Black Box LEH8814 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161

Go to page of

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of Black Box LEH8814, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Black Box LEH8814 one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of Black Box LEH8814. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of Black Box LEH8814 should contain:
- informations concerning technical data of Black Box LEH8814
- name of the manufacturer and a year of construction of the Black Box LEH8814 item
- rules of operation, control and maintenance of the Black Box LEH8814 item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Black Box LEH8814 alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Black Box LEH8814, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Black Box service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Black Box LEH8814.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the Black Box LEH8814 item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    Black Box Hardened Manage d Ethernet Switch Hardened Managed Ethernet Switch LEH8814, LEH813 Series, LEH812 Series, LEH808 Series CUSTOMER SUPPORT INFORMA TION Order toll-free i n the U.S. 24 h ours, 7 A.M. M onday to midni ght Friday : 877-877-BB OX FREE technical supp ort, 24 hours a day , 7 days a w eek: Call 724-746-550 0 or Fax 724-746-0746 Ma[...]

  • Page 2

    Black Box Hardened Manag ed Ethernet h Switc Quick S t art Guide This quick start guide describ es how to install and use the Hardened Managed Ethe rnet Switch. This is th choice for harsh environme nts constrained by spa e switch of ce. Physical Description The Port Status LEDs and Power Inputs LED State Indication 10/100Base-TX, 100Base-F X Stead[...]

  • Page 3

    Black Box Hardened Managed Ethern et Switch Power Input Assign ment Power3 12VDC DC Jack + 12-32VDC Power1 - Power Ground Terminal Block Power2 + 12-32VDC Earth Ground DC T erminal Block Power Input power input s can be used t power supplies function is supported s: There are two p airs of o power up this switch. Redundant . Functional Descri[...]

  • Page 4

    Black Box Hardened Manag ed Ethernet Switch Console Configuration z Connect to the switch console: Connect the DB9 null-modem or cross over cable to the RS-232 serial port of the device and the RS-232 serial port of the terminal or computer running the terminal emulation application. Direct access to the administration console is achieved by direct[...]

  • Page 5

    Black Box Hardened Manage d Ethernet Switch z Logon to Privileged Exec Mode (Enable Mode): At the “switch_a>” prompt just type to logon to Privileged Exec Mode (or Enable Mode) prompt will show on the screen. z Logon to Configure Mode At the “switch_a#” prompt just type in “ <Enter> to logon to Configure Mode (or C the “switch_[...]

  • Page 6

    Black Box Hardened Manag ed Ethernet Switch z Enter the factory default login ID: root. Enter the factory default password (no password). Then click on the “Login” button to log on to the switch. 6 U s e r ’ s M a n u a l[...]

  • Page 7

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 7 Preface This manual describes how to install and use the Blakc Box Hardened Managed Ethernet Switch. This switch introdu ced here is designed to deliver full scalability with SNMP/RMON web-based manag ement functions by providing: To get the most out of th is manual, you should[...]

  • Page 8

    Black Box Hardened Manag ed Ethernet Switch 8 U s e r ’ s M a n u a l T able of Contents Q UICK S TART G UIDE .................. P HYSICAL D ESCRIPTION .................................. The Port Status LEDs and Power Inputs ........................ F UNCTIONAL D ESCRIPTION ..................... C ONSOLE C ONFIGURATION .................... W EB C[...]

  • Page 9

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 9 SNMP & RMON M ANAGEMENT O VERVIEW .................................................. SNMP A GENT AND MIB-2 (RFC 1213) ....... RMON MIB (RFC 1757) AND B RI DGE MIB ( RMON Groups Suppor ted ......................................... Bridge Groups Su pported ...................[...]

  • Page 10

    Black Box Hardened Manag ed Ethernet Switch Product Overview Black Box Hardened Managed Ethernet Switch Front View Package Contents When you unpack th e product pa ckage, you shall find the items listed below. Please inspect the conte nts, and report any apparent damage or missi ng items immediately to your authorized reseller. • The Black Box Ha[...]

  • Page 11

    Black Box Hardened Managed Ethern et Switch U s e r ’ s M a n u a l 1 1 Product Highlights Basic Features z Complies with NEMA TS1 control equipment z Complies w ith EN61000-6-2 EMC immunity for Industrial environment z Supports 8192 MAC addresses z Provides 2M bits memory z Auto-negotiation for speed and duplexity on all TX ports z Auto-MDIX on [...]

  • Page 12

    Black Box Hardened Manag ed Ethernet Switch 1 2 U s e r ’ s M a n u a l INTERNETWORKING PROTOC OLS z Bridging: IEEE802.1w Rapid S panning T ree IEEE802.1D S panning T ree compatible IEEE802.1Q – GVRP Ring z IP Multicast: IGMP Snooping z Rate Control z NTP NETWORK MANAGEMENT METHODS z Console port access via RS-232 c able (CLI, Command Line Inte[...]

  • Page 13

    Black Box Hardened Manage d Ethernet Switch Front Panel Display c  POWER This LED comes on when the switch is properly connected to power and turned on. d  Port S tatus LEDs The LEDs are located at the left side of the f ront panel, displaying status for each respective port. Please refer to the following table for more det ails. LED State In[...]

  • Page 14

    Black Box Hardened Manag ed Ethernet Switch 1 4 U s e r ’ s M a n u a l Physical Ports The Black Box Hardened 14-port 10/100Base-TX Hardened Managed Ethernet Switch provide s: Managed Ethernet Switch 13-port 10/100Base-TX + 1-port 1 Hardened Managed Ethernet Sw 00Base-FX itch 12-port 10/100Base-TX + 2-port 100 Base-FX Hardened Managed Ethernet Sw[...]

  • Page 15

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 1 5 Switch Management Web-based browser interface The switch also boasts a point-and- click bro wser-based interface that lets user access full switch conf iguration a nd functionality from a Netscape or Internet Explorer browser. Administration console via RS-232 serial port (CL[...]

  • Page 16

    Black Box Hardened Manag ed Ethernet Switch 1 6 U s e r ’ s M a n u a l Inst allation This chapter gives step-by-step in install the switch: structions about how to Selecting a Site for the Sw ch As with any electric dev ice, yo where it will not be subject ed humidity, or electromagnetic in terferenc site you select should meet the following r -[...]

  • Page 17

    Black Box Hardened Manage d Ethernet Switch Rear view Connecting to Your Network Cable Type & Length It is necessary to follow the cab le specifications below w hen connecting the switch to your network. Use appropr iate cables that meet your speed and cabling requirements. Cable Specifications U s e r ’ s M a n u a l 1 7[...]

  • Page 18

    Black Box Hardened Manag ed Ethernet Switch 1 8 U s e r ’ s M a n u a l Speed Connector Port Spee Half/F Duple x. ce d Cable ull x Ma Distan 10Base-T RJ-45 10/20 Mbps 2-pair UTP/STP Cat. 3, 4, 5 100 m 100Base-TX RJ-45 100/200 Mbps 2-pair UTP/STP Cat. 5 100 m 1000Base-T RJ-45 2000 Mbps 4-pair UTP/STP Cat. 5 100 m 100Base-FX (*W avelength of 1300nm[...]

  • Page 19

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 1 9 Cabling S tep 1: First, ensure the power of the switch and end devices are turned off. <Note> Always ensure that the power is off before any installation. S tep 2: Prepare cable with correspondi ng connectors for each t ype of port in use. S tep 3: Consult Cable S pecif[...]

  • Page 20

    Black Box Hardened Manag ed Ethernet Switch 2 0 U s e r ’ s M a n u a l Switch Management This chapter explains the me th configure management a ccess to types of management ap plicatio and the communication and management proto cols that management device (workstation the system. It also contains info rm options. This chapter covers the followin[...]

  • Page 21

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 2 1 Administration Console (C The administration cons riented, Command Line Interface g system administration such as di ging option settings. Using this method, you can view from a terminal, personal com p workstation connected to the swit There are two ways to use this m access[...]

  • Page 22

    Black Box Hardened Manag ed Ethernet Switch 2 2 U s e r ’ s M a n u a l Modem Access You can access the switch’s adminis Macintosh using an external modem a switch management program provides Co from the Basic Management screen that lets for modem access. When you have configured the external console, the switch transmits charac ter on the mode[...]

  • Page 23

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 2 3 Protocols The switch supports the following VIRTUAL TERMINAL PROTOC OLS, SUCH A virtual terminal protocol is a software p you to establish a management session f workstation. Because Telnet runs over TC address configured on the switch before y virtual terminal protocol. <[...]

  • Page 24

    Black Box Hardened Manag ed Ethernet Switch 2 4 U s e r ’ s M a n u a l Web-Based Browser Management The switch provides a web-ba sed browser interface for configuring and managin g the switch. This interface allows you to access the switch using a preferred web browser. This chapter describes how to configu re the switch using its web-based brow[...]

  • Page 25

    Black Box H r a d ned Managed Ethernet Swi tch e U s e r ’ s M a n u a l 2 5 SNMP & RMON M This chapter describes the Management Protocol (SNMP) (RMON) capabilities. anagement switch’s Simple Network and Remote Monitorin g Overview RMON is an abbreviation for the Remote Monito ring MIB (Management Information Base ). by the Internet Enginee[...]

  • Page 26

    Black Box Hardened Manag ed Etherne witch t S 2 6 U s e r ’ s M a n u a l - Retrieving MIB counters from various la y to the SNMP GET/GET NEXT f rame me - Setting MIB variables according to the SNMP SET frame message. - Generating an SNMP TRAP frame mes Station if the threshold of a certain MIB conditions (such as t he following) are m WA RM STA [...]

  • Page 27

    Black Box Hardened Managed Ethern et Switch U s e r ’ s M a n u a l 2 7 - RMON History Group – gathers and stores tical samples from the previous Statistics Group. - RMON Alarm Group – allow thresholds for any MIB variable. Threshold, High Threshold, or both. A trigger can trigger an alarm when the value of a specific MIB va riable exceeds a [...]

  • Page 28

    Black Box Hardened Manag ed Ethernet Switch Web-Based Browser Management The switch provides a web-ba sed browser interface for configuring and managin g the switch. This interface allows you to access the switch using a preferred web browser. This chapter describes how to configu re the switch using its web-based browser interfa ce. Logging on to [...]

  • Page 29

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 2 9 PASSWORD Enter the factory default password (no password). Or enter a user-defined password if you followed the instructions later and changed the factory default password. Then click on the “Login” button to log on to the switch.[...]

  • Page 30

    Black Box Hardened Manag ed Ethernet Switch Understanding the Browser Interface The web browser interface provid ups of point-and-click buttons at the left field of the managing the switch. es gro screen for configuring and SYSTEM System Information, System/Password, IP Address, Save Configuration, Firmware Upgrade, Reboot, Logo ut PORT Configurati[...]

  • Page 31

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 3 1 VLAN VLAN Mode Setting, 802.1Q VLAN Port Setting, 802.1Q Port Setting, Port Based VLAN QOS Global Configuration, 802.1p priority, DSCP SNMP SNMP General Setting, SNMP v1/v2c, SNMP v3 802.1X Radius Configuration, Po rt-Based Authentication OTHER PROT OCOLS GVRP , IGMP Snooping[...]

  • Page 32

    Black Box Hardened Manag ed Ethernet Switch System System Information View System information, VLAN ID, IP Address, and IP Subnet Mask of the Switch. 3 2 U s e r ’ s M a n u a l[...]

  • Page 33

    Black Box Hardened Managed Ethern et Switch System Name/Password 1. System Name: Click in “System Name” text box. T ype a system name if it is blank, or replace the current system name with a new one. 2. Updating setting: Click “Updating setting” button to update your settings. 3. Password: Click in “Password” text box. T ype a p asswor[...]

  • Page 34

    Black Box Hardened Manag ed Ethernet Switch IP Address 1. IP Address: Click in “IP Addres s” text box and type a new address to change the IP Address. 2. IP Subnet Mask: Click in “IP Subnet Mask” text box and type a new address to change the IP Subnet Mask. 3. Submit: Click “Submit” button w hen you finished these selections. 4. Y ou ne[...]

  • Page 35

    Black Box Hardened Managed Ethern et Switch Save Configuration 1. Load config from TFTP server: Click in “TFTP Server” text box and type the TFTP server IP address from where the file will be obt ained. Click in “FILE” text box and type the name of the file that will be obtained. Click “Load” button to load the file from the TFTP server[...]

  • Page 36

    Black Box Hardened Manag ed Ethernet Switch Firmware Upgrade 1. Filename: Click in “Filename” text box and type the name of the file that you intend to upgrade it to the switch. 2. TFTP server IP: Clic k in “TFTP server IP” te xt box and t ype the TFTP server IP address from where the file will be obtained. 3. Upgrade: Click “upgrade” b[...]

  • Page 37

    Black Box Hard Ethernet Switch ened Manage d Please follow the message on the screen during the firmware upgrade process. Do not turn off the power or perform other functions during this period of time. U s e r ’ s M a n u a l 3 7[...]

  • Page 38

    Black Box Hardened Manag ed Ethernet Switch 3 8 U s e r ’ s M a n u a l[...]

  • Page 39

    Black Box Hardened Manage d Ethernet Switch Firmware has been upgraded successfully to the switch. Reboot the switch after completing the upgrade process. U s e r ’ s M a n u a l 3 9[...]

  • Page 40

    Black Box Hardened Manag ed Etherne witch t S Reboot Reboot: Click “Reboot” button to restart the switch. 4 0 U s e r ’ s M a n u a l[...]

  • Page 41

    Black Box Hardened Manage d Ethernet Switch Logout Logout: Click “Logout” button to logout of the switch. U s e r ’ s M a n u a l 4 1[...]

  • Page 42

    Black Box Hardened Manag ed Ethernet Switch Port Configuration 1. Admin Setting: Click “Admin Setting” drop-down menu to choose “Link down” or “Link up” from the “Admin Setting” drop- down list to disable or enable Admin Setting for the port. 2. Speed: Click “S peed” drop-d own menu to change the line speed and duplex settings f[...]

  • Page 43

    Black Box Hardened Manage d Ethernet Switch Port Status View the Link S tatus, Speed, Duplex, and Flow control st atus for all ports. U s e r ’ s M a n u a l 4 3[...]

  • Page 44

    Black Box Hardened Manag ed Ethernet Switch Rate Control 1. Ingress: Click in “Ingress” text box and type a new Rate to change th e Ingress Rate Control for the port. Rate V alues: 64kbps, 128kbps, 192kbps, … , 1.792mbps; 2mbps, 3mbps, 4mbp s, … , 100mbps; 104mbps, 1 12mbps, 120mbp s, … , 1000mbps. 2. Egress: Click in “Egress” text bo[...]

  • Page 45

    Black Box Hardened Manage d Ethernet Switch RMON Statistics Click Port 1 ~ Port 14 to view corresponding RMON S tatistics. U s e r ’ s M a n u a l 4 5[...]

  • Page 46

    Black Box Hardened Manag ed Ethernet Switch Per Port Vlan Activities Click Port 1 ~ Port 14 to view corresponding vlan activities. 4 6 U s e r ’ s M a n u a l[...]

  • Page 47

    Black Box Hardened Manage d Ethernet Switch Swit chin g Bridging 1. Aging T ime (seconds): Click the te xt box and type a decimal number as Bridging Aging T ime in seconds. 2. Update setting: Click “update setting” button when you finished Aging T ime settings. 3. Threshold level (0-100): Click in “Level” text box and type a dec imal number[...]

  • Page 48

    Black Box Hardened Manag ed Ethernet Switch Static MAC Entry S tatic-MAC-Entry Forward: 1. Add MAC address: Click in “Add MAC address” text box and t ype a locked forwarding MAC address for the port. 2. VLAN ID: Click “VLAN ID” dr op-down menu and choose a VLAN ID from the “VLAN ID” drop-down list. 3. Delete MAC address: Click “Del et[...]

  • Page 49

    Black Box Hardened Manage d Ethernet Switch 3. Delete MAC address: Click “Del ete MAC address” drop-down menu and choose a MAC address from the “Delete MAC ad dress” drop-down list to be discarded from the port. 4. Submit: Click “Submit” button wh en you finished S tatic-MAC-Entry Discard settings. Port Mirroring 1. Mirror From: Cho ose[...]

  • Page 50

    Black Box Hardened Manag ed Ethernet Switch Trunking Port Trunking S tatic Channel Group: 1. Trunk 1: Click Port 1 ~ Port 12 to assign ports to Trunk 1. (Maximum 4 ports in T runk 1.) GE T runking: 1. T runk 3: Click “S t atic” or “Disable” for T runk 3. 2. Submit: Click “Submit” button when you finished Port T runking settings. 5 0 U s[...]

  • Page 51

    Black Box Hardened Manage d Ethernet Switch STP / Ring Global Configur ation 1. Sp anning T ree Protocol: Click “S panning T ree Protocol” drop-down menu to Choose “Enable” or “Di sabl e” from “S panning T ree Protocol” drop-down list to enable or di sable Sp anning T ree P rotocol. 2. Bridge Priority (0..61440): Click in “Bridge [...]

  • Page 52

    Black Box Hardened Manag ed Ethernet Switch Configuration. RSTP Port Setting 1. STP V ersion: Click “STP V ersio n” drop-down menu to choose “RSTP” from “STP V ersio n” drop-down list. 2. Port: Click “Port” drop-down menu to Choose Port 1 ~ Port 14 from “Port” drop-down list. 3. Priority(Granularit y 16): Click in “Priority”[...]

  • Page 53

    Black Box Hardened Managed Ethern et Switch Port Setting. Ring Setting Ring state 1. Click “Ring state” drop-down menu from “Ring state” drop-down list to choose “Enable” or “Disable” to enable or disable R ing state. 2. Update setting: Click “Update setting” button when you finished Ring state setting. Set ring port 1. Ring por[...]

  • Page 54

    Black Box Hardened Manag ed Etherne witch t S VLAN VLAN Mode Setting 1. VLAN Mode Setting: Click “VLAN Mode Setting” drop-down menu to Choose “T ag-based VLAN” or “Port-based VLA N” from “VLAN Mode Setting” drop-down list. 2. Update S etting: Click “Update Setting” button when you finished VLAN Mode Setting. 5 4 U s e r ’ s M [...]

  • Page 55

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 5 5[...]

  • Page 56

    Black Box Hardened Manag ed Etherne witch t S 802.1Q VLAN Setting Add VLAN: 1. VLAN setting: Click “VLAN setting”. The “VLAN Setting” window appears. 2. Add VLAN: Click “Add VLAN” button to create a ne w VLAN from “VLAN Setting” window . 3. VLAN ID(2-4094): Click in the “VLAN ID” textbox and specify a new VLAN ID number from 2 ~[...]

  • Page 57

    Black Box Hardened Manage d Ethernet Switch Delete VLAN: 1. VLAN setting: Click “VLAN setting”. The “VLAN Setting” window appears. 2. Delete VLAN: Click “Delete VLAN” button. 3. Select a VLAN ID: Click “Select a VLAN ID” drop-down menu from “Select a VLAN ID” drop-down list to choose the VLAN to be delete d. 4. Submit: Click “[...]

  • Page 58

    Black Box Hardened Manag ed Ethernet Switch 802.1Q Port Setting 1. VLAN Port Setting: Click “VLAN Port Setting”. The “VLAN Port Setting” window appears. 2. Mode: Click “Mode” drop-down menu to Choose “Access”, “Trunk”, or “Hybrid” from “Mode” d rop-down list for the po rt. The port will be T ag port if you choose “T ru[...]

  • Page 59

    Black Box Hardened Manage d Ethernet Switch Port Based VLAN 1. VLAN: Choose the port to be add ed to or deleted from the VLAN. U s e r ’ s M a n u a l 5 9[...]

  • Page 60

    Black Box Hardened Manag ed Ethernet Switch 6 0 U s e r ’ s M a n u a l 2. Select all: Click “select all” button to choose Port 1 ~ Port 14 all to be added to the VLAN. 3. Delete all: Click “delete all” butto n to choose Port 1 ~ Port 14 all t o be deleted from the VLAN. 4. Submit: Click “Submit” button when you finished Port Based VL[...]

  • Page 61

    Black Box Hardened Manage d Ethernet Switch QoS Global Configur ation 1. QoS: Click “QoS” drop-down men u from “QoS” drop-down list to choose “Enable” or “Disable” to enable or disable QoS. 2. Trust: Enable or disable the switch port to trust the CoS (Class of Service) labels of all traffic rece ived on that port. Enable or disable [...]

  • Page 62

    Black Box Hardened Manag ed Ethernet Switch 802.1p Priority 1. Priority: Click “Priority” drop-down menu from “Priorit y” drop-down list to choose 0 ~ 3 for VLAN Priority 0 ~ 7. 2. Submit: Click “Submit” button when you finished 802.1p priority . 6 2 U s e r ’ s M a n u a l[...]

  • Page 63

    Black Box Hardened Manage d Ethernet Switch DSCP 1. Priority: Click “Priority” drop-down menu from “Priorit y” drop-down list to choose 0 ~ 3 for DSCP Priority 0 ~ 63. 2. Submit: Click “Submit” button when you finished DSCP . U s e r ’ s M a n u a l 6 3[...]

  • Page 64

    Black Box Hardened Manag ed Ethernet Switch SNMP SNMP General Setting 1. SNMP S t atus: Click “SNMP S t atus” drop-down menu from “SNMP S tatus” drop-down list to choose “E nable” or “Disable” to enable or disable SNMP . 2. Description: Click in the “Description” textbox and specify a new description for SNMP . 3. Location: Clic[...]

  • Page 65

    Black Box Hardened Manage d Ethernet Switch SNMP . 5. Trap Community Name: For each “T rap Community Name”, Click in the “T rap Community Name” textbo x and specify a trap community name. 6. T rap Host IP Address: For each “T rap Host IP Address”, Click in the “T rap Host IP Address” text box and specify a trap host IP address. 7. C[...]

  • Page 66

    Black Box Hardened Manag ed Ethernet Switch SNMP v1/v2c 1. Get Community Name: Click in the “Get Community Name” te xtbox and specify a get community name. 2. Set Community Name: Click in the “Set Community Name” textbo x and specify a set community name. 3. Update Setting: Click “Update Setting” button when you finished SNMP V1/V2c Set[...]

  • Page 67

    Black Box Hardened Manage d Ethernet Switch SNMP v3 Add User: 1. Add User: Click “Add User” button. The “SNMP V3 Setting” window appears. 2. SNMP V ersion: Click “SNMP V e rsion” drop-down menu from “SNMP V ersion” drop-down list to c hoose “SNMPv3 No-Auth”, “SNMPv3 Auth-MD5”, “SNMPv3 Auth-SHA”, “SN MPv3 Priv Auth-MD5?[...]

  • Page 68

    Black Box Hardened Manag ed Ethernet Switch y Read/Write: Add an mode 5. Sumit: Click “Sumit” button user using SNMP v3 with read-write access when you finished SNMP V3 Setting. Delete User: 1. Delete User: Click “Delete Use r” button. The “Select User Name” window appears. 2. Select User Name: Click “Select User Name” drop-do wn me[...]

  • Page 69

    Black Box Hard et Switch ened Managed Ethern 802.1x Radius Configur ation 1. Radius S tatus: Click “Radius S t atus” drop-down menu fr om “Radius S tatus” drop-down list to choose “Enabl e” or “Disable” to globally enable or disable authentication. 2. Update Setting: Click “Update Setting” button when you finished Radius S tatus[...]

  • Page 70

    Black Box Hardened Manag ed Ethernet Switch Add Radius: 1. Add Radius: Click “Add Radius” bu tton. Th e “Radius Server Setting” window appears. 2. Radius Server IP: Click in the “Rad ius Server IP” textbo x and specify the IP address of the remote radius server host. 3. Radius Server Port: Click in the “Radius Server Po rt” textbox [...]

  • Page 71

    Black Box Hardened Manage d Ethernet Switch Delete Radius: 1. Delete Radius: Click “Delete Radius ” button. The “Select Radius Server IP” window appears. 2. Select Radius Server IP: Click “Select Radius Server IP” drop-down menu from “Select Radius Server IP ” drop -down list to choose the IP address of the remote radius server host[...]

  • Page 72

    Black Box Hardened Manag ed Ethernet Switch Port-Based Authenticati on 1. Interface: Click “Interface” drop-down menu from “Interface ” drop-down list to choose the port to be set port-based authentication. 2. Authentication St ate: Click “Authentication S tate” drop-down menu from “Authentication S tate” drop-down list to choose ?[...]

  • Page 73

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 7 3 6. Update Setting: Click “Update Setting” button when you finished port-based authentication setting.[...]

  • Page 74

    Black Box Hardened Manag ed Ethernet Switch Other Protocols GVRP GVRP Global Setting: 1. GVRP: Click “GVRP” drop-down m enu from “GV RP” drop-down list to choose “Enable” or “Disable” to e nable or disable GVRP (GARP VLAN Registration Protocol). 2. Dynamic VLAN creation: Click “D ynamic VLAN creation” drop-down menu from “Dyna[...]

  • Page 75

    Black Box Hardened Manage d Ethernet Switch 3. Update Setting: Click “Update Se tting” button when you finished GVRP Global Setting. Per port setting (include LAG): 1. GVRP: Click “GVRP” drop-down m enu from “GV RP” drop-down list to choose “Enable” or “Disable” to enabl e or disable GVRP for the port. 2. GVRP applicant: Click ?[...]

  • Page 76

    Black Box Hardened Manag ed Ethernet Switch 7 6 U s e r ’ s M a n u a l querier for the network. There is onl time. 2. Update Setting: Click “Update Se mode settings. 3. VLAN ID: Click “VLAN ID” drop list to choose the VLAN under con 4. IGMP version: Click “IGMP ve version” drop-down list to choose 5. Fast-leave: Click “fast-leave” [...]

  • Page 77

    Black Box Hardened Manage d Ethernet Switch NTP NTP Setting: 1. NTP St atus: Click “NTP S tatus” drop-down menu from “NTP S tatus” drop-down list to choose “Enable” or “D isable” to enable or disable NTP for the Switch. 2. NTP Server (IP Address or Dom ain name): Click in the “NTP Se rver” textbox and specify the IP address or D[...]

  • Page 78

    Black Box Hardened Manag ed Ethernet Switch 7 8 U s e r ’ s M a n u a l “Weekday”, or “Date” to choose disable, weekday , or date daylight saving for the Switch. 2. Time Set Offset (1-1440 min): Click in the “Time Se t Offset” textbox and specify the offset time of daylight saving. 3. Daylight Saving Tmiezone: Click in the “Daylight[...]

  • Page 79

    Black Box Hardened Manage d Ethernet Switch U s e r ’ s M a n u a l 7 9 Command Line Conso anagement The switch provide s a comman r configuration purposes. The swit configured either locally through its RS-232 port or remotely via a Telnet session. For the later, you must s IP address for the switch first. This chapter describes how to configu r[...]

  • Page 80

    Black Box Hardened Manag ed Ethernet Switch Exec Mode (View Mode) Logon to Exec Mode (View Mode) At the switch_a login: prompt just type in “root” and press <Enter> to logon to Exec Mode (or View Mode). switch_a login: root 8 0 U s e r ’ s M a n u a l[...]

  • Page 81

    Black Box Hardened Manage d Ethernet Switch Basic commands Exec Mode (or View Mode) is the base mode from where users can perform basic commands like: clear , debug, disable, enable, exit, hel p, logout, no, quit, show , te rminal The CLI contains a text-based help facilit full or partial command string then typi displays the command keywords or or[...]

  • Page 82

    Black Box Hardened Manag ed Ethernet Switch Login timed ou t The login session to Exec Mode (o r View Mode) has timed out due to an extended period of inactivity (60 sec onds) to indicate authentication attempt timed out. And the switch_a login: prompt will show on the screen. Logon back to Exec Mode (View Mode) At the switch_a login: prompt just t[...]

  • Page 83

    Black Box Harden thernet Switch ed Managed E back to Exec Mode (or View Mode). switch_a login: root Exit from Exec Mode (View Mode) At the switch_a> prompt just type in “exit” and press <Enter> to exit fro m Exec Mode (or View Mode). switch_a>exit U s e r ’ s M a n u a l 8 3[...]

  • Page 84

    Black Box Hardened Manag ed Ethernet Switch Privileged Exec Mode (Enab Logon to Privileged Exec Mod e (Enable At the switch_a> prompt just type in “ena Privileged Exec Mode (or Enable Mode). prompt will show on the screen. switch_a>enable le Mode) Mode) ble” and press <Enter> to logon to And the switch_a# Commands Privileged Exec Mo[...]

  • Page 85

    Black Box Hardened Manage d Ethernet Switch At the switch_a# prompt just type in the full or p artial command string then typing a question mark “?” to displa y the command keywords or parameters along with a short description. switch_a#show ? U s e r ’ s M a n u a l 8 5[...]

  • Page 86

    Black Box Hardened Manag ed Ethernet Switch Login timed ou t The login session to Privileged Exec Mode (or Enable Mode) has timed out due to an extended period of inacti vity (60 seconds) to indicate authentication attempt timed out. And the switch_a login: prompt will show on the screen. Logon back to Exec Mode (View Mode) At the switch_a login: p[...]

  • Page 87

    Black Box Harden thernet Switch ed Managed E back to Exec Mode (or View Mode). switch_a login: root Exit from Privileged Exec Mode (or Enable Mode) At the switch_a# prompt just type in “e xit” and press <Enter> to exit from Privileged Exec Mode (or Enable Mode). switch_a#exit U s e r ’ s M a n u a l 8 7[...]

  • Page 88

    Black Box Hardened Manag ed Ethernet Switch Configure Mode (Configure Terminal Mode) Logon to Configure Mode (Configure T At the switch_a# prompt just type in “con to logon to Configure Mode (or Config ). And the switch_a(config )# prompt will show on the screen. switch_a#configure terminal erminal Mode) figure terminal” and press <Enter>[...]

  • Page 89

    Black Box Hardened Manage d Ethernet Switch At the switch_a(config)# p r o m p t j u s t t y p e i n t h e full or partial command string then typing a question mark “?” to displa y the command keywords or parameters along with a short description. switch_a(config)#show ? U s e r ’ s M a n u a l 8 9[...]

  • Page 90

    Black Box Hardened Manag ed Ethernet Switch Login timed ou t The login session to Configure Mode (o r Configure T erminal Mode) has timed out due to an extended period of inac tivity (60 seconds) to indicate authentication attempt timed out. And the sw itch_a login: prompt will show on the screen. Logon back to Exec Mode (View Mode) At the switch_a[...]

  • Page 91

    Black Box Hardened Manage d Ethernet Switch Exit from Configure Mode (or Configure T erminal Mode) At the switch_a(config)# prompt just type in “exit” and press <Enter> to exit from Configure Mode (or Configure T erminal Mode). switch_a(config)#exit U s e r ’ s M a n u a l 9 1[...]

  • Page 92

    Black Box Hardened Manag ed Ethernet Switch System System Information, System Name/ Configuration, Firmware Upgrade, Reboot, L System Name/Password System Name: 1. Command Mode: Configure mo de Logon to Configure Mode (Configure T erminal Mode). The switch_a(confi g)# prompt w switch_a(config)# Password, IP Address, Save ogout. ill show on the scre[...]

  • Page 93

    Black Box H thernet Switch ardened Managed E IP Address IP Address/IP Subnet Mask: 1. Command Mode: Interface mode Logon to Configure Mode (Configure T erminal Mode). Then logon to Interface mode. vlan1.1 means vlan 1. The switch_a(confi g-if)# prompt will sho switch_a(config)#interface vlan1.1 switch_a(config-if)# w on the screen. 2. Usage: Use ip[...]

  • Page 94

    Black Box Hardened Manag ed Ethernet Switch ip default-gateway IP-ADDRESS no ip default-gateway IP-ADDRESS A.B.C.D specifies the IP address of the default gateway. 4. Example: The following example sets the default ga switch_a(config)#ip default-gate switch_a(config)# teway 192.168.1.254 to switch: way 192.168.1.254 DNS Server: 1. Command Mode: Con[...]

  • Page 95

    Black Box Hardened Manage d Ethernet Switch 4. Example: The following example specifies loadi from tftp server (IP address: 192.168.1.10 switch_a#install image 192.168.1.100 W switch_a# ng confi uration file (file name: WORD ) g 0) to switch: ORD Load config to TFTP server: 1. Command Mode: Privileged Exec mo Logon to Privileged Exec Mode (Enable M[...]

  • Page 96

    Black Box Hardened Manag ed Ethernet Switch Restore Default: 1. Command Mode: Privileged Exec mode Logon to Privileged Exec Mode The switch_a# prompt will show on the s switch_a# (Enable Mode). creen. 2. Usage: Use restore default command to restore 3. Command Syntax: restore default 4. Example: The following example restores default setting of the[...]

  • Page 97

    Black Box Hardened Managed Ethern et Switch switch_a(config)# 2. Usage: Use this command to set the interval en the configuration would be automatically saved. The range default value is 30 seconds. 3. Command Syntax: service auto-config interval WORD WORD specifies the interval value. 4. Example: The following example sets the interval W n the con[...]

  • Page 98

    Black Box Hardened Manag ed Ethernet Switch At the “switch_a# ” prompt just type in “reload” and press <Enter> to reboot the switch after completing the upgrade process. 9 8 U s e r ’ s M a n u a l[...]

  • Page 99

    Black Box H Ethernet Switch ardened Managed Reboot 1. Command Mode: Privileg Logon to Privileged Exec Mode (Enable M The switch_a# prompt will show on the screen. switch_a# ed Exec mode ode). 2. Usage: Use reload command to restart switch. 3. Command Syntax: reload 4. Example: The following example specifies restarting switch: switch_a#reload switc[...]

  • Page 100

    Black Box Hardened Manag ed Ethernet Switch Port Configuration, Port Status, Rate Cont rol, RMON Statistics, Per Port Vlan Activities. Configuration Admin Setting: 1. Command Mode: Interface mode Logon to Configure Mode (Configure T ermin Then logon to Interface mode. fe1 means port 1. The switch_a(confi g-if)# prompt switch_a(config)#interface fe1[...]

  • Page 101

    Black Box Hard et Switch ened Managed Ethern (no) duplex MODE MODE specifies the duplex m 4. Example: The following example shows the use of du fe1 (port 1): switch_a(config)#interface fe1 switch_a(config-if)#duplex full switch_a(config-if)# ode: auto, full, half. plex MODE ( full ) to the interface Flow control: 1. Command Mode: Interface mode Log[...]

  • Page 102

    Black Box Hardened Manag ed Ethernet Switch status. 3. Command Syntax: show interface IFNAME IFNAME specifies the name of the configuration information is desired. 4. Example: The following example shows the use of s configuration and status of the interface fe switch_a>show interface fe1 interface for which status and how interface to display i[...]

  • Page 103

    Black Box Hardene d Ethernet Switch d Manage switch_a> switch_a# 2. Usage: Use the show interface statistics comm statistics of interface. 3. Command Syntax: show interface statistics IFNAME IFNAME specifies the name of the inter desired. 4. Example: The following example shows the use of show interface statistics to display RMON statistics of t[...]

  • Page 104

    Black Box Hardened Manag ed Ethernet Switch Swit chin g Bridging, Static MAC Entry, Port Mirroring Bridging Aging T ime (seconds): 1. Command Mode: Configure mo de Logon to Configure Mode (Configure T ermin The switch_a(confi g)# prompt will show on the screen. switch_a(config)# al Mode). 2. Usage: Use this command to specify an ageing- o The learn[...]

  • Page 105

    Black Box Hardened Manage d Ethernet Switch maximum speed (pps) of the interface. 4. Example: The following example shows setting storm interface fe1 (port 1): switch_a(config)#interface fe1 switch_a(config-if)#storm-control level 30 switch_a(config-if)# -control level LEVEL ( 30 ) to th e Broadcast: 1. Command Mode: Interface mode Logon to Configu[...]

  • Page 106

    Black Box Hardened Manag ed Etherne t Switch 3. Command Syntax: storm-control multicast enable no storm-control multicast 4. Example: The following example shows setting stor interface fe1 (port 1): switch_a(config)#interface fe1 switch_a(config-if)#storm-control multicas switch_a(config-if)# m-control multicas t ena ble to the t enable DLF: 1. Com[...]

  • Page 107

    Black Box Hardened Manage d Ethernet Switch 2. Usage: Use this command to statically configure frames. 3. Command Syntax: bridge GROUP address MAC forward IFN no bridge GROUP address MAC for ward GROUP <1-1> Bridge-group ID used for b MAC the Media Access Control (MAC) ad format. IFNAME the interface on which the frame VLANID The VID of the V[...]

  • Page 108

    Black Box Hardened Manag ed Ethernet Switch 108 User’s Manual Port Mirroring 1. Command Mode: Interface mode Logon to Configure Mode (Configure T erminal Mode). Then logon to Interface mode. fe1 means port 1. The switch_a(confi g-if)# prompt will show on the screen. switch_a(config)#interface fe1 switch_a(config-if)# 2. Usage: Use this command to[...]

  • Page 109

    Black Box Hardened Manage d Ethernet Switch User’s Manual 109 Trunking Port Trunking Port Trunking 1. Command Mode: Interface mode Logon to Configure Mode (Configure T erminal Mode). Then logon to Interface mode. fe1 means port 1. The switch_a(confi g-if)# prompt will show on the screen. switch_a(config)#interface fe1 switch_a(config-if)# 2. Usag[...]

  • Page 110

    Black Box Hardened Manag ed Ethernet Switch STP / Ring Global Configuration, RSTP Port Global Configur ation STP V ersion: 1. Command Mode: Configure mo de Logon to Configure Mode (Config The switch_a(confi g)# prompt will show switch_a(config)# Setting, Ring Setting ure T erminal Mode). on the screen. 2. Usage: Use this command to choose the Spann[...]

  • Page 111

    Black Box Harde hernet Switch ned Managed Et forwarding state. 4. Example: The following example enables or disabl bridge GROUP ( 1 ): switch_a(config)#bridge 1 rapid-spanning- switch_a(config)#no bridge 1 rapi d-spanning-tree enable bridge-forward switch_a(config)# es the rapid-spanning-tree on tree enable S panning T ree Protocol: 5. Command Mode[...]

  • Page 112

    Black Box Hardened Manag ed Ethernet Switch bridge GROUP priority PRIORITY no bridge GROUP priority GROUP <1-1> The ID of the b rity is set. PRIORITY <0-61440> The bridge priorit y 4. Example: The following example sets the priority PRI ( 1 ): switch_a(config)#bridge 1 priority 4096 switch_a(config)# ridge group for which the prio . ORI[...]

  • Page 113

    Black Box Hardened Manage d Ethernet Switch 3. Command Syntax: bridge GROUP max-age MAXAGE no bridge GROUP max-age GROUP <1-1> The ID of the b ridge group is assigned. MAXAGE <6-28> The maximum ten for the root bridge. 4. Example: The following example sets the max-age M idge GROUP ( 1 ): switch_a(config)#bridge 1 max-age 28 switch_a(co[...]

  • Page 114

    Black Box Hardened Manag ed Ethernet Switch The switch_a(confi g-if)# prompt will show switch_a(config)#interface fe1 switch_a(config-if)# on the screen. 2. Usage: Use this command to set the port priorit ty indicates a greater likelihood of the bridge becoming root. 3. Command Syntax: bridge GROUP priority PRIORITY GROUP <1-1> the ID of the [...]

  • Page 115

    Black Box Hardened Manage d Ethernet Switch Point to Point Link: 1. Command Mode: Interface mode Logon to Configure Mode (Config Then logon to Interface mode. fe1 means port 1. The switch_a(confi g-if)# prompt will sho switch_a(config)#interface fe1 switch_a(config-if)# ure T erminal Mode). w on the screen. 2. Usage: Use spannin g-tree link-t ype t[...]

  • Page 116

    Black Box Hardened Manag ed Ethernet Switch 4. Example: The following example enables the spannin fe1 (port 1): switch_a(config)#interface fe1 switch_a(config-if)#spanning-tree autoedge switch_a(config-if)# g-tree autoedge of the interface Edgeport: 1. Command Mode: Interface mode Logon to Configure Mode (Configure T erm Then logon to Interface mod[...]

  • Page 117

    Black Box Harden rnet Switch ed Managed Ethe no bridge GROUP ring enable bri dge-forward GROUP <1-1> Specify the bridge-group ID. 4. Example: The following example enables Ring state in bridge GROUP ( 1 ): switch_a(config)#bridge 1 ring enable switch_a(config)# Set ring port: 1. Command Mode: Configure mo de Logon to Configure Mode (Configure[...]

  • Page 118

    Black Box Hardened Manag ed Etherne witch t S VLAN VLAN Mode Setting, 802.1Q VLAN Setting, VLAN 802.1Q VLAN Setting VLAN Database: 1. Command Mode: Configure mo de Logon to Configure Mode (Configure T erm The switch_a(confi g)# prompt will show switch_a(config)# 802.1Q Port Setting, Port Based inal Mode). on the screen. 2. Usage: Use vla n d at a b[...]

  • Page 119

    Black Box Hardened Manage d Ethernet Switch affected. VLAN_NAME The ASCII name of the VLAN. Maximum length: 16 characters. enable Sets VLAN into an enable state. disable Sets VLAN into a disable state. 4. Example: The following example enables the vlan V AN_NAME ( vlan 2 ) of bridge GROUP ( 1 ): switch_a(config-vlan)#vlan 2 bridge 1 nam switch_a(co[...]

  • Page 120

    Black Box Hardened Manag ed Ethernet Switch switch_a(config)#interface fe1 switch_a(config-if)# 2. Usage: Use sw itchport mode hybrid command to racteristics of the Layer-2 interface as hybrid, and classify both tagged and untagged frames. Use the no switchport h ybrid command interface to access (default). 3. Command Syntax: switchport mode hybrid[...]

  • Page 121

    Black Box Hardened Manage d Ethernet Switch switch_a(config-if)#switchport mode trun switch_a(config-if)# k Switchport hybrid allowed vlan: 1. Command Mode: Interface mode Logon to Configure Mode (Configure T ermina Then logon to Interface mode. fe1 means port 1. The switch_a(confi g-if)# prompt switch_a(config)#interface fe1 switch_a(config-if)# l[...]

  • Page 122

    Black Box Hardened Manag ed Ethernet Switch 1. Command Mode: Interface mode Logon to Configure Mode (Configure T ermi Then logon to Interface mode. fe1 means port 1. The switch_a(confi g-if)# prompt will show switch_a(config)#interface fe1 switch_a(config-if)# nal Mode). on the screen. 2. Usage: Use this command to set the switching c ha to trunk. [...]

  • Page 123

    Black Box Hardened Manage d Ethernet Switch User’s Manual 123 Logon to Configure Mode (Configure T erminal Mode). Then logon to Interface mode. fe1 means port 1. The switch_a(confi g-if)# prompt will show on the screen. switch_a(config)#interface fe1 switch_a(config-if)# 2. Usage: Use this command to set or remove the default VLAN for the interfa[...]

  • Page 124

    Black Box Hardened Manag ed Etherne witch t S QoS Global Configuration, 802.1p Priority , DSCP Global Configur ation QoS: 1. Command Mode: Configure mo de Logon to Configure Mode (Config The switch_a(confi g)# prompt will show switch_a(config)# ure T erminal Mode). on the screen. 2. Usage: Use mls qos enable command t Use the no mls qos command to [...]

  • Page 125

    Black Box Harden rnet Switch ed Managed Ethe S trict Priority: 1. Command Mode: Configure mo de Logon to Configure Mode (Config The switch_a(confi g)# prompt will show switch_a(config)# ure T erminal Mode). on the screen. 2. Usage: Use priority-queue out command dite queue. Use the no priority-queue out comma queue. 3. Command Syntax: (no) priority[...]

  • Page 126

    Black Box Hardened Manag ed Ethernet Switch The switch_a(confi g)# prompt will show on switch_a(config)# the screen. 2. Usage: Use wrr-queue cos-map command to spe alues for a queue. 3. Command Syntax: wrr-queue cos-map QUEUE_ID C QUEUE_ID Queue ID. Range is 0-3. COS_VALUE CoS values. Up to 8 val ues (separated b y spaces). Range is 0-7. 4. Example[...]

  • Page 127

    Black Box Hardened Managed Ethern et Switch SNMP SNMP General Setting, SNMP SNMP General Setting SNMP S t atus: 1. Command Mode: Configure mo Logon to Configure Mode (Configure T erm The switch_a(confi g)# prompt will show switch_a(config)# v1/v2c, SNMP v3 de inal Mode). on the screen. 2. Usage: Use snm p-server enable comm and to e command to disa[...]

  • Page 128

    Black Box Hardened Manag ed Ethernet Switch Location: 1. Command Mode: Configure mo de Logon to Configure Mode (Configure T erminal Mode). The switch_a(confi g)# prompt w switch_a(config)# ill show on the screen. 2. Usage: Use snmp-server loca tion command to specify and no sn mp-server location command to remove loc 3. Command Syntax: snmp-server [...]

  • Page 129

    Black Box Hardened Manage d Ethernet Switch switch_a(config)# 2. Usage: Use this command to specify trap commu Use the no parameter with this command SNMP. 3. Command Syntax: snmp-server trap-community <1-5> NAME no snmp-server trap-communit <1-5> The trap community 1-5. NAME The trap community name for SN 4. Example: The following exam[...]

  • Page 130

    Black Box Hardened Manag ed Ethernet Switch The switch_a(confi g)# prompt will show switch_a(config)# on the screen. 2. Usage: Use snmp-server trap-t ype enable cold command to enable cold start trap for SNMP. Use the no snmp-ser ver trap-type ena cold start trap for SNMP. 3. Command Syntax: (no) snmp-server trap-type enable coldStart 4. Example: T[...]

  • Page 131

    Black Box Hardened Manage d Ethernet Switch down trap for SNMP. Use the no snmp-ser ver trap-type e nab link down trap for SNMP. 3. Command Syntax: (no) snmp-server trap-type enable linkDow 4. Example: The following example enables link down trap f switch_a(config)#snmp-server trap-type switch_a(config)# le linkDow n command to disable n or SNMP: e[...]

  • Page 132

    Black Box Hardened Manag ed Ethernet Switch (no) snmp-server trap-type enable authenticationFa ilure 4. Example: The following example enables authentica : switch_a(config)#snmp-server tr switch_a(config)# tion failure trap for SNMP ap-type enable authenticationFailure T opology Change T rap: 1. Command Mode: Configure mo de Logon to Configure Mode[...]

  • Page 133

    Black Box Hardened Manage d Ethernet Switch The following example specifies get comm ( na me ) for SNMP: switch_a(config)#snmp-server commun switch_a(config)# unity name ity get name Set Community Name: 1. Command Mode: Configure mo Logon to Configure Mode (Configure T erm The switch_a(confi g)# prompt will show switch_a(config)# de inal Mode). on [...]

  • Page 134

    Black Box Hardened Manag ed Ethernet Switch switch_a(config)#snmp-server v3-user my switch_a(config)# user ro noauth SNMPv3 Auth-MD5, SNMPv3 Auth-SHA: 1. Command Mode: Configure mo Logon to Configure Mode (Configure T erm The switch_a(confi g)# prompt will show switch_a(config)# de inal Mode). on the screen. 2. Usage: Add a user using snmp v3 with [...]

  • Page 135

    Black Box Hardened Manage d Ethernet Switch User’s Manual 135 ro read-only access mode rw read-write access mode md5 authentication method sha authentication method AUTH_PASSWORD authentication password PRIV_PASS_PHRASE encryption pass phrase 4. Example: The following example adds a user ( myuser ) using snmp v3 with read-write access mode, MD5 a[...]

  • Page 136

    Black Box Hardened Manag ed Ethernet Switch 802.1x Radius Configuration, Po rt-Based Authentication Radius Configur ation Radius S tatus: 1. Command Mode: Configure mo de Logon to Configure Mode (Config The switch_a(confi g)# prompt will show switch_a(config)# ure T erminal Mode). on the screen. 2. Usage: Use dot1x system-a uth-ctrl command to glob[...]

  • Page 137

    Black Box Hardened Manage d Ethernet Switch switch_a(config)#radius-server host 192.168.1.100 auth-port 1812 switch_a(config)# Secret Key: 1. Command Mode: Configure mo de Logon to Configure Mode (Config The switch_a(confi g)# prompt will show switch_a(config)# ure T erminal Mode). on the screen. 2. Usage: Use this command to set the shared secre e[...]

  • Page 138

    Black Box Hardened Manag ed Etherne witch t S switch_a(config)#radius-server timeout switch_a(config)# 20 Retransmit: 1. Command Mode: Configure mo de Logon to Configure Mode (Configure T ermin The switch_a(confi g)# prompt will show on the screen. switch_a(config)# al Mode). 2. Usage: Use this command to specify the number s the Switch transmits e[...]

  • Page 139

    Black Box Hardene ged Ethernet Switch d Mana switch_a(config)#interface fe1 switch_a(config-if)#dot1x reauthenticati switch_a(config-if)# on Port Control: 1. Command Mode: Interface mode Logon to Configure Mode (Configure T erm Then logon to Interface mode. fe1 means port 1. The switch_a(confi g-if)# prompt will sho switch_a(config)#interface fe1 s[...]

  • Page 140

    Black Box Hardened Manag ed Ethernet Switch 140 User’s Manual Use no d ot1x timeout re-au thperiod command to delete the interval between reauthorization attempts. 3. Command Syntax: dot1x timeout re-authperiod SECS no dot1x timeout re-authperiod SECS <1-4294967295> Specify the seconds between reauthorization attempts. The default time is 3[...]

  • Page 141

    Black Box Hardened Manage d Ethernet Switch Other Protocols GVRP , IGMP Snooping, NTP GVRP GVRP: 1. Command Mode: Configure mo de Logon to Configure Mode (Config The switch_a(confi g)# prompt will show switch_a(config)# ure T erminal Mode). on the screen. 2. Usage: Use set gvrp enable bridge com isable bridge command to disable (reset) GVR This com[...]

  • Page 142

    Black Box Hardened Manag ed Ethernet Switch 4. Example: The following example enables dynamic VLAN creation for bridge GROUP ( 1 ): switch_a(config)#set gvrp dyna mic-vlan ridge 1 switch_a(config)# -creation enable b Per port setting: GVRP: 1. Command Mode: Configure mo Logon to Configure Mode (Configure T erm The switch_a(confi g)# prompt will sho[...]

  • Page 143

    Black Box Hardened Manage d Ethernet Switch The following example sets GVRP applica fe1 (port 1): switch_a(config)#set gvrp applicant state active fe1 switch_a(config)# nt state to active on the interface Per port setting: GVRP registration: 1. Command Mode: Configure mo de Logon to Configure Mode (Configure T erminal Mode). The switch_a(confi g)# [...]

  • Page 144

    Black Box Hardened Manag ed Ethernet Switch switch_a(config-if)# 2. Usage: Use ip igmp snoopi ng querier command t r operation on a subnet (VLAN) when no m ulticast r rotocol is configured in the subnet (VLAN). When enabled uerier sends out periodic IGMP queries for all interfaces on Use the no ip igmp sn ooping querier configuration. 3. Command Sy[...]

  • Page 145

    Black Box Harden ed Managed Ethernet Switch switch_a(config)#interface vlan1.1 switch_a(config-if)#ip igmp snooping IGMP version: 1. Command Mode: Interface mode Logon to Configure Mode (Configure T erm Then logon to Interface mode. fe1 means port 1. The switch_a(confi g-if)# prompt will show switch_a(config)#interface fe1 switch_a(config-if)# inal[...]

  • Page 146

    Black Box Hardened Manag ed Ethernet Switch 3. Command Syntax: (no) ip igmp snooping fast-leave 4. Example: The following example enables IGMP sno switch_a(config)#interface vlan1.1 switch_a(config-if)#ip igmp snooping fast-l oping fast-leave on vl an 1. 1 : eave IGMP querier: Query-interval: 1. Command Mode: Interface mode Logon to Configure Mode [...]

  • Page 147

    Black Box Hard et Switch ened Managed Ethern switch_a(config-if)# 2. Usage: Use ip igmp quer y-max-resp to configure the frequency of sending IGMP host query me To return to the default frequen query-max-response -time command. 3. Command Syntax: ip igmp query-max-response-time RESPONSETIME no ip igmp query-max-response RESPONSETIME <1-240> M[...]

  • Page 148

    Black Box Hardened Manag ed Etherne witch t S IGMP passive sn ooping: Report suppression: 1. Command Mode: Interface mode Logon to Configure Mode (Configure T erm Then logon to Interface mode. vlan1.1 means vlan 1. The switch_a(confi g-if)# prompt will show on the switch_a(config)#interface vlan1.1 switch_a(config-if)# inal Mode). screen. 2. Usage:[...]

  • Page 149

    Black Box Hardened Manage d Ethernet Switch NTP Server: 1. Command Mode: Configure mo de Logon to Configure Mode (Config The switch_a(confi g)# prompt will show switch_a(config)# ure T erminal Mode). on the screen. 2. Usage: Use this command to specify the IP addres 3. Command Syntax: ntp server IP-ADDRESS | DOMAIN-NAME IP-ADDRESS A.B.C.D specifi[...]

  • Page 150

    Black Box Hardened Manag ed Etherne witch t S 2. Usage: Use this command to to set time zone. 3. Command Syntax: clock timezone TIMEZONE TIMEZONE Specifies the time zo 4. Example: The following example sets time zone (Ca switch_a(config)#clock timezone Y ST9Y switch_a(config)# ne. (Please refer the Appendix B) nada/Y ukon): DT Polling Interval: 1. [...]

  • Page 151

    Black Box Hardened Manage d Ethernet Switch User’s Manual 151 WEEK <1-5> Specifies weekdays from Monday to Friday. DAY <0-6> Specifies from Sunday to Saturday. MONTH <1-12> Specifies from January to Decem ber. HOUR <0-23> Specifies from 0 to 23. MINUTE <0-59> Specifies from 0 to 59. OFFSET <1-1440> Specifies fr[...]

  • Page 152

    Black Box Hardened Manag ed Ethernet Switch 152 User’s Manual S pecifications Applicable Standards IEEE 802.3 10Ba se-T IEEE 802.3u 100B ase-TX/FX IEEE 802.3ab 1000 Base-T IEEE 802.3z 1000B ase-SX/LX Switching Method Store-and-Forward Forwarding Rate 10Base-T 100Base-TX 100Base-FX 1000Base-T 1000Base-SX/LX 10 / 20Mbps half / full-duplex 100 / 200[...]

  • Page 153

    Black Box Hardened Manage d Ethernet Switch User’s Manual 153 EMS EN61000-6-2: EN61000-4-2 (ESD S tandard) EN61000-4-3 (Radiated RFI S tandards) EN61000-4-4 (Burst S t andards) EN61000-4-5 (Surge S t andards) EN61000-4-6 (Induced RFI S tandards) EN61000-4-8 (Magnetic Field S tandards) EN61000-4-11 (Voltage Dips Standard s) Environmental Test Comp[...]

  • Page 154

    Black Box Hardened Manag ed Ethernet Switch 154 User’s Manual Appendix A B9 DCE pin assignment Pin no. Name RS232 Signal name 1 DCD Data Carrier detect 2 RxD Received data 3 TxD Transmit dat a 4 --- N/C 5 GND Signal ground 6 DSR Data set Ready 7 --- N/C 8 CTS Clear to send 9 --- N/C[...]

  • Page 155

    Black Box Hardened Manage d Ethernet Switch User’s Manual 155 Appendix B T ime Zone Country and City Lists Europe MEZ-1MESZ Europe/Vienna, erlin, Europe/Zuri Europe/B ch MET -1METDST Africa/T unis pe/T irane, Europe/And sels, Europe/Pra nhagen, Europe/Pari r , Europe/Bud me, Europe/V ad rg, Europe/Malt Europe/Ams Europe/W ar rade, Europe/Mad Euro[...]

  • Page 156

    Black Box Hardened Manag ed Ethernet Switch 156 User’s Manual Asia/Y ekaterinburg RFT - 6RFTDST Asia/Omsk, birsk Asia/Novosi RFT -7RFTDST Asia/ Hovd, snoyarsk Asia/Kr a RFT -8RFTDST Asia/Irkut sk, hungking, Asia/Ulan_Bator Asia/C RFT -9RFTDST Asia/Choibalsan, Asia/Y akutsk RFT -10RFTDST Asia/Vladivostok RFT -1 1RFTDST Asia/Sakhalin, dan Asia/Maga[...]

  • Page 157

    Black Box Harde a ged Ethernet Swi ned Man tch User’s Manual 157 America/Argentin America/Argentina/San_Juan, America/Argentina/Jujuy , America/Argentina/Catamarca, America/Arg ndoza, America/Arg egos, America/Arg America/Arg Rivadavia, America/Bu merica/Cordoba America/Jujuy , America/Mendoza a/La_Rioja, entina/Me entina/Rio_Gall entina/Ushuaia,[...]

  • Page 158

    Black Box Hardened Manag ed Ethernet Switch 158 User’s Manual Africa/Mbabane EST -2EDT Africa/Cairo, Egypt UAEST -4 Asia/Dubai IST -3IDT Asia/Baghdad JST -2JDT Asia/Amman SST -2SDT Asia/Damascus Universal UCT Africa/Ouagadougou, Africa/Abidjan, Africa/Banjul, Africa/Accra, Africa/Conakry Africa/Bissa /Monrovia, Africa/Bamako, Africa/Nouakchott, A[...]

  • Page 159

    Black Box Harde naged Ethern et Swi ned Ma tch User’s Manual 159 Pacific/Honolulu, Etc/GMT+10, HST , US/Hawaii, SystemV/HST10 UCT1 1 Pacific/Niue, go_Pago, Pacific/Apia, Pacific/Midway , Etc/GMT+1 1 Pacific/Samoa, US/Samoa Pacific/Pa , UCT -1 Africa/Algiers, Africa/Luanda, Africa/Porto-Novo, Africa/Douala, Africa/Bangui, Africa/Ndjamena, Africa/K[...]

  • Page 160

    Black Box Hardened Manag ed Ethernet Switch 160 User’s Manual Pacific/Saip Pacific/Noumea, Pacific/Port_Moresby , Etc/GMT -10 an, Pacific/T ruk, , Pacific/Y ap UCT -1 1 Pacific/Ponape, Pacific/Gua Pacific/Kosrae, dalcanal, Etc/GMT -1 1 UCT -1 1:30 Pacific/Norfolk UCT -12 Pacific/Fiji, Pacific/T ara wa, Pacific/Enderbury , Pacific/Majuro, Pacific/[...]

  • Page 161

    Black Box Hardened Manage d Ethernet Switch User’s Manual 161 North America (Haiti) EST5EDT_HT America/Nassau, America/Santo_Domingo, America/Port-au-Prince, America/Bogota North America (Mexico) PST8PDT_MX America/T ijuana, America/Ensenada, Mexico/BajaNorte MST7MDT_MX America/Chihuahua, America/Hermosillo, America/Mazatlan, Mexico/BajaSur CST6C[...]