Cisco Systems 200 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351

Go to page of

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of Cisco Systems 200, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Cisco Systems 200 one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of Cisco Systems 200. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of Cisco Systems 200 should contain:
- informations concerning technical data of Cisco Systems 200
- name of the manufacturer and a year of construction of the Cisco Systems 200 item
- rules of operation, control and maintenance of the Cisco Systems 200 item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Cisco Systems 200 alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Cisco Systems 200, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Cisco Systems service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Cisco Systems 200.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the Cisco Systems 200 item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    Cis c o Sm all Busine s s 200 S erie s Smar t Switch Administration Guide Releas e 1 .3 ADMINISTR A TION GUIDE[...]

  • Page 2

    Cisco Small Busine ss 200 Series Smar t Switch Administ ration Guide 2 Con t en ts Chapter 1: Getting Started 1 Starting the Web-based Configuration Utility 1 Launching the Configuration Utility 2 HTTP/HTTPS 3 Logging Out 4 Quick Start Device Configuration 5 Interface Naming Conventions 5 Window Navigation 7 Application Header 7 Management Buttons [...]

  • Page 3

    Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 3 Con te nt s Upgrade/Backup Firmware/Language 35 Upgrade/Backing Firmware or Language File 36 Download/Backup Configuration/Log 39 Configuration File Backwards Compatibility 39 Downloading or Backing-up a Configuration or Log File 40 Configuration Files Properties 44 Copy/Save Co[...]

  • Page 4

    Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 4 Con te nt s Adding a Unicast SNTP Server 69 Configuring the SNTP Mode 72 Defining SNTP Authentication 72 Chapter 7: Administration: Diagnostics 74 Testing Copper Ports 74 Displaying Optical Module Status 76 MSA-compatible SFPs 76 Configuring Po rt and VLAN Mirroring 77 Viewing C[...]

  • Page 5

    Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 5 Con te nt s Chapter 9: Port Management 112 Configuring Po rts 112 Setting Port Config uration 113 Configuring Link Aggregation 116 Link Aggregation Overview 116 Load Balancing 116 Default Settings and Configuration 117 Static and Dynamic LAG Workflow 118 Defining LAG Management [...]

  • Page 6

    Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 6 Con te nt s Identifying Smartport Type 139 Using CDP/LLDP Information to Identify Smartport Types 140 Multiple Devices Attached to the Port 141 Persistent Auto Smartport Interface 142 Error Handling 142 Default Configuration 142 Relationships with Ot her Features and Back wards [...]

  • Page 7

    Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 7 Con te nt s Voice VLAN Overview 179 Dynamic Voice VLAN Modes 181 Voice End-Points 182 Auto Voice VLAN, Auto Smartports, CDP, and LLDP 182 Voice VLAN QoS 184 Voice VLAN Constraints 184 Voice VLAN Workflows 185 Configuring Voice VLAN 186 Configuring Voice VLAN Properties 186 Displ[...]

  • Page 8

    Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 8 Con te nt s Configuring IGMP Snooping 214 MLD Snooping 216 Querying IGMP/MLD IP Multicast Group 218 Defining Multicast Router Ports 219 Defining Forward All Multicast 220 Defining Unregistered Multicast Settings 221 Chapter 16: IP Configuration 2 24 Overview 224 Layer 2 IP Addre[...]

  • Page 9

    Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 9 Con te nt s Defaults 248 Interactions With Other Features 249 Radius Workflow 249 Configuring Management Access Authentication 251 Defining Management Access Method 252 Active Access Profile 253 Defining Profile Rules 255 SSL Server 257 SSL Overview 257 Default Settings and Conf[...]

  • Page 10

    Cisco Small Busine ss 200 Series Smar t Switch Administ ration Guide 10 Con t en ts Protection Methods 277 Passwords 277 Public/Private Keys 278 Import Keys 278 SSH Server Auth entication 279 SSH Client Authentication 280 Supported Algorithms 280 Before You Begin 281 Common Tasks 281 SSH Client Configurat ion Through the GUI 283 SSH User Authentica[...]

  • Page 11

    Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 11 Con te nt s Running Configuration File 297 Backup and Mirror Configuration File 298 Sensitive Data Z ero-Touch Auto Configurati on 299 SSD Management Channels 300 Menu CLI and Password Recovery 301 Configuring SSD 301 SSD Propertie s 301 SSD Rules 302 Chapter 20: Quality of Ser[...]

  • Page 12

    Cisco Small Busine ss 200 Series Smar t Switch Administ ration Guide 12 Con t en ts Configuring SNMP Views 325 Creating SNMP Groups 327 Managing SNMP Users 329 Defining SNMP Communities 331 Defining Trap Settings 333 Notification Recipients 333 Defining SNMPv1,2 Notification Recipients 334 Defining SNMPv3 Notification Recipients 335 SNMP Notificati[...]

  • Page 13

    Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 13 Con te nt s[...]

  • Page 14

    1 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 1 Get ting St ar te d This section provides an introduction to the web-bas ed configuration utilit y , and covers the f o llowing t opics : • Star ting the Web-b ase d C onfigura tion Utilit y • Quick Star t Devic e Configuration • Interfac e Naming C onventions • Window[...]

  • Page 15

    Get ting Star te d Star ting the Web-b ase d C onfigur ation Utilit y Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 2 1 La unching the Configuration Utilit y T o open the web-bas ed configuration utilit y : STEP 1 Open a W eb br owser . STEP 2 Enter the IP addr ess of the device you are configuring in the addr ess b ar on the[...]

  • Page 16

    Getting Started Star ting the W eb -bas ed Configur a tion Utilit y 3 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 1 STEP 3 If this is the first time that you logged on with the default us er ID ( cis co ) and the default password ( cisco ) or your pas sword has ex pir ed, the Change P assword Page appears. S ee Password Expi[...]

  • Page 17

    Get ting Star te d Star ting the Web-b ase d C onfigur ation Utilit y Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 4 1 Logging Out By default, the application logs out after t en minutes of inactivit y . Y ou can change this def ault value as described in the De fining Idle S es sion Timeout se ction. ! CAU TI O N Unles s th[...]

  • Page 18

    Getting Started Quick Star t D evice C onfigur ation 5 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 1 Quick Star t D evic e C onfigura tion T o simplify device configuration throug h quick navigation, the Getting Star ted page provides links t o the most commonly use d pages . Ther e ar e two hot links on the Get ting Started[...]

  • Page 19

    Get ting Star te d In terface Naming Conventions Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 6 1 • Type of inter face : The f ollowing t ypes of inter faces ar e f ound on the various typ e s o f d ev ice s: - Fa st Ethernet ( 10/ 100 bit s) — Thes e ar e displa yed as FE . - Gigabit Ethernet p ort s ( 10 / 100/ 1000 bi[...]

  • Page 20

    Getting Started W indow Na viga tion 7 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 1 Window Na viga tion This se ction describ es the f eatures of the web- base d switch configurati on utility. Applic a tion Header The Application Header a ppears on ev ery page. It provides the f ollowing application links: Application Links[...]

  • Page 21

    Get ting Star te d W indow Naviga tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 8 1 Language Menu This menu provides the f ollowing options : • Sele ct a language: Sele ct one of the languages that appear in the menu. This language will be the web - base d configu ration utilit y language. • Dow n loa d Lan g u ag e:[...]

  • Page 22

    Getting Started W indow Na viga tion 9 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 1 Management But ton s The f ollowing table de scrib es the commonly-use d but t ons that appear on various pages in the system. Management But tons But ton Name D es cription Use the pull- down menu to configure the number of entries per page[...]

  • Page 23

    Get ting Star te d W indow Naviga tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 10 1 Cop y Sett in gs A table typically c ontains one or mor e entries containing configuration s ett ings. Instead of modif ying each entr y individually , it is po ssib le t o modif y one entr y and then copy the sele ct ed entr y to multip[...]

  • Page 24

    Getting Started W indow Na viga tion 11 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 1[...]

  • Page 25

    2 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 12 St a tus and St a tistic s This sect ion describ es how to view device statistic s. It covers the f ollowin g t opics : • Viewing Ethernet Interfac e s • Viewing Etherlik e St a tistics • Viewing 802. 1 X E AP Stat istics • Managing RMON Viewing Ethernet Inter face s [...]

  • Page 26

    Status and Statistics V iewing E therlike Sta tistics 13 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 - 60 Se c —Statistics are r efr e shed ever y 60 seconds . The Receive Statistics area displays inf ormation about incoming packets. • To t a l B y t e s ( O c t e t s ) —Octets r e ceived, including bad packets and F[...]

  • Page 27

    Status and Statistic s V iewing 802. 1 X E AP S ta tis tics Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 14 2 • Interfac e —Sele ct the t ype of int er face and spe cific interface f or which Ethernet statistics are t o be display ed. • Refresh Rate —Select the amount of time that pas se s bef or e the Etherlik e sta[...]

  • Page 28

    Status and Statistics V iewing 802. 1 X E AP Sta tis tics 15 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 STEP 1 Click Sta tus and Statistics > 802. 1 x E AP . STEP 2 Se lec t t he Interfac e that is pol led f or statistics . STEP 3 Select the time pe riod ( Refresh Rate ) that passe s bef or e the EAP statistic s ar e r[...]

  • Page 29

    Status and Statistic s Managing RMON Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 16 2 Managing RMON RMON (Remote Networ king Monitoring) is an SNM P specifi cation that enables an SNMP agent in the device to pr oactively monit or traffic statistics over a given period and send traps to an SNMP manager . The local S NMP agen[...]

  • Page 30

    Status and Statistics Managing RMON 17 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 T o view RMON statistics and/ or s et the r efresh rat e: STEP 1 Click Sta tus and Statistics > RMON > Statistics . STEP 2 Se lec t t he Interfac e f or which Ethernet statistics ar e t o be display ed. STEP 3 Se lec t t he Refresh Rat[...]

  • Page 31

    Status and Statistic s Managing RMON Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 18 2 • Co llisions —Number of c ollisions r eceived. If Jumb o Frames are enabled, the threshold of Jabber Frames is raise d to the ma ximum size of Jumbo Frames . • Frames of 64 By te s —Number of frames , containing 64 by tes that wer[...]

  • Page 32

    Status and Statistics Managing RMON 19 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 T o ent er RMON control inf ormation: STEP 1 Click Sta tus and Statistics > RMON > Histor y . The fields display ed on this page ar e defined in the Add RMON Hist or y page, below . The only field is that is on this page and not define[...]

  • Page 33

    Status and Statistic s Managing RMON Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 20 2 The fields are displa y ed f or the selected sample. • Ow n e r —Histor y table entr y owner . • Sam p l e N o . —Statist ics were tak en fr om this sample. • Drop Events —Dr opped packets due t o lack of net work resources dur[...]

  • Page 34

    Status and Statistics Managing RMON 21 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 • Alarms Page —Configur es the occurrences that trigger an alarm. T o define RMON ev ents: STEP 1 Click Sta tus and Statistics > RMON > Events . This page displays pr eviously defined events. STEP 2 Click Add. STEP 3 En te r th e p[...]

  • Page 35

    Status and Statistic s Managing RMON Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 22 2 Viewing the RMON Events Lo gs The Ev ent L og T able page displays the log of events (actions ) that occurred. T wo type s of events can be logged: Lo g or L o g and T rap . The action in the event is per f ormed when the ev ent is bound t[...]

  • Page 36

    Status and Statistics Managing RMON 23 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 T o ent er RMON alarms: STEP 1 Click Sta tus and Statistics > RMON > Alarms . All previously-defined alarms ar e display ed. The fields are describ ed in the Add RMON Alarm page b elow . In addition to those fields, the f ollowing fiel[...]

  • Page 37

    Status and Statistic s Managing RMON Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 24 2 • Inter val —Ent er the alarm interval time in s econds . • Ow n e r —Enter the name of the user or network management system that receives the alarm. STEP 4 Click Apply . The RMON alarm is saved t o the Running Configuration file.[...]

  • Page 38

    Status and Statistics Managing RMON 25 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2[...]

  • Page 39

    3 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 26 Administra tion: System Lo g This section de scribes the System L o g f eature, which enables the device to generat e several independent logs . Each log is a set of mes sage s descr ibing syst em events. The device generat es the f ollowing local logs: • L og sent to the c[...]

  • Page 40

    Administration: System Log Setting Syst em Log Settings 27 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 3 The event severity levels ar e list ed from the highest s everity to the lowest s everity , as f ollows : • Eme r g en cy —Syst em is no t usable. • Aler t —Action is needed . • Crit ic al —System is in a crit[...]

  • Page 41

    Administration: System Lo g Setting Remo te L ogging S ettings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 28 3 • Originator Identifier —Enable s adding an origin identifier to S YSL OG mes sages . The options ar e: - Non e —Do not include the origin identifier in S Y SL OG mes sage s. - Ho s t n am e —Include the s[...]

  • Page 42

    Administration: System Log V iewing Memory Logs 29 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 3 - Link L ocal — The IP v6 address uniquely identifie s hosts on a single network link . A link local addr ess has a prefix of FE80 , is not r outable, and can be use d f or communication only on the local net work . Only one li[...]

  • Page 43

    Administration: System Lo g Vi e w i ng M e m o r y Lo g s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 30 3 R AM Memor y The R AM Memor y pag e displays all mess ages that were sav ed in the R AM (cache) in chro nological order . Entries ar e sto red in the R AM log acc ording t o the configuration in the L og Set tings pag[...]

  • Page 44

    Administration: System Log V iewing Memory Logs 31 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 3[...]

  • Page 45

    4 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 32 Administra tion: F ile Man agement This section de scribe s how syst em files are managed. The f ollowing topics are covered: • System F ile s • Upgrade/B ackup Firm ware/Language • Downlo ad/B ackup Configura tion/Log • Configuration Files Proper tie s • Cop y / Sa[...]

  • Page 46

    Administration: F ile Managemen t Sys tem F iles 33 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 When a configuration is r ef erenced on the devic e, it is r ef erenced by its configuration file t yp e ( such a s Star tup Configuration or Running Configuration) , as oppo sed to a file name that can be modifie d by the user [...]

  • Page 47

    Administration: File Management Syste m Files Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 34 4 Only the syst em can copy the Star tup Configuration to the Mirr or Configuration. However , you can copy fr om the Mirr or Configuration to other file typ es or t o another device. The option of aut omatically copying the Running[...]

  • Page 48

    Administration: F ile Managemen t Upgrade/Backup Firmw are/Language 35 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 This se ction covers the f ollowing topics: • Upgrade/B ackup Firm ware/Language • D ownload/B ack up Configuration/Lo g • Configuration Files Proper tie s • Cop y / Sa ve Co nfi gur at i o n • DHCP [...]

  • Page 49

    Administration: File Management Upgrade/Backup Firm war e/Language Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 36 4 Up grade/B acking Firm ware or L anguage Fil e T o upgrade or backup a soft war e image or language file: STEP 1 Click Admin ist ra tion > Fil e Ma n a ge m ent > Up grade/Backup Firmwar e/ Lan g ua ge .[...]

  • Page 50

    Administration: F ile Managemen t Upgrade/Backup Firmw are/Language 37 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 • Link Loc al Interface —S elect the link lo cal interface (if IP v6 is use d) from the list . • TFTP S er ver IP A ddress/Name —Enter the IP address or the domain name of the TFTP s er ver . • (For [...]

  • Page 51

    Administration: File Management Upgrade/Backup Firm war e/Language Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 38 4 Select one of the f ollowing Save Actions : • Up grade —Sp ecifies that the file type on th e device is t o be replace d with a new version of that file typ e located on a TF TP ser ver . • Ba c k up —[...]

  • Page 52

    Administration: F ile Managemen t D ownload/Backup Configura tion/Log 39 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 • If SS H ser ver authentication is not enabled, the operation succee ds f or any SC P s erve r . D ownlo ad/B ackup C onfigura tion/Log The Download/B ackup Configuration/Log page enables: • Backing up [...]

  • Page 53

    Administration: File Management Download/B ackup Configur a tion/L og Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 40 4 Other wis e, if the S yste m mode is changed, the f ollowing cas es are possible: - If the configuration file is downloaded onto the device (using the Download/B ackup Configuration/Log page), the operation[...]

  • Page 54

    Administration: F ile Managemen t D ownload/Backup Configura tion/Log 41 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 - Gl ob al — The IP v6 addres s is a global Unicast IPV 6 t ype that is visible and reachable from other netw orks. d. Link -Lo c al Interface —S elect the link local inter face from the list . e. TFTP S[...]

  • Page 55

    Administration: File Management Download/B ackup Configur a tion/L og Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 42 4 - Plai ntex t —Include s ensitive data in the backup in its plaintext f orm. NOTE The a vailable sensitive data option s ar e determi ned by the curr ent us er SSD r u l es. F or d et ai l s, r ef er t o [...]

  • Page 56

    Administration: F ile Managemen t D ownload/Backup Configura tion/Log 43 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 STEP 5 f y ou sele ct ed via S CP (O ver S SH) , s ee SS H Clien t Configuration T hrough the GUI f o r instructions. Then ent er the f o llowing fields: • Remote S SH Ser v er Authentication — T o enabl[...]

  • Page 57

    Administration: File Management Configur a tion Files Proper tie s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 44 4 If Sa v e Act ion is Download (replacing the file on the device with a new version from another device), enter the f ollowing fields . • Sour ce F il e N ame —Ent er the name of the sour c e file. • Dest[...]

  • Page 58

    Administration: F ile Managemen t Cop y /Sa ve Con figur at io n 45 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 IT o set whether mirror configuration files wi ll be crea ted, clear configuration files and see when configuration files were cr eat e d: STEP 1 Click Adm in ist ra tion > Fil e Ma n a ge m ent > C onfigur[...]

  • Page 59

    Administration: File Management Cop y /Sav e Con figu r a tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 46 4 The f o llowing combinations of copying internal file type s ar e allowed: • Fr om the Running Configuration to the Star tup Configuration or B ackup Configuration. • Fr om the Star tup Configuration t o the R[...]

  • Page 60

    Administration: F ile Managemen t DHCP Auto Configur a tion 47 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 DHCP Auto C onfigura tion Aut o configuration enables pas sing configur ation inf ormation to hosts on a T CP /IP network . Based on this protocol, the Aut o Configuration f eatur e enables a device to download config[...]

  • Page 61

    Administration: File Management DHCP Auto Con figur a tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 48 4 DHCP S er ver O ptions DHCP mes sage s might contain the c onfiguration ser ver name/ addres s and the configuration file name/path (these are op tional options ). The se options are f ound in the Off er me ss age com[...]

  • Page 62

    Administration: F ile Managemen t DHCP Auto Configur a tion 49 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 NOTE T he SS H Client authenticati on paramet ers can also be use d when downloadin g a file f or manual downlo ad (a download that is not per f orme d through the DHCP A ut o Configuration f eature). Auto C onfigura [...]

  • Page 63

    Administration: File Management DHCP Auto Con figur a tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 50 4 - The SS H Ser ver is configur ed in the SS H T rusted Ser vers list . If the SS H ser v er authentication pr oce ss is enable d, and the SS H ser ver is not f ound in the SS H T r ust ed S er vers list , the Auto Con[...]

  • Page 64

    Administration: F ile Managemen t DHCP Auto Configur a tion 51 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 and f ormat of the file are checked, bu t the validity of the c onfiguration para met ers is not checked prior to loading it to the Star tup Configuration. • In IP v 4, to ensure that the device configuration functi[...]

  • Page 65

    Administration: File Management DHCP Auto Con figur a tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 52 4 STEP 3 Enter the f ollowing optional inf ormation t o be use d if no configuration file name was received from the DHCP ser ver . • B ackup Ser ver D efinition— Sel ect By IP addres s or By name t o configure the [...]

  • Page 66

    Administration: F ile Managemen t DHCP Auto Configur a tion 53 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4[...]

  • Page 67

    5 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 54 Administra tion: General Inf ormation This section describ es how to view syst em inf ormation and configure various options on the device. It covers the f ollowin g t opics : • Dev i ce M ode ls • System I nfo rma ti on • Rebo oting the D evice • Monitoring Fa n Stat[...]

  • Page 68

    Administration: General Information Dev i ce M ode l s 55 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 5 The f ollowing table de scrib es the various models , the number and t ype of por ts on them and their P oE inf ormation. Smar t Switch Mo dels Model Name Produc t ID (PID) Descr i p t io n o f P o rts o n De vi ce Power D[...]

  • Page 69

    Administration: General Informa tion Syst em In f orma tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 56 5 System Information The Syst em Summar y page pro vides a graphic view of the device, and displays de vi c e st at u s , h a rdw are in form a ti on , fi rmwar e version inf ormation, genera l P oE status, and other i[...]

  • Page 70

    Administration: General Information Sys tem I n f orma tion 57 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 5 • HT TPS S er vice —Displays whether HTTPS is enabled/ disable d. • SNMP Ser vice —Displays whether SNMP is enabled/ disabled. Other Summary Information: • Mo del De s cription —Device mo del description. [...]

  • Page 71

    Administration: General Informa tion Reb oot in g th e D e vi c e Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 58 5 • Custom Login S creen S et tings — T o display te x t on the Login page, ent er the t ext in the Login B anner t e xt bo x. C li c k Preview to view the results. NOTE When you define a login banner from th[...]

  • Page 72

    Administration: General Information Reb o ot in g t he D ev ic e 59 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 5 • Rebo ot —R eboots the device. Sinc e an y unsav ed inf ormation in the Running Configuration is dis car ded when the devic e is re booted, you must click Sa ve in the upper - right corner of any window t o [...]

  • Page 73

    Administration: General Informa tion Monitori ng F an Sta tus Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 60 5 Monitoring F an Sta tus The Health page displays the f an status on all device s with fans. Dep ending on the model, there ar e one or mor e fa ns on a device. Some models have no fans at all. On device s on which [...]

  • Page 74

    Administration: General Information D e fining Idle Se ssion T ime out 61 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 5 T o view the device health parameters, click Status and Statistics > He alth . The Health page displays the f oll owing fields: • Fan S t atu s —F an status. The following values ar e pos sible : - O[...]

  • Page 75

    Administration: General Informa tion Pinging a Ho st Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 62 5 Pinging a Ho st Ping is a utility us ed to t est if a r emot e host can be r eached and to measure the r ound-trip time f or packets sent from the device t o a destinatio n device. Ping operates by sending Internet Contro l[...]

  • Page 76

    Administration: General Information Pinging a Host 63 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 5 • Status — Di sp la ys w he th er th e p in g s uc ceeded or f ai led . STEP 3 Click Activate Ping to ping the host . The ping status appears and another mes sage is ad ded to the list of mes sages , indicating the result [...]

  • Page 77

    6 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 64 Administra tion: Time S et tings Synchr onized syst em clocks provide a frame of ref erence betw een all devices on the network . Network time synchronization is critical because ever y aspect of managing, se curing, planning, and debugging a network inv olves determining whe[...]

  • Page 78

    Administration: Time Settings Sys tem T ime Op tions 65 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 6 System Time Options Syst em time can be set manually by the us er , dynamically from an SNTP ser ver , or synchronized fr om the PC running the GUI. If an S NTP ser ver is chos en, the manual time set tings ar e ov er writte[...]

  • Page 79

    Administ ra tion: Time Set tings SNTP Mode s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 66 6 Time Zone and Da ylight Savings Time (DST ) The T ime Z one and DST can be set on the device in the f ollowing wa ys: • Dynamic co nfiguration of the device through a DHCP ser ver , where: - Dynamic D ST , when enabled and availa[...]

  • Page 80

    Administration: Time Settings Configuring Syst em T ime 67 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 6 C onfiguring S ystem Time S elec ting S ource of S ystem Time Use the Syst em T ime page t o select the system time sour ce. If the source is manual, you can ent er the time her e. ! CAUT I ON If the system time is set ma[...]

  • Page 81

    Administ ra tion: Time Set tings Configuring Sys t em T ime Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 68 6 Manual Set tings —Set the date and time manually . The local time is us ed when ther e is no alt ernate source of time, such as an SN TP ser ver : • Date —Ent er the system dat e. • Lo c al Time —Ent er the[...]

  • Page 82

    Administration: Time Settings Configuring Syst em T ime 69 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 6 - Fro m —Day and ti me that DST st ar ts. - To —Day and time that DST ends. Sel ect in g Recurring allows diff erent cust omization of the star t and stop of DS T : • Fro m —Date when DST begins each year . - Da y[...]

  • Page 83

    Administ ra tion: Time Set tings Configuring Sys t em T ime Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 70 6 • Poll Inter val —Displays whether polling is enabled or dis abled. • Authentication K ey ID —Ke y Identification use d t o communicate betw een the SNTP ser v er and device. • Stratum Level —Distance fro[...]

  • Page 84

    Administration: Time Settings Configuring Syst em T ime 71 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 6 • IP V ersion —S elect the version of the IP address : Ve r s i o n 6 or Ve rs i o n 4 . • IP v 6 Addres s Typ e —Sele ct the IP v6 addr es s typ e (if IP v6 is used) . The options are - Link L ocal — The IP v6 [...]

  • Page 85

    Administ ra tion: Time Set tings Configuring Sys t em T ime Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 72 6 C onfiguring the SNTP Mode The device can be in active and/ or pas sive mode ( see SNTP Mo des fo r m o r e inf o rmation). T o enable r eceiving S NTP pack ets from all ser vers on the subnet and/ or to enable trans[...]

  • Page 86

    Administration: Time Settings Configuring Syst em T ime 73 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 6 The authentication k ey is cr eated on the SNTP se rver i n a sep ar at e pr ocess th at depends on the t ype of S NTP ser ver you ar e using. Consult with the SNTP ser v er system administrat or f or more inf ormation. W[...]

  • Page 87

    7 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 74 Administra tion: Diagno stic s This section c ontains inf ormation f or configuring por t mirroring, running cable tests, and viewing device op erational inf ormation. It covers the f ollowin g t opics : • T e sting Copp er Por ts • Displaying Optical Mo dule Status • C[...]

  • Page 88

    Administration: Diagnostics Te s t i n g C o p p e r P o r t s 75 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 7 • (Optional) Disable EEE (see the Port Management > Green Ethernet > Pr oper ties page) Use a CA T5 data cable when t esting cables using ( VCT ) . Accuracy of the test r esults can have an err or range of [...]

  • Page 89

    Administration: Diagno stic s Displaying Op tical Mo dule Sta tus Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 76 7 I f t h e p o r t b e i ng te s te d i s a Gi g a p o r t , th e Advanc ed Inf ormation block c ontains the f ollowing information, which is r efr eshed each time you enter the page: • Cabl e Length : Provide[...]

  • Page 90

    Administration: Diagnostics Configuring P or t and VL AN Mirroring 77 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 7 • MGBLH 1 : 1000BA SE-LH S FP transc eiver , f or single-mo de fiber , 1310 nm wav elength, suppor ts up to 40 km. • MGBLX 1 : 1000BA S E-LX SFP transc eiver , f or single-mode fib er , 1310 nm wav elength,[...]

  • Page 91

    Administration: Diagno stic s Configuring P or t and VL AN Mirro ring Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 78 7 A pack et that is r eceived on a net work por t assigne d t o a VLAN that is subject to mirr oring is mirror e d to the analyzer por t even if the pack et was eventually trapped or discarded. Pack ets sent [...]

  • Page 92

    Administration: Diagnostics V iewing CP U Utiliz a tion and Secure Core T echnolo gy 79 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 7 - Rx O n l y —P or t mirroring on incoming pack ets. - Tx O n l y —Por t mirroring on outgoing pack ets . - Tx a n d R x —Port mirroring on both incoming and outgoing pack ets. STEP 4 Cl[...]

  • Page 93

    8 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 80 Administra tion: Dis c over y This sect ion pr ovides inf ormation f or configuring Dis cover y . It covers the f ollowin g t opics : • Configuring B o njour Dis cover y • LLDP and CDP • Configuring LLDP • Con fig u r i n g C D P C onfiguring B o njour Dis c over y As[...]

  • Page 94

    Administration: Discovery LLDP and CDP 81 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 By default , Bonjour is enabled on all interface s that are me mbers of the Management VLAN. T o globally enable Bonjour : STEP 1 Click Adm in ist ra tion > Disc over y - B onjour . STEP 2 Se lec t Enable to enable Bonjour Discover y g[...]

  • Page 95

    Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 82 8 • Aut o Smartp or t r equires CDP and/ or LLDP to be enabled. Aut o Smartp or t automatically configur es an inter face based on the CD P /LLDP adver tisement r eceived from the int er face. • CDP and LLDP end devices, such as [...]

  • Page 96

    Administration: Discovery Configuring LLDP 83 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Configuring LLDP MED Por t S et tings • Displaying LLD P Por t Sta tus • Displaying LLD P Loc al Information • Displa ying LLDP Neighbors Informa tion • Access i n g L LD P S t a tis tic s • LLDP O verloading LLDP O ver [...]

  • Page 97

    Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 84 8 3. Creat e LLDP MED network policie s by using the LLDP MED Net work Policy page. 4. A ss ociate LLDP MED network p olicies and the optional LLDP -MED TL Vs t o the desired int er faces by using the LLDP MED Port Set tings page. 5.[...]

  • Page 98

    Administration: Discovery Configuring LLDP 85 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Tr a n s m i t D e l a y —Enter the amount of time in s econds that pass es b etwe en succe ssive LLDP frame transmis sions due to changes in the LLDP local systems MIB. STEP 3 In the F ast Star t Repe at Count field, enter the [...]

  • Page 99

    Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 86 8 The time inter val bet ween notifications is enter ed in the T opology Change SNMP Notification Int er val field in the LLDP P roperties page. Define SNMP Notification R ecipients by using the SNMP > Notification Recipient v 1 ,[...]

  • Page 100

    Administration: Discovery Configuring LLDP 87 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 lowest IP address among the dynamic IP addres ses . If there ar e no dynamic addr es ses , the soft ware choose s the lowest IP addr es s among the static IP addr ess es . - Non e —Do not adver tise the management IP address . - Man[...]

  • Page 101

    Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 88 8 Set ting LLDP MED Net work Policy An LLDP -MED net work policy is a relate d set of configuration s ettin gs f or a specific real-time application such as vo ice, or vide o. A network policy , if configured, can be include d in the[...]

  • Page 102

    Administration: Discovery Configuring LLDP 89 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • VL AN T ag —S elect whether the traf fic is T agge d or Untagged. • User Priorit y —Select the traffic priorit y applied to tra ffic define d by this network p olicy . This is the C oS value. • DSCP Value —Select the D S[...]

  • Page 103

    Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 90 8 • SNMP Notification —Sele ct whether S NMP notification is sent on a per -por t basis when an end station that suppor ts MED is discovered; f or example a SNMP managing system, when ther e is a topology change. • A vailable O[...]

  • Page 104

    Administration: Discovery Configuring LLDP 91 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Chas sis ID Subt ype — T ype of chas sis ID (f or e xample, MAC addr ess). • Chassis ID —Identifier of chassis . Wher e the chassis ID subt ype is a MAC address , the MAC addr es s of the device appears. • Sys te m N am e [...]

  • Page 105

    Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 92 8 This page provides the f ollowing fields : Glo b al • Chassi s ID Subt yp e — T yp e of chassis ID . (For e x ample, the MAC addr ess .) • Chassi s ID —Identifier of chas sis . Where the chassis ID subt ype is a MAC address[...]

  • Page 106

    Administration: Discovery Configuring LLDP 93 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Auto-Ne gotiation Adver tise d Cap abilities —Por t spee d aut o-negotiation capabilities ; f or example, 1000BAS E- T half duplex mode, 100BAS E- T X full duplex mode. • Op era tional MAU Type —Medium Attachment Unit (MA U)[...]

  • Page 107

    Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 94 8 - Endpoint Clas s 1 —Indicates a generic endpoint class , of f ering b asic LLDP ser vice s. - Endpoint Clas s 2 —Indicat es a media endpoint class , off ering media streaming capabilities, as well as all Clas s 1 f eatures . -[...]

  • Page 108

    Administration: Discovery Configuring LLDP 95 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 - Untagged —Indicat es the net work policy is define d f or untagged VL ANs . • User Priorit y —Network policy user priorit y . • DSCP —Network policy D S CP . Displa ying LLDP Neighbors Information The LLDP Neighbors Inf or[...]

  • Page 109

    Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 96 8 Ba sic Details • Chassi s ID Subt yp e — T yp e of chassis ID (f or e xample, MAC addr ess). • Chassi s ID —Identifi er of the 802 LAN neig hboring devic e chass is. • Por t ID Subt ype — T ype of the p ort identifier t[...]

  • Page 110

    Administration: Discovery Configuring LLDP 97 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Op era tional MAU Type —Medium Attachment Unit (MA U) t ype. The MAU per f orms physical la yer functions, incl uding digital data conversion fr om the Ethernet interface s’ collision detection and bit injection i nt o the net[...]

  • Page 111

    Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 98 8 MED Details • Capabilitie s Supp orte d —MED capabilities enabled on the p or t . • Current Capabilitie s — M E D T L V s a d v e rt i sed by th e p o rt . • Dev ice C l a ss —LLDP -MED endp oint device class . The pos [...]

  • Page 112

    Administration: Discovery Configuring LLDP 99 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Enable d —En ab led P or t a nd Pr ot oco l V LAN I Ds. VL AN IDs • VID —P or t and Prot o col VL AN ID . • VL AN Name s —Adver tised VL AN name s. Protocol IDs • Protoc ol ID T able —Adver tise d prot ocol ID s. L o[...]

  • Page 113

    Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 100 8 STEP 1 Click Admin ist ra tion > Disc over y - LLDP > LLDP Sta tistics . F or each por t , the fields ar e displa yed: • Interfac e —Identifier of inter face. • Tx Frames T ot al —Number of transmit ted frames . • [...]

  • Page 114

    Administration: Discovery Configuring LLDP 101 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Lef t to S end (By te s) — T otal number of a vailable by tes left f or additional LLDP inf ormation in each packet . • Status — Whether TL V s are being transmitted or if they ar e overloade d. STEP 2 T o view the overload[...]

  • Page 115

    Administration: Disc over y Configuring CDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 102 8 • LLDP Option al TL V s - Size (Bytes) — T otal LLDP MED optional TL Vs pack ets by te size. - Status —If the LLDP MED optional TL V s packe ts wer e sent , or if they were overloaded. • LLDP MED Inven tor y - Size (Bytes) [...]

  • Page 116

    Administration: Discovery Configuring CDP 103 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 CDP Configuration W ork flow The f o llowings is sample work flow in configuring CDP on the device. Y ou can als o find additional CDP c onfiguration guideline s in the LLDP /CDP secti on. STEP 1 Ent er the CDP global paramet ers usin[...]

  • Page 117

    Administration: Disc over y Configuring CDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 104 8 • CDP Hold Time —Amount of time that CDP packets are held be f ore the packets ar e discarded, measured in multiples of the TL V Adver tise Inter val. F or e xample, if the TL V Adver tise Inter val is 30 seco nds, and the Hold[...]

  • Page 118

    Administration: Discovery Configuring CDP 105 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 Editing CDP Inter face S et tings Use the Interface S ettings page to activate LLDP and remot e log ser ver notification per por t , and t o select the TL V s include d in LLDP PDUs. By set ting thes e pr oper ties it is p os sible to[...]

  • Page 119

    Administration: Disc over y Configuring CDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 106 8 • Syslo g V oi ce VL A N Mismatch —Select t o enable the option of sending a S Y SL O G me ssage when a voice VL AN mismat ch is det ected This means that the voice VLAN information in the incoming frame do es not match what th[...]

  • Page 120

    Administration: Discovery Configuring CDP 107 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 - Por t ID —Identifi er of por t adver tise d in the por t TL V . • Capa bili tie s TL V - Cap abilities —Capabilit ies adver tise d in the por t TL V ) • Ve r s i o n T L V - Ve r s i o n —Inf ormation ab out the soft war e[...]

  • Page 121

    Administration: Disc over y Configuring CDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 108 8 - Req ue st ID —La st pow er r equest ID r eceiv ed ec hoes th e R equ est -ID field last r eceived in a P ower Request ed TL V . It is 0 if no P ower Requested TL V was r eceived sinc e the int er face last transitioned to Up. -[...]

  • Page 122

    Administration: Discovery Configuring CDP 109 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Cap abilities —Capabilit ies adver tise d by neighbor . • Platform —Inf ormation from Pl atf orm TL V of neighbor . • Neighb or Interfac e —Outgoing int er face of the neighbor . STEP 2 Select a device , and click Det ai[...]

  • Page 123

    Administration: Disc over y Configuring CDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 110 8 Viewing CDP Statistics The CDP Statistics page displays inf ormation regarding Cisco Dis cover y Prot ocol (CDP) frames that wer e sent or r e ceived from a por t . CDP packets ar e received fro m devices at tached to the swi tches[...]

  • Page 124

    Administration: Discovery Configuring CDP 111 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8[...]

  • Page 125

    9 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 112 Por t Management This section de scribe s por t configurat ion, link aggregation, and the Green Ethernet f eature. It covers the f ollowin g t opics : • Con fig u r i n g P o rts • Set ting Por t Configuration • Configuring Link Aggre ga tion • Configuring G reen Eth[...]

  • Page 126

    Port Management Setting Por t Configura tion 113 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 S et ting Por t C onfigura tion The Po r t Set tings page displays the global and per p or t set ting of all the por ts. This page enables you to select and configure the desir ed por ts from the Edit P ort Set tings page. T o conf[...]

  • Page 127

    Por t Management Setting Por t C onfigur a tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 114 9 • Operational Status —Displa ys whethe r the por t is curr ently Up or Down. If the por t is down be cause of an error , the des cription of the error is displa yed. • Reac tiva te Suspende d Por t —S e le c t to rea ct[...]

  • Page 128

    Port Management Setting Por t Configura tion 115 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 - 1000 F ull — 1000 Mbps spe ed and Full Duplex mode. • Op era tional A dver tisement —Displays the capabilities curr ently published to the por ts neighbor . The p os sible options ar e tho se spe cified in the Administrativ[...]

  • Page 129

    Por t Management Configuring Link Aggr egation Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 116 9 C onfiguring Link Aggre ga tion This section de scribe s how t o configure LAGs . It covers the f ollowing topics : • Link Aggregation Over view • Static and D ynamic L A G Workflow • De fining L AG Management • Co nfigu[...]

  • Page 130

    Port Management Configuring Link Aggr egation 117 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 The device suppor ts t wo modes of load ba lancing: • By MAC Addr es ses —B ase d on the destination and s ource MAC addresse s of all packets. • By IP and MA C Addr esse s —Base d on the desti nation and source IP address[...]

  • Page 131

    Por t Management Configuring Link Aggr egation Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 118 9 Static and Dynamic L A G W orkflow After a LAG has been manually creat e d, L ACP cannot be added or removed until the LAG is edited and a member is removed. Only then the LACP button bec ome av ai l a b le fo r e di t i n g . T[...]

  • Page 132

    Port Management Configuring Link Aggr egation 119 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 STEP 3 Click Apply . The Load Balance Algorithm is sav ed to the Running Configuration file. T o defi ne the member or candidat e por ts in a LAG. STEP 1 Select the L AG t o be config ur ed, and click Edit. STEP 2 Ent er the value[...]

  • Page 133

    Por t Management Configuring Link Aggr egation Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 120 9 • Reac tiva te Suspende d L A G —S elect to r eactivat e a por t if the L AG has been dis abled through the locked por t securit y option . • Administrative Auto Negotiation —Enables or disable aut o-negotiation on the L[...]

  • Page 134

    Port Management Configuring Link Aggr egation 121 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 C onfiguring LA C P A dynamic LAG is L ACP -enable d, and LACP is run on ever y candidate por t defined in the L AG. L ACP Priorit y and Rule s LACP system priority and L ACP por t priority are both use d t o determine which of th[...]

  • Page 135

    Por t Management Configuring Link Aggr egation Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 122 9 However , ther e are cases when one link par tner is t emporarily not configured f or LACP . One example f or such case is when the link par tner is on a device, which is in the proces s of receiving its con figuration using the[...]

  • Page 136

    Port Management Configuring Gr een Etherne t 123 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 STEP 5 Click Apply . The Running C onfiguration file is updated. C onfiguring Green Ethernet This se ction describ es the Green Ethernet f eature that is designed to sa ve power on the device. It contains the f ollowing sections : [...]

  • Page 137

    Por t Management Configuring Gr een Etherne t Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 124 9 In addition t o the above Gr e en Ethernet f eatures, the 802.3az Energy Ef ficient Ethernet (EEE) is f ound on devic es suppor ting GE por ts . EEE reduces p ower consumption when ther e is no traffic on the por t . S ee 802.3az[...]

  • Page 138

    Port Management Configuring Gr een Etherne t 125 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 802.3az Energy Ef ficient Ethernet Feature This section de scrib es the 802.3az Energy Efficient Ethernet (EEE) f eatur e. It covers the f ollowing topics : • 802.3az EEE O ver view • Adver tis e Cap abilitie s Ne gotiation •[...]

  • Page 139

    Por t Management Configuring Gr een Etherne t Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 126 9 Ad ver tise Capa biliti es N egoti a tio n 802.3az EEE suppor t is adver tised duri ng the Aut o-Negotiation stage. Aut o- Negotiation provides a linked device with the capabilit y to det ect the abilities (modes of op eration) s[...]

  • Page 140

    Port Management Configuring Gr een Etherne t 127 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 802. 3a z EEE Configuration W orkflow This se ction describ es how to configure the 802.3az EEE f eature and view its counters. STEP 1 Ensur e that aut o-negotiation is enabled on the por t by opening the Por t Management > Port[...]

  • Page 141

    Por t Management Configuring Gr een Etherne t Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 128 9 • Energy De tect Mo de —Disabled by de fault. Click the checkbox to enable. • Shor t Re ach —Glob ally enable or dis able Shor t Reach mode if there are GE por ts on the device. NOTE If Shor t Reach is enabled, EEE must b[...]

  • Page 142

    Port Management Configuring Gr een Etherne t 129 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 T o defi ne per port Gr een Eth er net setti ng s: STEP 1 Click Port Management > Gr een Ethernet > Por t Set tings . The Po r t Set tings page displays the f ollowing : • Global Parameter St a tus —Des cri bes th e e na [...]

  • Page 143

    Por t Management Configuring Gr een Etherne t Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 130 9 - EEE Suppor t o n Remote— Displa ys whether EEE is suppor ted on the link par tner . EEE must be supp or ted on both the local and remot e link par tners. NOTE The window displa ys the Short Reach, Energy Detect and EEE sett i[...]

  • Page 144

    Port Management Configuring Gr een Etherne t 131 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9[...]

  • Page 145

    10 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 132 Smar tp or t This document de scribe s the Smar tp or ts f eature. It contains the f ollowing t opics : • O ver view • What is a Smar tp or t • Smar tp or t Typ es • Smar tp or t Macro s • Macro F ailure and the Rese t Operation • How the Smar tp or t Featur e W[...]

  • Page 146

    Smartport Wha t is a Smar tp or t 133 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 Ther e ar e two ways t o apply a Smartp ort macro by Smartp or t typ e t o an interfac e: • Static Smar tpor t — Y ou manually as sign a Smar tpor t type to an interface. The result is the corresponding Smar tpor t macro is applied to th[...]

  • Page 147

    Smar tp or t Smar tpor t T yp es Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 134 10 • Deskt op • Guest • Ser ver • Host • IP Camera • IP phone • IP Phone+Desktop • Switch • Router • W ir eless A ccess P oi n t Smar tpor t t ype s ar e named s o that they describ e the ty pe of device c onnected to an int[...]

  • Page 148

    Smartport Smar tpor t T yp es 135 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 Sp eci al Smar tp or t Typ e s Ther e ar e two spe cial Smar tpor t type s; default and un known . T h es e tw o ty pes ar e not as sociated with macros, but they exist t o signify the state of the int erfac e re ga rdi ng S m ar tp or t . The f[...]

  • Page 149

    Smar tp or t Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 136 10 NOTE Thr oughout this section, the term “ aged ou t ” i s u s e d to d e s c r i b e t h e L L D P a n d C DP mes sages via their TTL . If Aut o Smartp ort is enabled, and p ersist ent status is disable d, and no more CDP or LLDP mes sag [...]

  • Page 150

    Smartport Macro F ailure and the Reset Opera tion 137 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 • If the Star tup Configuration File sp ecifies a static Smartp ort t ype, the Smar tpor t t ype of the inter face is set to this static type. • If the Star tup Configuration File specifies a Smar tp or t typ e that was d[...]

  • Page 151

    Smar tp or t How the S mar tpor t F eatur e W orks Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 138 10 How the Smar tpor t Fe a tur e W orks Y ou can apply a Sma r tpor t macr o t o an int erface by the Smartp ort t ype ass ociated with the macr o. Becaus e suppor t is provided f or Smar tp ort types whi ch co rr espond t o [...]

  • Page 152

    Smartport Auto Smar tpor t 139 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 • If a device is aged out (no longer r eceiving adver tisements from other device s ), the inter face configurat ion is changed acc ording t o its P ersist ent Status. If the Persist ent Status is enabled, the int er face configuration is retaine[...]

  • Page 153

    Smar tp or t Auto Smartp or t Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 140 10 Using CDP / LLDP Informa tion to Identify Smar tp or t Typ es The device detects the typ e of device attache d t o the por t , b ased on the CDP / LLDP capabilities . This mapping is shown in the f ollowing tables : CDP Capabilitie s Mapping to[...]

  • Page 154

    Smartport Auto Smar tpor t 141 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 NOTE If only the IP Phone and Host bits ar e set , then the Smar tpor t t ype is ip_phone_desktop. Multiple D evice s At tache d to the Por t The device derives the Smartpor t t ype of a connected device via the capabili ties the device advert ises[...]

  • Page 155

    Smar tp or t Er ror H an d li n g Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 142 10 F or mor e inf orm ation about LLDP /CDP ref er to the Configuring LLDP and Co nfiguring CDP section s, r especti ve ly . Persistent Auto Smar tp or t Inter face If the Pe rsiste nt status of an int er fac e is enabled, its Smar tpor t t yp[...]

  • Page 156

    Smartport Rela tionship s with Other Fea tur es and Back wards Compa tibility 143 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 Rela tionships with O ther Featur es and B ack war ds C omp a tibilit y Aut o Smartp or t is enabled by default and ma y be disable d. T e lephon y OUI cannot function concurrently with Aut o Smar [...]

  • Page 157

    Smar tp or t Common Smar tp or t T asks Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 144 10 W ork flow2: T o configure an in ter fac e as a static Smar tpor t , per f orm the fol lo wing steps : STEP 1 T o enable the Smartpor t featur e on the inter face, open the Smar tpor t > Interface Set tings page. STEP 2 Select the [...]

  • Page 158

    Smartport Configuring Smar tp or t Using The W eb -bas ed Interface 145 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 W ork flow4: T o rerun a Smar tp or t macro a fter it ha s failed, per form the fol l ow in g st e p s : STEP 1 In the Int er face Settings page, sele ct an int er face with Smar tpor t t ype Unknown. STEP 2[...]

  • Page 159

    Smar tp or t Configuring Smartp or t Using The Web-b ase d In terfac e Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 146 10 Smar tpor t Prop er tie s T o configur e the Smartp or t f eature globally : STEP 1 Click Smar tp or t > Prop er ties . STEP 2 Enter the paramet ers. • Administrative Auto Smar tpor t —Select to g[...]

  • Page 160

    Smartport Configuring Smar tp or t Using The W eb -bas ed Interface 147 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 Smar tpor t Typ e S et tings Use the Smar tpor t T yp e Settings page to edit the Smar tpor t T yp e sett ings and view the Macro Sour ce. By default , each Smar tpor t t ype is a ss ociated with a pair of b[...]

  • Page 161

    Smar tp or t Configuring Smartp or t Using The Web-b ase d In terfac e Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 148 10 currently assigned with the Smar tp or t t ype by Aut o Smar tpor t . Auto Smartp or t does not apply the changes to int er faces that wer e statically assigned a Smar tpor t typ e. NOTE Ther e is no met[...]

  • Page 162

    Smartport Configuring Smar tp or t Using The W eb -bas ed Interface 149 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 T o apply a Smartp or t macro: STEP 1 Click Smartp or t > Inter face S et tings . Reapply the asso ciat ed Smar tp or t macr o in the f ollowing ways: • Sele ct a gr oup of Smar tpor t typ es (swit ches[...]

  • Page 163

    Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 150 10 • Smar tp or t Type —Displays the Smartp or t type currently assigned t o the port /LAG . • Smar tp or t Applic a tion —Sele ct the Smar tpor t typ e fr om the Smar tpor t Application pull-down. • Smar tp or t Applic a tion[...]

  • Page 164

    Smartport Built-in Smar tpor t Macros 151 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 • guest • serve r • ho st • ip_camera • ip_phone • ip_phone_desktop • switch • rou ter • ap desk top [desktop] #interface configuration, for in creased network security an d reliability when connecting a desktop device,[...]

  • Page 165

    Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 152 10 [no_desktop] #macro description No Desktop # no smartport switchport trunk nati ve vlan smartport switchport trunk allowed vlan remove all # no port security no port security mode no port security max # no smartport storm-control bro[...]

  • Page 166

    Smartport Built-in Smar tpor t Macros 153 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 # no switchport access vlan no switchport mode # no port security no port security mode # no smartport storm-control broadcast e nable no smartport storm-control broadcast l evel no smartport storm-control include-mul ticast # spanning-t[...]

  • Page 167

    Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 154 10 # no port security no port security mode # no smartport storm-control broadca st enable no smartport storm-control broadca st level no smartport storm-control include -multicast # spanning-tree portfast auto # @ server [server] #macr[...]

  • Page 168

    Smartport Built-in Smar tpor t Macros 155 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 no port security mode no port security max # no smartport storm-control broadcast e nable no smartport storm-control broadcast l evel # spanning-tree portfast auto # @ host [host] #macro description host #macro keywords $native_vlan $max[...]

  • Page 169

    Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 156 10 no port security max # no smartport storm-control broadca st enable no smartport storm-control broadca st level no smartport storm-control include -multicast # spanning-tree portfast auto # @ ip_camera [ip_camera] #macro description [...]

  • Page 170

    Smartport Built-in Smar tpor t Macros 157 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 # spanning-tree portfast auto # @ ip_phone [ip_phone] #macro description ip_phone #macro keywords $native_vlan $voice_vl an $max_hosts # #macro key description: $native_vlan : The untag VLAN which will be configured on the port # $voice_[...]

  • Page 171

    Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 158 10 # no port security no port security mode no port security max # no smartport storm-control broadca st enable no smartport storm-control broadca st level no smartport storm-control include -multicast # spanning-tree portfast auto # @ [...]

  • Page 172

    Smartport Built-in Smar tpor t Macros 159 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 #macro key description: $voice_vlan: The voice VLAN ID # #Default Values are #$voice_vlan = 1 # smartport switchport trunk allowed vla n remove $voice_vlan no smartport switchport trunk native v lan smartport switchport trunk allowed vla[...]

  • Page 173

    Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 160 10 smartport switchport trunk allowed vlan remove all # no spanning-tree link-type # @ router [router] #macro description router #macro keywords $native_vlan $voic e_vlan # #macro key description: $native_v lan: The untag VLAN which wil[...]

  • Page 174

    Smartport Built-in Smar tpor t Macros 161 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 no smartport storm-co ntrol broadcast level # no spanning-tree link-type # @ ap [ap] #macro description ap #macro keywords $native_vlan $voice_vl an # #macro key description: $native_vlan: The untag VLAN which will be configured on the p[...]

  • Page 175

    11 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 162 Por t Management : PoE The P ower over Ethernet (P oE) f eature is only a vailable on PoE-base d devices . F or a list of Po E-base d devices , ref er to the De v ice M od e l s sect io n. This section de scribes how to use the P oE f eature. It covers the f ollowin g t opi[...]

  • Page 176

    Port Management: PoE PoE o n t h e D e v ic e 163 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 11 Power ov er Ethernet can be used in any ent erprise net work that deploys r elatively low-powered device s connected to the Ethernet LAN, such as : • IP phones • W i r eless a cce ss p oi n ts • IP gatewa ys • Audio and v[...]

  • Page 177

    Por t Management : PoE PoE o n t he D e v ic e Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 164 11 Y ou can decide the f ollowing: • Maximum power a PS E is allowed to supply to a PD • During device operation, to change the mode from Class Power Limit t o Port Limit and vice versa. The p ower values p er por t that were [...]

  • Page 178

    Port Management: PoE Configuring PoE Pr op er tie s 165 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 11 may not be able t o pr operly supply power to its attaching PDs . T o pr event fa lse detection, you should disable PoE on the por ts on the PoE swit ches that are used to connect to PSEs . Y ou should also first p ower up [...]

  • Page 179

    Por t Management : PoE Configuring P oE Settings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 166 11 The f ollowing c ounters ar e displ a yed f or each device: • Nominal Power — The total amount of power th e devic e can supply to all the connected PD s. • Consum ed P ower —Amount of power currently being consumed b[...]

  • Page 180

    Port Management: PoE Configuring PoE Settings 167 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 11 The administrator sets the priority for each por t , allocating how much p ower it can be gi v en. Thes e p ri or it ies ar e en t er ed in th e P oE Se ttin gs pa ge . See De v i ce M od e l s f or a description of the devic e m[...]

  • Page 181

    Por t Management : PoE Configuring P oE Settings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 168 11 • Pow e r C o n su m pt i on —Display s the amount of power in milliwat ts assigned t o the powered device co nnected t o the selected int er face. • Overload C ounter —Displays the total number of power overload occu[...]

  • Page 182

    Port Management: PoE Configuring PoE Settings 169 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 11[...]

  • Page 183

    12 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 170 VL AN Man agement This section c overs the f ollowing topics: • VL ANs • Configuring D e fault VL AN S et tings • Creating VL ANs • Configuring VL AN In ter face S ettings • Defi nin g VLAN M em be rs hip • Vo i c e V L A N VL ANs A VLAN is a lo gical group of p[...]

  • Page 184

    VLAN Management VL ANs 171 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 VLANs addres s securit y and scalabilit y issues . T r affic from a VLAN sta ys within the VLAN, and terminat es at devices in the VL AN. It also eases net work configuration by lo gically connecting devi ces without physically relocating thos e device[...]

  • Page 185

    VL AN Management VL ANs Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 172 12 • Management VLAN: For mor e inf ormat ion r ef er to the Configuring IP Inf o rmation section. QinQ QinQ provides isolation betwe en ser vice pr ovider networks and customers' networks . The devic e is a provider bridge that suppor ts p or t [...]

  • Page 186

    VLAN Management Configuring Def ault VL AN S ettings 173 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 C onfiguring D e f ault VL AN S et tings When using fact or y default set tings, the devic e automatically cr eates VL AN 1 as the default VLAN, the default int er face status of all por ts is T runk , and all por ts are c[...]

  • Page 187

    VL AN Management Crea ting VL ANs Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 174 12 STEP 3 Click Apply . STEP 4 Click Sa ve (in the upp er-right corner of the window) and s a ve the Running Configuration to the Star tup Configuration. The De fault VL AN ID After Re s et become s th e Curr ent Default VL AN ID af te r you r[...]

  • Page 188

    VLAN Management Configuring VL AN Inter f ace S ettings 175 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 T o cr eat e a range of VLANs, sele ct the Range radio button, and specif y the range of VLANs to be creat ed by entering the Starting VID and Ending VID , inclusive. When using the Range function, the ma ximum number o[...]

  • Page 189

    VL AN Management De fin i ng V L AN Me m ber shi p Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 176 12 • Admini stra tive PVID —Enter the P ort VL AN ID (PVID) of the VL AN to which incoming untagge d and priority tagged frame s ar e classified. The po ssible values are 1 to 4094. • Fra m e T y p e —Select the t ype [...]

  • Page 190

    VLAN Management De f i ni n g VLAN M e mbe r s hi p 177 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 Frames that are VLAN-t agged can pas s through other networ k devices that are VLAN-aware or VLAN-unawar e. If a destination end node is VLAN-u na war e, but is to receive tra ffic from a VLAN, then the last VL AN-a ware de[...]

  • Page 191

    VL AN Management De fin i ng V L AN Me m ber shi p Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 178 12 C onfiguring VL AN Memb ership The Por t VL AN M emb ers hip page disp lays a ll por ts on the devic e along with a list of VLANs to which each por t belongs . If the por t-based authentication method f o r an int erface is[...]

  • Page 192

    VLAN Management Vo i c e V L A N 179 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 - Forbidden — The interface is not allowed to join the VLAN. When a p or t is not a member of any other VLAN, enabling this option on the por t makes the por t par t of internal VLAN 4095 (a reser ved VID) . - Excluded — The interface is [...]

  • Page 193

    VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 180 12 • Vo i c e V L A N Q o S • V oic e VL AN C onstraints • V oic e VL AN Workflows The f ollowing are typical voic e depl oyment scenarios with appropriat e configurations: • U C3 xx/ UC 5 xx h os t e d : All Cisco phones and V oIP end[...]

  • Page 194

    VLAN Management Vo i c e V L A N 181 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 The device suppor ts a single voice VL AN. By default, the voice VL AN is VL AN 1 . The voice VLAN is default ed to VLAN 1 . A diff erent v oice VLAN can b e manually configured. It can als o be dynamically learned when Auto V oice VL AN is e[...]

  • Page 195

    VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 182 12 V oic e End-Points T o ha ve a v oice VL AN work pr operly , the voice devices , such as Cisco phone s and V oIP endpoints , must be as signed to the voice VLAN where it sends and r eceives its voice traffic. Some of the pos sible scenario [...]

  • Page 196

    VLAN Management Vo i c e V L A N 183 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 NOTE The default configuration list her e applies to swit ches whose firmware version suppor ts Auto V oice VL AN out of the box. It also applie s t o unconfigured switches that hav e been up graded to the firmwar e v ersion that suppor ts A [...]

  • Page 197

    VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 184 12 Aut o Smartp or t works with CDP /LLDP t o maintain the por t member ships of the voice VLAN when voice end-points are det ected fr om the por ts: • When CDP and LLDP ar e enabled, the device s ends out CDP and LLDP packets periodically t[...]

  • Page 198

    VLAN Management Vo i c e V L A N 185 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 • The V oice VL AN cannot be Smar tpor t enable d. • The V oice VL AN QoS decision has priorit y over an y other Q oS decision, ex c ept f or the P olicy decision. • A new VLAN ID can b e configured f or the V oic e VLAN only if the cur[...]

  • Page 199

    VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 186 12 NOTE St ep 7 and St ep 8 ar e optional as they are enabled by def ault . W ork flow2: T o configure the T elephon y OUI Method STEP 1 Open the VL AN Management > V oice VL AN > Proper ties page. Set Dynam ic V oice VLAN to E na bl e T[...]

  • Page 200

    VLAN Management Vo i c e V L A N 187 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 T o view and configure V oice VL AN pr oper ties : STEP 1 Click VL AN Management > Vo i c e V L A N > Prop er tie s . • The voice VLAN s ettings configured on the devic e are displa yed in the Vo i c e VLAN S ettings (Administrative S[...]

  • Page 201

    VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 188 12 NOTE Manually r e-configuring the voice VL AN ID , C oS/802. 1 p, and/ or D SCP from their default values r esults in a static voice VL AN, which has higher priority than auto voice VLAN that was learned from e xternal sources. STEP 3 Click[...]

  • Page 202

    VLAN Management Vo i c e V L A N 189 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 • Swi tc h M A C Add ress —Base MAC addr es s of the device. If the device's Switch MA C addr es s is the Root Switch MA C Address , the device is the Auto V oi ce VL A N root d evic e. • Vo i c e V L A N I D C h a n g e T i m e ?[...]

  • Page 203

    VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 190 12 - Ye s — The device use s this voice VLAN to synchr onize with other Aut o V oice VL AN-enabled swit ches . This voice VL AN is the voice VLAN f or the network unle ss a voice VL AN from a higher priority source is discovered. Only one lo[...]

  • Page 204

    VLAN Management Vo i c e V L A N 191 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 • Remark C oS/802. 1 p —Sele ct whether t o r emark egr ess traf fic. • Auto M emb er shi p Ag ing T im e —Enter the time dela y t o r emove a por t fr om the voice VLAN after all of the MAC addr es ses of the phone s detect ed on the[...]

  • Page 205

    VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 192 12 Use the T elephony OUI Int er face page to add an int er face to the voice VLAN on the basis of the OUI identifier and to configure the OUI QoS mode of voice VL AN. T o configure T elephony OUI on an int er face: STEP 1 Click VL AN Man agem[...]

  • Page 206

    VLAN Management Vo i c e V L A N 193 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12[...]

  • Page 207

    13 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 194 Sp anning T re e This section de scribe s the Spanning T ree Prot o col (STP) (IEEE802. 1D and IEEE802. 1Q) and covers the f ollowing topics: • STP Flavors • Configuring STP Status and Global S et tings • De fining Spanning Tr ee Inter face S et tings • Configuring [...]

  • Page 208

    Spanning Tree Configuring S TP Status and Global Settings 195 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 13 topology is naturally tr e e-structured, and ther ef ore f ast er conv ergence might be po ssible. RSTP is enabled by default . NOTE The 200 series switches do not suppor t MSTP . C onfiguring STP Status and Global S [...]

  • Page 209

    Sp anning Tree Configuring S TP Sta tus and Global Settings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 196 13 Bridge Set tings : • Priorit y —Sets the bridge priority value. Af ter e xchanging BPDUs , the device with the lowest priorit y be comes the Root Bridge. In the case that all bridge s use the same priorit y , t[...]

  • Page 210

    Spanning Tree Defining Spanning T ree Int er face S e ttings 197 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 13 D efining Sp anning T r e e Inter face S et tings The STP Int e r face Set tings page enables you t o configure S TP on a per -p or t basis , and to view the inf ormation learned by the prot ocol, such as the de si[...]

  • Page 211

    Sp anning Tree Defining Spannin g T r ee In ter f ace S ettings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 198 13 • BPDU Guard —Enabl es or disables the Bridge Pr ot ocol Data Unit (BPDU) Guar d f eature on the por t . The BPDU Guard enables you t o enf orce the STP domain borders and k e ep the active t opology predic[...]

  • Page 212

    Spanning Tree Configur ing Rapid Spann ing T ree S etting s 199 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 13 • Des i g na ted Br i d g e I D —Displa ys the bridge priority and the MAC address of the designated bridge. • Des i g na ted Po rt I D —Displays the priority and interface of the sele ct ed port . • Des i[...]

  • Page 213

    Sp anning Tree Configuring R apid Spanning T r ee S ettings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 200 13 the device continue s t o communicate with it by using S TP . O ther wise, if it has been migrated t o RS TP, the device communicates with it using RSTP. STEP 5 Select a n interface, and click Ed it . STEP 6 Enter [...]

  • Page 214

    Spanning Tree Configur ing Rapid Spann ing T ree S etting s 201 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 13 • Fas t Li n k O p e r ati o n al S t at us —Displays whether the F ast Link (Edge Port) is enabled, disabled, or automatic f or the inte r face. The values are: - Enabled —F ast Link is enabled. - Disabled ?[...]

  • Page 215

    14 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 202 Man aging MA C A ddre s s T able s This section de scribe how to add MA C addresse s t o the syst em. It covers the f o llowing t opics : • Configuring St a tic MAC Addr es s es • Managing D ynamic MA C Addres se s • Typ es of MAC Addres s e s Ther e are two typ es of[...]

  • Page 216

    Managing MAC Address Tables Configuring Sta tic MAC Addr ess es 203 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 14 C onfiguring Static MA C A ddres s es Static MAC a ddresses are assigne d t o a specific physical i nt er face and VLAN on the device. If tha t address is detected on another interface, it is ignor ed, and is no[...]

  • Page 217

    Ma nagi ng M A C Ad d r ess T a bl es Managing Dynamic MAC Addr ess es Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 204 14 Managing D yn amic MA C Addre s s e s The Dynamic Addr e ss T able (bridg ing table ) contains the MA C addr esse s acquired by monit oring the source addr es ses of frame s ent ering the device. T o pr [...]

  • Page 218

    Managing MAC Address Tables Managing Dynamic MAC Addresse s 205 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 14 T o delet e all of the dynamic MA C addr ess es. click Cle ar T able .[...]

  • Page 219

    15 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 206 Multic ast This section de scribe s the Multicast F or warding f eature, and covers the f ollowing top i cs : • Multicast For warding • De fining Multicast Proper tie s • Addi ng M A C Gro up Ad dr ess • Ad d in g IP Mul tica st Gr ou p Ad d r esses • Configuring [...]

  • Page 220

    Multicast Multicast F orwarding 207 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 F or Multicast f or warding t o work acr os s IP subnets, node s, and rout ers must be Multicast-capable. A Multicast -capable node must be able to: • Send and r eceive Multicast pa ckets. • Register the Multicast addr e sse s being listen[...]

  • Page 221

    Multic ast Multicas t Forwar ding Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 208 15 The device can f orward Multicast str eams based on one of the f ollowing options: • Multicast MAC Gr oup Addr es s • IP Multicast Group Addr ess (G) • A combination of the source IP address (S) and the destination IP Multicast Group [...]

  • Page 222

    Multicast Defining Multicas t Pr op er tie s 209 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 • T o map an IP Multicast gr oup addres s to an La yer 2 Multicast address : - F or IP v 4, this is m apped by taking t he 23 low-order bits fr om the IP v 4 address , and adding them t o the 01 :00:5 e prefix. By standard, the [...]

  • Page 223

    Multic ast Adding MAC Gr oup Address Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 210 15 • IP Group Address —B ased on the de stination IP addr es s of the IP pack et (*,G). • Sou r ce Spec i f ic I P Gr ou p A dd ress —Based on both the de stination IP addr es s and the source IP addr es s of the IP pack et (S,G) . [...]

  • Page 224

    Multicast Adding MAC Gr oup Addr ess 211 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 When a frame is received from a VLAN that is c onfigured t o f or ward Multicast streams, base d on MAC gr oup addr es ses , and its destination address is a Layer 2 Multicast address , the frame is f or war ded to all por ts that are mem[...]

  • Page 225

    Multic ast Adding IP Multicast Gr oup Addresse s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 212 15 T o configur e and display the r e gistration f o r the int er faces within the group, select an address , and click D et ails. The page contains : • VL AN ID — The VL AN ID of the Multicast group. • MA C Group Addr es [...]

  • Page 226

    Multicast Adding IP M ulticas t Gr oup Address es 213 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 T o defi ne and view IP Multicast g roups: STEP 1 Click Multicast > IP Multicast Group Addre ss . The page contains all of the IP Multicast gr oup addr ess es learned by sno oping. STEP 2 En te r th e p ar a m e ter s re q[...]

  • Page 227

    Multic ast Configuring IGMP Sn ooping Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 214 15 STEP 8 F or each int erface, sele ct its ass ociation typ e. The options ar e as f ollows : • Static —A ttache s the int er face t o the Multicast gr oup as a static memb er . • Fo r b i d d en —Sp ecifies that this p or t is f [...]

  • Page 228

    Multicast Configuring IGMP Snooping 215 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 T o enable IGMP Snooping and identify th e devic e as an IGMP Snooping Querier on a VLAN: STEP 1 Click Multicast > IGMP Sno oping . STEP 2 Enable or disable t he IGMP Snoopin g status. When IGMP Snooping is enabled globally , the device[...]

  • Page 229

    Multic ast MLD Snooping Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 216 15 • Last Memb er Quer y C ounter —Ent er the number of IGMP Gr oup-Specific Queries s ent bef or e the device as sumes ther e are no mor e memb ers f or the gro up, if the device is the elected querier . • Operational Last Memb er Quer y C ounter[...]

  • Page 230

    Multicast MLD Snooping 217 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 In an appr oach similar to IGMP snooping, MLD frames are snoop ed as they are f or war ded by the device from stations t o an upstream Multicast r outer and vice versa. This facility enable s a device to conclude the f o llowing: • On which por ts st[...]

  • Page 231

    Multic ast Quer ying IGMP /MLD IP Multicast G roup Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 218 15 • Operational Quer y Robustnes s —Displays the r obustnes s variable sent by the elected querier . • Quer y Inter val —Enter the Quer y Interval value to be use d by the de vice if the device cannot derive the value[...]

  • Page 232

    Multicast Defining Multic ast R out er Po r ts 219 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 Ther e might be a dif f erence bet ween information on this page and, f or example, inf ormation displa yed in the MAC Gr oup Addr es s page . A ssuming that the system is in MAC-based groups and a po r t that r equested to join[...]

  • Page 233

    Multic ast Defining F orward All Multicast Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 220 15 T o statically configur e or see dynamically- detect ed por ts conne cted t o the Multicast rout er : STEP 1 Click Multic ast > Multicast Router Por t . STEP 2 Enter some or all of f ollowing quer y filter crit eria: • VL AN I[...]

  • Page 234

    Multicast D e fining Unr egistered Multicast Settings 221 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 IGMP or MLD mes sages ar e not f or warded to por ts defined as Fo r w ar d All . NOTE The configuration aff e cts only the por ts that are members of the selected VLAN. T o define F or ward All Multicast: STEP 1 Click Mu[...]

  • Page 235

    Multic ast Defining Unr egister ed Multicas t Settings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 222 15 Y ou can select a p or t t o r ec eive or filt er unr egist ered Multicast str eams . The configuratio n is valid f or a n y VLAN of which it is a member (or will b e a member) . This f eature ensures that the cust omer[...]

  • Page 236

    Multicast D e fining Unr egistered Multicast Settings 223 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15[...]

  • Page 237

    16 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 224 IP C onfigura tion IP int er face addr es ses can b e configured manually by the user , or automatically configured by a DHCP se r ver . This se ction provides inf ormation f or defin ing the device IP address es , either manually or by making the device a DHCP client . Thi[...]

  • Page 238

    IP Configuration IPv4 Managemen t and In terface s 225 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 If the device does not receive a DHCP v 4 r esponse in 60 se conds, it c ontinues to send DHCPDIS COVER querie s, and adopts the default IP v 4 addres s: 192. 168. 1 .254/24. IP addr es s collisions oc cur when the same IP a[...]

  • Page 239

    IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 226 16 T o configure the IPv 4 device IP address : STEP 1 Click Administration > Management Interfac e > IP v4 Interfac e . STEP 2 Enter values f or the f ollowing fiel ds: • Management VL AN —Select the Management VLAN u[...]

  • Page 240

    IP Configuration IPv4 Managemen t and In terface s 227 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 If a dynamic IP addr es s is r etrieved fr om the DHCP ser ver , select thos e of the f ollowing fields that are enabled: • Renew IP Addre ss Now — The device dynamic IP address can be renewed an y time aft er it is assi[...]

  • Page 241

    IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 228 16 - All —Deletes all of the static and dynamic address es imme diately . - Dyna mi c —Deletes all of the dynamic addr e sse s immediately . - Static —Deletes all of the static addr e s ses immediately . - Normal A ge Out[...]

  • Page 242

    IP Configuration IPv4 Managemen t and In terface s 229 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 IP v 6 Glob al C onfiguration T o define IPv6 glob al parameters and DHCPv6 client se ttings : STEP 1 Click Adm in ist ra tion > Managemen t Inte r face > IP v 6 Glob al Configuration . STEP 2 Ent er values f or the f [...]

  • Page 243

    IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 230 16 T o define an IPv6 inter face: STEP 1 Click Admin ist ra tion > Management Interfac e > IP v6 Inter fac es . STEP 1 STEP 2 Click Add t o add a new int er face on which interface IP v6 is enabled. STEP 3 Enter the field[...]

  • Page 244

    IP Configuration IPv4 Managemen t and In terface s 231 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 • Sen d I CM P v6 M essag es —Enable generating unreachable destination mess ages. STEP 6 Click Apply t o enable IPv6 proce ssing on the sele cted int erfac e. Regular IP v6 interfaces have the f ollowing addres ses auto[...]

  • Page 245

    IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 232 16 • Rec eive d Information Refresh Time —Refr esh time r e ceived fr om D HCPv6 ser ver . • Remaining Information Refresh Time —Remaining time until ne xt refresh. • DNS Ser vers —List of DNS ser vers received fro [...]

  • Page 246

    IP Configuration IPv4 Managemen t and In terface s 233 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 Co nfiguring T unnels NOTE T o configur e a tunnel, first configur e an IPv6 inter face as a tunnel in the IPv6 Interface s page. T o configure an IP v6 tunnel: STEP 1 Click Administra tion > Management In ter face > I[...]

  • Page 247

    IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 234 16 D efining IP v6 A ddres s e s T o assign an IP v6 addres s to an IPv6 Interfac e: STEP 1 Click Admin ist ra tion > Management Interfac e > I Pv6 Ad dr esses STEP 1 STEP 2 T o filt er the table, select an interface name[...]

  • Page 248

    IP Configuration IPv4 Managemen t and In terface s 235 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 T o define prefixes to be adver tis ed on the inter faces o f the devic e: STEP 5 IP v 6 D e fault Router List The IP v6 Default Rout er List page enables c onfiguring and viewing the default IP v6 rout er addres ses . This [...]

  • Page 249

    IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 236 16 - Un re a c h ab le —Positive confirmation was not received within the Reachable T ime. - Sta le —Pr eviously-known neighboring ne twork is unreachable, and no action is taken to v erify it s r eachabilit y until it is n[...]

  • Page 250

    IP Configuration IPv4 Managemen t and In terface s 237 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 T o define IPv6 neighb ors: STEP 1 Click Administra tion > Management In ter face > IP v 6 Neighbors STEP 1 STEP 2 Y ou can select a Cle ar T able option t o clear some or all of IP v6 addr ess es in the IP v6 Neighbor[...]

  • Page 251

    IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 238 16 • IP v 6 Addres s —Ent er the IP v6 network addres s assigne d to the int er face. The address must be a valid IP v6 ad dr es s. • MA C Addres s —Ent er the MAC addr ess mapp ed to the specified IP v6 address . STEP [...]

  • Page 252

    IP Configuration Do m a i n N am e 239 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 network . Only one link local address is suppor ted. If a link lo cal addr es s exists on the int erface, this entr y replaces the addr es s in the configuration. - Gl ob al —An IP v6 addr ess that is a global Unicast IPV 6 t ype that is [...]

  • Page 253

    IP Configuration Domain Name Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 240 16 DNS S et tings Use the DNS Set tings page to e nable the DNS f eatur e, configure the DNS ser vers and set the default domain use d by the device. STEP 1 Click IP Configuration > Do ma i n Na m e > DNS Set tings . STEP 2 Enter the paramet [...]

  • Page 254

    IP Configuration Do m a i n N am e 241 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 • Sou r ce —Source of the ser ver ’ s IP address (static or DHCP v 4 or DHCP v6) • Interfac e —Int er face of the ser ver ’ s IP address . STEP 4 Up t o eight DNS ser v ers can be defined. T o add a DNS ser ver , click Add. E nt[...]

  • Page 255

    IP Configuration Domain Name Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 242 16 • Interfac e —Interface of the s er ver ’s IP addr e ss fo r this domain. • Pref erence — This is the order in which the domains ar e us ed (from low t o high). This eff ectively det ermines the order in which unqualified names are com[...]

  • Page 256

    IP Configuration Do m a i n N am e 243 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 - OK —A t t e mpt s ucceed ed. - Negative Cache —Attempt f ailed, do not tr y again. - No Response — There was no r esponse, but system can tr y again in future. • TT L — If this is a dynamic entr y , how long will it remain in th[...]

  • Page 257

    17 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 244 Sec u r i t y This section de scrib es device s ecurit y and acces s control. The syst em handles various typ es of se curit y . The f ollowing list of topics des cribes the various t ype s of securit y f eatures des cribed in this se ction. Some f eatur es are used f or mo[...]

  • Page 258

    Security De fin i ng Us er s 245 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 Pr otection fr om other network us ers is describe d in the f ollowing s ections. Thes e ar e att acks that pass through, but ar e not dir ected at , the device. • Deni al of Ser vice Preven tion • SSL Se rver • De fining Storm Control • [...]

  • Page 259

    Secu r ity De fin i ng U ser s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 246 17 Wh e n p as sw ord re c ov er y m e c ha ni s m i s di sable d, acc es sing the bo ot menu is still allowed and you can trigger the password recover y proces s. The diff er ence is that in this case, all c onfiguration and us er files are remo[...]

  • Page 260

    Security De fin i ng Us er s 247 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 NOTE P assword aging also applies to zer o-length pas swor ds (no password). STEP 3 Se lec t Password Com plexit y S et tings to enable complexity rule s f or passwords . If password complexity is enabled, new pas swords must conf orm t o the f o[...]

  • Page 261

    Secu r ity Configuring RADIUS Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 248 17 C onfiguring R A DIUS Remot e Authorization Dial-In User Ser vic e (R ADIUS) ser v ers pr ovide a centralized 80 2. 1 X or MA C-based n etwo rk access co nt r o l. T he de vi ce i s a R AD IUS cl ie nt tha t can use a R ADIUS s er ver t o pr ov[...]

  • Page 262

    Security Configur ing R ADIU S 249 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 Interactions With O ther Fe a tures Y ou cannot enable accounting on b oth a R ADIUS and T ACA CS+ s er ver . Radius W orkflow T o user a R A DIUS ser ver , do the f ollowing: STEP 1 Open an acc ount f or the device on the R ADIUS ser ver . STE[...]

  • Page 263

    Secu r ity Configuring RADIUS Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 250 17 STEP 3 Click Apply . The R ADIUS default s ettings f or the device are updated in the Running Configuration file. T o add a R ADIUS ser v er , click Add. STEP 4 Enter the values in the fields f or each R ADIUS ser ve r . T o use the default val[...]

  • Page 264

    Security Configurin g Manageme nt Acc es s Authentication 251 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • Authentication Port —Enter the UDP por t number of the R ADIUS ser v er por t f o r authentication r eque sts. • Retries —Enter the number of r equests that ar e sent to the RADIUS ser v er bef or e a f ailu[...]

  • Page 265

    Secu r ity Defining Management Acc ess Method Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 252 17 If an authentication method fails or the us er has insuff icient privilege level, the user is de ni ed a ccess t o the de vi ce. In ot he r wor ds, if authentication fails at an authentication method, the devic e st ops the auth[...]

  • Page 266

    Security Defining Managemen t Ac ce ss Method 253 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 Acces s profiles consist of one or mor e rules. The rules are e x ecuted in or der of their priority within the ac ces s profile (t op to bot t om). Rules are compos ed of filters that include the f ollowing elements : • Access[...]

  • Page 267

    Secu r ity Defining Management Acc ess Method Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 254 17 A caution mes sage displays if you selected any other acces s profile, warning you that , depending on the s elected acces s profile, y ou might be disc onnected from the web- base d configuration utilit y . STEP 3 Click OK to s[...]

  • Page 268

    Security Defining Managemen t Ac ce ss Method 255 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • Applies to S ource IP Addres s —Select the t ype of s our ce IP address to which the acces s profile applies. The Sou r ce I P Ad dre ss field is valid f or a subnetwork . Select one of the f ollowing value s: - All —Appl[...]

  • Page 269

    Secu r ity Defining Management Acc ess Method Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 256 17 The selected acce ss profile appears in the Pr ofile Rule T able. STEP 3 Click Add t o add a rule. STEP 4 Enter the paramet ers. • Ac ce s s Profile Name —Select an ac ce ss profile. • Rule Priorit y —Enter the rule prio[...]

  • Page 270

    Security SSL Serve r 257 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • IP V ersion —S elect the supp or t ed IP version of the source addr ess : IP v6 or IP v 4. • IP Addres s —Ent er the source IP address . • Mask —Sele ct the f ormat f or the subnet mask f or the s ource IP addr e s s, and enter a value in o[...]

  • Page 271

    Secu r ity SSL Serve r Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 258 17 D efault Set tings and Configuration By default , the device c ontains a cer t ificate that can be mo dified. HT TPS is enabled by default . S SL Ser ver Authentication Set tings It may be r equired t o generate a new cert ificate t o replace the defa[...]

  • Page 272

    Security Configuring T CP /UDP Ser v ice s 259 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 - Dur ati on— Spe cifies the numb er of days a cer tification is valid. • Generate Cer tificate Reque st— Generate a cer tificate r equest to be signed by a CA . - Ent er the fields f or the cer tificate (same as fields in Edi[...]

  • Page 273

    Secu r ity Configuring T CP /UDP S er vic es Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 260 17 • HT TP —Enabled by fact or y default • HT TPS —Enabled by fact or y default • SNM P —Dis abled by factor y default • SSH —Disabled by factor y default The active T CP c onnections are also display ed in this wind[...]

  • Page 274

    Security Defining St orm Cont rol 261 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • Type —IP prot ocol the ser vic e uses . • Loc al IP Addre ss —L ocal I P a d dr es s t hr ough w h ich the device is off ering the ser v ice. • Loc al Por t —L o cal UDP por t through which the device is of f ering the s er vic[...]

  • Page 275

    Secu r ity Configuring P or t S ecurit y Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 262 17 • Storm Control Ra te Threshold —Ent er the maximum rat e at which unknown packets can be f or warded. The def ault f or this threshold is 10,000 f or FE devices and 100,000 f or GE devic es . • Storm C ontrol Mode —Select on[...]

  • Page 276

    Security Configuring P or t Se curit y 263 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • Se cure Delete on Re set —Deletes the curr ent dynamic MAC addr esse s ass ociated with the por t a fter r eset . New MAC addresses can b e learned as Delete-On-R eset ones up to the maximum addr e ss es allowed on the por t . Rel[...]

  • Page 277

    Secu r ity Configuring P or t S ecurit y Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 264 17 - Limited Dynamic L ock —L ocks the po r t by deleting the current dynamic MAC addr ess es ass ociated with the port . The port learns up to the maximum addr es se s allowed on the por t . Both r e-learning and aging of MAC addr es[...]

  • Page 278

    Security Configuring 802. 1 X 265 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 C onfiguring 802. 1 X Port-based ac ce ss co ntr ol has the effect of cr eating t wo t ypes of ac ces s on the dev ice ports. O ne type of access e na ble s u ncon tr olled com mu ni ca tio n, regar dless of the authorization state ( uncontrolle[...]

  • Page 279

    Secu r ity Configuring 802. 1 X Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 266 17 • (Optional) Define one or more static VLANs as unauthenticated VL ANs as descr ibed in the D efining 802. 1 X Proper tie s section. 802. 1 x authorized and unauthorized devic es or por t s can always send or r eceive packets t o or from un[...]

  • Page 280

    Security Configuring 802. 1 X 267 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 STEP 3 Click Apply . The 802. 1 X proper ties are written t o the Running Configuration file. D efining 802. 1 X Por t Authentic a tion The Port Authentication page enables co nfiguration of 802. 1 X paramet ers f or each por t . Sinc e some of [...]

  • Page 281

    Secu r ity Configuring 802. 1 X Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 268 17 • Authentication Method —S elect the authentication metho d f or the p or t . The options are: - 802. 1 X O nly —802. 1 X authentication is the only authentication method per f orme d on the port . • Periodic Re authentic ation —Sel[...]

  • Page 282

    Security Configuring 802. 1 X 269 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 D efining Ho st and S e ssion Authentic a tion The Host and Se ssion Authentication page enables defining the mode in which 802. 1 X operates on the por t and the action to per f orm if a violation has b een detect ed. The 802. 1 X modes ar e: ?[...]

  • Page 283

    Secu r ity Configuring 802. 1 X Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 270 17 STEP 2 Select a po r t , and click Edit. STEP 3 Enter the paramet ers. • Interfac e —Enter a por t number f or which host authentication is enabled. • Ho st Authentication —Sele ct one of the modes . Thes e modes are describe d above [...]

  • Page 284

    Security Denial of Ser vice Preven tion 271 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • Authentication Method —Metho d by which the last session was authenticated. The options ar e: - Non e —No authentication is applied; it is automatically authoriz ed. - RA D I U S —Supplicant was authenticat ed by a R ADIUS s [...]

  • Page 285

    Secu r ity Denial of S er vice Preven tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 272 17 addr es s (response to the A CK P ack et). However , b ecause the sender addr es s is false, the response never comes . Thes e half-open connections saturate the number of av ailable connections the device is able to mak e, k eepin[...]

  • Page 286

    Security Denial of Ser vice Preven tion 273 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • All other DoS Prev ention f eatures are disabled by def ault . C onfiguring DoS Preven tion The f ollowing page s ar e used to configure this f eature. Se curit y Suite Set tings T o configure DoS Prev ention global set tings and m[...]

  • Page 287

    Secu r ity Denial of S er vice Preven tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 274 17 - Dis ab le — The f eature is disabled on a specific inter face. - Repor t —G enerates a SYSL O G me s sage. The stat us of the p or t is changed to At ta cke d when the threshold is pass ed. • SYN Prote ction Thresh old —N[...]

  • Page 288

    Security Denial of Ser vice Preven tion 275 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17[...]

  • Page 289

    18 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 276 S e curit y : S SH Clien t This section de scrib es the device when it functions as a n SS H client . It covers the f ollowin g t opics : • Se cure Copy (S CP) and S SH • Protection Metho ds • SSH S er ver Authentic a tion • SSH Client Authentic a tion • Be f or e[...]

  • Page 290

    Security: SSH Client Pro te c tion Me thods 277 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 18 When files are downloaded via TFTP or HT TP , the data transf er is unse cur ed. When files are do wnloaded via SCP , the inf ormation is downloaded from the SCP ser ver to the device via a secure channel. The cr eation of this sec[...]

  • Page 291

    Secu r i ty: SSH C li e n t Pr o t ec tio n Me th ods Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 278 18 The username/pas swor d must then be creat ed on the device. When data is transf erred from the ser ver t o the device, the username/pas sword supplied by the device must match the username/password on the ser ver . Data[...]

  • Page 292

    Security: SSH Client SSH S er ver Authentica tion 279 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 18 When a privat e k ey is cr eat ed on a device, it is also p os sible to creat e an ass ociat ed passph rase . This passphrase is us ed to encrypt the private k ey and t o impor t it int o the remaining switches. In this wa y [...]

  • Page 293

    Secu r i ty: SSH C li e n t SSH Client Authen tica tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 280 18 S SH Client Authen tication SS H client authen tication by pas sword is enabled by defa ult , with the username / pas sword being “anonymous ”. The user must configure the f ollow ing inf ormation f or authenticati[...]

  • Page 294

    Security: SSH Client Be f ore Y ou Begin 281 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 18 Be f o r e Y o u Be g i n The f ollowing actions must be per f ormed befor e using the SCP f eatur e: • When using the pas swor d authentication method, a username/pas sword must be set up on the S S H ser ver . • When using publi[...]

  • Page 295

    Secu r i ty: SSH C li e n t Comm on T asks Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 282 18 STEP 4 If the public/private k ey method is being use d, per f orm the f ollowing steps : a. Select whether to use an RS A or D SA key , create a username and then generate the public/privat e k eys. b. V iew the generat ed k ey by[...]

  • Page 296

    Security: SSH Client SSH Client Configur a tion Thr ough the GUI 283 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 18 S SH Client Configuration Thr ough the GUI This se ction describ es the pages us ed to configur e the SS H Client f eature. S SH User Authentic a tion Use this page to select an S SH user authentication method,[...]

  • Page 297

    Secu r i ty: SSH C li e n t SSH Client Configur a tion Thr ough the GUI Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 284 18 • Ke y S ou rc e —Aut o Generated or User Defined. • Fin g er p ri nt —Fingerprint generat ed from the k e y . STEP 6 T o handle an RSA or DS A ke y , select ei ther RSA or D S A and per f orm o[...]

  • Page 298

    Security: SSH Client SSH Client Configur a tion Thr ough the GUI 285 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 18 STEP 1 Click Sec ur i ty > SS H C l i en t > Change User Password on SS H Ser ver . STEP 2 Ent er the f ollowing fiel ds: • Serve r Def i n i t io n —Define the S SH s er ver by selecting either By IP[...]

  • Page 299

    19 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 286 S e curit y : S e cure S ensitive Da t a Man agement Secure Sensitive Data (SS D) is an archit ecture that facilitat es the prot e ction of sensitive data on a dev ice, such as passwo rds and k e ys. The facility makes use of passphras es , encr yption, acce ss c ontrol, an[...]

  • Page 300

    Security: Secure Sensitive Data Ma nagement SSD R u les 287 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 SSD grants read permission to sensitive data on ly to authenticated and authorized users, and according to S SD rules. A device authenticate s and authorizes management access to users through the user authentication pr[...]

  • Page 301

    Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t SSD R u les Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 288 19 NOTE A device ma y not suppor t all the channels defined by S SD. Elements of an S SD Rule An SS D rule includes the f ollowing elements: • User t ype— The user t ypes supp or t ed in order of most [...]

  • Page 302

    Security: Secure Sensitive Data Ma nagement SSD R u les 289 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 - (Higher) Plai ntext O nly —Users are permitted to acces s sensitive data i n plainte x t only . Users will also hav e re ad and writ e permis sion t o SS D parameters as well. - (Highest) Both —Users hav e both en[...]

  • Page 303

    Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t SSD R u les Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 290 19 * The Read mode of a ses sion can be temporarily changed in the SS D Prop er t ie s pa ge i f th e ne w read mo de do es not violat e the r ead permission. NOTE Not e the f ollowing : • The default Re[...]

  • Page 304

    Security: Secure Sensitive Data Ma nagement SSD R u les 291 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 NOTE When doing a file transf er initiated by an XM L or SNMP c ommand, the underlying pr otocol used is TF TP . Theref ore, the SSD rule f or insecure channel will apply . SSD Rule s and Us er Authentication S SD grant[...]

  • Page 305

    Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t SSD Proper tie s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 292 19 The default rules can be mo dified, but they cannot be deleted. If the SS D default rules have been changed, they can be rest or ed. SSD D e fault Read Mo de S es sion O verride The system contains[...]

  • Page 306

    Security: Secure Sensitive Data Ma nagement SSD Proper tie s 293 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 Pas sphrase A pass phrase is the basis of the securit y mechanism in the S SD featur e, and is used to generat e the ke y f or the encr yption and de cr yption of sensitive data. Sx200 , Sx300 , Sx500 , and S G500X[...]

  • Page 307

    Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t SSD Proper tie s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 294 19 automatically changed t o the passphrase in the star tup configuration file, when the star tup configuration be comes the runnin g configuration of the device. When a device is reset to fact or y d[...]

  • Page 308

    Security: Secure Sensitive Data Ma nagement Configur a tion Files 295 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 A device determines whether th e int egrit y of a conf igurati on file is pr ot ect ed by examining the F il e Int egrit y Control command in the file's SS D Control block . If a file is int egrit y pr ot[...]

  • Page 309

    Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t Configur a tion Files Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 296 19 • A te xt-based c onfiguration that does not include an SS D indicator is considered not t o contain sensitive data. • The SS D indicator is used to enf orce SS D read permissions on te xt[...]

  • Page 310

    Security: Secure Sensitive Data Ma nagement Configur a tion Files 297 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 • If there is a passphras e in the SS D co ntrol block of the sour ce configuration file, the device will reject the source file, and the copy fails if ther e is encr ypted sensitive data in the file not enc[...]

  • Page 311

    Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t Configur a tion Files Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 298 19 • Wh en copi ed fr om a so ur ce fi le , t he cop y will fail if the passphrase in the source file is in plaint e xt . If the passphrase is encr ypt ed, it is ignored. • When directly conf[...]

  • Page 312

    Security: Secure Sensitive Data Ma nagement Configur a tion Files 299 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 • A user with Ex clude permis sion cannot acces s mirror and backup configuration file s with their file SS D indicat or showing either encr ypted or plainte x t sensitive data. The user should not manually [...]

  • Page 313

    Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t SSD Management Channels Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 300 19 If the device creating the configuration fi le is in Unrestrict ed pas sphrase control mode, the devic e includes the pas sphrase in the file. As a result , the us er can auto configure the [...]

  • Page 314

    Security: Secure Sensitive Data Ma nagement Menu CLI and Passw ord R ecover y 301 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 Menu CLI and Pas sword Rec over y The Menu CLI int er face is only allowed to users if their r ead permissions are Both or Plaint e xt Only . O ther users are r ejected. Sensitive data in the Menu [...]

  • Page 315

    Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t Configuring SSD Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 302 19 • Configuration File Passphras e Control —Select an option as des cribed in Configuration File Passphras e Control . • Configuration File Integrit y C ontrol —Select to enable this f eature.[...]

  • Page 316

    Security: Secure Sensitive Data Ma nagement Configuring SSD 303 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 - Sec u r e— Indicat es that this rule applies only to secure channels (cons ole, SCP , SS H and HT TPS) , not including the SNM P a n d X M L channels. - Ins e cu r e —Indicates that t his rule applies only to [...]

  • Page 317

    20 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 304 Qualit y of S er vic e The Quality of Ser vice f eature is applied throughout the network to ensur e that network traf fic is prioritized according t o requir ed criteria and the desi r ed traffi c r eceive s pr ef erential tr eatment . This section c overs the f ollowing t[...]

  • Page 318

    Quality of Service QoS Fea tures and Components 305 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 Q oS Fe a tures and C omp onents The QoS f eatur e is used to optimize network per f ormance. QoS provides the f ollowing : • Clas sification of incoming traf fic t o traffic clas ses , ba sed on at tributes, including: - Dev[...]

  • Page 319

    Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 306 20 Qo S W or kf l o w T o configur e general QoS parameters, per f orm the following: STEP 1 Enable QoS by using the QoS Proper ties page t o select the trust mod e. Then enable QoS on p or ts by using the Int er face Set tings p[...]

  • Page 320

    Quality of Service Configuring QoS - General 307 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 STEP 3 Select a trust mo de (CoS/802. 1 p or D S CP) and click Apply . STEP 4 If you selected DS CP , procee d t o STEP 6 ; if you selected CoS, procee d t o the next step. STEP 5 Se lec t Por t /L AG and click GO to display /mo d[...]

  • Page 321

    Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 308 20 Inter face Q oS S et tings The Int er face Set tings page enables configuring Q oS on each por t of the device, as f ollows : QoS State Disable d on an Interfac e —All inbound tra ffic on the por t is mapped to the best effo[...]

  • Page 322

    Quality of Service Configuring QoS - General 309 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 • Weighted Round Robin ( WRR) —In WRR mo de the number of pack ets sent from the que ue is pr opor tional to the we ight of the queue (the higher the weight the more frames are sent). Fo r e xample, if there ar e a maximum of [...]

  • Page 323

    Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 310 20 STEP 3 Click Apply . The queues are configured, and the Running Configuration file is updated. Mapping C oS/802. 1 p to a Queue The CoS/802. 1 p to Queue page maps 802. 1 p prioritie s t o egress queue s. The CoS/802. 1 p to Q[...]

  • Page 324

    Quality of Service Configuring QoS - General 311 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 D efa ult Ma ppin g for 8 Queu es By changing the CoS/802. 1 p to Queue mapping (CoS/802. 1 p to Queue) and the Queue schedule metho d and bandwidth alloca tion (Queue page) , it is pos sible to achieve the desired quality of s er[...]

  • Page 325

    Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 312 20 • Output Queue —Sele ct the egress queue to which the 802. 1 p priorit y is mapped. Either f our or eight egress queues are suppor ted, wher e Queue 4 or Queue 8 is the highest priority egres s queue and Queue 1 is the low[...]

  • Page 326

    Quality of Service Configuring QoS - General 313 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 DSCP 59 51 43 35 27 19 11 3 Queue 3343 3 2 1 1 DSCP 58 50 42 34 26 18 10 2 Qu e ue 3343 3 2 1 1 DSCP 57 49 41 33 25 17 9 1 Queue 3343 3 2 1 1 DSCP 56 48 40 32 24 16 8 0 Queue 3343 3 2 1 1 T able 5 DSCP to Queue Default Mapping –[...]

  • Page 327

    Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 314 20 Queue 6 6 7 5 4321 DSCP 56 48 40 32 24 16 8 0 Queue 6 6 6 7 6611 T able 6 DSCP to Queue D efault Mapping – 8 Queues System (8 is highe st) DSCP 63 55 47 39 31 23 15 7 Queue 7 7 8 6 5431 DSCP 62 54 46 38 30 22 14 6 Queue 7 7 [...]

  • Page 328

    Quality of Service Configuring QoS - General 315 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 To m a p D S C P t o q u e u e s : STEP 1 Click Qualit y of Ser vice > General > DSCP to Queue . The DS CP to Queue page contains Ingr es s DS CP . It displays the DSCP value in the incoming packet and its associated clas s.[...]

  • Page 329

    Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 316 20 • Ingres s Rate Limit —S elect to enable the ingr es s rat e limit , which is defined in the field below . • Ingres s Rate Limit —Enter the maximum amount of bandwidth allowed on the interface. NOTE The two Ingress Rat[...]

  • Page 330

    Quality of Service Manag ing QoS Sta tisti cs 317 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 To d e f i n e e g r e s s s h a p i n g p e r q u e u e : STEP 1 Click Qualit y of Ser vice > General > Egres s Sha ping p er Queue . The Egress Shaping Per Queue page displays the rat e limit and burst size f or each queu[...]

  • Page 331

    Qualit y of S er vice Managing Q oS Sta tis tics Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 318 20 T o view Queues Statistics: STEP 1 Click Qualit y of Se r vic e > QoS S ta ti st i cs > Queues St atistics . This page displays the f ollowing fiel ds: • Refresh Rate —Select the time period that pas ses b ef ore th[...]

  • Page 332

    Quality of Service Manag ing QoS Sta tisti cs 319 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 • Dr op Pr eced e nce —L owe st drop pr e cedence has the lowe st pr obabilit y of being dropped. • To t a l P a c k e t s —Numb er of packets f or warded or tail dropped. • T ail Drop Pack et s —P er centage of packe[...]

  • Page 333

    21 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 320 SNMP Thi s sect io n desc ri bes t he Si mp le Netw or k Management Prot ocol (S NMP) f eatur e that pr ovides a method f or managing network device s. It covers the f ollowin g t opics : • SNMP V ersions and Workflow • Model OIDs • SNMP Engine ID • Con fig u r i n [...]

  • Page 334

    SNMP SNMP V ersions and W ork flow 321 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 SNMP v1 and v2 T o control acce ss to the syst em, a list of communit y entries is define d. Each communit y entr y c onsists of a comm unit y strin g and its acce ss privilege. The system r e sponds only to SNMP mes sage s specif ying the [...]

  • Page 335

    SNMP SNMP V ersions and Workflow Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 322 21 If you decide to use S NMP v 1 or v 2: STEP 1 Navigat e to the SNMP -> C ommunities page and click Add . The community can be as sociated with acc es s rights and a view in B asic mode or with a group in Advanced mode. There are two ways [...]

  • Page 336

    SNMP Model OIDs 323 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 STEP 7 Define a notification r ecipient(s ) by us ing the Notification Recipients S NMP v3 page. Supp or te d MIBs F or a list of suppor ted MIBs, visit the f ollowing URL and navigat e t o the download ar ea list ed as Cisco MIB S : ww w .c isco .co m/ cisco[...]

  • Page 337

    SNMP SNMP Engine ID Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 324 21 The privat e Object IDs are placed under : enterprises ( 1 ).cis co ( 9).otherEnterprises (6). cisco sb( 1 ) .switch001 ( 101 ). SNMP Engine ID The Engine ID is used by S NMPv3 entiti es to uniquely identify them. An SNMP agent is considered an authorita[...]

  • Page 338

    SNMP Configuring SNMP V iews 325 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 All remot e engine IDs and their IP addres ses are displa yed in the Remot e Engine ID table. STEP 3 Click Apply . The Running C onfiguration file is updated. The Remot e Engine ID table shows the mapping between IP address es of the engine and E[...]

  • Page 339

    SNMP Configuring SNMP V iews Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 326 21 Each subtr ee is either included or ex cluded in the view being defined. The V iews page enables creating and ed iting S NMP views . The default views (Default , DefaultSuper) cannot b e changed. V iews can be attache d to gr oups in the Groups [...]

  • Page 340

    SNMP Crea ting SNMP Groups 327 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 • Obje ct ID Subtree View Typ e —Displays whethe r the defined subtree is included or ex cluded in the selected S NMP view . Creating SNMP Gr oup s In SNMP v 1 and S NMP v2, a c ommunity string is s ent along with the SNMP frames . The communit[...]

  • Page 341

    SNMP Crea ting SNMP Groups Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 328 21 • Secu ri ty Mod el —Select the S NMP version attached to the group, SNMP v 1 , v2, or v3. Thr ee t ypes of views with various secu rit y levels can be defined. Fo r each securit y level, select the views f or Read, Writ e and Notify by ent er[...]

  • Page 342

    SNMP Managing SNMP Users 329 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 Managing SNMP Us ers An SNMP us er is defined by the login credentials (username, pas swor ds, and authentication method) and by the c onte x t and sc ope in which it op erates by ass ociation with a group and an Engine ID . The configured user have [...]

  • Page 343

    SNMP Managing SNMP Us ers Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 330 21 inf o rmation. Enter the r emote engine ID . • Group Name —Select the SNMP group to which the SNMP user belongs . SNMP groups are defined in the Add Group page. NOTE Users , who belong to gr oups which hav e been deleted, remain, but they ar e [...]

  • Page 344

    SNMP Defining SNMP Communit ies 331 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 D efining SNMP C ommunitie s Ac c ess r i g h t s in SN M Pv 1 a n d SN M Pv2 a r e managed by defining communities in the Communities page. The c ommunity name is a t ype of shared password bet ween the S NMP management station and th e devic[...]

  • Page 345

    SNMP Defining SNMP Communities Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 332 21 - Link L o cal — The IP v6 addres s uniquely identifies hosts on a single network link . A link local address has a prefix of FE80 , is not r outable, and can be use d f or c ommunication only on the local net work . Only one link local addr[...]

  • Page 346

    SNMP De f i n in g T r a p Se ttin gs 333 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 D efining T rap S et tings The T rap S ettings page enables c onfigur ing whether SNMP notifications ar e sent from the device, and f or which cas es . The recipients of the SNMP notifications can be c onfigur ed in the Notification Reci[...]

  • Page 347

    SNMP Notifi ca tion R ecipients Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 334 21 It is also p os sible to filt er cer tain notifica ti on s . Th is ca n b e do ne by creating a filt er in the Notification Filt er page and attaching it to an SNMP notification recipient . The notification filt er enables filtering the type [...]

  • Page 348

    SNMP Notifica tion Recipients 335 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 • Ret rie s —Enter the number of time s that the device resends an inf orm re qu e st . • Communit y String —Sele ct from the pull-down the communit y string of the trap manager . Communit y String names are generat ed fr om those listed[...]

  • Page 349

    SNMP Notifi ca tion R ecipients Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 336 21 - Link L o cal — The IP v6 addres s uniquely identifies hosts on a single network link . A link local address has a prefix of FE80 , is not r outable, and can be use d f or c ommunication only on the local net work . Only one link local add[...]

  • Page 350

    SNMP SNMP Notifi ca tion Filt ers 337 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 • Notification Filter —Sele ct to enable filt ering the typ e of SNMP notifications sent to the management station. The fi lters ar e cr eat ed in the Notification Fil ter pa g e. • Fil t er N am e —Select the S NMP filter that defin[...]

  • Page 351

    SNMP SNMP Notification F ilters Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 338 21 - If O bject ID is use d, the enter ed obje ct identifier is included in the view if the Include in filter option is sele cted. STEP 4 Select or de sele ct Include in filter . If this is selected, the sele ct ed MIBs are included in the filte[...]