- DL manuals
- D-Link
- Switch
- xStack DGS-3400 Series
- Reference Manual
D-Link xStack DGS-3400 Series Reference Manual - Port Error Disabled
xStack
®
DGS-3400 Series Layer 2 Gigabit Ethernet Managed Sw itch
28
Speed/Duplex
Use the Speed/Duplexpull-down menu to select the speed and duplex/half-duplex state of the
port. Auto denotes auto-negotiation between 10 and 1000 Mbps devices, in full- or half-duplex.
The Auto setting allows the port to automatically determine the fastest settings the device the
port is connected to can handle, and then to use those settings. Options are Auto, 10M/Half,
10M/Full, 100M/Half, 100M/Full, 1000M/Full_Master and 1000M/Full_Slave, and 1000M/Full.
There is no automatic adjustment of port settings with any option other than Auto.
The Switch allows the user to configure two types of gigabit connections; 1000M/Full_Master
and 1000M/Full_Slave. Gigabit connections only support full duplex connections and take on
certain characteristics that are different from the other choices listed.
The 1000M/Full_Master and 1000M/Full_Slave parameters refer to connections running a
1000BASE-T cable for connection between the Switch port and other device capable of a
gigabit connection. The mastersetting (1000M/Full_Master) will allow the port to advertise
capabilities related to duplex, speed and physical layer type. The mastersetting will also
determine the master and slave relationship between the two connected physical layers. This
relationship is necessary for establishing the timing control between the two physical layers.
The timing control is set on a masterphysical layer by a local source. The slavesetting
(1000M/Full_Slave) uses loop timing, where the timing comes form a data stream received
from the master. If one connection is set for 1000M/Full_Master, the other side of the
connection must be set for 1000M/Full_Slave. Any other configuration will result in a link down
status for both ports.
Capability
Advertised
The speed and duplex capability are advertised during auto negotiation. If the speed of a port
is set to auto, this defines the speed and duplex that the port can be supported. The partner
can determine the speed and duplex according to the information.
Auto
Negotiation
Tick the check box to restart auto negotiation.
Click Apply to implement the new settings on the Switch.
Port Error Disabled
The following window will display the information about ports that have had their connection status disabled, for reasons such as
STP loopback detection or link down status.
To view this window, click Administration > Port Configuration > Port Error Disabled, as shown below.
Figure 2 - 15 Port Error Disabled window
The following parameters are displayed:
Parameter
Description
Port
Displays the port that has been error disabled.
State
Describes the current running state of the port, whether Enabled or Disabled.
Connection
This field will read the uplink status of the individual ports, whether Enabled or Disabled.
Reason
Describes the reason why the port has been error-disabled, such as a STP loopback
occurrence.
Summary of xStack DGS-3400 Series
Page 1
Xstack ® dgs-3400 series layer 2 managed gigabit ethernet sw itch i web ui reference guide product model: xstack ® dgs-3400 series layer 2+ managed gigabit ethernet switch release 3.0
Page 2
Xstack ® dgs-3400 series layer 2 managed gigabit ethernet sw itch ii _____________________________________________ information in this document is subject to change without notice. © 2012 d-link corporation. All rights reserved. Reproduction in any manner whatsoever without the written permission of...
Page 3: Table Of Contents
Iii table of contents intended readers ......................................................................................................................................................................... Xiii typographical conventions ...............................................................
Page 4
Iv port media type ........................................................................................................................................................................................... 31 cable diagnostics ...........................................................................
Page 5
V ipv6 static/default route settings ................................................................................................................................................................ 64 route preference settings ............................................................................
Page 6
Vi dns resolver dynamic name server table .............................................................................................................................................. 102 dns resolver static host name settings ...........................................................................
Page 7
Vii vlan description ................................................................................................................................................................................. 151 notes about vlans on the dgs-3400 series ...........................................................
Page 8
Viii 802.1d-2004 rapid spanning tree ....................................................................................................................................................... 196 port transition states .......................................................................................
Page 9
Ix schedule settings ....................................................................................................................................................................... 248 qos output scheduling settings ...............................................................................
Page 10
X authentication server group ...................................................................................................................................................................... 335 authentication server host ...........................................................................
Page 11
Xi received (rx) ............................................................................................................................................................................................ 379 umb cast (rx) ...............................................................................
Page 12
Xii mitigating arp spoofing attacks using packet content acl .................................................................................................................. 411 appendix b ................................................................................................................
Page 13: Intended Readers
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch xiii intended readers the xstack ® dgs-3400 series user manual contains information for setup and management of the switch. This manual is intended for network managers familiar with network management concepts and terminology. Typogr...
Page 14: Section 1
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 1 section 1 web-based switch configuration introduction logging in to the web manager web-based user interface web pages introduction all software functions of the xstack ® dgs-3400 switch series can be managed, configured and monitor...
Page 15: Web-Based User Interface
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 2 figure 1 - 1 enter network password dialog box leave both the user name field and the passwordfield blank and click ok. This will open the web-based user interface. The switch management features available in the web-based manager a...
Page 16
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 3 figure 1- 2 main web-manager window area function area 1 select the menu or window to display. Open folders and click the hyperlinked menu buttons and subfolders contained within them to display menus. Click the d-link logo to go to...
Page 17: Web Pages
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 4 web pages when connecting to the management mode of the switch with a web browser, a login screen is displayed. Enter a user name and password to access the switch's management mode. Below is a list of the main folders available in ...
Page 18: Section 2
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 5 section 2 administration dgs-3400 web management tool ip address interface settings stacking port configuration user accounts password encryption mirror system log system severity settings command logging settings sntp settings mac ...
Page 19: Device Information
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 6 poe sflow ip multicast vlan replication single ip management (sim) overview rip ip tunnel settings device information figure 2 - 1 device information window the device information window contains the main settings for all major func...
Page 20
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 7 device information window configurable parameters include those described in the table below. Parameter description system name enter a system name for the switch, if so desired. This name will identify it in the switch network. Sys...
Page 21: Ipv6
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 8 authorization parameters configured. Auth protocol the user may use the pull-down menu to choose between radius eap and local for the 802.1x authentication protocol on the switch. The default setting is radius eap. 802.1x authen net...
Page 22
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 9 anycast address has been added, which will send packets to the closest node which is a part of a group of nodes, thereby eliminating a specified device for a particular group. Simplifying the packet header – the ipv6 packet header h...
Page 23: Packet Format
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 10 packet format as in ipv4, the ipv6 packet consists of the packet header and the payload, but the difference occurs in the packet header which has been amended and improved for better packet flow and processing. The following will o...
Page 24: Extension Headers
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 11 extension headers extension headers are used to identify optional parameters regarding ipv6 packets such as routing, fragmentation of packets or authentication parameters. The types of extension headers supported are hop-by-hop, ro...
Page 25: Types
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 12 0-9 (ex. 136.145.225.121). Now in ipv6, the format of the address resembles xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx where a set of xxxx represents a 16-bit hexadecimal value (ex. 2d83:0c76:3140:0000:0000:020c:417a:3214). Although t...
Page 26: Icmpv6
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 13 the second type of special address is the loopback address which is represented by 0:0:0:0:0:0:0:1, or ::1 in its compressed form. It is akin to the 127.0.0.1 address in ipv4 and is used in troubleshooting and testing ip stacks. Th...
Page 27: Assigning Ip Addresses
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 14 4. The address is unreachable (code 3) 5. The port is unreachable (code 4) duplicate address detection (dad) dad messages are used to specify that there is more than one node on a local link possessing the same ip address. Ipv6 add...
Page 28: Ip Address
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 15 sales 5 10.160.0.0 10.160.0.1 backbone 6 10.192.0.0 10.192.0.1 table 2- 2 vlan example – assigned ip interfaces the six ip interfaces, each with an ip address (listed in the table above), and a subnet mask of 255.224.0.0 can be ent...
Page 29
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 16 use the get ip from: pull-down menu to choose from bootp or dhcp. This selects the method the switch assigns an ip address on the next reboot. The following fields can be set or modified: parameter description bootp the switch will...
Page 30: Interface Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 17 • alternatively, the user can enter config ipif system ipaddress xxx.Xxx.Xxx.Xxx/z. Where the x's represent the ip address to be assigned to the ip interface named system and the z represents the corresponding number of subnets in ...
Page 31
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 18 figure 2 - 5 ipv4 interface settings - edit window enter a name for the new interface to be added in the interface name field (if editing an ip interface, the interface name will already be in the top field as seen in the window ab...
Page 32: Ipv6 Interface Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 19 note: the switch's factory default ip address is 10.90.90.90 with a subnet mask of 255.0.0.0 and a default gateway of 0.0.0.0. Ipv6 interface settings this window is used to set up ipv6 interfaces and addresses for the switch. To v...
Page 33
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 20 figure 2 - 8 ipv6 interface settings - edit window the following fields may be viewed or modified. Parameter description interface name this field displays the name for the ip interface, or it is used to add a new interface. The de...
Page 34
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 21 vlan name this field states the vlan name directly associated with this interface. Dhcpv6 client state use the pull-down menu to enable or disable the dhcpv6 client state of the interface. Ipv6 address use this field to set a globa...
Page 35: Stacking
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 22 ra managed flag use the pull-down menu to enable or disable the managed flag. When enabled, this will trigger the router to use a stateful autoconfiguration process to get both global and link- local ipv6 addresses for the switch. ...
Page 36
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 23 figure 2 - 9 switches stacked in a duplex ring figure 2 - 10 switches stacked in a duplex chain within each of these topologies, each switch plays a role in the switch stack. These roles can be set by the user per individual switch...
Page 37: Stack Switch Swapping
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 24 once switches have been assembled in the topology desired by the user and powered on, the stack will undergo three processes until it reaches a functioning state. Initialization state – this is the first state of the stack, where t...
Page 38: Stacking Mode Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 25 stacking mode settings to begin the stacking process, users must first enable this device for stacking by using the stacking mode settings window. To view this window, click administration > stacking > mode settings, as shown below...
Page 39: Port Configuration
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 26 new box id the new box id of the selected switch in the stack that was selected in the current box id field. The user may choose any number between 1 and 12 to identify the switch in the switch stack. Auto will automatically assign...
Page 40: Port Configuration
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 27 port configuration figure 2 - 14 port configuration window the following parameters can be configured: parameter description unit select the unit to configure. From / to these two fields are use to select a port or range of ports. ...
Page 41: Port Error Disabled
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 28 speed/duplex use the speed/duplexpull-down menu to select the speed and duplex/half-duplex state of the port. Auto denotes auto-negotiation between 10 and 1000 mbps devices, in full- or half-duplex. The auto setting allows the port...
Page 42: Port Description
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 29 port description figure 2 - 16 port description window the following parameters can be configured: parameter description unit select the unit to configure. From / to these two fields are use to select a port or range of ports. Medi...
Page 43: Port Details
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 30 figure 2 - 17 port auto negotiation information table window port details this window is used to view detailed port information for individual ports on a particular unit. Use the drop-down menus to select the specific port of the u...
Page 44: Port Media Type
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 31 figure 2 - 18 port details window port media type this window is used to display the port media type available on each unit. To view a particular switch in the stack use the drop- down menu to select the unit..
Page 45: Cable Diagnostics
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 32 to view this window, click administration > port configuration > port media type,as shown below. Figure 2 - 19 port media type window cable diagnostics this window is used to control the cable diagnostics and determine where and wh...
Page 46: Ddm
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 33 to view this window, click administration > port configuration > cable diagnostics, as shown below. Figure 2 - 20 cable diagnostics window ddm this folder contains windows that perform digital diagnostic monitoring (ddm) functions ...
Page 47
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 34 figure 2 - 21 ddm settings window the following parameters can be configured: parameter description trap state specify whether to send the trap, when the operating parameter exceeds the alarm or warning threshold. Log state specify...
Page 48
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 35 figure 2 - 22 ddm temperature threshold settings window the following parameters can be configured: parameter description unit select the unit to configure. From / to select a range of ports to be configured. High alarm (-128- 127....
Page 49
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 36 figure 2 - 23 ddm voltage threshold settings window the following parameters can be configured: parameter description unit select the unit to configure. From / to select a range of ports to be configured. High alarm (0- 6.55) this ...
Page 50
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 37 figure 2 - 24 ddm bias current threshold settings window the following parameters can be configured: parameter description unit select the unit to configure. From / to select a range of ports to be configured. High alarm (0-131) th...
Page 51
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 38 figure 2 - 25 ddm tx powerthreshold settings window the following parameters can be configured: parameter description unit select the unit to configure. From / to select a range of ports to be configured. High alarm (0- 6.5535) thi...
Page 52: Ddm Status Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 39 figure 2 - 26 ddm tx powerthreshold settings window the following parameters can be configured: parameter description unit select the unit to configure. From / to select a range of ports to be configured. High alarm (0- 6.5535) thi...
Page 53: User Accounts
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 40 figure 2 - 27 ddm status table window user accounts use the user account management window to control user privileges, create new users and view existing user accounts. To view this window, click administration > user accounts, as ...
Page 54: Password Encryption
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 41 user name enter a name for the account, or display the name of the selected account. Old password enter the original password of the existing account. New password enter a new password for the account. Confirm new password retype t...
Page 55: Port Mirror Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 42 figure 2 - 32 port mirror global settings window the following parameters can be configured: parameter description porting mirror global state use the pull-down menu to enable or disable the port mirror status. Click apply to imple...
Page 56
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 43 figure 2 - 35 port mirroring - edit window the following parameters are displayed or can be configured: parameter description group id (1-4) enter or display the group id this entry belongs to. Target port tick the check box and en...
Page 57: System Log
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 44 mirroring within the switch stack users may configure mirroring between switches in the switch stack but certain conditions and restrictions apply. 1. When mirroring is configured in the stack, the primary master and the backup mas...
Page 58
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 45 figure 2 - 38 configure system log server - edit window the following parameters are displayed or can be configured: parameter description index(1-4) system log server settings index (1-4). Server ip the ipv4 address of the system ...
Page 59
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 46 system log save mode settings this window may be used to choose a method for which to save the switch log to the flash memory on the switch. To view this window, click administration > system log > system log save mode settings,as ...
Page 60: System Severity Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 47 system severity settings the switch can be configured to allow alerts be logged or sent as a trap to an snmp agent or both. The level at which the alert triggers either a log entry or a trap message can be set as well. Use this win...
Page 61: Sntp Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 48 figure 2 - 42 command logging settings window note: when the switch is under the booting procedure, all configuration commands will not be logged. When the user uses aaa authentication to logged in, the user name should not be chan...
Page 62: Time Zone And Dst
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 49 time settings - current time system boot time displays the time when the switch was initially started for this session. Current time displays the current time. Time source displays the time source for the system. Sntp settings sntp...
Page 63
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 50 figure 2 - 44 time zone and dst settings window the following parameters can be set: parameter description time zone and dst daylight saving time state use this pull-down menu to enable or disable the dst settings. Daylight saving ...
Page 64
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 51 from: month enter the month dst will start on. From: time in hh mm enter the time of day that dst will start on. To: which week enter the week of the month the dst will end. To: day of week enter the day of the week that dst will e...
Page 65: Mac Notification Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 52 mac notification settings figure 2 - 45 new mac notification global settings window mac notification is used to monitor mac addresses learned and entered into the forwarding database. To view this window, click administration > mac...
Page 66: Tftp Services
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 53 tftp services trivial file transfer protocol (tftp) services allow the switch's firmware to be upgraded by transferring a new firmware file from a tftp server to the switch. A configuration file can also be downloaded into the swit...
Page 67: Multiple Image Services
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 54 two configuration images in its memory. Image id 1 will always be the boot up configuration for the switch unless specified by the user. Choosing active will download the configuration to the boot up image id, depending on the user...
Page 68: Config Firmware Image
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 55 figure 2 - 47 firmware information window the following parameters are displayed: parameter description id states the image id number of the firmware in the switch’s memory. The switch can store 2 firmware images for use. Image id ...
Page 69: Rcp
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 56 figure 2 - 48 config firmware image window the following parameters can be set: parameter description image the switch allows two firmware images to be stored in its memory and either can be configured to be the boot up firmware fo...
Page 70: Rcp Server Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 57 figure 2 - 49 remote copy protocol between an rcp server and an ethernet switch as illustrated in figure 2 - 49, a user can: a) upload a configuration file from the switch to the rcp server. B) download a firmware file from the rcp...
Page 71: Rcp Services
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 58 ip address enter the ip address of the global rcp server. User name enter the remote user name. Click apply to implement the changes. Rcp services this window is use to configure the services that provided by the rcp server. To vie...
Page 72: Ping Test
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 59 ping test ping is a small program that sends icmp echo packets to the ip address you specify. The destination node then responds to or “echoes” the packets sent from the switch. This is very useful to verify connectivity between th...
Page 73: Ipv6 Ping Test
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 60 ipv6 ping test the following window is used to ping an ipv6 address. To view this window, click administration > ping test > ipv6 ping test, as shown below. Figure 2 - 53 ipv6 ping test window this window allows the following param...
Page 74: Ipv6 Neighbor
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 61 ipv6 neighbor ipv6 neighbors are devices on the link-local network that have been detected as being ipv6 devices. These devices can forward packets and keep track of the reachability of routers, as well as if changes occur within l...
Page 75
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 62 to search for an entry, enter the appropriate information and click find. To add a new entry click add, the following window will be displayed.To remove an entry, click the corresponding button. To completely clear the ipv6 neighbo...
Page 76
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 63 action add or edit the entry. Metric (0-16) enter the rip route metric value for the redistributed routes. The valid value is 0 to 16. The default value is 0. Click apply to implement the changes. To remove an entry, click the corr...
Page 77
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 64 to remove an entry, click the corresponding button. To add a new entry, click the add button, revealing the following window to configure: figure 2 - 58 static/default route settings - add window the following fields can be set: pa...
Page 78
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 65 ipv6 address/prefixlen the ipv6 address and corresponding prefix length of the ipv6 static route entry. Interface the ip interface where the static ipv6 route is created. Next hop address the corresponding ipv6 address for the next...
Page 79: Route Preference Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 66 route preference settings to view this window, click administration > route preference settings, as shown below. Figure 2 - 61 route preference settings window the following fields can be configured: parameter description rip (1-99...
Page 80
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 67 figure 2 - 62 gratuitous arp settings window the following fields can be set or viewed: parameter description send on ipif status up this is used to enable/disable the sending of gratuitous arp request packets while an ipif interfa...
Page 81: Static Arp Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 68 interval click apply to implement the changes. To return to the gratuitous arp settings window, click the show all gratuitous arp entries link. Static arp settings address resolution protocol (arp) is a tcp/ip protocol that convert...
Page 82: Dhcp/bootp Relay
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 69 parameter description ip address the ip address of the arp entry. This field cannot be edited in the static arp settings – edit window. Mac address the mac address of the arp entry. After entering the ip address and mac address of ...
Page 83
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 70 figure 2 - 68 dhcp/ bootp relay global settings window the following fields can be set: parameter description dhcp/bootp relay state this field can be toggled between enabled and disabled using the pull-down menu. It is used to ena...
Page 84
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 71 when the dhcp server receives the packet, if the server is capable of option 82, it can implement policies like restricting the number of ip addresses that can be assigned to a single remote id or circuit id. Then the dhcp server e...
Page 85
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 72 the implementation of dhcp information option 82 the config dhcp_relay option_82 command configures the dhcp relay agent information option 82 setting of the switch. The formats for the circuit id sub-option and the remote id sub-o...
Page 86
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 73 dhcp/bootp relay interface settings this window allows the user to set up a server, by ip address, for relaying dhcp/bootp information. The user may enter a previously configured ip interface on the switch that will indicate which ...
Page 87
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 74 parameter description relay ip address enter the specified ip address for the dhcp relay forward. Mode use the pull-down menu to choose either relay or drop. When drop is specified, the packet with no matching rules found will be d...
Page 88
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 75 server ip enter the relay server ip address. Match type use the drop-down menu to select either exact match or partial match. Exact match – the option 60 string in the packet must fully match the specified string. Partial match – t...
Page 89
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 76 figure 2 - 75 dhcp relay option 61 table window to remove an entry, enter the appropriate mac address or string information and click delete. To delete all entries click clear all. To add a new entry click add the following window ...
Page 90: Dhcpv6 Relay
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 77 figure 2 - 77 dhcp/bootp local relay global settings window the following parameters are displayed or can be configured: parameter description global state use the pull-down menu to enable or disable the status. Vlan state use the ...
Page 91
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 78 hops count (1-32) this field allows an entry between 1 and 32 to define the maximum number of router hops dhcpv6 messages can be forwarded across. The default hop count is 4. Click apply to implement the changes. Dhcpv6 relay inter...
Page 92: Dhcp Server
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 79 figure 2 - 81 dhcpv6 relay interface settings - view window the following fields are displayed or can be configured: parameter description interface name display the ipv6 relay interface name. Dhcpv6 server address enter the ipv6 d...
Page 93
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 80 figure 2 - 82 dhcp server settings window the following parameters may be configured: parameter description dhcp server global state use the pull-down menu to globally enable or disable the switch as a dhcp server. Ping packets (nu...
Page 94: Dhcp Server Pool Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 81 figure 2 - 83 create dhcp excluded address window the following parameters may be configured: parameter description begin address enter the starting ip address of the range of ip addresses to be excluded from the dhcp pool. End add...
Page 95
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 82 figure 2 - 85 config dhcp pool window the following parameters can be configured or viewed: parameter description pool name denotes the name of the dhcp pool for which you are currently adjusting the parameters. Ip address enter th...
Page 96
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 83 addresses. Net bios name server enter the ip address of a net bios name server that will be available to a microsoft dhcp client. This net bios name server is actually a wins (windows internet naming service) server that allows mic...
Page 97
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 84 figure 2 - 86 dhcp server pool display window to return to the create dhcp pool window, click the show all dhcp server pool entries link. Dhcp server dynamic binding the following window will allow users to view dynamically bound i...
Page 98
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 85 the following parameters may be configured or viewed: parameter description pool name to find the dynamically bound entries of a specific pool, enter the pool name into the field and click find. Dynamically bound entries of this po...
Page 99: Dhcpv6 Server
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 86 figure 2 - 89 create dhcp pool manual binding window the following parameters may be configured or viewed. Parameter description pool name enter the name of the dhcp pool within which will be created a manual dhcp binding entry. Ip...
Page 100
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 87 to view this window, click administration > dhcpv6 server > dhcpv6 server global settings, as shown below. Figure 2 - 90 dhcpv6 server global settings window the following parameters may be configured: parameter description global ...
Page 101
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 88 click apply to implement the changes. To return to the dhcpv6 server pool table window, click the show dhcpv6 server pool table link. To configure the settings of a pool in the dhcpv6 server pool table, click the corresponding modi...
Page 102
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 89 figure 2 - 94 dhcpv6 server manual biding brief table window to find the dhcpv6 server manual binding entries, enter the pool name into the field and click find. Click view all to see all the entries. To remove an entry from the ta...
Page 103
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 90 figure 2 - 96 dhcpv6 server dynamic biding brief table window to find the dhcpv6 server dynamic binding entries, enter the pool name into the field and click find. Click view all to see all the entries. To remove an entry from the ...
Page 104
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 91 figure 2 - 99 dhcpv6 server dynamic interface table - edit window the following fields can be configured or viewed: parameter description interface name display the name of the interface. Dhcpv6 server state use the pull-down menu ...
Page 105: Filter Dhcp Server
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 92 figure 2 - 101 dhcpv6 server excluded address brief table - view window the following fields can be configured or viewed: parameter description pool name display the name of the pool. Begin address enter the starting ip address of ...
Page 106
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 93 figure 2 - 102 dhcp server filter global settings window the following parameters may be configured: parameter description trap/log enable this function to record logs and send traps when the switch detects the illegal dhcp server ...
Page 107
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 94 figure 2 - 103 filter dhcp server port state settings window the following parameters may be configured: parameter description state use the pull-down menu to enable or disable the filter dhcp server port state settings. Port list ...
Page 108
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 95 layer 2 protocol tunneling settings the layer 2 protocol tunneling (l2pt) supports traffic of multiple customers across service provider networks. L2pt enables the bpdu’s of the same customer’s network to be multicast over specific...
Page 109: Rspan
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 96 rspan rspan (remote switched port analyzer) is a feature used to monitor and analyze the traffic passing through ports. The character ‘r’ is short for ‘remote’ which means that the mirror source ports and the destination port are n...
Page 110
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 97 figure 2 - 106 rspan settings window the following fields can be configured: parameter description vlan name enter the name of the vlan you wish to add, find or delete. Vid (1-4094) enter the vlan id of the vlan you wish to add, fi...
Page 111
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 98 the following fields can be configured: parameter description vlan name this is the vlan name that, along with the vlan id, identifies the vlan which will modify the rspan entries. Vid (1-4094) this is the vlan id that, along with ...
Page 112: Dns Relay
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 99 for that rspan session. Tx source ports the goal of tx source ports is to monitor as much as possible all the packets sent by the source interface after all modification and processing is performed by the switch. Click apply to imp...
Page 113: Dns Relay Static Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 100 figure 2 - 109 dns relay global settings window the following fields can be set: parameter description dns state this field can be toggled between disabled and enabled using the pull-down menu, and is used to enable or disable the...
Page 114: Dns Resolver
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 101 dns resolver the dns resolver provides a solution to translate the domain name to an ip address for application on the switch itself. Dns resolver global settings this window is used to configure the dns resolver state and name se...
Page 115
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 102 click add to reveal the following window to configure: figure 2 - 113 dns resolver static name server settings window the following fields can be set: parameter description primary tick the check box to indicate the name server is...
Page 116
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 103 click add to reveal the following window to configure: figure 2 - 116 dns resolver static host name settings window the following fields can be set: parameter description host name enter the host’s host name. Ip address enter the ...
Page 117: Snmp Manager
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 104 snmp manager snmp settings simple network management protocol (snmp) is an osi layer 7 (application layer) designed specifically for managing and monitoring network devices. Snmp enables network management stations to read and mod...
Page 118: Snmp Trap Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 105 snmp settings are configured using the menus located on the snmp v3 folder of the web manager. Workstations on the network that are allowed snmp privileged access to the switch can be restricted with the management station ip addr...
Page 119: Snmp User Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 106 to enable or disable linkchange trap settings for individual ports, select the ports using the from and to drop-down menus, enable the state using the drop-down menu, and then click apply. Snmp user table this windowdisplays all o...
Page 120
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 107 to return to the snmp user table, click the show all snmp user table entries link. To add a new entry to the snmp user table, click the add button on the snmp user table window. This will open the snmp user table configuration win...
Page 121: Snmp View Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 108 snmp view table this window is used to assign views to community strings that define which mib objects can be accessed by a remote snmp manager. To view this window, click administration > snmp manager > snmp view table, as shown ...
Page 122: Snmp Group Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 109 view type select included to ensure this object is included in the list of objects that an snmp manager can access. Select excluded to exclude this object from the list of objects that an snmp manager can access. To implement your...
Page 123: Snmp Community Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 110 to add a new entry to the switch's snmp group table, click the add button in the upper left-hand corner of the snmp group table window. This will open the snmp group table configuration window, as shown below. Figure 2 - 126 snmp ...
Page 124
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 111 • an access list of ip addresses of snmp managers that are permitted to use the community string to gain access to the switch's snmp agent. • any mib view that defines the subset of all mib objects will be accessible to the snmp c...
Page 125: Snmp Host Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 112 snmp community. This string is used like a password to give remote snmp managers access to mib objects in the switch's snmp agent. View name type an alphanumeric string of up to 32 characters that is used to identify the group of ...
Page 126: Snmp Engine Id
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 113 v3-noauth-nopriv – to specify that the snmp version 3 will be used, with a noauth-nopriv security level. V3-auth-nopriv – to specify that the snmp version 3 will be used, with an auth-nopriv security level. V3-auth-priv – to speci...
Page 127: Poe
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 114 figure 2 - 131 snmp engine id window to change the engine id, enter the new engine id in the space provided and click the apply button. Trap source interface settings this window is used to configure the trap source interface sett...
Page 128: Poe System Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 115 based on 802.3af/at pds receive power according to the following classification : pse provides power according to the following classification: class maximum power available to pd class max power used by pse 0 12.95w 0 15.4w 1 3.8...
Page 129: Poe Port Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 116 370w) configure a power limit between 37 and 370w for the dgs-3426p. The default setting is 370w. Disconnect method the poe controller uses either deny next port or deny low priority port to offset the power limit being exceeded a...
Page 130
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 117 figure 2 - 134 poe port settings window the following parameters can be configured: parameter description unit choose the switch in the switch stack for which to configure the poe settings. Users should note that not all switches ...
Page 131
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 118 higher priority. The setting of priority will affect the ordering of supplying power. Whether the disconnect method is set to deny low priority port, the priority of each port will be used by the system to manage the supply of pow...
Page 132: Sflow
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 119 sflow figure 2 - 135 sflow basic setup sflow is a feature on the switch that allows users to monitor network traffic running through the switch to identify network problems through packet sampling and packet counter information of...
Page 133: Sflow Global Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 120 sflow global settings the following window is used to globally enable the sflow feature for the switch. Simply use the pull-down menu and click apply to enable or disable sflow. This window will also display the sflow version curr...
Page 134
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 121 to four entries can be added with the same udp port. Owner displays the owner of the entry made here. The user that added this sflow analyzer configured this name. Timeout (sec) displays the configured time, in seconds, after whic...
Page 135: Sflow Sampler Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 122 figure 2 - 139 sflow analyzer settings – edit window the following fields can be configured or viewed: parameter description analyzer server (1- 4) enter an integer from 1 to 4 to denote the sflow analyzer to be added. Up to four ...
Page 136
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 123 to view this window, click administration > sflow > sflow sampler settings, as shown below. Figure 2 - 140 sflow sampler settings window the following fields are displayed: parameter description port displays the port from which p...
Page 137: Sflow Poller Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 124 figure 2 - 142 sflow sampler settings - edit window the following fields can be configured or viewed: parameter description unit select the unit you wish to configure. From / to choose the beginning and ending range of ports to be...
Page 138
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 125 figure 2 - 143 sflow counter poller settings window the following fields are displayed: parameter description port displays the port from which packet counter samples are being taken. Analyzer server id displays the id of the anal...
Page 139
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 126 figure 2 - 145 sflow counter poller settings - edit window the following parameters can be configured or viewed: parameter description unit select the unit you wish to configure. From / to choose the beginning and ending range of ...
Page 140
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 127 the following fields may be set: parameter description ip multicast vlan replication state enable or disable the ip multicast vlan replication state on the switch. Ttl ttl specifies whether to decrease the time to live of a packet...
Page 141
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 128 figure 2 - 148 ip multicast vlan replication settings - source edit window the following fields may be set: parameter description entry name the name of the previously created ip multicast vlan replication entry will be displayed....
Page 142
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 129 figure 2 - 149 ip multicast vlan replication settings - destination edit window the following fields may be set: parameter description entry name the name of the previously created ip multicast vlan replication entry will be displ...
Page 143
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 130 single ip management (sim) overview simply put, d-link single ip management is a concept that will stack switches together over ethernet instead of using stacking ports or modules. There are some advantages in implementing the “si...
Page 144: The Upgrade To V1.61
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 131 • css must change their role to cas and then to ms, to become a ms of a sim group. Thus, the cs cannot directly be converted to a ms. • the user can manually configure a cs to become a cas. • a ms can become a cas by: • being conf...
Page 145: Sim Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 132 note: sim management does not support ipv6. For users wishing to utilize this function, switches in the sim group must be configured with ipv4 addresses. Ipv6 for sim management will be supported in a future release of this switch...
Page 146: Topology
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 133 candidate – a candidate switch (cas) is not the member of a sim group but is connected to a commander switch. This is the default setting for the sim role of the dgs-3400 series. Commander – choosing this parameter will make the s...
Page 147
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 134 figure 2 - 152 single ip management window - tree view the tree view window holds the following information under the data tab: parameter description device name this field will display the device name of the switches in the sim g...
Page 148
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 135 figure 2 - 153 topology view this screen will display how the devices within the single ip management group connect to other groups and devices. Possible icons in this screen are as follows: icon description group layer 2 commande...
Page 149
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 136 member switch of other group layer 2 candidate switch layer 3 candidate switch unknown device non-sim devices.
Page 150: Tool Tips
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 137 tool tips in the topology view window, the mouse plays an important role in configuration and in viewing device information. Setting the mouse cursor over a specific device in the topology window (tool tip) will display the same i...
Page 151
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 138 figure 2 - 155 port speed utilizing the tool tip.
Page 152: Right-Click
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 139 right-click right-clicking on a device will allow the user to perform various functions, depending on the role of the switch in the sim group and the icon associated with it. Group icon figure 2 - 156 right-clicking a group icon t...
Page 153: Commander Switch Icon
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 140 port speed displays the connection speed between the cs and the ms or cas commander switch icon figure 2 - 158 right-clicking a commander icon the following options may appear for the user to configure: • collapse – to collapse th...
Page 154: Menu Bar
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 141 figure 2 - 160 right-clicking a candidate icon the following options may appear for the user to configure: • collapse – to collapse the group that will be represented by a single icon. • expand – to expand the sim group, in detail...
Page 155: Help
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 142 • refresh - update the views with the latest status. • topology - display the topology view. Help • about - will display the sim information, including the current sim version. Figure 2 - 164 about window firmware upgrade this win...
Page 156: Upload Log
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 143 figure 2 - 166 configuration file backup/restore window upload log the following window is used to upload log files from sim member switches to a specified pc. To upload a log file, enter the ip address of the sim member switch an...
Page 157
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 144 to maximize stability, the hop count rip uses to measure distance must have a low maximum value. Infinity (that is, the network is unreachable) is defined as 16 hops. In other words, if a network is more than 16 routers from the s...
Page 158: Rip
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 145 rip version 2 extensions rip version 2 includes an explicit subnet mask entry, so rip version 2 can be used to propagate variable length subnet addresses or cidr classless addresses. Rip version 2 also adds an explicit next hop en...
Page 159: Ripng
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 146 figure 2 - 170 rip interface settings - edit window the following rip interface settings can be applied to each ip interface: parameter description interface name the name of the ip interface on which rip is to be setup. This inte...
Page 160: Ripng Global Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 147 ripng global settings this window allows users to set up ripng. To view this window, click administration > rip > ripng > ripng global settings, as shown below. Figure 2 - 171 ripng global settings window the following settings ca...
Page 161: Ip Tunnel Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 148 figure 2 - 173 ripng interface settings - edit window the following settings can be configured: parameter description interface name the name of the interface for the ripng configuration. State enable or disable the ripng state on...
Page 162
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 149 figure 2 - 175 ip tunnel settings - add window enter the interface name in the field and click apply. To return to the ip tunnel settings window, click the show all ip tunnel entries link. To configure a tunnel interface, click th...
Page 163
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 150 exist in the database. However, whether the tunnel’s former information is invalid or not will depend on the current mode. Ipv6 isatap tunnels are point-to-multipoint tunnels that can be used to connect systems within a site. An i...
Page 164: Section 3
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 151 section 3 l2 features vlan trunking igmp snooping mld snooping loop-back detection global settings spanning tree forwarding & filtering lldp q-in-q erps duld settings nlb multicast fdb settings the following section will aid the u...
Page 165: Ieee 802.1Q Vlans
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 152 ieee 802.1q vlans some relevant terms: tagging – the act of putting 802.1q vlan information into the header of a packet. Untagging – the act of stripping 802.1q vlan information out of the packet header. Ingress port – a port on a...
Page 166: 802.1Q Vlan Tags
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 153 figure 3 - 1 ieee 802.1q packet forwarding 802.1q vlan tags the figure below shows the 802.1q vlan tag. There are four additional octets inserted after the source mac address. Their presence is indicated by a value of 0x8100 in th...
Page 167: Port Vlan Id
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 154 figure 3 - 2 ieee 802.1q tag the ethertype and vlan id are inserted after the mac source address, but before the original ethertype/length or logical link control. Because the packet is now a bit longer than it was originally, the...
Page 168: Tagging and Untagging
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 155 pvid of the port on which they were received. Forwarding decisions are based upon this pvid, in so far as vlans are con- cerned. Tagged packets are forwarded according to the vid contained within the tag. Tagged packets are also a...
Page 169: Port-Based Vlans
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 156 vlan name vid switch ports system (default) 1 5, 6, 7, 8, 21, 22, 23, 24 engineering 2 9, 10, 11, 12 marketing 3 13, 14, 15, 16 finance 4 17, 18, 19, 20 sales 5 1, 2, 3, 4 table 3 - 1 vlan example – assigned ports port-based vlans...
Page 170
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 157 figure 3 - 4 current static vlan entries window the current static vlan entries window lists all previously configured vlans by vlan id and vlan name. To delete an existing 802.1q vlan, click the corresponding button under the del...
Page 171: Vlan Trunk
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 158 figure 3 - 6 static vlan window – edit window the following parameters can be configured or viewed: parameter description unit select the switch in the switch stack for which to configure vlans. Vid allows the entry of a vlan id i...
Page 172
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 159 figure 3 - 7 vlan trunk global settings window the following parameters can be configured: parameter description vlan trunk status use the pull-down menu to enable or disable vlan trunk global status. State use the pull-down menu ...
Page 173: Gvrp Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 160 gvrp settings figure 3 - 8 gvrp settings window the following fields can be configured: parameter description unit select the switch in the switch stack to be modified. From / to these two fields allow the range of ports that will...
Page 174: Double Vlans
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 161 forwarded to the port for transmission, the port will add an 802.1q tag using the pvid to write the vid in the tag. When the packet arrives at its destination, the receiving device will use the pvid to make vlan forwarding decisio...
Page 175
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 162 in this example, the service provider access network switch (provider edge switch) is the device creating and configuring double vlans. Both cevlans (customer vlans) 10 and 11, are tagged with the spvid 100 on the service provider...
Page 176: Double Vlan Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 163 double vlan settings this window is used to enable or disable the double vlan state settings. To view this window, click l2 features > vlan > double vlan, as shown below. Figure 3 - 10 double vlan state settings window choose enab...
Page 177
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 164 figure 3 - 13 double vlan state settings - view window parameters shown in the previous window are explained below: parameter description spvid the vlan id number of this potential service provider vlan. Vlan name the name of the ...
Page 178: Pvid Auto Assign
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 165 click apply to implement the changes. To return to the double vlan state settings window, click the show double vlan entries link. To configure the parameters for a previously created service provider vlan, click the modify button...
Page 179: Mac-Based Vlan Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 166 to view this window, click l2 features > vlan > pvid auto assign, as shown below. Figure 3 - 16 pvid auto assign settings window when enabled, pvid will be automatically assigned when adding a port to a vlan as an untagged member ...
Page 180
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 167 protocol type header in hexadecimal form ip over ethernet 0x0800 ipx 802.3 0xffff ipx 802.2 0xe0e0 ipx snap 0x8137 ipx over ethernet2 0x8137 declat 0x6004 sna 802.2 0x0404 netbios 0xf0f0 xns 0x0600 vines 0x0bad ipv6 0x86dd appleta...
Page 181
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 168 figure 3 - 19 protocol vlan group - add window the add and modify windows of the protocol vlan group hold the following fields to be configured: parameter description group id (1-16) enter an integer from 1 to 16 to identify the p...
Page 182: Subnet Vlan
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 169 figure 3 - 20 protocol vlan port settings window the following fields may be configured: parameter description port list use this parameter to assign ports to a protocol vlan group or remove them from the protocol vlan group. Tick...
Page 183: Subnet Vlan Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 170 the vlan classification precedence is configurable on each port. The default value is mac-based vlan classification precedence. Note: 1. If the ip address of the received untagged packet is match two entries in the table. The long...
Page 184
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 171 figure 3 - 22 vlan precedence settings window the following fields may be configured: parameter description unit select the switch in the switch stack to be modified. From / to these two fields allow the range of ports that will b...
Page 185: Trunking
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 172 trunking understanding port trunk groups port trunk groups are used to combine a number of ports together to make a single high-bandwidth data pipeline. Dgs-3400 series supports up to 32 port trunk groups with 2 to 8 ports in each...
Page 186: Link Aggregation
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 173 the switch treats all ports in a trunk group as a single port. Data transmitted to a specific host (destination address) will always be transmitted over the same port in a trunk group. This allows packets in a data stream to arriv...
Page 187
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 174 figure 3 - 25 link aggregation group entries - add window to edit a port trunk group, click the corresponding modify button to see the window shown as below..
Page 188
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 175 figure 3 - 26 link aggregation group entries - edit window the user-changeable parameters are as follows: parameter description group id select an id number for the group, between 1 and 32. Type this pull-down menu allows users to...
Page 189: Lacp Port Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 176 unknown unicasts. After setting the previous parameters, click apply to allow your changes to be implemented. Successfully created trunk groups will be show in the link aggregation group entries window. To return to the link aggre...
Page 190
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 177 figure 3 - 27 lacp port settings window the user may set the following parameters: parameter description unit select the switch in the switch stack to be modified. From / to a consecutive group of ports may be configured starting ...
Page 191: Igmp Snooping
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 178 mode active – active lacp ports are capable of processing and sending lacp control frames. This allows lacp compliant devices to negotiate the aggregated link so the group may be changed dynamically as needs require. In order to u...
Page 192
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 179 igmp snooping data driven learning settings (1-960) enter a value between 1 and 960 for data driven max learning entry. Click apply to implement the changes. Click the corresponding modify button in the igmp snooping settings tabl...
Page 193
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 180 25 (seconds). Default = 10. Robustness variable (1-255) adjust this variable according to expected packet loss. If packet loss on the vlan is expected to be high, the robustness variable should be increased to accommodate increase...
Page 194: Router Port Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 181 router port settings a static router port is a port that has a multicast router attached to it. Generally, this router would have a connection to a wan or to the internet. Establishing a router port will allow multicast packets co...
Page 195
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 182 parameter description vid this is the vlan id that, along with the vlan name, identifies the vlan where the multicast router is attached. Vlan name this is the name of the vlan where the multicast router is attached. Unit select t...
Page 196: Ism Vlan Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 183 figure 3 - 33 igmp snooping static group - add window to modify an entry, click the corresponding modify button, and the following window will be displayed. Figure 3 - 34 igmp static group modify window the following fields can be...
Page 197: Restrictions And Provisos
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 184 the traffic path. To lighten the traffic load, multicast vlans may be incorporated. These multicast vlans will allow the switch to forward this multicast traffic as one copy to recipients of the multicast vlan, instead of multiple...
Page 198
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 185 the following fields can be configured or viewed: parameter description vlan name enter a name for the ism vlan into the field. Vid (2-4094) enter a vlan id between 2 and 4094. Remap priority (0-7) enter a value between 0 and 7. T...
Page 199
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 186 tagged member ports enter a port or list of ports to be added to the multicast vlan as a tagged member port. Source port enter a port or list of ports to be added to the multicast vlan. Source ports will become the untagged member...
Page 200
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 187 figure 3 - 39 limited ip multicast address range window the following parameters can be configured: parameter description unit select the switch in the switch stack to be modified. From / to enter the port range for which to begin...
Page 201: Mld Snooping
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 188 click apply to implement the new settings on the switch. Click delete to remove the configured range from the settings. Click delete all to delete all limited ip multicast settings. Mld snooping multicast listener discovery (mld) ...
Page 202
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 189 figure 3 - 40 mld multicast router only settings window the following parameters can be configured: parameter description mld multicast router only use the pull-down menu to enable or disable the mld multicast router. Data driven ...
Page 203
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 190 figure 3 - 41 mld snooping settings – edit window the following parameters may be viewed or modified: parameter description vid this is the vlan id that, along with the vlan name, identifies the vlan for which to modify the mld sn...
Page 204: Mld Router Port Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 191 seconds with a default setting of 1 second. Version (1-2) configure the mld version of the query packet which will be sent by the router. Node timeout (1-16711450) specifies the link node timeout, in seconds. After this timer expi...
Page 205
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 192 figure 3 - 42 mld router port settings window to configure the router ports settings for a specified vlan, click its corresponding modify button, which will produce the following window for the user to configure. Figure 3 - 43 mld...
Page 206
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 193 click apply to implement the new settings..
Page 207
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 194 loop-back detection global settings figure 3 - 44 loopback detection global settings window the following fields may be configured: parameter description loopdetect status choose whether to globally enable or disable the loop-back...
Page 208
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 195 loopdetect trap none – the trap will not be sent in any situation. Loop detected – the trap is sent when the loop condition is detected. Loop cleared – the trap is sent when the loop condition is cleared. Both – the trap will be s...
Page 209: Spanning Tree
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 196 spanning tree this switch supports three versions of the spanning tree protocol: 802.1d-1998 stp, 802.1d-2004 rapid stp, and 802.1q-2005 mstp. 802.1d-1998 stp will be familiar to most networking professionals. However, since 802.1...
Page 210: Port Transition States
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 197 terminology is the same as stp. Most of the settings configured for stp are also used for rstp. This section introduces some new spanning tree concepts and illustrates the main differences between the two protocols. Port transitio...
Page 211: Stp Bridge Global Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 198 802.1d-1998/802.1d-2004/802.1q-2005 compatibility mstp or rstp can interoperate with legacy equipment and is capable of automatically adjusting bpdu packets to 802.1d-1998 format when necessary. However, any segment using 802.1d-1...
Page 212
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 199 figure 3 - 46 stp bridge global settings window (mstp) figure 3 - 47 stp bridge global settings window (stp compatible) see the table below for descriptions of the stp versions and corresponding setting options. Note: the hello ti...
Page 213
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 200 stp version use the pull-down menu to choose the desired version of stp: stp compatible – select this parameter to set the spanning tree protocol (stp) globally on the switch. Rstp – select this parameter to set the rapid spanning...
Page 214
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 201 mst configuration identification the following windows allow the user to configure a msti instance on the switch. These settings will uniquely identify a multiple spanning tree instance set on the switch. The switch initially poss...
Page 215
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 202 figure 3 - 49 mst configuration identification - add window configure the following parameters to create a msti in the switch: parameter description msti id enter a number between 1 and 15 to set a new msti on the switch. Type cre...
Page 216: Mstp Port Information
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 203 click apply to implement the changes. Click the show mst configuration table link to return to the mst configuration identification window. To configure the parameters for a previously set msti, click its hyperlinked msti idnumber...
Page 217: Stp Instance Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 204 figure 3 - 52 mstp port information window to view the msti settings for a particular port, select the port number, located in the top left hand corner of the screen and click apply. To modify the settings for a particular msti in...
Page 218
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 205 to view this window, click l2 features > spanning tree > stp instance settings, as shown below. Figure 3 - 54 stp instance settings window the following information is displayed: parameter description instance type displays the in...
Page 219: Stp Port Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 206 stp port settings stp can be set up on a port per port basis. In addition to setting spanning tree parameters for use on the switch level, the switch allows for the configuration of groups of ports, each port-group of which will h...
Page 220
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 207 unit select the switch in the switch stack to be modified. From / to a consecutive group of ports may be configured starting with the selected port. External cost (0=auto) this defines a metric that indicates the relative cost of ...
Page 221: Forwarding & Filtering
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 208 active topology, possibly because those bridges are not under the full control of the administrator. Click apply to implement the changes. Forwarding & filtering this folder contains windows for unicast forwarding, multicast forwa...
Page 222
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 209 figure 3 - 58 static multicast forwarding settings window the static multicast forwarding settings window displays all of the entries made into the switch's static multicast forwarding table. To delete an entry in the static multi...
Page 223: Multicast Filtering Mode
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 210 multicast filtering mode this window allows users to configure the switch to forward or filter the unregistered groups per vlan. To view this window, click l2 features > forwarding & filtering >multicast filtering mode, as shown b...
Page 224: Lldp Global Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 211 lldp global settings this window is used to configure the lldp global settings on the switch. When lldp is enabled the switch can start to transmit, receive and process lldp packets. The specific function of each port will depend ...
Page 225: Basic Lldp Port Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 212 tx delay (1-8192) lldp tx delay allows the user to change the minimum time delay interval for any lldp port which will delay advertising any successive lldp advertisements due to change in the lldp mib content. To change the lldp ...
Page 226
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 213 figure 3 - 62 basic lldp port settings window the following parameters can be set: parameter description unit select the unit to configure. From / to use the pull-down menu to select a range of ports to be configured. Notification...
Page 227
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 214 rx_only – the local lldp agent can only receive lldp frames. Tx_and_rx – the local lldp agent can both transmit and receive lldp frames. Disabled – the local lldp agent can neither transmit nor receive lldp frames. The default val...
Page 228
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 215 figure 3 - 63 802.1 extension lldp port settings window.
Page 229
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 216 the following parameters can be set: parameter description unit select the unit to configure. From / to use the pull-down menu to select a range of ports to be configured. Port vlan id use the drop-down menu to enable or disable t...
Page 230
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 217 figure 3 - 64 802.3 extension lldp port settings window the following parameters can be set: parameter description unit select the unit you wish to configure. From / to use the pull-down menu to select a range of ports to be confi...
Page 231
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 218 the default state is disabled. Power via mdi this specifies that the lldp agent should transmit 'power via mdi tlv'. Three ieee 802.3 pmd implementations (10base-t, 100base-tx, and 1000base-t) allow power to be supplied over the l...
Page 232
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 219 figure 3 - 65 lldp management address settings window the following parameters can be set: parameter description unit select the unit you wish to configure. From / to use the pull-down menu to select a range of ports to be configu...
Page 233: Lldp Statistics
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 220 port state used to enable or disable the port state for the lldp management address settings. Click apply to implement the changes. Lldp statistics lldp statistics allows you an overview of neighbor detection activity, lldp statis...
Page 234
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 221 figure 3 - 66 lldp statistics system window lldp management address table the following window is used to set up lldp management address settings on the switch..
Page 235: Lldp Local Port Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 222 to view this window, click l2 features > lldp > lldp management address table, as shown below. Figure 3 - 67 lldp management address table window the following parameters can be set or displayed: parameter description management a...
Page 236
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 223.
Page 237
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 224 figure 3 - 68 lldp local port brief table window to view normal information on a per port basis click the corresponding view button, which will display the following window. Figure 3 - 69 lldp local port table - view normal window...
Page 238
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 225 figure 3 - 70 lldp local port table - view detailed window to return to the lldp local port brief information window, click the show lldp local port brief table link. To view the lldp local port normal table window, click the show...
Page 239: Lldp Remote Port Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 226 lldp remote port table this window displays port information learned from the neighbor. The switch receives packets from a remote station but is able to store the information as local. To view this window, click l2 features > lldp...
Page 240
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 227 to return to the lldp local remote port brief window, click the show lldp remote port brief table link. To view the lldp remote port normal table window, click the show lldp remote port normal table link..
Page 241: Q-In-Q
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 228 q-in-q q-in-q is designed for service providers to carry traffic from multiple users across a network. Q-in-q is used to maintain customer specific vlan and layer 2 protocol configurations even when the same vlan id is being used ...
Page 242: Vlan Translation Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 229 the following fields can be set: parameter description qinq state use the pull down menu to enable or disable the q-in-q state. When q-in-q is enabled, all network port roles will have nni ports and their outer tpid set to 0x88a8....
Page 243: Erps
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 230 figure 3 - 75 vlan translation settings window the following fields can be set: parameter description unit select the unit you wish to configure. From / to a consecutive group of ports that are part of the vlan configuration start...
Page 244: Erps Raps Vlan Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 231 figure 3 - 76 erps global settings window the following fields can be set: parameter description global status enable the global erps function on a switch. Log status enable or disable the log state of erps events. The default val...
Page 245
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 232 figure 3 - 78 erps raps vlan table - add window enter a vlan id in the r-aps vid (1-4094) field, and click apply to see the entry appears in erps raps vlan table window. To edit an entry, click modify to see the window shown below...
Page 246
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 233 west click to specify the port as the west ring port. To specify as a virtual channel, tick the check and toggle from port to virtual channel. West port if port is set above, enter the port to be configured. East click to specify ...
Page 247: Duld Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 234 to edit erps raps sub ring settings for an erps raps vlan table entry, click the modify button in the sub ring modify column in the erps raps vlan table. The following window will open: figure 3 - 80 erps raps vlan table - edit su...
Page 248
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 235 figure 3 - 81 duld settings window the following fields can be set: parameter description.
Page 249: Nlb Multicast Fdb Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 236 unit select the unit you wish to configure. From / to select a range of ports. Admin state enable or disable the administration state. This indicates these ports unidirectional link detection status. The default state is disabled....
Page 250
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 237 the following fields can be set: parameter description vlan name click the radio button and enter the vlan of the nlb multicast fdb entry to be created. Vid (1-4094) click the radio button and enter the vlan by the vlan id. Mac ad...
Page 251: Section 4
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 238 section 4 qos 802.1p settings bandwidth control hol prevention settings schedule settings qos the xstack ® dgs-3400 series supports 802.1p priority queuing quality of service. The following section discusses the implementation of ...
Page 252: Understanding Qos
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 239 figure 4 - 1 an example of the default qos mapping on the switch the picture above shows the default priority setting for the switch. Class-6 has the highest priority of the seven priority classes of service on the switch. In orde...
Page 253
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 240 •priority 0 is assigned to the switch’s q2 queue. •priority 1 is assigned to the switch’s q0 queue. •priority 2 is assigned to the switch’s q1 queue. •priority 3 is assigned to the switch’s q3 queue. •priority 4 is assigned to the...
Page 254: 802.1P Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 241 notice: the switch contains eight classes of service for each port on the switch. One of these classes is reserved for internal use on the switch and is therefore not configurable. All references in the following section regarding...
Page 255
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 242 802.1p default priority settings the switch allows the assignment of a default 802.1p priority to each port on the switch. The priority tags are numbered from 0, the lowest priority, to 7, the highest priority. To view this window...
Page 256
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 243 priority the priority tags are numbered from 0, the lowest priority, to 7, the highest priority. Insert a priority value, from 0-7 in the priority field. Click apply to implement the changes. 802.1p user priority settings the xsta...
Page 257: Bandwidth Control
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 244 priority the priority tags are numbered from 0, the lowest priority, to 7, the highest priority. Insert a priority value, from 0-7 in the priority field. Class id use the pull-down menu to select the switch’s hardware priority que...
Page 258
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 245 figure 4 - 4 bandwidth settings window the following parameters can be set or are displayed: parameter description unit select the switch in the switch stack to be modified. From / to a consecutive group of ports may be configured...
Page 259
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 246 effective rx rate specifies the limitation of the received data rate. Effective tx rate specifies the limitation of the transmitted data rate. Click apply to set the bandwidth control for the selected ports. Results of configured ...
Page 260
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 247 figure 4 - 5 per queue bandwidth control settings window the following parameters can be set: parameter description unit select the switch in the switch stack to be modified. From / to a consecutive group of ports may be configure...
Page 261: Hol Prevention Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 248 click apply to implement the changes. Hol prevention settings this window is used to enable or disable head of line (hol) prevention. To view the hol prevention settings window, click qos > hol prevention settings, as shown below....
Page 262
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 249 figure 4 - 7 qos output scheduling window the following values may be assigned to the qos classes to set the scheduling. Parameter description unit select the unit to configure. From / to a consecutive group of ports may be config...
Page 263
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 250 note: entering a 0 for the max packets field in the qos output scheduling window above will create a combination queue. For more information on implementation of this feature, see the next section, configuring the combination queu...
Page 264
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 251 figure 4 - 8 qos scheduling mechanism window the following parameters can be configured. Parameter description unit select the unit to configure. From / to a consecutive group of ports may be configured starting with the selected ...
Page 265
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 252 mode use the pull-down menu to select one of the following modes. Strict - the highest class of service is the first to process traffic. That is, the highest class of service will finish before other queues empty. Weight fair - us...
Page 266: Section 5
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 253 section 5 acl (access control list) time range access profile table acl flow meter cpu interface filtering time range this window is used in conjunction with the access profile feature to determine a starting point and an ending p...
Page 267: Access Profile Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 254 enabled. Tick the select all days check box to configure this time range for every day of the week. Click apply to implement changes made. Currently configured entries will be displayed in the time range information table in the b...
Page 268
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 255 figure 5 - 3 access profile configuration window (ethernet) the following parameters can be set, for the ethernet type: parameter description profile id (1-6) type in a unique identifier number for this profile set. This value can...
Page 269
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 256 figure 5 - 4 access profile entry display window (ethernet) the window shown below is the ip access profile configuration window: figure 5 - 5 access profile configuration window (ip) the following parameters can be set, for ip: p...
Page 270
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 257 type select profile based on ethernet (mac address), ip, packet content or ipv6 address. This will change the menu according to the requirements for the type of profile. Select ethernet to instruct the switch to examine the layer ...
Page 271
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 258 figure 5 - 6 access profile entry display window (ip) the window shown below is the access profile configuration window for packet content mask: figure 5 - 7 access profile configuration window (packet content mask) this window wi...
Page 272
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 259 header. • select ipv6 to instruct the switch to examine the ipv6 part of each packet header. Offset the offset field is used to examine the packet header which is divided up into four “chunks” where each chunk represents 4 bytes. ...
Page 273
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 260 figure 5 - 9 access profile configuration window (ipv6) the following parameters can be set, for ip: parameter description profile id (1-6) type in a unique identifier number for this profile set. This value can be set from 1 to 6...
Page 274
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 261 • dst port mask – specify a tcp port mask for the destination port in hex form (hex 0x0-0xffff) which you wish to filter. Select udp to use the udp port number contained in an incoming packet as the forwarding criterion. Selecting...
Page 275
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 262 to remove a previously created rule, select it and click the button. To add a new access rule, click the add rule button: figure 5 - 12 access rule configuration window (ethernet) the following parameters can be configured: parame...
Page 276
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 263 replace priority − click the corresponding box if you want to re-write the 802.1p default priority of a packet to the value entered in the priority field, which meets the criteria specified previously in this command, before forwa...
Page 277
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 264 figure 5 - 13 access rule display window (ethernet) to configure the access rule for ip, open the access profile table window and click modify for an ip entry. This will open the following window: figure 5 - 14 access rule table w...
Page 278
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 265 figure 5 - 15 access rule configuration window (ip) configure the following access rule configurationsettings for ip: parameter description profile id this is the identifier number for this profile set. Mode select permit to speci...
Page 279
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 266 packet will have its incoming 802.1p user priority re-written to its original value before being forwarded by the switch. For more information on priority queues, cos queues and mapping for 802.1p, see the qos section of this manu...
Page 280
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 267 figure 5 - 16 access rule display window (ip) to configure the access rule for packet content, open the access profile table window and click modify for a packet content entry. This will open the following window: figure 5 - 17 ac...
Page 281
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 268 figure 5 - 18 access rule configuration window (packet content) to set the access rule for the packet content mask, adjust the following parameters and click apply. Parameter description profile id this is the identifier number fo...
Page 282
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 269 priority (0-7) this parameter is specified to re-write the 802.1p default priority previously set in the switch, which is used to determine the cos queue to which packets are forwarded to. Once this field is specified, packets acc...
Page 283
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 270 figure 5 - 19 access rule display window (packet content) note: when using the acl mirror function, ensure that the port mirroring function is enabled and a target mirror port is set. To configure the access rule for ipv6, open th...
Page 284
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 271 figure 5 - 21 access rule configuration window (ipv6) parameter description profile id this is the identifier number for this profile set. Mode select permit to specify that the packets that match the access profile are forwarded ...
Page 285
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 272 class entering a value between 0 and 255 will instruct the switch to examine the class field of the ipv6 header. This class field is a part of the packet header that is similar to the type of service (tos) or precedence bits field...
Page 286: Acl Flow Meter
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 273 figure 5 - 22 access rule display window (ipv6) acl flow meter before configuring the acl flow meter, here is a list of acronyms and terms users will need to know. Trtcm – two rate three color marker. This, along with the srtcm, a...
Page 287
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 274 dscp – differentiated services code point. The part of the packet header where the color will be added. Users may change the dscp field of incoming packets. The acl flow meter function will allow users to color code ip packet flow...
Page 288
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 275 figure 5 - 24 acl flow meter configuration - add window the following fields may be configured: parameter description profile id (1-6) enter the pre-configured profile id for which to configure the acl flow metering parameters. Ac...
Page 289
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 276 srtcm choosing this field will allow users to employ the single rate three color mode and set the following parameters to determine the color rate of the ip packet flow. Cir – the committed information rate can be set between 0 an...
Page 290: Cpu Interface Filtering
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 277 figure 5 - 25 acl flow meter configuration - view window cpu interface filtering due to a chipset limitation and needed extra switch security, the xstack ® dgs-3400 series switch incorporates cpu interface filtering. This added fe...
Page 291
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 278 cpu interface filtering table this window displays the cpu access profile table entries created on the switch. To view this window, click acl > cpu interface filtering > cpu interface filtering table, as shown below. Figure 5 - 27...
Page 292
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 279 vlan selecting this option instructs the switch to examine the vlan identifier of each packet header and use this as the full or partial criterion for forwarding. Source mac source mac mask - enter a mac address mask for the sourc...
Page 293
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 280 figure 5 - 30 cpu interface filtering configuration window (ip) the following parameters may be configured for the ip cpu filter. Parameter description profile id (1-5) type in a unique identifier number for this profile set. This...
Page 294
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 281 • select type to further specify that the access profile will apply an icmp type value, or specify code to further specify that the access profile will apply an icmp code value. Select igmp to instruct the switch to examine the in...
Page 295
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 282 figure 5 - 32 cpu interface filtering configuration window (packet content) this screen will aid the user in configuring the switch to mask packet headers beginning with the offset value specified. The following fields are used to...
Page 296
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 283 specified: • value (0-15) – enter a value in hex form to mask the packet from the beginning of the packet to the 15th byte. • value (16-31) – enter a value in hex form to mask the packet from byte 16 to byte 31. • value (32-47) – ...
Page 297
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 284 select ethernet to instruct the switch to examine the layer 2 part of each packet header. Select ip to instruct the switch to examine the ip address in each frame's header. Select packet content mask to specify a mask to hide the ...
Page 298
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 285 in this window, the user may add a rule to a previously created cpu access profile by clicking the corresponding modify button of the entry to configure, ethernet, ip, ipv6 or packet content. Each entry will open a new and unique ...
Page 299
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 286 vlan name allows the entry of a name for a previously configured vlan. Source mac source mac address – enter a mac address for the source mac address. Destination mac destination mac address – enter a mac address mask for the dest...
Page 300
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 287 to create a new rule set for an access profile click the add rule button. A new window is displayed. To remove a previously created rule, click the corresponding button. The following window is used for the ip rule configuration. ...
Page 301
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 288 figure 5 - 42 cpu interface filtering rule display window (ip) the following window is the cpu interface filtering rule table for packet content. Figure 5 - 43 cpu interface filtering rule table window (packet content).
Page 302
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 289 to remove a previously created rule, select it and click the button. To add a new access rule, click the add rule button: figure 5 - 44 cpu interface filtering rule configuration window (packet content).
Page 303
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 290 the following parameters can be configured. Parameter description profile id this is the identifier number for this profile set. Mode select permit to specify that the packets that match the access profile are forwarded by the swi...
Page 304
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 291 figure 5 - 46 cpu interface filtering rule table window (ipv6) to create a new rule set for an access profile click the add rule button. A new window is displayed. To remove a previously created rule, click the corresponding butto...
Page 305
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 292 or precedence bits field of ipv4. Flow label configuring this field, in hex form, will instruct the switch to examine the flow label field of the ipv6 header. This flow label field is used by a source to label sequences of packets...
Page 306: Section 6
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 293 section 6 security authorization attributes state settings traffic control port security ip-mac-port binding 802.1x web-based access control (wac) trust host bpdu attack protection settings arp spoofing prevention settings access ...
Page 307: Traffic Control
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 294 traffic control figure 6 - 2 traffic control settings window if this field times out and the packet storm continues, the port will be placed in a shutdown forever mode which will produce a warning message to be sent to the trap re...
Page 308
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 295 traffic storm only. • storm cleared – will send storm trap messages when a traffic storm has been cleared by the switch only. • both – will send storm trap messages when a traffic storm has been both detected and cleared by the sw...
Page 309: Port Security
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 296 note: ports that are in the shutdown (forever) mode will be seen as discarding in spanning tree windows and implementations though these ports will still be forwarding bpdus to the switch’s cpu. Note: ports that are in shutdown (f...
Page 310: Port Security Entries
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 297 unit choose the switch id number of the switch in the switch stack to be modified. From / to a consecutive group of ports may be configured starting with the selected port. Admin state this pull-down menu allows the user to enable...
Page 311: Ip-Mac-Port Binding
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 298 click the to delete the corresponding mac address that was permanently learned by the switch. Ip-mac-port binding general overview t he switch offers ip-mac-port binding (impb), a d-link security application used most often on edg...
Page 312
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 299 acl mode is that it ensures better security by checking both arp packets and ip packets. However, doing so requires the use of acl rules. Acl mode can be viewed as an enhanced version of arp mode because arp mode is enabled by def...
Page 313: Strict And Loose State
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 300 strict and loose state other than acl and arp mode, users can also configure the state on a port for granular control. There are two states: strict and loose, and only one state can be selected per port. If a port is set to strict...
Page 314: Impb Global Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 301 figure 6 - 7 arp cache poisoning when the user configures strict mode and enables impb on a port, arp inspection is enabled. For an arp inspection active port: all arp packets should be captured to the cpu (including broadcast arp...
Page 315: Impb Port Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 302 the trap/logfield will enable and disable the sending of trap / log messages for impb. When enabled, the switch will send traps and log messages when an arp packet is received that doesn’t match the ip-mac binding entries configur...
Page 316
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 303 figure 6 - 10 impb port settings window the following fields can be set or modified: parameter description unit choose the switch id number of the switch in the switch stack to be modified. From / to select a port or range of port...
Page 317
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 304 loose state is that it uses less cpu resources because the switch only checks incoming arp packets. However, it also means that loose state cannot block users who send only unicast ip packets. An example of this is that a maliciou...
Page 318: Impb Entry Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 305 to recover the port back to normal state, under which the port will start learning both illegal and legal mac addresses again. Selecting this feature when the port is in normal state will do nothing. Max entry (1-50) specifies the...
Page 319: Mac Block List
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 306 figure 6 - 12 dhcp snooping entries window the following fields can be set: parameter description unit - port use the pull-down menu to choose the switch id number of the switch in the switch stack and the port on the switch. Port...
Page 320: 802.1X
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 307 figure 6 - 14 nd snoop entries window the following fields can be set: parameter description unit - port use the pull-down menu to choose the switch id number of the switch in the switch stack and the port on the switch. Ports (e....
Page 321
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 308 figure 6 - 16 the three roles of 802.1x the following section will explain the three roles of client, authenticator, and authentication server in greater detail. Authentication server the authentication server is a remote device t...
Page 322
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 309 figure 6 - 18 the authenticator client the client is simply the endstation that wishes to gain access to the lan or switch services. All endstations must be running software that is compliant with the 802.1x protocol. For users ru...
Page 323
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 310 figure 6 - 20 the 802.1x authentication process the d-link implementation of 802.1x allows network administrators to choose between two types of access control used on the switch, which are: 1. Port-based access control – this met...
Page 324
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 311 port-based network access control figure 6 - 21 example of typical port-based configuration once the connected device has successfully been authenticated, the port then becomes authorized, and all subsequent traffic on the port is...
Page 325
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 312 mac-based network access control figure 6 - 22 example of typical mac-based configuration in order to successfully make use of 802.1x in a shared media lan segment, it would be necessary to create “logical” ports, one for each att...
Page 326: 802.1X Port Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 313 guest vlans figure 6 - 23 guest vlan authentication process limitations using the guest vlan 1. Ports supporting guest vlans cannot be gvrp enabled and vice versa. 2. A port cannot be a member of a guest vlan and a static vlan sim...
Page 327
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 314 figure 6 - 24 configure 802.1x authenticator parameter window to configure the settings by port, click its corresponding modify button, which will display the following table to configure:.
Page 328
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 315 figure 6 - 25 configure 802.1x port settings window this screen allows setting of the following features: parameter description unit choose the switch id number of the switch in the switch stack to be modified. From / to enter the...
Page 329: Guest Vlan Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 316 the default setting is auto. Txperiod (1-65535) this sets the tx period of time for the authenticator pae state machine. This value determines the period of an eap request/identity packet transmitted to the client. The default set...
Page 330
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 317 vlan name enter the pre-configured vlan name to create as a guest 802.1x vlan. Operation the user has four choices in configuring the guest 802.1x vlan, which are: enabled ports – selecting this option will enable ports listed in ...
Page 331: 802.1X User Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 318 this window displays the following information: parameter description index choose the desired radius server to configure: first, second or third. Ipv4 address click the radio button and enter the radius ipv4 address. Ipv6 address...
Page 332: Initialize Port(S)
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 319 parameter description max user (1-4000) enter the maximum number of users to be allowed. Check the no limit check box to specify that there will be the maximum number of users. By default there is no limit. User name enter the use...
Page 333: Reauthenticate Port(S)
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 320 to initialize ports, first choose the switch in the switch stack by using the pull-down menu and then choose the range of ports in the from and to field. Then the user must specify the mac address to be initialized by entering it ...
Page 334
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 321 note: the user must first globally enable 802.1x in the dgs-3400 web management tool window before initializing ports. Information in the initialize ports table cannot be viewed before enabling 802.1x. To re-authenticate ports for...
Page 335: Conditions And Limitations
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 322 web-based access control (wac) conditions and limitations 1. The subnet of the authentication vlan’s ip interface must be the same as that of the client. If not configured properly, the authentication will be permanently denied by...
Page 336: Wac Global Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 323 6. If a radius server is to be used for authentication, the user must first establish a radius server with the appropriate parameters, including the target vlan, before enabling the web-based access control on the switch. Wac glob...
Page 337: Wac Port Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 324 virtual ipv6 enter a virtual ipv6 address so that the tcp packets sent to the virtual ip for ipv6 will get a reply. If the virtual ip for ipv6 is enabled, the tcp packets sent to the virtual ip or physical ipif’s ipv6 address will...
Page 338
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 325 figure 6 - 34 wac port settings window the following parameters can be configured: parameter description unit use the drop-down menu to select the unit you wish to configure. From / to enter the range of ports you wish to configur...
Page 339: Wac User Account
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 326 value between 1 and 1440 minutes. A value of infinite indicates the idle state of the authenticated host on the port will never be checked. The default setting is infinite. Block time (0-300 sec) this parameter specifies the perio...
Page 340: Wac Authentication State
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 327 figure 6 - 37 user account modify window the following parameters can be configured: parameter description user name enter a user name for the new account. Old password enter the original password for the user. This field is case-...
Page 341: Trust Host
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 328 figure 6 - 38 wac host table settings window the following parameters can be configured: parameter description port list enter the ports you wish to find or delete. Check the all ports box to select all ports. State select the sta...
Page 342
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 329 figure 6 - 39 security ip window to configure secure ip addresses for trusted host management of the switch, type the ip address of the station you are currently using in the first field as well as up to three additional ip addres...
Page 343
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 330 bpdu attack protection settings this window is used to configure the bpdu protection function for the ports on the switch. In generally, there are two states in bpdu protection function. One is the normal state, and another is the...
Page 344
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 331 the following parameters can be configured: parameter description global state enable or disable the bpdu attack protection global state. Trap state enable or disable the bpdu attack trap state. Log state enable or disable the bpd...
Page 345
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 332 figure 6 - 41 arp spoofing prevention settings window the following parameters can be configured: parameter description gateway ip address enter the gateway ip address. Gateway mac address enter the gateway mac address. Ports ente...
Page 346
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 333 the switch has four built-in authentication server groups, one for each of the tacacs, xtacacs, tacacs+ and radius protocols. These built-in authentication server groups are used to authenticate users trying to access the switch. ...
Page 347
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 334 authentication policy and parameter settings this command will enable an administrator-defined authentication policy for users trying to access the switch. When enabled, the device will check the login method list and choose a tec...
Page 348
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 335 the following parameters can be set: parameter description application lists the configuration applications on the switch. The user may configure the login method list and enable method list for authentication for users utilizing ...
Page 349: Authentication Server Host
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 336 figure 6 - 45 add a server host to server group - xtacacs window to add an authentication server host to the list, enter its ip address in the ip address field, choose the protocol associated with the ip address of the authenticat...
Page 350
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 337 to view the following window, click security > access authentication control > authentication server host: figure 6 - 47 authentication server host window to add an authentication server host, click the add button, revealing the f...
Page 351: Login Method Lists
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 338 note: more than one authentication protocol can be run on the same physical server host but, remember that tacacs/xtacacs/tacacs+ are separate entities and are not compatible with each other. Login method lists this command will c...
Page 352: Enable Method Lists
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 339 figure 6 - 51 login method list – add window to define a login method list, set the following parameters and click apply: parameter description method list name enter a method list name defined by the user of up to 15 characters. ...
Page 353
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 340 note: to set the local enable password, see the next section, entitled local enable password. To view this window, click security > access authentication control > enable method lists, as shown below. Figure 6 - 52 enable method l...
Page 354
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 341 to define an enable login method list, set the following parameters: parameter description method list name enter a method list name defined by the user of up to 15 characters. Method 1, 2, 3, 4 the user may add one, or a combinat...
Page 355: Enable Admin
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 342 enable admin the enable adminwindow is for users who have logged on to the switch on the normal user level, and wish to be promoted to the administrator level. After logging on to the switch, users will have only user level privil...
Page 356: Radius Accounting Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 343 radius accounting settings the accounting feature of the switch uses a remote radius server to collect information regarding events occurring on the switch. The following is a list of information that will be sent to the radius se...
Page 357
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 344 there are three types of accounting that can be enabled on the switch. Network – when enabled, the switch will send informational packets to a remote radius server when 802.1x users connect to the physical ports on the switch to a...
Page 358
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 345 mac-based access control global settings the following window is used to set the parameters for the mac-based access control function on the switch. Here the user can set the state, password, authentication method, as well as crea...
Page 359
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 346 figure 6 - 58 mac-based access control global settings window the following parameters may be viewed or set: parameter description.
Page 360
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 347 mac-based access control global settings state use the pull-down menu to globally enable or disable the mac-based access control function on the switch. Method use the pull-down menu to choose the type of authentication to be used...
Page 361
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 348 an authenticated host will stay in an authenticated state. When the aging time has expired, the host will be moved back to an unauthenticated state. When aging time is set to infinite, it will disable the aging time. Block time (1...
Page 362: Safeguard Engine
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 349 safeguard engine periodically, malicious hosts on the network will attack the switch by utilizing packet flooding (arp storm) or other methods. These attacks may increase the switch load beyond its capability. To alleviate this pr...
Page 363: Safeguard Engine Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 350 notice: when safeguard engine is enabled, the switch will allot bandwidth to various traffic flows (arp, ip) using the ffp (fast filter processor) metering table to control the cpu utilization and limit traffic. This may limit the...
Page 364: Traffic Segmentation
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 351 mode used to select the type of safeguard engine to be activated by the switch when the cpu utilization reaches a high rate. The user may select: fuzzy – if selected, this function will instruct the switch to minimize the ip and a...
Page 365: Secure Socket Layer (Ssl)
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 352 figure 6 - 65 setup forwarding ports window configuring traffic segmentation on the xstack ® dgs-3400 series is accomplished in two parts. First, select a switch in the switch stack by using the unit pull-down menu, and then speci...
Page 366: Ssl
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 353 ssl this window is used to download a certificate file for the ssl function on the switch from a tftp server. The certificate file is a data record used for authenticating devices on the network. It contains information on the own...
Page 367: Secure Shell (Ssh)
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 354 certificate file name enter the path and the filename of the certificate file to download. This file must have a .Der extension. (ex. C:/cert.Der) key file name enter the path and the filename of the key file to download. This fil...
Page 368: Ssh Server Configuration
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 355 2. Configure the user account to use a specified authorization method to identify users that are allowed to establish ssh connections with the switch using the ssh user authentication window. There are three choices as to the meth...
Page 369
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 356 to the switch to attempt another login. The number of maximum attempts may be set between 2 and 20. The default setting is 2. Session rekeying this field is used to set the time period that the switch will change the security shel...
Page 370
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 357 parameter description authentication algorithm password this field may be enabled or disabled to choose if the administrator wishes to use a locally configured password for authentication on the switch. This field is enabled by de...
Page 371
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 358 ssh user authentication mode the following windows are used to configure parameters for users attempting to access the switch through ssh. To view this window, click security > ssh > ssh user authentication mode, as shown below. F...
Page 372: Compound Authentication
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 359 compound authentication modern networks employ many authentication methods. The compound authentication methods supported by this switch include 802.1x, mac-based access control (mac), web-based access control (wac), japan web-bas...
Page 373: Impb + Jwac Mode
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 360 impb + jwac mode this mode adds an extra layer of security by checking the ip mac-binding port binding (impb) table before trying one of the supported authentication methods. The impb table is used to create a ‘white-list’ that ch...
Page 374
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 361 figure 6 - 76 multiple authentication settings window the following parameters may be set: parameter description unit choose the unit id of the switch in the switch stack you wish to configure. From / to select a port or range of ...
Page 375
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 362 host-based – each user can be authenticated individually. Methods none – specifies that multiple authentication is not enabled. Any – specifies that a client will gain access if it passes any of the authentication methods (802.1x,...
Page 376: Jwac Global Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 363 guest vlan port list. Click apply to implement changes made. Japanese web-based access control (jwac) the jwac folder contains six windows: jwac global configuration, jwac port settings, jwac user account, jwac host information, j...
Page 377
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 364 figure 6 - 79 jwac global state configuration window.
Page 378
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 365 to set jwac for the switch, complete the following fields: parameter description jwac global state settings jwac global state use this drop-down menu to either enable or disable jwac on the switch. Jwac configuration forcible logo...
Page 379: Jwac Port Settings
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 366 switch detects no quarantine server, it will redirect all unauthenticated http access attempts to the jwac login page forcibly if the redirect is enabled and the redirect destination is configured to be a quarantine server. Error ...
Page 380
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 367 figure 6 - 80 jwac port table parameter window to configure individual jwac port settings, click the add button, the following window will be displayed:.
Page 381
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 368 figure 6 - 81 jwac port table parameter - add window to configure the settings by port, click the corresponding modify button, which will display the following window: figure 6 - 82 j jwac port table parameter - edit window to set...
Page 382: Jwac User Account
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 369 aging time (1-1440 min) this parameter specifies the period of time a host will keep in authenticated state after it successes to authenticate. Enter a value between 1 and 1440 minutes. The default setting is 1440 minutes. To main...
Page 383: Jwac Authentication State
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 370 confirm new password retype the password entered in the previous field. Click apply to implement changes made. To view jwac user settings for the switch, click the show all jwac user account entries link, to view the following win...
Page 384
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 371 to view the following window, click security > japanese web-based access control (jwac) > jwac authentication state, as shown below. Figure 6 - 87 jwac authentication state table window to search for hosts, enter the port list inf...
Page 385: Jwac Customize Page
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 372 jwac customize page this window is used to customize fields in the jwac customize page. To view this window, click security > japanese web-based access control (jwac) > jwac customize page, as shown below. Figure 6 - 89 jwac custo...
Page 386: Section 7
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 373 section 7 monitoring device status stacking information stacking device module information dram & flash utilization cpu utilization port utilization packets errors packet size browse router port browse mld router port vlan status ...
Page 387: Stacking Information
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 374 figure 7 - 1 device status window the following fields may be viewed in this window: parameter description id specifies the switch in the switch stack that is being displayed. Internal power displays active if the internal power s...
Page 388: Stacking Device
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 375 parameters description box id displays the switch’s order in the stack. User set box id can be assigned automatically (auto), or can be assigned statically. The default is auto. Type displays the model name of the corresponding sw...
Page 389: Dram & Flash Utilization
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 376 figure 7 - 4 module information window module information displayed: parameter description id the slot number where the module is installed. Module name the full name of the module installed. Rev. No. The version of the installed ...
Page 390: Cpu Utilization
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 377 cpu utilization this window displays the percentage of the cpu being used, expressed as an integer percentage and calculated as a simple average by time interval. To view this window, click monitoring > cpu utilization, as shown b...
Page 391: Port Utilization
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 378 port utilization this window displays the percentage of the total available bandwidth being used on the port. To view this window, click monitoring > port utilization, as shown below. Figure 7 - 7 port utilization window to select...
Page 392: Packets
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 379 packets the web manager allows various packet statistics to be viewed as either a line graph or a table. Six windows are offered. Received (rx) this window displays the following graph of packets received on the switch. To select ...
Page 393
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 380 figure 7 - 9 rx packets analysis table window the following fields may be set or viewed: parameter description time interval select the desired setting between 1s and 60s, where “s” stands for seconds. The default value is one sec...
Page 394: Umb Cast (Rx)
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 381 umb cast (rx) to select a port to view these statistics for, first select the switch in the switch stack by using the unit pull-down menu and then select the port by using the port pull-down menu. The user may also use the real-ti...
Page 395
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 382 figure 7 - 11 rx packets analysis window (table for unicast, multicast, and broadcast packets) the following fields may be set or viewed: parameter description time interval select the desired setting between 1s and 60s, where “s”...
Page 396: Transmitted (Tx)
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 383 transmitted (tx) to select a port to view these statistics for, first select the switch in the switch stack by using the unitpull-down menu and then select the port by using the port pull-down menu. The user may also use the real-...
Page 397
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 384 figure 7 - 13 tx packets analysis window (table for bytes and packets) the following fields may be set or viewed: parameter description time interval select the desired setting between 1s and 60s, where “s” stands for seconds. The...
Page 398: Errors
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 385 errors the web manager allows port error statistics compiled by the switch's management agent to be viewed as either a line graph or a table. Four windows are offered. Received (rx) to select a port to view these statistics for, f...
Page 399
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 386 figure 7 - 15 rx error analysis window (table) the following fields can be set: parameter description time interval select the desired setting between 1s and 60s, where “s” stands for seconds. The default value is one second. Reco...
Page 400: Transmitted (Tx)
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 387 multidr incremented for each multicast packet that is discarded. Vlaningdr incremented for each packet that is discarded by vlan ingress checking. Show/hide check whether or not to display crc error, under size, over size, fragmen...
Page 401
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 388 to view the transmitted error packets table window, click the link view table , which will show the following table: figure 7 - 17 tx error analysis window (table) the following fields may be set or viewed: parameter description t...
Page 402: Packet Size
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 389 view line chart clicking this button instructs the switch to display a line graph rather than a table. Packet size the web manager allows packets received by the switch, arranged in six groups and classed by size, to be viewed as ...
Page 403
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 390 to view the packet size analysis table window, click the link view table , which will show the following table: figure 7 - 19 rx size analysis window (table) the following fields can be set or viewed: parameter description time in...
Page 404: Browse Router Port
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 391 256-511 the total number of packets (including bad packets) received that were between 256 and 511 octets in length inclusive (excluding framing bits but including fcs octets). 512-1023 the total number of packets (including bad p...
Page 405: Browse Mld Router Port
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 392 browse mld router port this displays which of the switch’s ports are currently configured as router ports in ipv6. A router port configured by a user (using the console or web-based management interfaces) is displayed as a static ...
Page 406: Vlan Status Port
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 393 vlan status port this window allows the vlan status for each of the switch's ports to be viewed. To view settings for a particular port, enter the port number and click find. To view this window, click monitoring > vlan status por...
Page 407: Authenticator Statistics
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 394 port list enter the port list you wish to find. To view all ports tick the select all ports check box. Mac address displays the mac address of the client that is present when configured in mac based mode. It displays “-p” when con...
Page 408: Authenticator Diagnostics
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 395 figure 7 - 26 authenticator session statistics window authenticator diagnostics this table contains the diagnostic information regarding the operation of the authenticator associated with each port. An entry appears in this table ...
Page 409
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 396 figure 7 - 29 radius account client information the user may also select the desired time interval to update the statistics, between 1s and 60s, where “s” stands for seconds. The default value is one second. To clear the current s...
Page 410: Mac Address Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 397 note: to configure 802.1x features for the xstack ® switch, go to security > 802.1x. Mac address table this allows the switch's dynamic mac address forwarding table to be viewed. When the switch learns an association between a mac...
Page 411: Igmp Snooping Group
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 398 mac address the mac address entered into the address table. Unit - port the unit and port to which the mac address above corresponds. Type describes the method which the switch discovered the mac address. The possible entries are ...
Page 412: Mld Snooping Group
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 399 the functions are used in the mac address table: parameter description vlan name enter a vlan name to be browsed by or to be deleted. Vid list enter a list of vlan id to be browsed by or to be deleted. Ip address enter a ip addres...
Page 413: Trace Route
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 400 the functions are used in the mac address table: parameter description vlan name enter a vlan name to be browsed by or to be deleted. Vid list enter a list of vlan id to be browsed by or to be deleted. Ip address enter a ip addres...
Page 414: Trace Ipv6 Route
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 401 domain name enter the domain name of the host. Ttl (1-60) the time to live value of the trace route request. This is the maximum number of routers the traceroute command will cross while seeking the network path between two device...
Page 415: Switch Logs
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 402 timeout (1-65535) defines the time-out period while waiting for a response from the remote device. The user may choose an entry between 1 and 65535 seconds. Probe (1-9) the probe value is the number of times the switch will send p...
Page 416: Browse Arp Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 403 severity tick the check boxes to specify the severity to be displayed. Sequence a counter incremented whenever an entry to the switch's history log is made. The table displays the last entry (highest sequence number) first. Time d...
Page 417: Ip Forwarding Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 404 figure 7 - 39 current session table window ip forwarding table the ip forwarding table window is read-only where the user may view ip addresses discovered by the switch. To search a specific ip address, enter it into the field lab...
Page 418: Browse Ipv6 Routing Table
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 405 figure 7 - 41 routing table window browse ipv6 routing table to view this window, click monitoring > routing table > browse ipv6 routing table, as shown below. Figure 7 - 42 ipv6 routing table window mac-based access control authe...
Page 419
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 406 figure 7 - 43 mac-based access control authentication state table settings window.
Page 420: Section 8
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 407 section 8 save, reset and reboot reset reboot system save services logout reset the resetfunction has several options when resetting the switch. Some of the current configuration parameters can be retained while resetting all othe...
Page 421: Save Services
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 408 click the no radio button for not saving the current configuration before restarting the switch. All of the configuration information entered from the last time save changeswas executed will be lost. Click the restart button to re...
Page 422: Configuration Information
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 409 configuration information the following window is used to view information regarding configuration files saved in the switch. The switch can hold two configuration files in its memory. Configuration files can be uploaded to the sw...
Page 423: Logout
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 410 current configuration settings the following window is used to select one of the two possible configuration files that can be stored in the switch as a boot up configuration file, or to select it for deletion from the switch’s mem...
Page 424: Appendix A
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 411 appendix a mitigating arp spoofing attacks using packet content acl how address resolution protocol works address resolution protocol (arp) is the standard method for finding a host’s hardware address (mac address) when only its i...
Page 425
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 412 figure 2 when the switch floods the frame of arp request to the network, all pcs will receive and examine the frame but only pc b will reply the query as the destination ip matched (see figure 3). Figure 3 when pc b replies to the...
Page 426
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 413 how arp spoofing attacks a network arp spoofing, also known as arp poisoning, is a method to attack an ethernet network which may allow an attacker to sniff data frames on a lan, modify the traffic, or stop the traffic altogether ...
Page 427
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 414 a common dos attack today can be done by associating a nonexistent or any specified mac address to the ip address of the network’s default gateway. The malicious attacker only needs to broadcast one gratuitous arp to the network c...
Page 428
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 415 example topology.
Page 429: Configuration
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 416 configuration the configuration logic is as follows: 1. Only if the arp matches source mac address in ethernet, sender mac address and sender ip address in arp protocol can pass through the switch. (in this example, it is the gate...
Page 430
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 417.
Page 431: Appendix B
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 418 appendix b switch log entries the following table lists all possible entries and their corresponding meanings that will appear in the system log of this switch. Category event description log information severity remark system sys...
Page 432
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 419 configuration successfully downloaded configuration successfully downloaded by console (username: , ip: ) informational by console and “ip: , mac: “ are xor shown in log string, which means if user login by console, will no ip and...
Page 433
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 420 will no ip and mac information for logging console successful login through console unit , successful login through console (username: ) informational there are no ip and mac if login by console. Login failed through console unit ...
Page 434
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 421 ) cist new root selected cist new root bridge selected (mac: , priority: ) informational msti root selected msti regional new root bridge selected (instance: , mac: , priority: ) informational bpdu loop back on port bpdu loop back...
Page 435
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 422 method ) successful login through web (ssl) authenticated by aaa local method successful login through web (ssl) from authenticated by aaa local method (username: ) informational login failed through web (ssl) authenticated by aaa...
Page 436
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 423 login failed through console due to aaa server timeout or improper configuration login failed through console due to aaa server timeout or improper configuration (username: ) warning successful login through web authenticated by a...
Page 437
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 424 configuration ) successful enable admin through console authenticated by aaa local_enable method successful enable admin through console authenticated by aaa local_enable method (username: ) informational enable admin failed throu...
Page 438
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 425 successful enable admin through console authenticated by aaa none method successful enable admin through console authenticated by aaa none method (username: ) informational successful enable admin through web authenticated by aaa ...
Page 439
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 426 ) enable admin failed through web (ssl) authenticated by aaa server enable admin failed through web (ssl) from authenticated by aaa server (username: ) warning enable admin failed through web (ssl) due to aaa server timeout or imp...
Page 440
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 427 dynamic impb entry is in conflict with static arp dynamic impb entry is conflict with static arp(ip: , mac: , port ) warning dynamic impb entry conflicts with static impb dynamic impb entry conflicts with static impb: , mac: , por...
Page 441
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 428 the authorized number of users on a port has reached the maximum user limit. Port enters mbac stop learning state. Warning the authorized number of users on a port is below the maximum user limit in a time interval (interval is pr...
Page 442
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 429 whole device. This log will be triggered when the authorized user number is below the max user limit on whole device in a time interval (interval is project depended) wac recovers from stop learning state. Warning lldp lldp-med to...
Page 443
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 430 duld a unidirectional link has been detected on this port port: is unidirectional warning.
Page 444: Appendix C
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 431 appendix c trap logs this table lists the trap logs found on the dgs-3400 series switches. Macnotifytrap this trap indicates the mac address variations in the address table. 1.3.6.1.4.1.171.11.70.1.2.16.1.2.0 .1 1.3.6.1.4.1.171.11...
Page 445
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 432 singleipmscoldstart commander switch will send swsingleipmscoldstart notification to indicated host when its member generate cold start notification. 1.3.6.1.4.1.171.12.8.6.0.11 singleipmswarmstart the commander switch will send s...
Page 446
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 433 connect -> working. Connect -> disconnect. Disconnect -> lowvoltage. Disconnect -> overcurrent. Disconnect -> working. Disconnect -> connect. Powerfailure power failure notification. The notification is issued when the swpowerstat...
Page 447
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 434 authenticationfailure an authenticationfailure trap signifies that the sending protocol entity is the address of a protocol message that is not properly authenticated.While implementations of the snmp must be capable of generating...
Page 448: Glossary
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 435 glossary 1000base-sx: a short laser wavelength on multimode fiber optic cable for a maximum length of 550 meters 1000base-lx: a long wavelength for a “long haul” fiber optic cable for a maximum length of 10 kilometers 100base-fx: ...
Page 449
Xstack ® dgs-3400 series layer 2 gigabit ethernet managed sw itch 436 line speed: see baud rate. Main port: the port in a resilient link that carries data traffic in normal operating conditions. Mdi - medium dependent interface: an ethernet port connection where the transmitter of one device is conn...