rack Installation The DES 3250TG can be mounted in an EIA standard sized
81. X 7 095 737 3390 URL www dlink ru E MAIL vil dlink ru D Link International International Business Park 03 12 The Synergy Singapore 609917 TEL 605 774 6233 FAX 65 774 6322 E MAIL info dlink com sg URL www dlink intl com D Link South Africa Unit 2 Parkside 86 Oak Avenue Highveld Technopark Centurion Gauteng South Africa TEL 27 0 12 665 2165 FAX 27 0 12 665 2186 URL www d link co za E MAIL attie d link co za D Link Iberia C Sabino De Arana 56 Bajos 08028 Barcelona Spain TEL 34 93 4090770 FAX 34 93 4910795 URL www dlinkiberia es E MAIL info dlinkiberia es D Link Sweden P O Box 15036 S 167 15 Bromma Sweden TEL 46 0 8 564 61900 FAX 46 0 8 564 61901 E MAIL info dlink se URL www dlink se D Link Taiwan 2F No 233 2 Pao chiao Rd Hsin tien Taipei Taiwan TEL 886 2 2916 1600 FAX 886 2 2914 6299 URL www dlink com tw E MAIL dssqa tsc dlinktw com tw D Link Middle East Deniz Bilgisayar Buyukdere Cad Naci Kasim Sk No 5 Mecidiyekoy Istanbul Turkey TEL 90 212 213 3400 FAX 90 212 213 3420 E MAIL smorovati dlink me com D Link Middle East CHS Aptec Dubai P O Box 33550 Dubai U A E TEL 971 4 366 885 FAX 971 4 355 941 E MAIL Wxavier dlink me com U K U S A D Link Europe 4th Floor Merit House Edgware Road Colindale London NW9 SAB United Kingdom TEL 44 0 20 8731 5555 FAX 44 0 20 8731 5511 BBS 44 0 181 235 5511 URL www dlink co uk E MAIL info
82. a table Two windows are offered Clear ES Table 64 65 127 128 255 256 511 512 1023 0 1024 1518 Unit packetisec Time Interval Y Record Number 200 Show Hide M 64 M 65 127 M 128 255 M 256 511 M 512 1023 M 1024 1518 Figure 6 79 Rx Size Analysis window line graph 109 D Link DES 3250TG Standalone Layer 2 Switch Figure 6 80 Rx Size Analysis window table The following fields can be set Parameter Description Time Interval Is Select the desired setting between 1s and 60s where s stands for seconds The default value is one second Record Number Select number of times the Switch 200 will be polled between 20 and 200 The default value is 20 64 The total number of packets including bad packets received that were 64 octets in length excluding framing bits but including FCS octets 65 127 The total number of packets including bad packets received that were between 65 and 127 octets in length inclusive excluding framing bits but including FCS octets 128 255 The total number of packets including bad packets received that were between 128 and 255 octets in length inclusive excluding framing bits but including FCS octets 256 511 The total number of packets including bad packets received that were between 256 and 511 octets in length inclusive excluding framing bits but including FCS octets 110 D Link DES 3250TG Standalone Layer 2 Switch
83. abled 1 DeleteOnReset 10 Disabled 1 DeleteOnReset 11 Disabled 1 DeleteOnReset 12 Disabled 1 DeleteOnReset 13 Disabled 1 DeleteOnReset 14 Disabled 1 DeleteOnReset 15 Disabled 1 DeleteOnReset 16 Disabled 1 DeleteOnReset 17 Disabled 1 DeleteOnReset 18 Disabled 1 DeleteOnReset 19 Disabled 1 DeleteOnReset 20 Disabled 1 DeleteOnReset 21 Disabled 1 DeleteOnReset 22 Disabled 1 DeleteOnReset 23 Disabled 1 DeleteOnReset 24 Disabled 1 DeleteOnReset 25 Disabled 1 DeleteOnReset 26 Disabled 1 DeleteOnReset 27 Disabled 1 DeleteOnReset 28 Disabled 1 DeleteOnReset 29 Disabled 1 DeleteOnReset 30 Disabled 1 DeleteOnReset 31 Disabled 1 DeleteOnReset 32 Disabled 1 DeleteOnReset 33 Disabled 1 DeleteOnReset 34 Disabled 1 DeleteOnReset 35 Disabled 1 DeleteOnReset 36 Disabled 1 DeleteOnReset 37 Disabled 1 DeleteOnReset 38 Disabled 1 DeleteOnReset 39 Disabled 1 DeleteOnReset 40 Disabled 1 DeleteOnReset 41 Disabled 1 DeleteOnReset 42 Disabled 1 DeleteOnReset 43 Disabled 1 DeleteOnReset 44 Disabled 1 DeleteOnReset 45 Disabled 1 DeleteOnReset 46 Disabled 1 DeleteOnReset 47 Disabled 1 DeleteOnReset 48 Disabled 1 DeleteOnReset 49 Disabled 1 DeleteOnReset 30 Disabled 1 DeleteOnReset Figure 6 31 Port Security Settings window The following fields can be set Parameter Description From amp To Use this to specify a consecutively numbered group of ports on the switch for configuration 69 D Link DES 3250TG Standalone Layer 2 Switch Admi
84. ackets Analysis window table for Bytes and Packets The following fields can be set Parameter Description Time Interval s Record Number 200 Bytes Packets Show Hide Clear View Table View Line Chart Select the desired setting between Is and 60s where s stands for seconds The default value is one second Select number of times the Switch will be polled between 20 and 200 The default value is 20 Counts the number of bytes received on the port Counts the number of packets received on the port Check whether to display Bytes and Packets Clicking this button clears all statistics counters on this window Clicking this button instructs the Switch to display a table rather than a line graph Clicking this button instructs the Switch to display a line graph rather than a table 102 D Link DES 3250TG Standalone Layer 2 Switch UMB cast RX Clear View Table 1000 900 800 700 600 500 400 300 200 100 Time Interval Record Number Show Hide M Unicast IV Multicast V Broadcast Figure 6 71 Rx Packets Analysis window line graph for Unicast Multicast and Broadcast Packets View LineChart Figure 6 72 Rx Packets Analysis window table for Unicast Multicast and Broadcast Packets The following fields can be set Parameter Description Time Interval s Select the desired setting between 1s and 60s where s stands for
85. aking the entire packet longer by four octets All of the D Link DES 3250TG Standalone Layer 2 Switch 802 1Q Packet Forwarding A Vv ee Packet Hean Transmit A Ingress Ingress Egress Rules Filtering bules A gt Forwarding AA Process du Filtering PVID to VID Database lt VLAN Table Port State 9 j Tagging or Untagging Figure 5 3 IEEE 802 1Q Packet Forwarding information contained in the packet originally is retained Octets 0 IEEE 802 1Q Tag 1 2 3 4 Destination Address 6 octets Source Address 6 octets EtherType 0x8100 Tag Control Information MAC Length Type Begining of Data Cyclic Redundancy Check 4 octets P User Priority CFI VLAN ID VID 12 bits 3 bits 1 bit 12 bits Figure 5 4 IEEE 802 1Q Tag 20 D Link DES 3250TG Standalone Layer 2 Switch The EtherType and VLAN ID are inserted after the MAC source address but before the original EtherType Length or Logical Link Control Because the packet is now a bit longer than it was originally the Cyclic Redundancy Check CRC must be recalculated Adding an IEEE 802 1Q Tag Orginal Ethernet Old Packet Dest Src Length EType Data A A Ms CRC i New Tagged Packet Y A A A Y New Dest Src Ta es rc EType g L Length EType Data crc Sy Priority VLAN ID l Figure 5 5 Adding an IEEE
86. ards packets Each port contains three counters one each for Broadcast Multicast and Destination Lookup Fail packets The counters are cleared every second If the counter for a particular type of packet exceeds this threshold within one second then further packets of that type will be dropped 802 1p Default Priority The switch allows the assignment of a default 802 1p priority to each port on the switch Click 802 1p default_priority in the QoS folder on the Configuration menu 72 D Link DES 3250TG Standalone Layer 2 Switch Poti y Port1 y E Priority worn AU A WwW N a E mr el 73 D Link DES 3250TG Standalone Layer 2 Switch A o SS Sei MS Ee eS SSS SSS SSS SSS SS Figure 6 33 802 1p default_priority Settings window This window allows you to assign a default 802 1p priority to any given port on the switch The priority queues are numbered from O the lowest priority to 7 the highest priority 802 1p User Priority The DES 3250TG allows the assignment of a Class of Traffic to each of the 802 1p priorities Click 802 1p user_priority in the QoS folder on the Configuration menu aos Class of Trafe O are Class 3 E Apply Figure 6 34 QoS Class of Traffic window Once you have assigned a maximum number of packets and a maximum latency to a given Class of Service on the switch you can then assign this Class to each of the eight levels of 802 1p prior
87. ault static Enabled aero hb PE bP Pb fo pe fa ie fo fe fo op he fs be ps bs o pe o bo bi ba fs he fs Be er be do lo lala lo lao ooo o o Egress Ports a ss os js po pas pas ES ETETE JE E TE E ER UE E ELC E E E ENS EUR E E TE EN E E bs 7 as po Bo mi Ba o Ba as ho broas po mo ao a a as o 7 o o EOE E E R E E E E EOE REO E O E JRE E E E O EE OE E E R E Figure 6 84 VLAN Status window This read only window displays information about the switch s current VLAN configuration Router Port This displays which of the switch s ports are currently configured as router ports A router port configured by a user using the console or Web based management interfaces is displayed as a static router port in the first two rows of the Router Port window A router port that is dynamically configured by the switch is located in the third and fourth rows To view the Router Port table click on the Router Port link on the Monitoring menu 114 D Link DES 3250TG Standalone Layer 2 Switch Total VLAN Entries 1 VLAN ID VLAN Name 1 default Static Router Port fase amser Poe O O O O he bk Eb Pp oe fe fs fe fr je js po aja pa pa ps Dynamic Router Port pyan oware O O O O O he bk EBT Pp eh pe fe fs fe fe js po hi fe ps Figure 6 85 Router Port window Static router ports are configured by the user and dynamically assigned router ports are configured by the switch Port Access Control To view the Authenticator Status for Aut
88. benefiting from RSTP Forwarding Filtering MAC addresses can be statically entered into the switch s MAC Address Forwarding Table These addresses will never age out Unicast Forwarding To enter a MAC address into the switch s forwarding table click on the Forwarding Filtering folder on the Configuration menu and then click Unicast Forwarding Add Modity fi aa bb cc dd ee ff Part aabb ce ddeeff 1 default Mac Address WD VLAN Name 1 x Figure 6 21 Setup Static Unicast Forwarding Table window The following fields can be set Parameter Description VLAN ID Allows the entry of the VLAN ID of the VLAN the MAC address below is a member of when editing Displays the VLAN ID the currently selected MAC address is a member of when editing an existing entry MAC Address Allows the entry of the MAC address of an end station that will be entered into the switch s static forwarding table when adding a new entry 58 D Link DES 3250TG Standalone Layer 2 Switch Displays the currently selected MAC address when editing Allowed to Go Port Allows the selection of the port number on which the MAC address entered above resides Multicast Forwarding Multicast MAC addresses can be statically entered into the switch s MAC Address Forwarding Table These addresses will never age out To enter a Multicast MAC address into the switch s forwarding table click on the Forwarding Filtering fo
89. cal gt enter the commands config ipif System ipaddress XXX XXX XXX XXX yyy yYy yYy yyy Where the x s represent the IP address to be assigned to the IP interface named System and the y s represent the corresponding subnet mask 2 Alternatively you can enter the commands config ipif System ipaddress XXX XXX XXX XXX z Where the x s represent the IP address to be assigned to the IP interface 13 D Link DES 3250TG Standalone Layer 2 Switch named System and the z represents the corresponding number of subnets in CIDR notation Using this method the switch can be assigned an IP address and subnet mask that can then be used to connect a management station to the switch s Web based management agent SNMP The Simple Network Management Protocol SNMP is an OSI layer 7 the application layer protocol for remotely monitoring and configuring network devices SNMP enables network management stations to read and modify the settings of gateways routers switches and other network devices SNMP can be used to perform many of the same functions as a directly connected console or can be used within an integrated network management software package such as DView or HP OpenView SNMP performs the following functions e Sending and receiving SNMP packets through the IP protocol e Collecting information about the status and current configuration of network devices e Modifying the configuration of network devices The DES 3250TG has a
90. ch It can be enabled globally by toggling Disabled to Enabled GVRP Status To enable GVRP on the switch globally lt Disabled gt toggle Disabled to Enabled Telnet Status The Switch can be accessed using 44 D Link DES 3250TG Standalone Layer 2 Switch lt Disabled gt Telnet Toggle Disabled to Enabled Web Status To enable the Web status toggle lt Disabled gt Disabled to Enabled Link Aggregation The Link Aggregation Algorithm can be Algorithm lt Mac set to one of the following IP Src amp Source gt Dest IP Destination IP Source Mac Src amp Dest Mac Destination or Mac Source RMON Status To enable RMON capability toggle lt Disabled gt Disabled to Enabled 802 1x Status To enable 802 1x port control access on a global basis toggle Disabled to Enabled Asymetric VLAN To enable Asymetric VLANs toggle to lt Disabled gt Enabled Please note that when the Syslog Global State lt Disabled gt user sets Asymetric VLANs to Disabled then the factory default VLAN setting is restored To enable Syslog Global State toggle to Enabled Port Configuration Click the Port Configuration link in the Configuration menu 45 D Link DES 3250TG Standalone Layer 2 Switch From To Speed Duplex Apply Poti y Poti y Disabled y Auto y Apply 1 Enabled Auto 100M Full 2 Enabled Auto Link Down 3 Enabled Auto Link Down 4 Enabled Auto Link Down 5 Enabled Auto Link Down 6 Enabled Auto Link Down 7 Enab
91. cnnonos 13 38 Setting Up The Switch ee eeseceeesecseeeeeeecneeeeeneeeeeees 40 Setting Up Web Management eee eeeeecneeeeeneeeeeeee 38 Spanning Tree Algorithm cee eeceeeceeeeecneeeeeeeeneeeeene 2 Storage Temperature sisne nnn a iii 123 Store and forward switchIN8 ooonconocncccoccnononononcanonacinonn no 1 Subnet Mask ruminal E tet 42 A sbasepsiedd suas R 19 TPE P IP Settn SS 2st ss n eni i as 40 Third party vendors SNMP software ocooococoncccconcnnconono 15 Transmission Methods ooooconncnocnccnoncnncononononocnncnnonacnnonos 123 Trap MANR TS reten tano iria 14 Trap Type File Transfer Status Change 15 Save to NV RAM iii rinitis 15 Set to Factory Default o oonnonnnicnnonocnncnonocononccnnnoncnnnnnon 15 Trap Type Authentication Failure o oononicnnnnncnonnnonocnnnnnoncnncnccinonos 15 CU OO 14 Link Change EVent ssai seereis n 15 NEW ROOT eeen ini 15 System Restart cenit e isos de 14 Topology Change vseen e E A 15 PPADS rai tdi loli 14 trunk STOUP mistral 17 UNpaChin iria ti ai 4 Unta ing usan dana ad 19 Usada 37 Web based management module eects 35 A E 123 D Link Offices Australia Canada Chile China Denmark Egypt Finland France Germany D Link Australasia 1 Giffnock Avenue North Ryde NSW 2113 Sydney Australia TEL 61 2 8899 1800 FAX 61 2 8899 1868 TOLL FREE Australia 1800 177100 TOLL FREE New Zealand 0800 900900 URL www dlink com au E MAIL su
92. cp Ethernet type for Ethernet Access Profiles only Protocol for IP address Access Profiles only each packet header and use this as the or part of the criterion for forwarding Selecting this option instructs the switch to examine the DiffServ Code part of each packet header and use this as the or part of the criterion for forwarding Selecting this option instructs the switch to examine the Ethernet type value in each frame s header Selecting this option instructs the switch to examine the protocol type value in each frame s header You must then specify what protocol s to include according to the following guidelines Select Icmp to instruct the switch to examine the Internet Control Message Protocol ICMP field in each frame s header Select type to further specify that the access profile will apply an ICMP type value or specify code to further specify that the access profile will apply an ICMP cod value Select Igmp to instruct the switch to examine the Internet Group Management Protocol IGMP field in each frame s header Select type to further specify that the access profile will apply an IGMP type value Select Tcp to use the TCP port number contained in an incoming packet as the forwarding criterion Selecting TCP requires that you specify a source port mask and or a destination port mask src port mask Specify a TCP port mask for the source port in hex form hex Ox0 Oxffff
93. d 18 LinkDown Yes 200000128 No No Disabled Disabled 19 LinkDown Yes 200000 128 No No Disabled Disabled 20 LinkDown Yes 200000128 No No Disabled Disabled 21 LinkDown Yes 200000128 No No Disabled Disabled 22 LinkDown Yes 200000128 No No Disabled Disabled 23 LinkDown Yes 200000 128 No No Disabled Disabled 24 LinkDown Yes 200000 128 No No Disabled Disabled 25 LinkDown Yes 200000128 No No Disabled Disabled 26 Link Down Yes 200000128 No No Disabled Disabled 27 100M Full Yes 200000128 No No Forwarding onstp 28 LinkDown Yes 200000 128 No No Disabled Disabled 29 Link Down Yes 200000128 No No Disabled Disabled 30 LinkDown Yes 200000128 No No Disabled Disabled 31 LinkDown Yes 200000 128 No No Disabled Disabled 32 LinkDown Yes 200000128 No No Disabled Disabled 33 LinkDown Yes 200000128 No No Disabled Disabled 34 LinkDown Yes 200000128 No No Disabled Disabled 35 Link Down Yes 200000128 No No Disabled Disabled 36 LinkDown Yes 200000 128 No No Disabled Disabled 37 LinkDown Yes 200000128 No No Disabled Disabled 38 LinkDown Yes 200000 128 No No Disabled Disabled 39 LinkDown Yes 200000128 No No Disabled Disabled 40 LinkDown Yes 200000128 No No Disabled Disabled 41 LinkDown Yes 200000 128 No No Disabled Disabled 42 LinkDown Yes 200000128 No No Disabled Disabled 43 LinkDown Yes 200000 128 No No Disabled Disabled 44 Link Down Yes 200000128 No No Disabled Disabled 45 Link Down Yes 200000128 No No Disabled Disabled 46 Link Down Ye
94. d hubs e All 48 10 100 UTP ports can auto negotiate NWay between 10Mbps 100Mbps half duplex or full duplex e One front panel slide in module interface for a 2 port 1OOOBASE T module provided and one front panel slide in module interface for a 2 port Mini GBIC Gigabit Ethernet module optional Please note that although these two front panel modules can be used simultaneously the ports must be different For example if port 49x is used on the Mini GBIC module port 49x is not available on the 1000BASE T module and vice versa e RS 232 DCE Diagnostic port console port for setting up and managing the Switch via a connection to a console terminal or PC using a terminal emulation program Performance Features e Store and forward switching scheme e Full and half duplex for both 1OMbps and 100Mbps connections The front port Gigabit Ethernet module operates at full duplex only Full duplex allows the switch port to simultaneously transmit and receive data and only works with connections to full duplex capable end stations and switches Connections to hubs must take place at half duplex e Auto polarity detection and correction of incorrect polarity on the transmit and receive twisted pair at each port e IEEE 802 3z compliant for Mini GBIC ports optional module D Link DES 3250TG Standalone Layer 2 Switch IEEE 802 3ab compliant for 1OOOBASE T Copper Gigabit ports optional module Data forwarding rate 14 880 pps per po
95. dalone Layer 2 Switch Switch to be accessible outside your local network you can leave this field unchanged VLAN Name This allows the entry of a VLAN name from which a management station a computer will be allowed to manage the switch using TCP IP in band or over the network Management stations that are on VLANs other than the one entered in the VLAN Name field will not be able to manage the switch in band unless their IP addresses are entered in the Management Station IP Addresses field The default VLAN is named default and contains all of the switch s ports There are no entries in the Management Station IP Addresses table by default so any management station can access the switch Admin State This setting allows the IP interface named System to be enabled or disabled Switch Information Click the Switch Information link in the Configuration menu Device Type D Link DES 3250TG Ethernet Switch External Module Type 1000TX 1000TX 00 02 03 04 05 06 Boot PROM Version 1 00 003 Firmware Version 3 0N BNS Hardware Version 041 System Name em Location Apply Figure 6 9 Switch Information Basic Settings window System Contact This window shows which if any external modules are installed and the switch s MAC Address assigned by the factory and unchangeable In addition the Boot PROM Version and Firmware Version numbers are shown This information is helpful to keep track of PROM
96. ders to and from packets as they cross networks This is analogous to putting data into an envelope and sending the envelope to a higher level protocol and having the higher level protocol put the entire envelope into its own larger envelope This process is referred to as encapsulation Many levels of encapsulation are required for a packet to cross the Internet Packet Headers TCP Most data transmissions are much longer that a single packet The data must then be divided up among a series of packets These packets must be transmitted received and then reassembled into the original data TCP handles these functions TCP must know how large a packet the network can process To do this the TCP protocols at each end of a connection state how large a packet they can handle and the smaller of the two is selected The TCP header contains at least 20 octets The source and destination TCP port numbers are the most important fields These specify the connection between two TCP protocols on two network devices The header also contains a sequence number that is used to ensure the packets are received in the correct order The packets are not numbered but rather the octets the packets contain are If there are 100 octets of data in each packet the first packet is numbered O the second 100 the third 200 etc To insure that the data in a packet is received uncorrupted TCP adds the binary value of all the octets in the packet and writes th
97. dlink co uk D Link U S A 53 Discovery Drive Irvine CA 92618 USA TEL 1 949 788 0805 FAX 1 949 753 7033 BBS 1 949 455 1779 amp 1 949 455 9616 INFO 1 800 326 1688 URL www dlink com E MAIL tech dlink com amp support dlink com REGISTRATION Register your product on line at http support dlink com register Product registration is entirely voluntary and failure to complete or return this form will not diminish your warranty rights Registration Card Print type or use block letters Your name Mr Ms Organization Dept Your title at organization Telephone Fax Organization s full address Country Date of purchase Month Day Year Product Model Product Serial Product installed in type of Product installed in DOR e g Compaq 486 computer serial No Applies to adapters only Product was purchased from Reseller s name Telephone Fax Reseller s full address Answers to the following questions help us to support your product 1 Where and how will the product primarily be used OHome OOffice Travel ICompany Business Home Business Personal Use 2 How many employees work at installation site O1 employee 012 9 0110 49 1150 99 0100 499 0500 999 111000 or more 3 What network protocol s does your organization use OXNS IPX OTCP IP ODECnet OOthers 4 What network operating system s does your organization use OD Link LANsmart O
98. e column on the far right that corresponds to the port you want to remove To create a new entry click the Add button a separate window will appear Host IP Address 0 0 0 0 SNMP Version V1 Community String SNMPv3 User Name Apply Show All SNMP Host Table Entries Figure 6 66 SNMP Host Table Configuration window Parameter Description Host IP Address Type the IP address of the remote management station that will serve as the SNMP host for the switch SNMP Version From the pull down menu select V1 To specifies that SNMP version 1 will be used V2c To specify that SNMP version 2 will be used V3 To specify that the SNMP version 3 will be used Community Type in the community string or String SNMPv3 SNMP V3 user name as appropriate User Name SNMP Engine ID The Engine ID is a unique identifier used for SNMP V3 implementations This is an alphanumeric string used to identify the SNMP engine on the switch 99 D Link DES 3250TG Standalone Layer 2 Switch O 000000b0300088d7e3ac0 Apply Figure 6 67 SNMP Engine ID Configuration window To change the Engine ID type the new Engine ID in the space provided and click the Apply button Monitoring The DES 3250TG provides extensive network monitoring capabilities that can be viewed under the Monitoring menu The menu consists of the following folders and screens Port Utilization Packets Errors Size MAC Address IGMP Snoopi
99. e flooded to all ports VLANs VLANs use network layer addresses subnet address for TCP IP to determine VLAN membership These VLANs are based on layer 2 information but this does not constitute a routing function 22 D Link DES 3250TG Standalone Layer 2 Switch IP Addresses The Internet Protocol IP was designed for routing data between network sites Later it was adapted for routing between networks referred to as subnets within a site The IP defines a way of generating a unique number that can be assigned each network in the Internet and each of the computers on each of those networks This number is called the IP address IP addresses use a dotted decimal notation Here are some examples of IP addresses written in this format 1 210 202 204 205 2 189 21 241 56 3 125 87 0 1 This allows IP address to be written in a string of four decimal base 10 numbers Computers can only understand binary base 2 numbers and these binary numbers are usually grouped together in bytes or eight bits A bit is a binary digit either a 1 or a O The dots periods simply make the IP address easier to read A computer sees an IP address not as four decimal numbers but as a long string of binary digits 32 binary digits or 32 bits IP addresses are 32 bit addresses The three IP addresses in the example above written in binary form are 1 11010010 11001010 11001100 11001101 2 10111101 00010101
100. e sum in the checksum field The receiving TCP recalculates the checksum and if the numbers are different the packet is dropped 30 D Link DES 3250TG Standalone Layer 2 Switch TCP Header Octets 0 1 2 3 4 Source TCP Port Destination TCP Port Sequence Number Acknowledgement Number HLEN Reserved Code Window Checksum Urgent Pointer Options Padding Begining of Data Figure 5 8 TCP Packet Header When packets have been successfully received TCP sends an acknowledgement This is simply a packet that has the acknowledgement number field filled in An acknowledgement number of 1000 indicates that all of the data up to octet 1000 has been received If the transmitting TCP does not receive an acknowledgement in a reasonable amount of time the data is resent The window field controls the amount of data being sent at any one time It would require too much time and overhead to acknowledge each packet received Each end of the TCP connection declares how much data it is able to receive at any one time by writing this number of octets in the window field The transmitting TCP decrements the number in the window field and when it reaches zero the transmitting TCP stops sending data When the receiving TCP can accept more data it increases the number in the window field In practice a single packet can acknowledge the receipt of data and give permission for more data to be sent
101. e will void this Warranty Disclaimer of Other Warranties EXCEPT FOR THE LIMITED WARRANTY SPECIFIED HEREIN THE PRODUCT IS PROVIDED AS IS WITHOUT ANY WARRANTY OF ANY KIND WHATSOEVER INCLUDING WITHOUT LIMITATION ANY WARRANTY OF MERCHANTABILITY FITNESS FOR A PARTICULAR PURPOSE AND NON INFRINGEMENT IF ANY IMPLIED WARRANTY CANNOT BE DISCLAIMED IN ANY TERRITORY WHERE A PRODUCT IS SOLD THE DURATION OF SUCH IMPLIED WARRANTY SHALL BE LIMITED TO NINETY 90 DAYS EXCEPT AS EXPRESSLY COVERED UNDER THE LIMITED WARRANTY PROVIDED HEREIN THE ENTIRE RISK AS TO THE QUALITY SELECTION AND PERFORMANCE OF THE PRODUCT IS WITH THE PURCHASER OF THE PRODUCT Limitation of Liability TO THE MAXIMUM EXTENT PERMITTED BY LAW D LINK IS NOT LIABLE UNDER ANY CONTRACT NEGLIGENCE STRICT LIABILITY OR OTHER LEGAL OR EQUITABLE THEORY FOR ANY LOSS OF USE OF THE PRODUCT INCONVENIENCE OR DAMAGES OF ANY CHARACTER WHETHER DIRECT SPECIAL INCIDENTAL OR CONSEQUENTIAL INCLUDING BUT NOT LIMITED TO DAMAGES FOR LOSS OF GOODWILL LOSS OF REVENUE OR PROFIT WORK STOPPAGE COMPUTER FAILURE OR MALFUNCTION FAILURE OF OTHER EQUIPMENT OR COMPUTER PROGRAMS TO WHICH D LINK S PRODUCT IS CONNECTED WITH LOSS OF INFORMATION OR DATA CONTAINED IN STORED ON OR INTEGRATED WITH ANY PRODUCT RETURNED TO D LINK FOR WARRANTY SERVICE RESULTING FROM THE USE OF THE PRODUCT RELATING TO WARRANTY SERVICE OR ARISING OUT OF ANY BREACH OF THIS LIMITED WARRANTY EVEN IF D LINK HAS BEEN ADVISED OF THE POS
102. eceived and reassembled in the correct order 29 D Link DES 3250TG Standalone Layer 2 Switch Because these functions are required by a large number of applications they are grouped into a single protocol rather than being the part of the specifications for just sending e mail TCP is then a library of routines that application software can use when reliable network communications are required IP is also a library of routines but with a more general set of functions IP handles the routing of packets from the source to the destination This may require the packets to traverse many different networks IP can route packets through the necessary gateways and provides the functions required for any user on one network to communicate with any user on another connected network The communication interface between TCP and IP is relatively simple When IP received a packet it does not know how this packet is related to others it has sent or received or even which connection the packet is part of IP only knows the address of the source and the destination of the packet and it makes its best effort to deliver the packet to its destination The information required for IP to do its job is contained in a series of octets added to the beginning of the packet called headers A header contains a few octets of data added to the packet by the protocol in order to keep track of it Other protocols on other network devices can add and extract their own hea
103. eding to the lowest priority queue before returning to the highest priority queue For strict priority based scheduling any packets residing in the higher priority queues are transmitted first Only when these queues are empty are packets of lower priority transmitted The weighted priority based scheduling alleviates the main disadvantage of strict priority based scheduling in that lower priority queues get starved of bandwidth by providing a minimum bandwidth to all queues for transmission This is accomplished by configuring the maximum number of packets allowed to be transmitted from a given priority queue and the maximum amount of time a given priority queue will have to wait before being allowed to transmit its accumulated packets This establishes a Class of Service CoS for each of the switch s four hardware priority queues The possible range for maximum packets is 0 to 255 packets The possible range for maximum latency is O to 255 in increments of 16 microseconds each 70 D Link DES 3250TG Standalone Layer 2 Switch Remember that the DES 3250TG has four priority queues and thus four Classes of Service for each port on the switch Traffic Control This window allows you to manage traffic control on the switch Click Traffic control in the QoS folder on the Configuration menu Greu Broadcast Multicast Destination Threshold Appl TEOUP Storm Storm Lookup Fail PPY 1 Disabled y Enabled y Enabled bal
104. er port To setup a static router port Click Static Router Ports Entry under the IGMP folder on the Configuration menu VLAN ID default Modify Figure 6 17 Current Static Router Ports Entries window To add a static router port configuration click the pointer icon VID 1 VLAN Name default Member Ports 1E Bk ds pp poi fas fs o popi pps pafs Ce IS 10 10 15 10 15 10 10 10 10 15 10 10 15 15 10 10 10 15 151019 26 27 2913 a 5 136137 38129 4 Dan 2 as Jaa ls las la7 las 0 s iS A I5 10 15 15 I5 15 1p 19 10 16 15 10 10 15 O 15 10 IIA Apply Show All Static Router Ports Entries Figure 6 18 Static Router Ports Settings window D Link DES 3250TG Standalone Layer 2 Switch The following fields are displayed Parameter Description VID Displays the name of the VLAN ID the static router port belongs to VLAN Name Displays the name of the VLAN the static router port belongs to Member Ports Each port can be set individually as a router port by clicking the port s click box entry Spanning Tree The Spanning Tree Protocol STP operates on two levels on the switch level the settings are globally implemented On the port level the settings are implemented on a user defined Group of ports basis STP Switch Settings To globally configure STP on the switch click the Spanning Tree folder and then the STP Switch Settings link 53 D Link DES 3250TG Standalone Layer 2 Switch Spanni
105. ew password Determine whether the new user should have Admin or User privileges 2 Click Apply to make the user addition effective 3 A listing of all user accounts and access levels is shown in the User Account Management window This list is updated when Apply is executed Click Show All User Account Entries to access this window 36 D Link DES 3250TG Standalone Layer 2 Switch 4 Please remember that Apply makes changes to the switch configuration for the current session only All changes including User additions or updates must be entered into non volatile ram using the Save Changes command on the Main Menu if you want these changes to be permanent Admin and User Privileges There are two levels of user privileges Admin and User Some menu selections available to users with Admin privileges may not be available to those with User privileges The following table summarizes the Admin and User privileges Switch Configuration Privilege Management Admin User Configuration Read Only Network Monitoring Read Only Community Strings and Trap Read Only Stations Update Firmware and Configuration Read Only Files System Utilities Factory Reset Reboot Switch User Account Management View User Accounts Add Update Delete User Accounts Table 6 1 Admin and User Privileges After establishing a User Account with Admin level privileges go to the Maintenance menu and click Save Changes Next click Save Configuration
106. g a group membership query If the switch does not receive a response from the group membership query before the Leave Timer expires the forwarding table entry for the multicast address is deleted from the switch s forwarding table The default is 2 seconds 51 D Link DES 3250TG Standalone Layer 2 Switch Querier State This field can be switched using the pull down menu between Disabled and Enabled State This field can be switched using the pull down menu between Disabled and Enabled This is used to enable or disable IGMP Snooping for the specified VLAN Static Router Ports Entry A static router port is a port that has a multicast router attached to it Generally this router would have a connection to a WAN or to the Internet Establishing a router port will allow multicast packets coming from the router to be propagated through the network as well as allowing multicast messages IGMP coming from the network to be propagated to the router A router port has the following behavior e All IGMP Report packets will be forwarded to the router port e IGMP queries from the router port will be flooded to all ports e All UDP multicast packets will be forwarded to the router port Because routers do not send IGMP reports or implement IGMP snooping a multicast router connected to the router port of the Layer 2 switch would not be able to receive UDP data streams unless the UDP multicast packets were all forwarded to the rout
107. h PAE State Backend State and Port Status click on the Authenticator State link on the Port Access Control folder on the Monitoring menu Authenticator Status of Port1 is Auth PAE State Backend_State Port Status Figure 6 86 Authenticator Status window Maintenance The Maintenance menu consists of the following folders and screens TFTP Services Switch History Ping Test Save Changes Reboot Services and Logout See below for further description TFTP Utilities Trivial File Transfer Protocol TFTP services allow the switch firmware to be upgraded by transferring a new firmware file from a TFTP server to the switch A configuration file can also be loaded into the switch from a TFTP server switch settings can be saved to the TFTP server and a history log can be uploaded from the switch to the TFTP server Download Firmware from Server To update the switch s firmware click on the Maintenance folder and then the TFTP Services folder and finally click on the Download Firmware from TFTP Server link 115 D Link DES 3250TG Standalone Layer 2 Switch Server IP Address 0 0 0 0 Fleane Start Figure 6 87 Download Firmware from Server window Enter the IP address of the TFTP server in the Server IP Address field The TFTP server must be on the same IP subnet as the switch Enter the path and the filename to the firmware file on the TFTP server The TFTP server must be running TFTP server soft
108. h as the Routing Information Protocol RIP the Open Shortest Path First OSPF and the Border Gateway Protocol BGP enable Layer 3 devices to direct data traffic to the intended destination IP security allows for authentication and encryption IP not only allows for user to user communication but also for transmission from point to multipoint known as IP multicasting Layer 4 This layer known as the transport layer establishes the communication path between user applications and the network infrastructure and defines the method of communicating TCP and UDP are well known protocols in the transport layer TCP is a connection oriented protocol and requires the establishment of parameters for transmission prior to the exchange of data Web technology is based on TCP UDP is connectionless and requires no connection setup This is important for multicast traffic which cannot tolerate the overhead and latency of TCP TCP and UDP also differ in the amount of error recovery provided and whether or not it is visible to the user application Both TCP and UDP are layered on IP which has minimal error recovery and detection TCP forces retransmission of data that was lost by the lower layers UDP does not Layer 7 This layer known as the application layer provides access to either the end user application software such as a database Users communicate with the application which in turn delivers data to the transport layer Applicati
109. he Auto setting allows the port to automatically determine the fastest settings the port on the device connected to the DES 3250TG can handle and then use those settings The other options for ports 1 48 are 100M Full 100M Half 10M Full and 10M Half For Combo ports 49 and 50 if the optional 46 D Link DES 3250TG Standalone Layer 2 Switch Mini GBIC plug in module is used the options are Auto and 1000 Full Otherwise the two 1000BASE T Copper ports offer the same five choices for ports 1 48 plus a 1000 Full option Please note that although the two front panel modules can be used simultaneously the ports must be different For example if port 50x is used on the Mini GBIC module port 50x is not available on the 1000BASE T module In addition the fiber port will always be the highest priority The following fields can be set Parameter Description From and To Enter the desired range of ports to be configured in these fields State lt Enabled gt Toggle the State field to either enable or disable a given port Speed Duplex Toggle the Speed Duplex field to either lt Auto gt select the speed and duplex half duplex state of the port Auto auto negotiation between 10 and 100 Mbps devices full or half duplex The Auto setting allows the port to automatically determine the fastest settings the device the port is connected to can handle and then to use those settings The other options are 100M Full 100M Half
110. he RADIUS authentic server s UDP port The default is 1812 Accounting Port Set the RADIUS account server s lt 0 gt UDP port The default is 1813 Key Set the key the same as that of the RADIUS server Confirm Key Confirm the shared key is the same as that of the RADIUS server Accounting This allows you to either Add Modify Method or Delete an entry on the table in the bottom half of this window 90 D Link DES 3250TG Standalone Layer 2 Switch Management The DES 3250TG allows you to manage the switch via the Management menu The menu consists of the following folders and screens Security IP User Accounts and SNMPV3 See below for further description Security IP Some settings must be entered to allow the switch to be managed from an SNMP based Network Management System such as SNMP v1 or to be able to access the Switch using the Telnet protocol or the Web Manager To setup the switch for remote management Click the Security IP link in the Management menu IP Access to Switch 0 0 0 0 IP Access to Switch 0 0 TP3 Access to Switch 0 0 TP4 Access to Switch 0 0 IPS Access to Switch 0 0 0 TP6 Access to Switch 0 0 0 IP Access to Switch 0 0 TPS Access to Switch 0 0 0 Apply Note Create a list of IP addresses that can access the switch Your local host IP address must be one of the IP addresses to avoid disconnection Tt Figure 6 53 Security IP Management window Management stati
111. he value entered in the adjacent field System Log Servers Add New System Log Server Fac JUDE Port Stars Delete Figure 6 45 System Log Servers window Click Add to add an entry to the table in the window above Disabled y Apply Show All System Log Servers 83 Enter the desired system log server information and then click Apply to let your changes take effect PAE Access Entity The DES 3250TG implements the server side of the IEEE 802 1x Port based Network Access Control This mechanism is intended to allow only authorized users or other network devices access to network resources by establishing criteria for each port on the switch that a user or network device must meet D Link DES 3250TG Standalone Layer 2 Switch Figure 6 46 System Log Server window before allowing that port to forward or receive frames IEEE 802 1x operation must be enabled on the switch before it will function This is done using the 802 1x Status control on the Switch Information Advanced Settings window 802 1x settings can be configured before it is enabled switch wide Configure Authenticator Existing 802 1x port settings are displayed and can be configured using the window below Click Configure Authenticator on the PAE Access Entity folder on the Configuration menu to open the 802 1X Authenticator Settings window both both both both both both both both both both both both both both both both both
112. iance with the foregoing requirements or for which an RMA number is not visible from the outside of the package The product owner agrees to pay D Link s reasonable handling and return shipping charges for any product that is not packaged and shipped in accordance with the foregoing requirements or that is determined by D Link not to be defective or non conforming What Is Not Covered This limited warranty provided by D Link does not cover Products if in D Link s judgment have been subjected to abuse accident alteration modification tampering negligence misuse faulty installation lack of reasonable care repair or service in any way that is not contemplated in the documentation for the product or if the model or serial number has been altered tampered with defaced or removed Initial installation installation and removal of the product for repair and shipping costs Operational adjustments covered in the operating manual for the product and normal maintenance Damage that occurs in shipment due to act of God failures due to power surge and cosmetic damage Any hardware software firmware or other products or services provided by anyone other than D Link Products that have been purchased from inventory clearance or liquidation sales or other sales in which D Link the sellers or the liquidators expressly disclaim their warranty obligation pertaining to the product Repair by anyone other than D Link or an Authorized D Link Service Offic
113. ic environment this product may cause radio interference in which case the user may be required to take adequate measures Warnung Dies ist ein Produkt der Klasse A Im Wohnbereich kann dieses Produkt Funkstoerungen verursachen In diesem Fall kann vom Benutzer verlangt werden angemessene Massnahmen zu ergreifen Precauci n Este es un producto de Clase A En un entorno dom stico puede causar interferencias de radio en cuyo case puede requerirse al usuario para que adopte las medidas adecuadas Attention Ceci est un produit de classe A Dans un environnement domestique ce produit pourrait causer des interf rences radio auquel cas lutilisateur devrait prendre les mesures ad quates Attenzione Il presente prodotto appartiene alla classe A Se utilizzato in ambiente domestico il prodotto pu causare interferenze radio nel cui caso possibile che l utente debba assumere provvedimenti adeguati VCCI Warning E Blt JIAZABRRNRE CT COREA RIERA CHA SSB AEDE FOEMHVYVEF T AARTEN 118 BMRB O RIE RENACER DUETO BSMI Warning LETRAS 157 PAR Ali TE EA AAA A Be ee PA A ata RAS SS ee aR el Sel ee October 2003 P N 651TG3250045 Table of Contents AAN oXoceids opceiice tanec ace vetatia sh ptadion ee ag te coe SeRe eee bole Mod odin EEE A E E E 1 FEATURES Sd tt di Sb Ved CoS da paoa S 1 AOS A A e Mila Ra vee es oboe es 1 Performance Features a A a ecto ta 1 Traffic Classification and Prioritization o ooococcccnc
114. igured to match these settings If you are having problems making this connection on a PC make sure the emulation is set to VT 100 If you still don t see anything try hitting lt Ctrl gt r to refresh the screen Switch IP Address Each Switch must be assigned its own IP Address which is used for communication with an SNMP network manager or other TCP IP application for example BOOTP TFTP The switch s default IP address is 10 90 90 90 You can change the default Switch IP Address to meet the specification of your networking address scheme The switch is also assigned a unique MAC address by the factory This MAC address cannot be changed and can be found from the initial boot console screen shown below Boot Procedure 1 00 002 MAC Address 00 01 04 03 10 01 H W Version GAL Please wait loading Runtime image 100 Figure 5 1 Console Boot Screen The switch s MAC address can also be found from the console program under the Switch Information menu item Setting an IP Address The IP address for the switch must be set before it can be managed with the web based manager The switch IP address may be automatically set using BOOTP or DHCP protocols in which case the actual address assigned to the switch must be known The IP address may alternatively be set using the Command Line Interface CLI over the console serial port as follows 1 Starting at the command line prompt lo
115. imit no limit 10 no limit no limit 11 no limit no limit 12 no_limit no_limit 13 no_limit no_limit 14 no_limit no_limit 15 no_limit no_limit 16 no_limit no_limit 17 no limit no_limit 18 no_limit no_limit 19 no_limit no_limit 20 no_limit no_limit 21 no_limit no_limit 22 no_limit no_limit 22 no_limit no_limit 24 no_limit no_limit 25 no_limit no_limit 26 no_limit no_limit 27 no limit no_limit 28 no_limit no_limit 29 no_limit no_limit 30 no_limit no_limit 65 D Link DES 3250TG Standalone Layer 2 Switch 31 no_limit no limit 32 no limit no limit 33 no limit no limit 34 no_lirnit no_lirnit 35 no_limit no_limit 36 no_limit no_limit 37 no limit no limit 38 no limit no _lirnit 39 no_limit no_limit 40 no_limit no_limit 41 no_limit no_limit 42 no_limit no_limit 43 no_limit no_limit 44 no_limit no_limit 45 no_limit no_limit 46 no_limit no_limit 47 no limit no limit 48 no limit no limit 49 no limit no limit 50 no limit no limit Figure 6 28 Bandwidth Settings window To use the bandwidth feature enter the port or range of ports in the From and To fields The third field allows you to set the type of packets being received and or transmitted by the Switch Toggle the no limit setting to Enabled in the fourth field or if you prefer manually enter a value in the Rate field and then click Apply Please note that if no limit is Enabled the Switch will not permit you to set the bandwidth rate manually SNTP Settings The DES 3250
116. ing feature of IEEE 802 1Q VLANs allow VLANs to work with legacy switches that don t recognize VLAN tags in packet headers The tagging feature allows VLANs to span multiple 802 1Q compliant switches through a single physical connection and allows Spanning Tree to be enabled on all ports and work normally 802 1Q VLAN Packet Forwarding Packet forwarding decisions are made based upon the following three types of rules Ingress rules rules relevant to the classification of received frames belonging to a VLAN Forwarding rules between ports decides filter or forward the packet Egress rules determines if the packet must be sent tagged or untagged 19 802 1Q VLAN Tags The figure below shows the 802 1Q VLAN tag There are four additional octets inserted after the source MAC address Their presence is indicated by a value of 0x8100 in the EtherType field When a packet s EtherType field is equal to 0x8100 the packet carries the IEEE 802 1Q 802 1p tag The tag is contained in the following two octets and consists of 3 bits or user priority 1 bit of Canonical Format Identifier CFI used for encapsulating Token Ring packets so they can be carried across Ethernet backbones and 12 bits of VLAN ID VID The 3 bits of user priority are used by 802 1p The VID is the VLAN identifier and is used by the 802 1Q standard Because the VID is 12 bits long 4094 unique VLANs can be identified The tag is inserted into the packet header m
117. ings can be entered SNMP community strings function like passwords in that the community string entered for a given IP address must be used in the management station software or a trap will be sent The following are trap types the switch can send to a trap recipient e Cold Start This trap signifies that the Switch has been powered up and initialized such that software settings are reconfigured and hardware systems are rebooted A cold start is different 14 D Link DES 3250TG Standalone Layer 2 Switch from a factory reset in that configuration settings saved to non volatile RAM used to reconfigure the switch e System Restart This trap contains the reboot information e Authentication Failure This trap signifies that someone has tried to logon to the switch using an invalid SNMP community string The switch automatically stores the source IP address of the unauthorized user e Topology Change A Topology Change trap is sent by the Switch when any of its configured ports transitions from the Learning state to the Forwarding state or from the Forwarding state to the Blocking state The trap is not sent if a new root trap is sent for the same transition e New Root This trap is sent by the switch whenever a new root port is elected within an STP group e Link Change Event This trap is sent whenever the link of a port changes from link up to link down or from link down to link up e Save to NV RAM This trap is se
118. ion to operate the console program built in to the switch A network administrator can manage control and monitor the switch from the console program The DES 3250TG contains a CPU memory for data storage flash memory for configuration data operational programs and SNMP agent firmware These components allow the switch to be actively managed and monitored from either the console port or the network itself out of band or in band Diagnostic console port RS 232 DCE Out of band management requires connecting a terminal such as a VT 100 or a PC running a terminal emulation program such as HyperTerminal which is automatically installed with Microsoft Windows a to the RS 232 DCE console port of the Switch Switch management using the RS 232 DCE console port is called Local Console Management to differentiate it from management performed via management platforms such as D View or HP OpenView Web based Management describes management of the switch performed over the network in band using the switch s built in Web based management program The operations to be performed and the facilities provided by these two built in programs are identical The console port is set at the factory for the following configuration e Baud rate 9 600 e Data width 8 bits e Parity none e Stop bits 1 12 D Link DES 3250TG Standalone Layer 2 Switch e Flow Control None Make sure the terminal or PC you are using to make this connection is conf
119. ipping package to ensure that it will not be damaged in transit and the RMA number must be prominently marked on the outside of the package The package must be mailed or otherwise shipped to D Link with all costs of mailing shipping insurance prepaid D Link shall never be responsible for any software firmware information or memory data of Purchaser contained in stored on or integrated with any product returned to D Link pursuant to this warranty Any package returned to D Link without an RMA number will be rejected and shipped back to Purchaser at Purchaser s expense and D Link reserves the right in such a case to levy a reasonable handling charge in addition mailing or shipping costs Software D Link warrants that its software products will perform in substantial conformance with the applicable product documentation provided by D Link with such software product for a period of ninety 90 days from the date of purchase from D Link or its Authorized Reseller D Link warrants the magnetic media on which D Link provides its software product against failure during the same warranty period This warranty applies to purchased software and to replacement software provided by D Link pursuant to this warranty but shall not apply to any update or replacement which may be provided for download via the Internet or to any update which may otherwise be provided free of charge D Link s sole obligation under this software warranty shall be to replace any
120. is possible that BPDUs may not be sent ina timely fashion STP is generally not very CPU intensive and is given priority over other processes so this type of error is rare It can be seen that very low values for the MAX AGE and the FORWARD DELAY can result in an unstable spanning tree The loss of BPDUs can lead to data loops The diameter of the network can also cause problems The default values for STP give a maximum network diameter of about seven This means that two switches in the network cannot be more than seven hops apart Part of this diameter restriction is the BPDU age field As BPDUs are propagated from the root bridge to the leaves of the spanning tree each bridge increments the age field When this field is beyond the maximum age the packet is discarded For large diameter networks STP convergence can be very slow Identifying a Data Loop Broadcast storms have a very similar effect on the network to data loops but broadcast storm controls in modern switches have along with subnetting and other network practices have been very effective 133 D Link DES 3250TG Standalone Layer 2 Switch in controlling broadcast storms The best way to determine if a data loop exists is to capture traffic on a saturated link and check if similar packets are seen multiple times Generally if all the users of a given domain are having trouble connecting to the network at the same time a data loop can be suspected The port utilization data in
121. itch s IGMP Snooping table to be viewed IGMP Snooping allows the switch to read the Multicast Group IP address and the corresponding MAC address from IGMP packets that pass through the switch The number of IGMP reports that were snooped is displayed in the Reports field To view the IGMP Snooping table click IGMP Snooping Group on the Monitoring menu 0 Search VLANID uicast Group MAC Address Queres Repos 0 0 0 0 0 00 00 00 00 00 00 Disabled 0 Ports 1E BE amp FB amp fof jo fs o o az 26 27 9 fso B 132 4252657390 lan ss 7 9 0 Total Entries 0 Figure 6 82 IGMP Snooping Table window The following fields can be set or are displayed Parameter Description Multicast The IP address of the multicast group Group MAC Address The MAC address of the multicast group Reports The total number of reports received for this group IGMP Snooping Forwarding To view the IGMP Snooping Forwarding Table click IGMP Snooping Forwarding on the Monitoring menu 113 D Link DES 3250TG Standalone Layer 2 Switch 0 Search VLANID cas Group MAC Address 0 0 0 0 0 00 00 00 00 00 00 PR O O O O O O O tb BR EEE Ep os 27 28 2930 3113212334 2536 137 3812 lao fs las las 7 as 19 0 Total Entries 0 Figure 6 83 IGMP Snooping Forwarding Table window Enter the VLAN ID for the desired IGMP Snooping Forwarding Table and click Search VLAN Status Total VLAN Entries 1 VLAN ID VEANNane Stas 1 def
122. ities 74 D Link DES 3250TG Standalone Layer 2 Switch QOS Output Scheduling Click QoS on the Configuration menu and then click scheduling Max Packets 0 255 Max Latency 0 255 Class 1 lo Class 2 lo Class 3 fo Figure 6 35 QoS Output Scheduling window The Max Packets O 255 field specifies the number of packets that a queue will transmit before surrendering the transmit buffer to the next lower priority queue in a round robin fashion The Max Latency 0 255 field specifies the maximum amount of time that a queue will have to wait before being given access to the transmit buffer The Max Latency 0 255 is a priority queue timer When it expires it overrides the round robin and gives the priority queue that it was set for access to the transmit buffer There is a small amount of additional latency introduced because the priority queue that is transmitting at the time the Max Latency 0 255 time expires will finish transmitting its current packet before giving up the transmit buffer Traffic Segmentation This window allows you to manage traffic segmentation on the switch Click Traffic Segmentation in the QoS folder on the Configuration menu 75 D Link DES 3250TG Standalone Layer 2 Switch Apply 1 1 50 2 1 50 3 1 50 4 1 50 5 1 50 6 1 50 f 1 50 8 1 50 9 1 50 10 1 50 11 1 50 12 1 50 13 1 50 14 1 50 15 1 50 16 1 50 17 1 50 18 1 50 19 1 50 20 1 50 21 1 50 22 1 50 23 1 50 24 1 50 25 1 50
123. lder on the Configuration menu and then click Multicast Forwarding Add new Multicast Forwarding Settings Figure 6 22 Static Multicast Forwarding Settings window To add a new multicast MAC address to the switch s forwarding table click the Add button VID MulticastMAC Address 100 00 00 00 00 00 bs fs 6 7 e p hoM M haha hs hs h7 hs ho Ro fa ba a Ps CCO fe fe 6 fe fF fe fe fe fe C Si EE JE JE SE SE IE IE IE IE Aaa JE JE JIE Show All Multicast Forwarding Entries Figure 6 23 Setup Static Multicast Forwarding Table window The following fields can be set Parameter Description VID Allows the entry of the VLAN ID of the VLAN the MAC address below is a member of Multicast MAC Allows the entry of the multicast Address MAC address of an end station that will be entered into the switch s static forwarding table 59 D Link DES 3250TG Standalone Layer 2 Switch Port Select the port number on which the MAC address entered above resides None Specifies the port as being none Egress Specifies the port as being a source of multicast packets originating from the MAC address specified above VLANs Static VLAN Entry To create a new 802 1Q VLAN The VLAN menu adds an entry to edit the VLAN definitions and to configure the port settings for IEEE 802 1Q VLAN support Go to the Configuration menu select the VLANs folder and click Static VLAN Entry
124. led you can leave the default address in this field If no VLANs have been previously configured on the switch you can use the default VLAN named default The default VLAN contains all of the switch ports as members If VLANs have been previously configured on the switch you will need to enter the VLAN name of the VLAN that contains the port that the management station will access the switch on To use the BOOTP or DHCP protocols to assign the switch an IP address subnet mask and default gateway address Use the Get IP From pull down menu to choose from Manual BOOTP or DHCP This selects how the switch will be assigned an IP address on the next reboot or startup The following fields can be set Parameter Description BOOTP The switch will send out a BOOTP broadcast request when it is powered up The BOOTP protocol allows IP addresses network masks and default gateways to be assigned by a central 41 D Link DES 3250TG Standalone Layer 2 Switch DHCP Manual IP Address Subnet Mask Default Gateway BOOTP server If this option is set the Switch will first look for a BOOTP server to provide it with this information before using the default or previously entered settings The switch will send out a DHCP broadcast request when it is powered up The DHCP protocol allows IP addresses network masks and default gateways to be assigned by a DHCP server If this option is set the switch will first l
125. led Auto Link Down 8 Enabled Auto Link Down 9 Enabled Auto Link Down 10 Enabled Auto Link Down 11 Enabled Auto Link Down 12 Enabled Auto Link Down 13 Enabled Auto Link Down 14 Enabled Auto Link Down 15 Enabled Auto Link Down 16 Enabled Auto Link Down 17 Enabled Auto Link Down 18 Enabled Auto Link Down 19 Enabled Auto Link Down 20 Enabled Auto Link Down 21 Enabled Auto Link Down 22 Enabled Auto Link Down 23 Enabled Auto Link Down 24 Enabled Auto Link Down 23 Enabled Auto Link Down 26 Enabled Auto Link Down ey Enabled Auto 100M Full 28 Enabled Auto Link Down 29 Enabled Auto Link Down 30 Enabled Auto Link Down 31 Enabled Auto Link Down ge Enabled Auto Link Down 33 Enabled Auto Link Down 34 Enabled Auto Link Down 35 Enabled Auto Link Down 36 Enabled Auto Link Down 37 Enabled Auto Link Down 38 Enabled Auto Link Down 39 Enabled Auto Link Down 40 Enabled Auto Link Down 41 Enabled Auto Link Down 42 Enabled Auto Link Down 43 Enabled Auto Link Down 44 Enabled Auto Link Down 45 Enabled Auto Link Down 46 Enabled Auto Link Down 47 Enabled Auto Link Down 48 Enabled Auto Link Down 49 Enabled Auto Link Down 50 Enabled Auto Link Down Figure 6 11 Port Configuration window The From and To drop down dialog boxes allow different ports to be selected for configuration Use the State pull down menu to either enable or disable the selected port Use the Speed Duplex pull down menu to select the speed and duplex half duplex state of the port T
126. lick the Delete button o Ethernet m I replace priority lan Name Source Mac 00 00 00 00 00 00 00 00 00 00 00 00 li 802 1p td E H gt JAHHKHKHHHEIHEJE z a O O E E E q a Files jojojo ha E p a 5 S a at a po q aj a y al 18 9 5 5 s 3 S f a 0000 Show All Access Rule Entries Figure 6 44 Access Rule Configuration window 82 D Link DES 3250TG Standalone Layer 2 Switch Configure the following Access Rule Configuration settings additional parameters are described in earlier sections Parameter Description Profile ID This is the identifier number for this profile set Access ID Type in a unique identifier number for this access This value can be set from 1 to 255 Priority Select this option to instruct the switch to use the 802 1p priority value entered in the adjacent field for packets that meet the criteria A number between O lowest priority and 7 highest priority can be entered replace Select this option to instruct the switch to priority replace the 802 1p value in a packet that meets the selected criteria In this way packets meeting the criteria can have their priority handling modified for use within the switch and then have a different priority value assigned when they leave the switch Replace Dscp Select this option to instruct the switch to replace the DSCP value in a packet that meets the selected criteria with t
127. lities and some familiarity with terminology It is not intended to be a complete description 26 D Link DES 3250TG Standalone Layer 2 Switch Protocol Layering The Internet Protocol IP divides the tasks necessary to route and forward packets across networks by using a layered approach Each layer has clearly defined tasks protocol and interfaces for communicating with adjacent layers but the exact way these tasks are accomplished is left to individual software designers The Open Systems Interconnect OSI seven layer model has been adopted as the reference for the description of modern networking including the Internet A diagram of the OSI model is shown below note that this is not a complete listing of the protocols contained within each layer of the model E 5 Application Presentation Transport Network Data Link OSI 7 Layer Some Common Protocols Model by Layer Figure 5 6 OSI Seven Layer Network Model Each layer is a distinct set of programs executing a distinct set of protocols designed to accomplish some necessary tasks They are separated from the other layers within the same system or network but must communicate and interoperate This requires very well defined and well known methods for transferring messages and data This is accomplished through the protocol stack Protocol layering as simply a tool for visualizing the organization of the necessary software and hardware in a net
128. looks at the sequence number and uses this number and other data from the headers to reassemble the data into the original file TCP and UDP Well Known Ports Application protocols run on top of TCP IP When an application wants to send data or a message it gives the data to TCP Because TCP and IP take care of the networking details the application can look at the network connection as a simple data stream To transfer a file across a network using the File Transfer Protocol FTP a connection must first be established The computer requesting the file transfer must connect specifically to the FTP server on the computer that has the file This is accomplished using sockets A socket is a pair of TCP port numbers used to establish a connection from one computer to another TCP uses these port numbers to keep track of connections Specific port numbers are assigned to applications that wait for requests These port numbers are referred to as well known ports TCP will open a connection to the FTP server using some random port number 1234 for example on the local computer TCP will specify port 21 for the FTP server Port 21 is the well known port number for FTP servers Note that there are two different FTP programs running in this example an FTP client that requests the file to be transferred and an FTP server that sends the file to the FTP client The FTP server accepts commands from the client so the FTP client must know how
129. lt 2 x Forward Delay 1 second Max Age 2 2 x Hello Time 1 second STP Port Settings The Spanning Tree Protocol STP operates on two levels on the switch level the settings are globally implemented On the port level the settings are implemented on a user defined Group of ports basis 55 D Link DES 3250TG Standalone Layer 2 Switch To configure STP click the Spanning Tree folder on the Configuration menu and then click on the STP Port Settings link Port y Port y Disabled y f0 o No y No y mo y Apply Port Connection State Cost Priority STP Status 1 100M0Full 200000 128 ForwardingNonStp 2 Link Down ve 200000128 No No Disabled Disabled 3 Link Down Yes 200000128 No No Disabled Disabled 4 Link Down Yes 200000 128 No No Disabled Disabled 5 Link Down Yes 200000128 No No Disabled Disabled 6 Link Down Yes 200000128 No No Disabled Disabled 7 Link Down Yes 200000128 No No Disabled Disabled 8 Link Down Yes 200000128 No No Disabled Disabled 9 Link Down Yes 200000128 No No Disabled Disabled 10 Link Down Yes 200000128 No No Disabled Disabled 11 LinkDown Yes 200000128 No No Disabled Disabled 12 LinkDown Yes 200000128 No No Disabled Disabled 13 LinkDown Yes 200000128 No No Disabled Disabled 14 LinkDown Yes 200000 128 No No Disabled Disabled 15 LnkDown Yes 200000128 No No Disabled Disabled 16 LinkDown Yes 200000128 No No Disabled Disabled 17 Link Down Yes 200000128 No No Disabled Disable
130. luded from access by an SNMP manager View Type Select Included to include this object in the list of objects that an SNMP manager can access Select Excluded to exclude this object from the list of objects that an SNMP manager can access SNMP Group Table The SNMP Group created with this table maps SNMP users identified in the SNMP User Table to the views created in the previous menu Add Total Entries 5 Note It is allowed insert 30 entries into the table only initial SNMPv3 NoAuthNoPriv XX ReadGroup SNMPv1 NoAuthNoPriv X ReadGroup SNMPw2 NoAuthNoPriv XX WriteGroup SNMPv1 NoAuthNoPriv X lt WriteGroup SNMPv2 NoAuthNoPriv X Figure 6 61 SNMP Group Table window To delete an existing entry click the selection button in the Delete column on the far right that corresponds to the port you want to remove To create a new entry click the Add button a separate window will appear D Link DES 3250TG Standalone Layer 2 Switch SNMP Group Table Configuration Coone ine iia a Notify View Name aaa Show All SNMP Group Table Entnes Figure 6 62 SNMP Group Table Configuration window To display the current SNMP Group Table Configuration click the Group Name in the first column of the SNMP Group Table window Gro Mame BN Read View Name restricted Write View Name Notify View Name restricted Security Model SNMPw3 Security Level NoAuthNoPnv Show All SNMP Group Table Entries Figure 6 63
131. lug the switch back in D Link DES 3250TG Standalone Layer 2 Switch IDENTIFYING EXTERNAL COMPONENTS This chapter describes the front panel rear panel side panels and optional plug in module and LED indicators of the DES 3250TG Front Panel The front panel of the Switch consists of LED indicators an RS 232 communication port 48 10 100 Mbps Ethernet Fast Ethernet ports and a pair of Gigabit Ethernet Combo ports for 1000BASE T plug in module provided and Mini GBIC connections optional plug in module O Y LL eee AMALIA Figure 3 1 Front panel view of the Switch e Comprehensive LED indicators display the status of the switch and the network see the LED Indicators section below e An RS 232 DCE console port for setting up and managing the switch via a connection to a console terminal or PC using a terminal emulation program e Forty eight high performance NWay Ethernet ports all of which operate at 10 100 Mbps for connections to end stations servers and hubs All ports can auto negotiate between 10Mbps or 100Mbps and full or half duplex e Two Gigabit Ethernet Combo ports for making 1000BASE T and Mini GBIC connections Rear Panel The rear panel of the switch consists of two fans and an AC power connector O So gt E Figure 3 2 Rear panel view of the Switch
132. n alphanumeric string of between 8 and 16 characters that will be used to encrypt the contents of messages the host sends to the agent SNMP View Table The SNMP View Table is used to assign views to community strings that define which MIB objects can be accessed by an SNMP manager Add Total Entries 8 Note It is allowed insert 30 entries into the table only restricted E Included x restricted 3 61 2411 Included x restricted fi361631021 Included x restricted fi361631121 Included x restricted fi361631511 Included x CommunityView fT s Included x Community View fi36163 Excluded x CommunityView 1361631 00000000 Included Xx Figure 6 59 SNMP View Table window To delete an existing SNMP View Table entry click the selection button in the Delete column on the far right that corresponds to the port you want to configure To create a new entry click the Add button a separate window will appear 94 D Link DES 3250TG Standalone Layer 2 Switch SNMP View Table Configuration ViewName Soveom amp amp amp Apply Show All SNMP View Table Entries Figure 6 60 SNMP View Table Configuration window Parameter Description View Name Type an alphanumeric string of up to 32 characters This is used to identify the new SNMP view being created Subtree OID Type the Object Identifier OID Subtree for the view The OID identifies an object tree MIB tree that will be included or exc
133. n State Allows the selected port s dynamic lt Disabled gt MAC address learning to be locked such that new source MAC addresses cannot be entered into the MAC address table for the locked port or group of ports It can be changed by toggling between Disabled and Enabled Max Learning Select the maximum number of Addr 0 10 lt 1 gt addresses that may be learned for the port The port can be restricted to 10 or less MAC addresses that are allowed for dynamically learned MAC addresses in the forwarding table Lock Address Select Delete On Timeout to clear Mode dynamic entries for the ports on timeout of the Forwarding Data Base lt Delete On Reset gt FDB Specify Delete On Reset to delete all FDB entries including static entries upon system reset or rebooting QOS Quality of Service The DES 3250TG switch supports 802 1p priority queuing The switch has four priority queues These priority queues are numbered from O the lowest priority queue to 3 the highest priority queue The eight priority queues specified in IEEE 802 1p QO to Q7 are mapped to the switch s priority queues as follows Q2 and Q1 are assigned to the switch s Q0 queue Q3 and Q0 are assigned to the switch s Q1 queue Q5 and Q4 are assigned to the switch s Q2 queue Q7 and Q6 are assigned to the switch s Q3 queue The switch s four priority queues are emptied in a round robin fashion beginning with the highest priority queue and proce
134. ncnnonnnnnnnrnnnrnonononnn nono eens eens o eeenseseaeaeneaeneneegenenen 2 MAM ABEMIENT rer ise canst caussted A daisies Ss 2 Fast Ethernet Technology cimil 3 Gigabit Ethernet Technol mitin Aa n AR a a 44 ned A a 3 Unpacking AA A a OENAR 4 Wn packin a iaa 4 TADS PALA O A A A Aa A an ada Raid 4 Desktop or Shelf Installation coccion irea an a AE E NANE NS venden dn edie cde eduedvech edhe EATA 4 Rack Installation dnin Sid iictac nse tes tds can ok iw ni NS oe 5 PO WEE Ofera ea esd indie cie Bad na 6 Power Halle A A iaa aa das 6 Identifying External Components 2 A a 7 Fr a ES 7 Rear Panel das ai Saad c if dag ca os a ode Rod 7 Side Panels ti A A A EEN AA 8 Gigabit Combo Ports A A aos 8 LED TACO A A A A E A ee 9 Connecting The Wild 10 Switch to Bnd Nod G42 iso sac Se i A vain A coat Ed Ei iii 10 Switch to HUb 0 SWCD Sasa as ail ae aves Fave 10 TOBASEET DEVICE is ccd seg oiiieas a Saa dae 11 LOO BASE TX DEVICE aii A on SUE ENR bide RAE EERE es aR 11 Switch Management and Operating Concepts ocoococoncnccncnnoncnncnnoncnnononncnno monocromo eee cane eee eaeeneneeeeeneneeeees 12 Local Console Managements say c cnet A ate Ss ee ea ed A a a 12 Diagnostic console port RS 232 DCE iinis esitis tinenta vetare CATANA SAAE EEEE EANNA ESA N 12 Switch TPeAAGress a ta cag coe E A A TE deea ea 13 SN A SE E EE O AE IAEE EE A EE AN O E E AETA 14 NHB Sian a a a a a a E E ah fat ance A oa RT 15 Packet Forwarding acti A A ee EE Meneses eed 16 8024
135. nfig See the on screen instructions for the differences among each option Note that all changes are kept in normal memory If a user does not save the result into NV RAM with the Save Changes function the switch will recover all the settings the last user configured after the switch is rebooted 118 Reboot Reset Reset System Reset Config D Link DES 3250TG Standalone Layer 2 Switch Are you sure you want to proceed with the system reboot If yes just click the Reboot button Reboot Figure 6 94 Reboot window Switch will be reset all except IP address user account and history log Are you sure you want to proceed with a reset If yes just click the Apply button Apply Figure 6 95 Reset window Warning reset all factory reset save reboot Switch will be reset to factory defaults and reboot with saving Are you sure you want to proceed with a reset If yes just click the Apply button Apply Figure 6 96 Reset System window Switch will be reset to factory defaults Are you sure you want to proceed with a reset If yes just click the Apply button Apply Figure 6 97 Reset Config window 119 D Link DES 3250TG Standalone Layer 2 Switch Logout LogoutWeb Setup Are you sure you want to log out of Web configuration program If yes just click the Apply button and return to the main page Apply Figure 6 98 Logout Web Setup window Click Apply if you want to logou
136. ng Group IGMP Snooping Forwarding VLAN Status Router Port and Port Access Control See below for further description Port Utilization The Utilization window shows the percentage of the total available bandwidth being used on the port To view port utilization click on the Monitoring folder and then the Port Utilization link Clear Utilization Unit Time Interval Record Number Show Hide Utilization Figure 6 68 Utilization window Click the port on the front panel display that you want to display port utilization The following fields can be set Parameter Description Time Interval Js Select the desired setting between 1s and 60s where s stands for 100 D Link DES 3250TG Standalone Layer 2 Switch seconds The default value is one second Record Number Select number of times the Switch 200 will be polled between 20 and 200 The default value is 20 Show Hide Check to display Utilization Clear Clicking this button clears all statistics counters on this window Packets The Web Manager allows various packet statistics to be viewed as either a line graph or a table Six windows are offered Received RX Clear View Table Bytes Packets Time Interval Record Number Show Hide V Bytes IV Packets Figure 6 69 Rx Packets Analysis window line graph for Bytes and Packets 101 D Link DES 3250TG Standalone Layer 2 Switch Figure 6 70 Rx P
137. ng Tree Protocol Bridge Max Age 6 40 Sec Bridge Hello Time 1 10 Sec Cost to Root Root Port Time Topology Change secs Topology Changes Count Protocol Specification Max Age Hello Time Forward Delay Hold Time Note 2 Forward Delay 1 gt Max Age Max Age gt 2 Hello Time 1 Figure 6 19 Switch Spanning Tree Settings window Note The factory default setting should cover the majority of installations It is advisable to keep the default settings as set at the factory unless it is absolutely necessary to change them The following fields can be set Parameter Description Spanning Tree This field can be toggled between Protocol Enabled and Disabled using the pull lt Disabled gt down menu This will enable or disable the Spanning Tree Protocol STP globally for the switch Bridge Max Age The Bridge Maximum Age can be set 6 40 Sec lt 20 gt from 6 to 40 seconds At the end of the Max Age if a BPDU has still not been received from the Root Bridge your switch will start sending its own BPDU to all other switches for permission to become the Root Bridge If it turns out that your switch has the lowest Bridge 54 Note D Link DES 3250TG Standalone Layer 2 Switch Bridge Hello Time 1 10 Sec lt 2 gt Bridge Forward Delay 4 30 sec lt 15 gt Bridge Priority 0 65535 Sec lt 32768 gt STP Version TX Hold Count 1 10 Forwarding BPDU lt Enabled gt Identifier
138. nnccnnonnos 12 Data filtering cnica citas 2 Data filtering rate 2 0 eeceeseeecceeeceeceseceeeceeeeseeeneeeeeeenees 2 Data forwarding ooooocoocconcnoncnoncnononnnonnnonnnonnnnnn cnn nonncn nano noo 2 Data forwarding rate ccceceeceesceeseeeseeeeeeeeeeeeeesreeeeensees 2 Default Gateway oiea aen aa a i ae 42 Diagnostic POTI ssnin ieie iiaii i 1 DS si ssi sibgs iesepabssssablsskdstysitassetastagabasenans chse 123 EST OSS POTT is scsssiscssycesseedustas cbs ereti asetses eoni seviksi E Enisi 19 End Node pee r eeoa ota dd 10 Ethernetprot col oiei a E 3 Flash MeMoOry EA 2 For Ward ico sinc iad abate i 15 Front Panel ccoo soup taseassstssgenes a i eo riada 7 Gigabit Ethermet comite 3 Humidity E helena dertess 123 TEEE 802 10 tagging nna aoea ioiii 19 IEEE 802 1Q VLANS creien niie aai 19 A akape re ee satori rie oes 19 22 IP addresse n a R i 42 IPAddress cian ar 13 IP Addresses and SNMP Community Names 13 IP Conf Url it 40 LED Indicators sita 9 load balancing notara loe 18 MAC Address Learning concccocncnconcnnnonononanannnonncnninncnnon 123 MAC based VLANS aisinn acii esii mosi aes 19 MEA ian i oosaae 2 Management Information Base MIB cesceeeeeee 15 MASTER POT i 6 65 besawsdesi se aa Eaa aE E EREE ERS 17 Max ADE Mesina ate tule Manes 53 54 135 compatibility with 802 1d STP 17 Saving Changes iioo raioni uessa ass 37 Setting an IP AddresSS oooocnonnonicnncconononocononconona
139. nt whenever Save all configuration of device to NV RAM has been processed e File Transfer Status Change This trap is sent for file transfer status change notification e Set to Factory Default The trap is sent whenever the Set to factory default setting has been processed MIBs Management and counter information are stored in the Switch in the Management Information Base MIB The Switch uses the standard MIB I1l Management Information Base module Consequently values for MIB objects can be retrieved from any SNMP based network management software In addition to the standard MIB II the Switch also supports its own proprietary enterprise MIB as an extended Management Information Base These MIBs may also be retrieved by specifying the MIB s Object Identity OID at the network manager MIB values can be either read only or read write Read only MIBs variables can be either constants that are programmed into the Switch or variables that change while the Switch is in operation Examples of read only constants are the number of port and type of ports Examples of read only variables are the statistics counters such as the number of errors that have occurred or how many kilobytes of data have been received and forwarded through a port Read write MIBs are variables usually related to user customized configurations Examples of these are the Switch s IP Address Spanning Tree Algorithm parameters and port status If yo
140. o secure a browser A Web browser is a program that allows a person to read hypertext for example Opera Netscape Navigator or Microsoft Internet Explorer Follow the installation instructions for your browser The second step is to give the switch an IP address This can be done manually through the console or automatically using BOOTP DHCP 35 D Link DES 3250TG Standalone Layer 2 Switch To begin managing your Switch simply run the browser you have installed on your computer and point it to the IP address you have defined for the device The URL in the address bar should read something like http 123 123 123 123 where the numbers 123 represent the IP address of the switch Note The Factory default IP address for the switch is 10 90 90 90 In the page that opens click on the Login to make a setup button to make a setup Figure 6 1 Login button This opens the management module s main page The switch management features available in the Web based manager are explained below Configuring the Switch User Accounts Management From the Management menu click User Accounts and then the User Account Management window appears Figure 6 2 User Account Management window Click Add to add a user Donme Norrena irm New Password Apply Show All User Account Entries Figure 6 3 User Account Modify Table window 1 Enter the new user name assign an initial password and then confirm the n
141. o the CPU e Processes BPDUs received from the CPU e Receives and responds to network management messages 127 D Link DES 3250TG Standalone Layer 2 Switch Network Segment t Port 1 Forwarding 5 A i Addresses i Newer ata BPDUs Management Packets Packets Forwarding Database cru A Switch Fabric Discard BPDUs A Data Packets Port 2 lt y Listening Network Segment BPDUs Learning State A port in the learning state prepares to participate in frame forwarding The port enters the learning state from the listening state A port in the learning state does the following Discards frames received from the network segment to which it is attached Discards packets sent from another port on the switch for forwarding Adds addresses to its forwarding database Receives BPDUs and directs them to the CPU Processes and transmits BPDUs received from the CPU Receives and responds to network management messages 128 D Link DES 3250TG Standalone Layer 2 Switch Network Segment t Port 1 Forwarding A i Addresses i Newer ata BPDUs Management Packets Packets Forwarding Database cru l r Switch Addresses Fie Discard BPDUs A Data Packets Port 2 lt y Learning Network Segment BPDUs Forwarding State A port in the forwarding state forwards packets The port enters the forwarding state from the learning state when the forward delay timer expires A port in the
142. oftware will be warranted for the remainder of the original Warranty Period from the date or original retail purchase If a material non conformance is incapable of correction or if D Link determines in its sole discretion that it is not practical to replace the non conforming Software the price paid by the original licensee for the non conforming Software will be refunded by D Link provided that the non conforming Software and all copies thereof is first returned to D Link The license granted respecting any Software for which a refund is given automatically terminates Non Applicability of Warranty The Limited Warranty provided hereunder for hardware and software of D Link s products will not be applied to and does not cover any product purchased through the inventory clearance or liquidation sale or other sales in which D Link the sellers or the liquidators expressly disclaim their warranty obligation pertaining to the product and in that case the product is being sold As Is without any warranty whatsoever including without limitation the Limited Warranty as described herein notwithstanding anything stated herein to the contrary Submitting A Claim Any claim under this limited warranty must be submitted in writing before the end of the Warranty Period to an Authorized D Link Service Office The customer must submit as part of the claim a written description of the Hardware defect or Software nonconformance in sufficient detail to allow
143. ol before removing covers or touching internal components e Operate the product only from the type of external power source indicated on the electrical ratings label If you are not sure of the type of power source required consult your service provider or local power company e To help avoid damaging your system be sure the voltage selection switch if provided on the power supply is set to match the power available at your location 115 volts V 60 hertz Hz in most of North and South America and some Far Eastern countries such as South Korea and Taiwan 100 V 50 Hz in eastern Japan and 100 V 60 Hz in western Japan 230 V 50 Hz in most of Europe the Middle East and the Far East e Also be sure that attached devices are electrically rated to operate with the power available in your location e Use only approved power cable s If you have not been provided with a power cable for your system or for any AC powered option intended for your system purchase a power cable that is approved for use in your country The power cable must be rated for the product and for the voltage and current marked on the product s electrical ratings label The voltage and current rating of the cable should be greater than the ratings marked on the product vi D Link DES 3250TG Standalone Layer 2 Switch Safety Instructions continued To help prevent electric shock plug the system and peripheral power cables into properly grounded electrical outlet
144. olumn of the SNMP User Table window User Name initial Group Name initial SNMP Version V3 Auth Protocol None Priv Protocol None Show All SNMP User Table Entries Figure 6 58 SNMP User Table Display window The following parameters are used in the SNMP User Table windows Parameter Description User Name Type in the new SNMP V3 user name or community string for V1 or V2 This can be any alphanumeric name of up to 32 characters that will identify the new SNMP user Group Name Type in the new SNMP V3 group name Again this can be any alphanumeric name of up to 32 characters that will identify the SNMP group the new SNMP user will be associated with SNMP Version From the pull down menu select V1 To specifies that SNMP version 1 will be used V2 To specify that SNMP version 2 will be used V3 To specify that the SNMP version 3 will be used If Encryption V3 only is D Link DES 3250TG Standalone Layer 2 Switch checked configure also In the Space provided type an alphanumeric sting of between 8 and 20 characters that will be used to authorize the agent to receive packets for the host Auth Protocol From the pull down menu select MD5 To specify that the HMAC MD5 96 authentication level will be used SHA To specify that the HMAC SHA 96 authentication level will be used If Encryption V3 only is checked configure also Priv Protocol Ip the Space provided type a
145. on the Upload log to TFTP Server link er IP Address 0 0 0 0 TT Start Figure 6 90 Upload log to TFTP Server window Enter the IP address of the TFTP server and the path and filename for the history log on the TFTP server Click Start to initiate the file transfer Switch History This allows the Switch History log to be viewed The switch records all traps in sequence that identify events on the switch The time since the last cold start of the switch is also recorded To view the switch history log click the Switch History link on the Maintenance menu Sequence Time Log Text 334 333 332 331 330 329 328 327 326 325 324 323 322 321 320 319 318 317 316 315 Ping Test 0 days 06 11 47 0 days 06 11 43 0 days 00 37 00 0 days 00 00 45 0 days 00 00 21 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 14 0 days 00 00 13 0 days 00 00 13 Port 3 link up 100Mbps FULL duplex Port 1 link down Successful login through Web Username Anonymous Port 1 link up 100Mbps FULL duplex System started up Port 25 link down Port 50 link down Port 48 link down Port 47 link down Port 46 link down Port 45 link down Port 44 link down Port 43 link down Port 42 link down Port 41 link down Port 40 link down Port 39 link down P
146. ons are computers on the network that will be used to manage the switch You can limit the number of possible management stations by entering up to eight IP addresses If the eight IP Address fields contain all zeros 0 then any station with any IP address can access the switch to manage and configure it If there is one or more IP addresses entered in the IP Address fields then only stations with the IP addresses entered will be allowed to access the switch to manage or configure it User Accounts From the Management menu click User Accounts and then the User Account Management window appears Figure 6 54 User Account Management window Click Add to add a user 91 D Link DES 3250TG Standalone Layer 2 Switch A io i iz Confirm New Pas Apply Show All User Account Entries Figure 6 55 User Account Modify Table window 1 Enter the new user name assign an initial password and then confirm the new password Determine whether the new user should have Admin or User privileges 2 Click Apply to make the user addition effective 3 A listing of all user accounts and access levels is shown in the User Account Management window This list is updated when Apply is executed Click Show All User Account Entries to access this window Please remember that Apply makes changes to the switch configuration for the current session only All changes including User additions or updates must
147. ons do not usually communicate directly with lower layers They are written to use a specific communication library like the popular WinSock library Software developers must decide what type of transport mechanism is necessary For example Web access requires reliable error free access and would demand TCP Multimedia on the other hand requires low overhead and latency and commonly uses UDP TCP IP The TCP IP protocol suite is a set of protocols that allow computers to share resources across a network TCP and IP are only two of the Internet suite of protocols but they are the best known and it has become common to refer the entire family of Internet protocols as TCP IP TCP IP is a layered set of protocols An example such as sending e mail can illustrate this There is first a protocol for sending and receiving e mail This protocol defines a set of commands to identify the sender the recipient and the content of the e mail The e mail protocol will not handle the actual communication between the two computers this is done by TCP IP TCP IP handles the actual sending and receiving of the packets that make up the e mail exchange TCP makes sure the e mail commands and messages are received by the appropriate computers It keeps track of what is sent and what is received and retransmits any packets that are lost or dropped TCP also handles the division of large messages into several Ethernet packets and makes sure these packets are r
148. ook for a DHCP server to provide it with this information before using the default or previously entered settings Allows the entry of an IP address Subnet Mask and a Default Gateway for the switch These fields should be of the form xxx xxx xxx xxx where each xxx is a number represented in decimal form between O and 255 This address should be a unique address on the network assigned for use by the network administrator The fields which require entries under this option are as follows Determines the IP address used by the switch for receiving SNMP and Telnet communications These fields should be of the form xxx xxx xxx xxx where each xxx is a number represented in decimal between O and 255 This address should be a unique address on a network assigned to you by the central Internet authorities A Bitmask that determines the extent of the subnet that the Switch is on Should be of the form xxx xxx xxx xxx where each xxx is a number represented in decimal between O and 255 The value should be 255 0 0 0 for a Class A network 255 255 0 0 for a Class B network and 255 255 255 0 for a Class C network but custom subnet masks are allowed IP address that determines where packets with a destination address outside the current subnet should be sent This is usually the address of a router or a host acting as an IP gateway If your network is not part of an intranet or you do not want the 42 D Link DES 3250TG Stan
149. ort 38 link down Port 37 link down Port 36 link down Clear Next Figure 6 91 Switch History window Ping is a small program that sends data packets to the IP address you specify The destination node then returns the packets to the switch This is very useful to verify connectivity between the switch and other nodes on the network 117 D Link DES 3250TG Standalone Layer 2 Switch Enter the IP address of the device or station you want to ping then click Start Target IP Address undefined Repeat Pinging for Infinite times e times 1 255 Start Figure 6 92 Ping Test window The Infinite times checkbox in the Repeat Pinging for section tells PING to keep sending data packets to the specified IP address until the program is stopped Save Changes The DES 3250TG has two levels of memory normal RAM and non volatile or NV RAM To retain any configuration changes permanently highlight Save Changes on the Maintenance menu The following screen will appear to verify that your new settings have been saved to NV RAM Save system settings to NV RAM Save Configuration Figure 6 93 Save Configuration window Once the switch configuration settings have been saved to NV RAM they become the default settings for the switch These settings will be used every time the switch is rebooted Reboot Services The following folder contains windows that allow you to either Reboot Reset Reset System or Reset Co
150. ossible nodes for a given network but increases the segmentation of the network Classless InterDomain Routing CIDR Under CIDR the subnet mask notation is reduced to simplified shorthand Instead of specifying all of the bits of the subnet mask it is simply listed as the number of contiguous 1 s bits in the network portion of the address Look at the subnet mask of the above example in binary 11111111 11100000 00000000 00000000 and you can see that there are 11 1 s or 11 bits used to mask the network address from the node address Written in CIDR notation this becomes 10 32 0 0 11 tt of Subnet Mask CID of of Total Hosts Bits R Subnets Hosts Nota tion 2 255 192 0 0 10 2 419430 8388604 2 3 255 224 0 0 11 6 209715 12582900 0 4 255 240 0 0 12 14 104857 14680036 4 5 255 248 0 0 13 30 524286 15728580 6 255 252 0 0 14 62 262142 16252804 7 255 254 0 0 15 126 131070 16514820 8 255 255 0 0 16 254 65534 16645636 25 D Link DES 3250TG Standalone Layer 2 Switch 9 255 255 128 0 17 510 32766 16710660 10 255 255 192 0 18 1022 16382 16742404 11 255 255 224 0 19 2046 8190 16756740 12 255 255 240 0 20 4094 4094 16760836 13 255 255 248 0 21 8190 2046 16756740 14 255 255 252 0 22 16382 1022 16742404 15 255 255 254 0 23 32766 510 16710660 16 255 255 255 0 24 65534 254 16645636 17 255 255 255 1 25 131070 126 165
151. otecting Against Electrostatic Discharge Static electricity can harm delicate components inside your system To prevent static damage discharge static electricity from your body before you touch any of the electronic components such as the microprocessor You can do so by periodically touching an unpainted metal surface on the chassis You can also take the following steps to prevent damage from electrostatic discharge ESD 1 When unpacking a static sensitive component from its shipping carton do not remove the component from the antistatic packing material until you are ready to install the component in your system Just before unwrapping the antistatic packaging be sure to discharge static electricity from your body 2 When transporting a sensitive component first place it in an antistatic container or packaging 3 Handle all sensitive components in a static safe area If possible use antistatic floor pads and workbench pads and an antistatic grounding strap viii D Link DES 3250TG Standalone Layer 2 Switch 1 INTRODUCTION This section describes the functionality features of the DES 3250TG Features The DES 3250TG Switch was designed for easy installation and high performance in an environment where traffic on the network and the number of users increase continuously Switch features include Ports e Forty eight high performance NWay ports all operating at 10 100 Mbps for connecting to end stations servers an
152. port is applied to all members of the link aggregation group Thus when configuring the ports in a link aggregation group you only need to configure the master port The DES 3250TG supports link aggregation groups which may include from two to eight switch ports each except for a Gigabit link aggregation group which consists of the two optional Gigabit Ethernet ports of the front panel Layer 2 Switch Link Aggregation Group gt Layer 3 Switch TUT LLLI LVPL Layer 2 Switch i e MEA aaa Workstations Figure 5 2 Link Aggregation Group Data transmitted to a specific host destination address will always be transmitted over the same port in a link aggregation group This allows packets in a data stream to arrive in the same order they were sent An aggregated link connection can be made with any other switch that maintains host to host data streams over a single link aggregate port Switches that use a load balancing scheme that sends the packets of a host to host data stream over multiple link aggregation ports cannot have an aggregated connection with the DES 3250TG switch VLANs A VLAN is a collection of end nodes grouped by logic rather than physical location End nodes that frequently communicate with each other are assigned to the
153. pport dlink com au amp info dlink com au Level 1 434 St Kilda Road Melbourne Victoria 3004 Australia TEL 61 3 9281 3232 FAX 61 3 9281 3229 MOBILE 0412 660 064 D Link Canada 2180 Winston Park Drive Oakville Ontario L6H 5W1 Canada TEL 1 905 829 5033 FAX 1 905 829 5095 BBS 1 965 279 8732 TOLL FREE 1 800 354 6522 URL www dlink ca FTP ftp dlinknet com E MAIL techsup dlink ca D Link South America Isidora Goyenechea 2934 Of 702 Las Condes Fono 2323185 Santiago Chile S A TEL 56 2 232 3185 FAX 56 2 232 0923 URL www dlink cl E MAIL ccasassu dlink cl amp tsilva dlink cl D Link China 15th Floor Science amp Technology Tower No 11 Baishigiao Road Haidan District 100081 Beijing China TEL 86 10 68467106 FAX 86 10 68467110 URL www dlink com cn E MAIL liweii digitalchina com cn D Link Denmark Naverland 2 DK 2600 Glostrup Copenhagen Denmark TEL 45 43 969040 FAX 45 43 424347 URL www dlink dk E MAIL info dlink dk D Link Middle East 7 Assem Ebn Sabet Street Heliopolis Cairo Egypt TEL 20 2 635 6176 FAX 20 2 635 6192 URL www dlink me com E MAIL support dlink me com amp fateen dlink me com D Link Finland Pakkalankuja 7A FIN 0150 VANTAA Finland TEL 358 9 2707 5080 FAX 358 9 2702 5081 URL www dlink fi com D Link France Le Florilege No 2 Allea de la Fresnerie 78330 Fontenay Le Fleury France TEL 33 1 3023 8688 FAX 33 1 3023 8689 URL www dlink france fr
154. r tegewicht gr er 3kg ist eine Leitung nicht leichter als HOSVV F 3G 0 75mm2 einzusetzen WARRANTIES EXCLUSIVE IF THE D LINK PRODUCT DOES NOT OPERATE AS WARRANTED ABOVE THE CUSTOMER S SOLE REMEDY SHALL BE AT D LINK S OPTION REPAIR OR REPLACEMENT THE FOREGOING WARRANTIES AND REMEDIES ARE EXCLUSIVE AND ARE IN LIEU OF ALL OTHER WARRANTIES EXPRESSED OR IMPLIED EITHER IN FACT OR BY OPERATION OF LAW STATUTORY OR OTHERWISE INCLUDING WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE D LINK NEITHER ASSUMES NOR AUTHORIZES ANY OTHER PERSON TO ASSUME FOR IT ANY OTHER LIABILITY IN CONNECTION WITH THE SALE INSTALLATION MAINTENANCE OR USE OF D LINK S PRODUCTS D LINK SHALL NOT BE LIABLE UNDER THIS WARRANTY IF ITS TESTING AND EXAMINATION DISCLOSE THAT THE ALLEGED DEFECT IN THE PRODUCT DOES NOT EXIST OR WAS CAUSED BY THE CUSTOMER S OR ANY THIRD PERSON S MISUSE NEGLECT IMPROPER INSTALLATION OR TESTING UNAUTHORIZED ATTEMPTS TO REPAIR OR ANY OTHER CAUSE BEYOND THE RANGE OF THE INTENDED USE OR BY ACCIDENT FIRE LIGHTNING OR OTHER HAZARD LIMITATION OF LIABILITY IN NO EVENT WILL D LINK BE LIABLE FOR ANY DAMAGES INCLUDING LOSS OF DATA LOSS OF PROFITS COST OF COVER OR OTHER INCIDENTAL CONSEQUENTIAL OR INDIRECT DAMAGES ARISING OUT THE INSTALLATION MAINTENANCE USE PERFORMANCE FAILURE OR 121 D Link DES 3250TG Standalone Layer 2 Switch INTERRUPTION OF A D LINK PRODUCT HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY THIS LI
155. ransmitting directions or just the receiving direction PortControl From the pull down menu select forceAuthorized forceUnauthorized or auto Force Authorized forces the Authenticator of the port to become Authorized Force Unauthorized forces the port to become Unauthorized TxPeriod Select the time to wait for a response from a supplicant user to send EAP Request Identity packets QuietPeriod Select the time interval between authentication failure and the start of a new authentication attempt SuppTimeout Select the time to wait for a response from a supplicant user for all EAP packets except for the Request Identity packets ServerTimeout Select the length of time to wait for a response from a Radius server MaxReq Select the maximum number of times to retry sending packets to the supplicant ReAuthPeriod Select the time interval between successive re authentications ReAuth Enable or disable re authentication ReAuth Enabled Port Capability Settings Existing 802 1x port settings are displayed and can be configured using the window below Click Port Capability Settings on the PAE Access Entity folder on the Configuration menu to open the 802 1X Capability Settings window 86 w Switch D Link er 2 802 1X Capability Settings Poti y Port1 y None y Apply 802 1X Capability Table 1 None 2 None 3 None 4 None 5 None 6 None if None 8 None 9 None 10 None 11 None 12 None
156. result in dynamic forwarding table entries that are out of date or no longer exist This may cause incorrect packet forwarding decisions by the switch If the Aging Time is too short however many entries may be aged out too soon This will result in a high percentage of received packets whose destination addresses cannot be found in the forwarding table in which case the switch will broadcast the packet to all ports negating many of the benefits of having a switch Static forwarding entries are not affected by the aging time 802 1w Rapid Spanning Tree The Switch implements two versions of the Spanning Tree Protocol the Rapid Spanning Tree Protocol RSTP as defined by the IEEE 802 1w specification and a version compatible with the IEEE 802 1d STP RSTP can operate with legacy equipment implementing IEEE 802 1d however the advantages of using RSTP will be lost The IEEE 802 1w Rapid Spanning Tree Protocol RSTP evolved from the 802 1d STP standard RSTP was developed in order to overcome some limitations of STP that impede the function of some recent switching innovations in particular certain Layer 3 function that are increasingly handled by Ethernet switches The basic function and much of the terminology is the same as STP Most of the settings configured for STP are also used for RSTP This section introduces some new Spanning Tree concepts and illustrates the main differences between the two protocols Port Transition States An
157. rk traffic if a loop develops Ethernet Every active Ethernet device has its own Ethernet address commonly called the MAC address assigned to it by the manufacturer Ethernet uses 48 bit addresses The Ethernet header is 14 octets that include the source and destination MAC address and a type code There is no relationship between the MAC address of a network node and its IP address There must be a database of Ethernet addresses and their corresponding IP addresses Different protocol families can be in use on the same network The type code field allows each protocol family to have its own entry A checksum is calculated and when the packet is received the checksum is recalculated If the two checksums are different the packet is dropped Ethernet Header Octets 0 1 2 3 4 Preamble 8 Octets Destination Address 6 Octets Source Address 6 Octets Frame Type Data 48 to 1500 Octets Cyclic Redundancy Check CRC 4 Octets Figure 5 10 Ethernet Packet Header 32 D Link DES 3250TG Standalone Layer 2 Switch When a packet is received the headers are removed The Ethernet Network Interface Card NIC removes the Ethernet header and checks the checksum It then looks at the type code If the type code is for IP the packet is given to IP IP then removes the IP header and looks at its protocol field If the protocol field is TCP the packet is sent to TCP TCP then
158. rks Layer 1 This is referred to as the physical layer It handles the electrical connections and signaling required to make a physical link from one point in the network to another It is on this layer that the unique Media Access Control MAC address is defined Layer 2 This layer commonly called the switching layer allows end station addressing and the establishment of connections between them Layer 2 switching forwards packets based on the unique MAC address of each end station and offers high performance dedicated bandwidth of Fast or Gigabit Ethernet within the network Layer 2 does not ordinarily extend beyond the intranet To connect to the Internet usually requires a router and a modem or other device to connect to an Internet Service Provider s WAN These are Layer 3 functions 28 D Link DES 3250TG Standalone Layer 2 Switch Layer 3 Commonly referred to as the routing layer this layer provides logical partitioning of networks subnetting scalability security and Quality of Service QoS The backbone of the Internet is built using Layer 3 functions IP is the premier Layer 3 protocol IP is itself only one protocol in the IP protocol suite More extensive capabilities are found in the other protocols of the IP suite For example the Domain Name System DNS associates IP addresses with text names the Dynamic Host Configuration Protocol DCHP eases the administration of IP addresses and routing protocols suc
159. rt at 100 of wire speed for 10Mbps speed Data forwarding rate 148 800 pps per port at 100 of wire speed for 100Mbps speed Data filtering rate eliminates all error packets runts etc at 14 880 pps per port at 100 of wire speed for 10Mbps speed Data filtering rate eliminates all error packets runts etc at 148 800 pps per port at 100 of wire speed for 100Mbps speed 8K active MAC address entry table per device with automatic learning and aging 10 to 1 000 000 seconds 64 MB packet buffer per device Supports Port Mirroring Supports Port Trunking 802 1D Spanning Tree support 802 1Q Tagged VLAN support up to 255 VLANs per device one VLAN is reserved for internal use GVRP GARP VLAN Registration Protocol support for dynamic VLAN registration 802 1p Priority support with 4 priority queues IGMP Snooping support Traffic Classification and Prioritization Based on 802 1p priority bits Four priority queues Management RS 232 console port for out of band network management via a console terminal or PC Fast Spanning Tree Algorithm Protocol for creation of alternative backup paths and prevention of network loops SNMP V1 V2C and V3 are supported Fully configurable in band control for SNMP based software Flash memory for software upgrades This can be done in band via TFTP or out of band via the console Built in SNMP management SNMP V2 MIB RFC 1907 Bridge MIB RFC 1493 D Link DE
160. s These cables are equipped with three prong plugs to help ensure proper grounding Do not use adapter plugs or remove the grounding prong from a cable If you must use an extension cable use a 3 wire cable with properly grounded plugs Observe extension cable and power strip ratings Make sure that the total ampere rating of all products plugged into the extension cable or power strip does not exceed 80 percent of the ampere ratings limit for the extension cable or power strip To help protect your system from sudden transient increases and decreases in electrical power use a surge suppressor line conditioner or uninterruptible power supply UPS Position system cables and power cables carefully route cables so that they cannot be stepped on or tripped over Be sure that nothing rests on any cables Do not modify power cables or plugs Consult a licensed electrician or your power company for site modifications Always follow your local national wiring rules When connecting or disconnecting power to hot pluggable power supplies if offered with your system observe the following guidelines Install the power supply before connecting the power cable to the power supply Unplug the power cable before removing the power supply If the system has multiple sources of power disconnect power from the system by unplugging all power cables from the power supplies Move products with care ensure that all casters and or stabilizers are
161. s 200000128 No No Disabled Disabled 47 LinkDown Yes 200000128 No No Disabled Disabled 48 LinkDown Yes 200000 128 No No Disabled Disabled 49 LinkDown Yes 200000128 No No Disabled Disabled 50 Link Down Yes 200000 128 No No Disabled Disabled Figure 6 20 STP Port Settings window 56 D Link DES 3250TG Standalone Layer 2 Switch In addition to setting Spanning Tree parameters for use on the switch level the switch allows for the configuration of a group of ports This STP Group will use the switch level parameters entered above with the addition of Port Priority and Port Cost The STP Group spanning tree works in the same way as the switch level spanning tree but the root bridge concept is replaced with a root port concept A root port is a port of the group that is elected on the basis of port priority and port cost to be the connection to the network for the group Redundant links will be blocked just as redundant links are blocked on the switch level The STP on the switch level blocks redundant links between switches and similar network devices The port level STP will block redundant links within the STP Group The following fields can be set Parameter Description From and To State lt Disabled gt Cost Priority Migration lt No gt Edge lt No gt Consecutive groups of ports may be configured starting with the selected port Toggle to enable STP on the selected ports A Port Cost can be
162. s rebooted Using Web Based Management Setting up Web Management Before running Web based management some basic configuration of the switch may need to be performed The following at a minimum must be configured or known for the switch to be managed e IP Address e Subnet Mask e Administrator password In addition several other parameters may need to be configured or known to properly communicate with the switch or allow full management capability These include e Default Gateway e Trap Destination and Community Name Configuration of these items may be made from the User Interface which is accessible via either the serial console or Telnet Refer to the User s Guide that came with your system for more information about the subsection describing the required configuration Setting an IP Address The IP address for the switch must be set before it can be managed with the Web based manager The switch IP address may be automatically set using BOOTP or DHCP protocols in which case the actual address assigned to the switch must be known The IP address may alternatively be set using the Command Line Interface CLI over the console serial port as follows 1 Starting at the command line prompt enter the commands config ipif System ipaddress XXX XXX XXX XXX yyy yyy yyy yyy Where the x s represent the IP address 38 D Link DES 3250TG Standalone Layer 2 Switch to be assigned to the IP interface named System and the y s
163. same VLAN regardless of where they are located physically on the network Logically a VLAN can be equated to a broadcast domain because broadcast packets are forwarded only to members of the VLAN on which the broadcast was initiated 18 D Link DES 3250TG Standalone Layer 2 Switch Notes About VLANs on the DES 3250TG 1 The DES 3250TG supports IEEE 802 1Q VLANs The port untagging function can be used to remove the 802 1Q tag from packet headers to maintain compatibility with devices that are tag unaware that is network devices that do not support IEEE 802 1Q VLANs or tagging The switch s default is to assign all ports to a single 802 1Q VLAN named default IEEE 802 1Q VLANs Some relevant terms Tagging The act of putting 802 1Q VLAN information into the header of a packet Untagging The act of stripping 802 1Q VLAN information out of the packet header Ingress port A port on a switch where packets are flowing into the switch and VLAN decisions must be made Egress port A port on a switch where packets are flowing out of the switch either to another switch or to an end station and tagging decisions must be made IEEE 802 1Q tagged VLANs are implemented on the DES 3250TG Layer 2 switch 802 1Q VLANs require tagging which enables the VLANs to span an entire network assuming all switches on the network are IEEE 802 1Q compliant Any port can be configured as either tagging or untagging The untagg
164. ssipation and air circulation system components might overheat which could lead to system failure Gigabit Combo Ports In addition to the 48 10 100 Mbps ports the Switch features two Gigabit Ethernet Combo ports These two ports are 1OOOBASE T copper ports provided and Mini GBIC ports optional See the diagram below to view the two Mini GBIC port modules being plugged into the Switch Please note that although these two front panel modules can be used simultaneously the ports must be different The GBIC port will always have the highest priority Figure 3 4 Mini GBIC modules plug in to the Switch D Link DES 3250TG Standalone Layer 2 Switch LED Indicators The LED indicators of the Switch include Power Console and Link Act The following shows the LED indicators for the Switch along with an explanation of each indicator D Figure 3 5 The LED Indicators e Power This indicator on the front panel should be lit during the Power On Self Test POST It will light green approximately 2 seconds after the switch is powered on to indicate the ready state of the device e Console This indicator is lit green when the switch is being managed via local console management through the RS 232 console port e Link Act These indicators are located to the left and right of each port They are lit when there is a secure connection or link to a device at any of the ports The LEDs blink whenever
165. stallations addresses with an APO or FPO Limited Warranty D Link warrants that the hardware portion of the D Link products described below will be free from material defects in workmanship and materials from the date of original retail purchase of the product for the period set forth below applicable to the product type Warranty Period except as otherwise stated herein 5 Year Limited Warranty for the Product s is defined as follows Hardware excluding power supplies and fans Five 5 Years Power Supplies and Fans Three 3 Year Spare parts and spare kits Ninety 90 days D Link s sole obligation shall be to repair or replace the defective Hardware during the Warranty Period at no charge to the original owner or to refund at D Link s sole discretion Such repair or replacement will be rendered by D Link at an Authorized D Link Service Office The replacement Hardware need not be new or have an identical make model or part D Link may in its sole discretion replace the defective Hardware or any part thereof with any reconditioned product that D Link reasonably determines is substantially equivalent or superior in all material respects to the defective Hardware Repaired or replacement Hardware will be warranted for the remainder of the original Warranty Period from the date of original retail purchase Ifa material defect is incapable of correction or if D Link determines in its sole discretion that it is not practical to repair
166. t hand frame 3 To stop the Web based manager simply close the Web browser application Web based Manager s User Interface The user interface provides access to various switch configuration and management screens allows you to view performance statistics and permits you to graphically monitor the system status 39 D Link DES 3250TG Standalone Layer 2 Switch Areas of the User Interface The figure below shows the user interface The user interface is divided into 3 distinct areas as described in the table DES 3250 Meresolt internet Explorer Be Edt View Fpotes Lodo Heb He gt DAD Usen roes Geor hy FS J TT Ta J Area 1 o gt em un Linor Tone red Figure 6 7 Main Web Manager window Area Function 1 Presents a graphical near real time image of the front panel of the switch This area displays the switch s ports and expansion modules showing port activity or duplex mode depending on the specified mode Various areas of the graphic can be selected for performing management functions including the ports expansion modules management module or the case 2 Allows the selection of commands 3 Presents switch information based on your selection and the entry of configuration data This section arranged by topic describes how to perform common monitoring and configuration tasks on the DES 3250TG switch using the Web based Manager you can perform any of the tasks described
167. t of the Web configuration program and return to the main page 120 D Link DES 3250TG Standalone Layer 2 Switch WARRANTY All countries and regions except USA Wichtige Sicherheitshinweise Bitte lesen Sie sich diese Hinweise sorgfaltig durch Heben Sie diese Anleitung f r den spatern Gebrauch auf Vor jedem Reinigen ist das Ger t vom Stromnetz zu trennen Vervenden Sie keine Fl ssig oder Aerosolreiniger Am besten dient ein angefeuchtetes Tuch zur Reinigung Um eine Besch digung des Ger tes zu vermeiden sollten Sie nur Zubeh rteile verwenden die vom Hersteller zugelassen sind Das Ger t is vor Feuchtigkeit zu sch tzen Bei der Aufstellung des Ger tes ist auf sichern Stand zu achten Ein Kippen oder Fallen k nnte Verletzungen hervorrufen Verwenden Sie nur sichere Standorte und beachten Sie die Aufstellhinweise des Herstellers 7 Die Bel ftungs ffnungen dienen zur Luftzirkulation die das Ger t vor berhitzung sch tzt Sorgen Sie daf r da diese ffnungen nicht abgedeckt werden 8 Beachten Sie beim Anschlu an das Stromnetz die Anschlufwerte 9 Die Netzanschlufisteckdose mu aus Gr nden der elektrischen Sicherheit einen Schutzleiterkontakt haben O Verlegen Sie die Netzanschlufleitung so da niemand dar ber fallen kann Es sollete auch nichts auf der Leitung abgestellt werden Alle Hinweise und Warnungen die sich am Ger ten befinden sind zu beachten 2 Wird das Ger t ber einen l ngeren Zeitra
168. t the desired setting between Is and 60s where s stands for seconds The default value is one second Select number of times the Switch will be polled between 20 and 200 The default value is 20 Counts otherwise valid frames that did not end on a byte octet boundary The number of frames detected that are less than the minimum permitted frame size of 64 bytes and have a good CRC Undersize frames usually indicate collision fragments a normal network occurrence Counts packets received that were longer than 1518 octets or if a VLAN frame 1522 octets and less than the MAX _PKT_LEN Internally MAX_PKT_LEN is equal to 1522 The number of packets less than 64 bytes with either bad framing or an invalid CRC These are normally the result of collisions The number of frames with lengths more than the MAX_PKT_LEN bytes Internally MAX_PKT_LEN is equal to 1522 The number of frames that are dropped by this port since the last Switch reboot Check whether or not to display CrcError UnderSize OverSize Fragment Jabber and Drop errors Clicking this button clears all statistics counters on this window Clicking this button instructs the Switch to display a table rather than a line graph Clicking this button instructs the Switch to display a line graph rather than a table 107 D Link DES 3250TG Standalone Layer 2 Switch Transmitted TX Clear ler Table 1000 De ExDefer 900 800 L
169. th State The Authenticator State will display one of the following Initialize Disconnected Connecting Authenticating Authenticated Aborting Held ForceAuth ForceUnauth and N A BackendState The Backend State will display one of the following Request Response Success Fail Timeout Idle Initialize and N A Oper Dir The Operational Controlled Directions are both and in PortStatus The status of the controlled port can be authorized unauthorized or N A 89 D Link DES 3250TG Standalone Layer 2 Switch RADIUS Server The RADIUS feature of the switch allows you to facilitate centralized user administration as well as providing protection against a sniffing active hacker The Web Manager offers three windows Click Radius Server on the PAE Access Entity folder on the Configuration menu to open the Radius Server Authentication Setting window Radius Server Authentication Setting ini _ _ _ a a RI Key fo Confirm Key iY Apply Succession IP Auth Port Acct Port re a Index Address Number Number ES y 0 First 0 0 0 0 0 Second 0 0 0 0 0 0 Third 0 0 0 0 0 0 Figure 6 52 Radius Server Authentication Setting window This window displays the following information Parameter Description Succession lt First gt Choose the desired RADIUS server to configure First Second or Third Radius Server Set the RADIUS server IP lt 0 0 0 0 gt Authentic Port lt 0 gt Set t
170. to connect to the server must know the TCP port number in order to send commands The FTP Server can use any TCP port number to send the file so long as it is sent as part of the connection setup A TCP connection is then described by a set of four numbers the IP address and TCP port number for the local computer and the IP address and TCP port number for the remote computer The IP address is in the IP header and the TCP port number is in the TCP header No two TCP connection can have the same set of numbers but only one number needs to be different It is possible for example for two users to send files to the same destination at the same time This could give the following connection numbers Internet addresses TCP ports Connection 1 10 42 73 23 10 128 12 1 1234 21 Connection 2 10 42 73 23 10 128 12 1 1235 21 The same computers are making the connections so the IP addresses are the same Both computers are using the same well known TCP port for the FTP server The local FTP clients are using different TCP port numbers FTP transfers actually involve two different connections The connection begins by the FTP sending commands to send a particular file Once the commands are sent a second connection is opened for the actual data transfer Although it is possible to send data on the same connection it is very convenient for the FTP client to be able to continue to send commands such as stop sending this file UDP and ICM
171. ts are assigned the PVID of the port on which they were received Forwarding decisions are based upon this PVID insofar as VLANs are concerned Tagged packets are forwarded according to the VID contained within the tag Tagged packets are also assigned a PVID but the PVID is not used to make packet forwarding decisions the VID is Tag aware switches must keep a table to relate PVIDs within the switch to VIDs on the network The switch will compare the VID of a packet to be transmitted to the VID of the port that is to transmit the packet If the two VIDs are different the switch will drop the packet Because of the existence of the PVID for untagged packets and the VID for tagged packets tag aware and tag unaware network devices can coexist on the same network A switch port can have only one PVID but can have as many VIDs as the switch has memory in its VLAN table to store them Because some devices on a network may be tag unaware a decision must be made at each port on a tag aware device before packets are transmitted should the packet to be transmitted have a tag or 21 D Link DES 3250TG Standalone Layer 2 Switch not If the transmitting port is connected to a tag unaware device the packet should be untagged If the transmitting port is connected to a tag aware device the packet should be tagged Tagging and Untagging Every port on an 802 1Q compliant switch can be configured as tagging or untagging Ports with tagging enabled
172. u use a third party vendors SNMP software to manage the Switch a diskette listing the Switch s propriety enterprise MIBs can be obtained by request If your software provides functions to browse or modify MIBs you can also get the MIB values and change them if the MIBs attributes permit the write operation This process however can be quite involved since you must know the MIB OIDs and retrieve them one by one 15 D Link DES 3250TG Standalone Layer 2 Switch Packet Forwarding The Switch enters the relationship between destination MAC addresses and the Ethernet port the destination resides on into its forwarding table This information is then used to forward packets This reduces broadcast storms on the network because packets instead of being transmitted to all ports are transmitted to the destination port only Example if Port 1 receives a packet destined for a station on Port 2 the Switch transmits that packet through Port 2 only and transmits nothing through the other ports This process is referred to as learning the network topology MAC Address Aging Time The Aging Time affects the learning process of the Switch Dynamic forwarding table entries which are made up of the source MAC addresses and their associated port numbers are deleted from the table if they are not accessed within the aging time The aging time can be from 10 to 1 000 000 seconds with a default value of 300 seconds A very long aging time can
173. um nicht benutzt sollten Sie es vom Stromnetz trennen Somit wird im Falle einer Uberspannung eine Besch digung vermieden 3 Durch die L ftungs ffnungen d rfen niemals Gegenst nde oder Fl ssigkeiten in das Ger t gelangen Dies k nnte einen Brand bzw Elektrischen Schlag ausl sen 4 ffnen Sie niemals das Ger t Das Ger t darf aus Gr nden der elektrischen Sicherheit nur von authorisiertem Servicepersonal ge ffnet werden 5 Wenn folgende Situationen auftreten ist das Ger t vom Stromnetz zu trennen und von einer qualifizierten Servicestelle zu berpr fen a Netzkabel oder Netzstecker sint besch digt b Fl ssigkeit ist in das Ger t eingedrungen c Das Ger t war Feuchtigkeit ausgesetzt d Wenn das Ger t nicht der Bedienungsanleitung ensprechend funktioniert oder Sie mit Hilfe dieser Anleitung keine Verbesserung erzielen e Das Ger t ist gefallen und oder das Geh use ist besch digt f Wenn das Ger t deutliche Anzeichen eines Defektes aufweist 16 Bei Reparaturen d rfen nur Orginalersatzteile bzw den Orginalteilen entsprechende Teile verwendet werden Der Einsatz von ungeeigneten Ersatzteilen kann eine weitere Besch digung hervorrufen 17 Wenden Sie sich mit allen Fragen die Service und Repartur betreffen an Ihren Servicepartner Somit stellen Sie die Betriebssicherheit des Ger tes sicher 18 Zum Netzanschluf dieses Ger tes ist eine gepr fte Leitung zu verwenden F r einen Nennstrom bis 6A und einem Ge
174. ware to perform the file transfer TFTP server software is a part of many network management software packages such as NetSight or can be obtained as a separate program Use the Save Changes from the Maintenance menu to enter the address into NV RAM Click Start to initiate the file transfer Download Settings from TFTP Server To download a configuration file for the switch s click on the Maintenance folder and then the TFTP Services folder and finally click on the Download Settings from TFTP Server link Server IP Address 0 0 0 0 Fie Name Start Figure 6 88 Download Settings from TFTP Server window Enter the IP address of the TFTP server and specify the location of the switch configuration file on the TFTP server and click Start to initiate the file transfer Upload Settings to TFTP Server To download a configuration file for the switch click on the Maintenance menu and then the TFTP Services folder and finally click on the Upload Settings to TFTP Server link Server IP Address 0 0 0 0 Fleane Start Figure 6 89 Upload Settings to TFTP Server window Enter the IP address of the TFTP server and the path and filename of the settings file on the TFTP server and click Start to initiate the file transfer 116 D Link DES 3250TG Standalone Layer 2 Switch Upload Log to TFTP Server To upload the history log for the switch click on the Maintenance folder the TFTP Services folder and then click
175. work In this view Layer 2 represents switching and Layer 3 represents routing Protocol layering is actually a set of guidelines used in writing programs and designing hardware that delegate network functions and allow the layers to communicate How these layers communicate within a stack for example within a given computer is left to the operating system programmers 27 D Link DES 3250TG Standalone Layer 2 Switch Stack 1 Stack 2 Figure 5 7 The Protocol Stack Between two protocol stacks members of the same layer are known as peers and communicate by well known open and published protocols Within a protocol stack adjacent layers communicate by an internal interface This interface is usually not publicly documented and is frequently proprietary It has some of the same characteristics of a protocol and two stacks from the same software vendor may communicate in the same way Two stacks from different software vendors or different products from the same vendor may communicate in completely different ways As long as peers can communicate and interoperate this has no impact on the functioning of the network The communication between layers within a given protocol stack can be both different from a second stack and proprietary but communication between peers on the same OSI layer is open and consistent A brief description of the most commonly used functional layers is helpful to understand the scope of how protocol layering wo
Download Pdf Manuals
Related Search