When you connect to the management mode of the switch with a web browser, a login screen is displayed (if password protection has been enabled). The user name is always root. Enter the password to access the switch's management mode.
NOTE: The default password is switch.
You can manage a stack of up to six units through the web interface. On most pages, you must select the unit in the stack you want to see in the web interface. Where space permits, all six units of the stack are displayed, but only those units that are actually present in the stack are active; the units not used are grayed out.
The following menus are available from the web interface:
The Home page describes the dynamic switch applet.
NOTE: If the system is
used in a stack
configuration, the arrow
keys on the left side of the
applet allow you to select
a unit in the stack. The
dynamic applet will
display the status for the
selected unit.
In the IP Settings page, you can manage the IP related information about the system. The page includes the following editable fields:
IP address
Gateway address
Network mask
IP Assignment Mode — Sets whether IP functionality is enabled through manual (static) configuration or set by Dynamic Host Configuration Protocol (DHCP) or Boot Protocol (BootP).
Manual — Sets static IP address.
BootP — Gets IP address from a BootP server.
DHCP — Gets IP address from a DHCP server.
To save any changes you make in this page for the current session, click Apply. To reset these fields to their current value, click Reload.
For IP address changes to take effect, perform the following steps:
From the Save Configuration page, save your changes beyond the
current session.
Reboot the system from the System Manager/Reset page.
From the Firmware Upgrade page, you can configure the system to download a new version of the management software. You can also set the system to use the new software without overwriting the previous version. See "Software Upgrades" for more information about this process.
The Firmware Upgrade page contains the following information:
Current Hardware Version
Current Boot ROM Version
Current Software Version
It also contains the following editable fields:
Next Boot from — to indicate the location of the software version you want to run. The following options are available:
Net option — This is the default setting. Use this option to try out a new version of the software before upgrading. This option runs the software from an internet location you specify. You must also complete the TFTP Server IP Address and TFTP Path/Filename fields.
Net & save option — This option overwrites the current version of the software with the downloaded file. You must also complete the TFTP Server IP Address and TFTP Path/Filename fields.
Last Saved option — This option automatically shows up after the Net & save option is selected and the system is reset.
TFTP Server IP Address — to indicate the server from which the system must retrieve the new version of the software resides.
TFTP Path/Filename — to indicate the path and name of the software file to download.
NOTICE: For changes to persist beyond the current session, you must save the
new configuration from the Save Configuration page. You must reboot the
system from the System Manager/Reset page to start the firmware upgrade.
To save the switch's current configuration file to a server, supply the TFTP server IP address and configuration filename, and then select Transfer Configuration File to Server. To load a configuration file from a server, supply the TPTP server IP address and configuration filename, and then select Transfer Configuration File from Server.
To restore the preinstalled configuration, select Restore.
TFTP Server IP Address — Inserts the TFTP Server IP Address to save or load.
TFTP Path/Configuration Filename — Inserts the TFTP Path and configuration filename to save or load.
Transfer Configuration File to Server— Saves the switch configuration file to a server.
Transfer Configuration File from Server — Loads a configuration file from a server to the switch.
On this page, you can view and edit port parameters. For each port number listed under the Port column, you can change the following parameters listed by column name on the screen:
Name — Indicates a user-defined label for the port.
Link — Indicates the status of the link: Up or Down.
Admin Enabled — Allows the network administrator to manually disable a port.
State — Describes the state of the port as determined by the Spanning Tree Protocol.
Operating Parameters — Allows automatic or manual selection of port speed and duplex mode.
Flow Control Enabled — Allows automatic or manual selection of support for flow control.
From the Static Addresses page, you can specify the Media Access Control (MAC) address and port number of systems that are to remain available to the switch for an indeterminate amount of time.
The following options are available:
MAC Address — to enter the MAC address of a system you want to set as static.
Port Selection — to select the port associated with that system.
List box—lists all static addresses.
Add — adds any address when you select it from the list box and click the Add button.
Remove — removes any address when you select it from the list box and click the Remove button.
To save any changes you make in this page for the current session, click Apply. To reset these fields to their current value, click Reload.
The Dynamic Address lookup table allows you to view the MAC addresses that are currently in the address database. When addresses are in the database, the packets intended for those addresses are forwarded directly to those ports. You can filter out the table by port, VLAN, and MAC address by checking those fields.
Dynamic MAC address learning is enabled by default. This is the standard mode for a network switch. In some networks, the administrator may want to create a secured network by disabling the dynamic address learning capabilities. When this is done, all current dynamic address entries will be locked in. These addresses will not age out and new addresses will not be learned.
In addition, if a new address is detected on a port, the switch will disable the port with the new address, save the current settings to NVRAM, and send out a Simple Network Management Protocol (SNMP) trap warning. This feature is used to block computers that were not on the network before the lockdown from attempting to access the network. Once a port is automatically disabled, the administrator can reenable the port manually. The NVRAM will only be saved the first time a given port detects a new address. The aging time should be raised before disabling the dynamic address learning to provide enough time for the switch to learn all current MAC addresses without the possibility of aging out.
This page contains the following options by which to query the dynamic MAC address table:
Port — check the option box and select a port from the drop-down list.
VLAN ID — check the option box and type the appropriate VLAN ID.
MAC Address — check the option box and select the address from the list box provided.
Query button — click this button to execute the query once you have selected the criteria for the query.
Dynamic Address Learning — Enable or disable dynamic address learning.
In the Port Settings page, you can specify spanning tree parameters for each port. This page is in a table format. For each port number listed under the Port column, the following fields are available:
Priority — Priority assigned to this port for the Spanning Tree Protocol (0 - 255). A port with a higher priority is less likely to be blocked if the Spanning Tree Protocol is detecting network loops. Low numeric value indicates a high priority.
Cost — Cost assigned to this port for the Spanning Tree Protocol (1- 65536). A port with a lower cost is less likely to be blocked if the Spanning Tree Protocol is detecting network loops.
Fast Link — Fast Link immediately enables the port in forwarding state when a link comes up. The port is not part of the Spanning Tree at that time, but will participate in future Spanning Tree Resolutions.
NOTE: This option is useful if a device is connected to a port that
requires network access immediately when the link comes up and cannot
wait for a Spanning Tree resolution.
In the Membership page, you define VLAN groups. The following options are available:
Show VLAN — Select the VLAN for which you want to edit the membership setting.
Name — User-defined name of the VLAN
VLAN ID — Numeric ID of the VLAN (1 - 4094)
Remove VLAN checkbox — Check this box to remove an existing VLAN
Port Toggle Buttons — Select VLAN membership for each port by toggling the value of the port button:
<U>: Port is a member of the VLAN. All packets transmitted by the port will be untagged, that is, not carry a tag and therefore not carry VLAN or CoS information.
<T>: Port is a member of the VLAN. All packets transmitted by the port will be tagged, that is, carry a tag and therefore carry VLAN or CoS information.
<BLANK>: Port is not a member of the VLAN. Packets associated with this VLAN will not be transmitted by the port.
The VLAN tagging option is a standard set by the IEEE to facilitate the spanning of VLANs across multiple switches. For more information, see the "Appendix" and IEEE Std 802.1Q-1998 Virtual Bridged Local Area Networks.
To save any changes you make in this page, click Apply. To reset these fields to their current value, click Reload.
The following tasks can be completed from this page:
In the Default Port VLAN page, you can specify the default port VLAN ID (PVID) for each port on your switch. All untagged packets entering the switch are tagged by default with the ID specified by the port's PVID.
This page is set up in a table format. For each port listed in the Port column, you can type a PVID in the PVID column.
Port Priority allows the user to specify which ports have greater precedence in situations where traffic may be buffered in the switch due to congestion. The ports with a setting of "high" will transmit their packets before those with a "normal" setting. The settings on this page only affect ingress packets that are not already tagged for priority. To raise the priority of a given port, switch the port's setting from "normal" to "high." The default and normal setting for a port is "normal."
In the Default Port CoS page, you can specify the priority for each port on your switch.
DiffServ — You can change the default ToS priority by selecting Normal Priority or High Priority for each class of services. This setting leverages the IETF definition of the IPv4 Type of Service (ToS) octet in the IP packet-header by using the Differentiated Services Code.
Point (DSCP) field (6 bits) classifies packets into any of the 64 possible classes.
In the Port Trunking page, you can create multiple links between switches that work as one virtual, aggregate link. You can create four trunks at a time, with each trunk containing up to eight ports. Only ports of the same speed can belong to a single trunk: 10/100 Fast Ethernet ports and Gigabit Ethernet ports cannot be in the same trunk.
NOTICE: Fast Ethernet trunks can only include ports from a single eight-port
cluster: Ports 1 to 8, ports 9 to 16, or ports 17 to 24.
NOTICE: Built-in 10/100/1000BASE-T ports cannot be trunked with GBIC
ports.
To add a port to a trunk, click the toggle button below the port number until the correct trunk number appears.
NOTICE: All ports participating in a trunk must be operating in Full Duplex
mode.
NOTICE: All ports participating in a trunk should have the same VLAN and
CoS settings.
To save any changes you make in this page, click Apply. To reset these fields to their current value, click Reload.
From the Port Mirroring page, you can enable or disable port mirroring. You can also set the source port and monitor ports. Port mirroring helps you debug a network.
The following options are available:
Port Mirroring — Enables or disables port mirroring.
Source Port — Port from which all traffic will be mirrored to the monitor port.
Monitor Port — Port that receives a copy of all traffic that the source port receives.
To save any changes you make in this page for the current session, click Apply. To reset these fields to their current value, click Reload.
From the SNMP Host Table page, you can add and remove hosts from access rights that have been granted to community groups. The permissions GET, SET, and TRAP are assigned to a community name and then these permissions are assigned to individual machines by adding those machines and their IP address to the appropriate community string. Host authorization can be enabled or disabled.
If the host authorization is disabled (the default setting), the switch allows any SNMP manager to access the switch. If the host authorization is enabled, the administrator can specify up to 16 SNMP managers on the host table
that can access the switch.
You must enable host authorization before you can use the host table. Host authorization is a security feature to limit people who are not listed in the host table from accessing the switch.
Once you have enabled host authorization, you must add the host to this table through the console port connection. Otherwise, the switch cannot access the end station using SNMP.
The following fields are available:
Host Name — User-defined name of the SNMP host.
Host IP Address — IP address of the SNMP host authorized to communicate with the switch via SNMP.
Community — Community name of the SNMP community that the host is a member of.
NOTE: The
community name
specified here must exist
in the switch's SNMP
Community Table.
With IGMP (Internet Group Management Protocol) Snooping, you can configure the switch to forward multicast traffic intelligently. Based on the IGMP query and report messages, the switch forwards traffic only to the ports that request multicast traffic. This prevents the switch from broadcasting the traffic to all ports and possibly disrupting network performance.
NOTE: IGMP requires a
router that learns about
the presence of multicast
groups on its subnets and
keeps track of group
membership.
The IGMP option can be set as follows:
Enabled — The system detects IGMP queries and report packets and manages IP multicast traffic through the switch.
Disabled — The switch forwards traffic and ignores any IGMP requests.
NOTICE: Enabling high-priority optimization can effectively disable flow-
control for normal-priority packets.
The High-Priority Optimization setting implements a priority-based head-of-line blocking prevention algorithm in the system. This algorithm ensures that in the case of traffic congestion, normal priority packets do not hold up high priority packets.
NOTE: Enabling high
priority optimization can
improve overall system
performance for networks
with time-sensitive,
prioritized traffic, for
example, the traffic
associated with
multimedia streaming,
teleconferencing, or
telephony applications.
From the Statistics page, you can chart a variety of system data. You can see the value of each bar or line in the chart by clicking on the bar. For each chart, after you have set all the variables, click Draw.
NOTE: Rates are
displayed as counts per
second. Counters are
cumulative from the last
time the system was
booted.
The following sections describe each type of chart.
The History Chart charts one type of statistic for any combination of ports. The chart presents data across a set time period so that you can monitor fluctuations over time.
Statistics — The type of system data to monitor
Refresh Rate — The time interval between automatic refreshes
The Utilization Summary page allows you to view (by port) the link status; percent utilization; and ratios of incoming unicast, nonunicast, and error packets.
Click the Refresh button to refresh the Utilization Summary page.
