Planet Technology FGSW-2624SF manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96

Go to page of

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of Planet Technology FGSW-2624SF, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Planet Technology FGSW-2624SF one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of Planet Technology FGSW-2624SF. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of Planet Technology FGSW-2624SF should contain:
- informations concerning technical data of Planet Technology FGSW-2624SF
- name of the manufacturer and a year of construction of the Planet Technology FGSW-2624SF item
- rules of operation, control and maintenance of the Planet Technology FGSW-2624SF item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Planet Technology FGSW-2624SF alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Planet Technology FGSW-2624SF, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Planet Technology service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Planet Technology FGSW-2624SF.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the Planet Technology FGSW-2624SF item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    FGSW-2620VM / FGSW-2624 SF User’s Manual User's Manual FGSW -2620VM 24-Port 10/100Mbps with 2G TP/SFP Combo Managed Ethernet Switch FGSW -2624SF 24 100Base-FX SFP Slots with 2G TP/SFP Combo Managed Ethernet Switch 1[...]

  • Page 2

    FGSW-2620VM / FGSW-2624 SF User’s Manual T rademarks Copyright © PLANET T e chnology Corp. 2008. Contents subject to which revision without prior notice. PLANET is a registered trademark of PLANET T echnology Corp. All other trademarks belong to their respective own ers . Disclaimer PLANET T echnology does not warrant that the hardware will work[...]

  • Page 3

    FGSW-2620VM / FGSW-2624 SF User’s Manual T able of Content s 1. INTRODUCTION ........................................................................................................... 6 1.1 P ACKET C ONTENTS ................................................................................................................................... 6 1.2 H[...]

  • Page 4

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.1.6 Factory Default ............................................................................................................................... ................ 29 4.1.7 System Reboot .....................................................................................................................[...]

  • Page 5

    FGSW-2620VM / FGSW-2624 SF User’s Manual 5.5 A UTO -N EGOTIA TION ............................................................................................................................... .7 9 6. TROUBLESHOOTING ................................................................................................ 80 6.1 I NCORRECT CONNECTIONS ...[...]

  • Page 6

    FGSW-2620VM / FGSW-2624 SF User’s Manual 1. INTRODUCTION 1.1 Packet Content s Check the contents of your package for following parts:  Fast Ethernet Managed Switch x1  CD-ROM user's manual x1  Quick installation guide x1  19" rack mounting kit x1  Power cord x1  Rubber feet x 4 If any of these are missing or damaged, p[...]

  • Page 7

    FGSW-2620VM / FGSW-2624 SF User’s Manual 1.3 Product Feature ¾ Physical Ports FGSW-2620VM ■ 24-Port 10/100Mbps Fast Ethernet ports ■ 2 10/100/1000Mbps TP and SFP shared co mbo interfaces ■ Reset button for system management FGSW-2624SF ■ 24-Port 100Base-FX SFP Fast Ethernet slots ■ 2 10/100/1000Mbps TP and SFP shared co mbo interfaces [...]

  • Page 8

    FGSW-2620VM / FGSW-2624 SF User’s Manual ■ 19-inch rack mount size ■ EMI standards comply with FCC, CE class A  1.4 Product S pecification Product FGSW-2620VM FGSW-2624SF Hardware Specification 10/100Mbps Port s 24 10/100Base-T X RJ-45 Auto-MDI/MDI-X ports 24 100Base-FX SFP slots 1000Mbp s Copper port s 2 10/100/1000Base-T RJ-45, Auto-M[...]

  • Page 9

    FGSW-2620VM / FGSW-2624 SF User’s Manual IGMP Sno oping Supports v1 and v2 protocol Supports IGMP Querier QoS Configuration 4 priority queu es per port IEEE 802.1p CoS on each port Port-Based priority Port counters Display detail traffic counters on each port Rate Limit Inbound Rate Limit and Outbound T raffic shaping; allow per 1Mbits setting Ac[...]

  • Page 10

    FGSW-2620VM / FGSW-2624 SF User’s Manual 2. INSTALLATION This section describes the functionalitie s of the F GSW Managed Switch's components and guides how to install it on the desktop or shelf. Basic knowledge of net working is assumed. Please read this chapter completely before continuin g. 2.1 Product Description The PLANET FGSW Managed [...]

  • Page 11

    FGSW-2620VM / FGSW-2624 SF User’s Manual 2.1.2 Switch Front Panel The unit front panel provides a simple interface monitor ing the Switch. Figure 2-1 to 2-2 shows the front panel of the Managed Switches. FGSW-2620VM Front Panel Figure 2-1 FGSW -2620VM front panel. FGSW-2624SF Front Panel Figure 2-2: FGSW-2624SF Switch front panel 2.1.3 LED Indica[...]

  • Page 12

    FGSW-2620VM / FGSW-2624 SF User’s Manual FGSW-2624SF LED in dication  System LED Color Function PWR Green Lights to indicate that the Switch has power .  Per 100Base-FX SF P slot LED Color Function LNK/ACT Green Lights to indicate the link through that port is successfully established.  Per 10/100/1000Base-T p o rt /SFP interfaces LED Co[...]

  • Page 13

    FGSW-2620VM / FGSW-2624 SF User’s Manual 2.1.4 Switch Rear Panel The rear panel of the Managed Switch indicates an AC inle t power socket, which accepts input power from 100 to 240V AC, 50-60Hz. Figure 2-3 and Figure 2- 4 shows the rear panel of the Switch FGSW-2620VM Rear Panel Figure 2-3 FGSW-2620VM Switch rear panel. FGSW-2624SF Rear Panel Fig[...]

  • Page 14

    FGSW-2620VM / FGSW-2624 SF User’s Manual 2.2 Inst all the Switch This section describes ho w to install the Managed Switch and make connections to it. Please read the f ollowing topics and perform the procedures in the order bei ng presented. 2.2.1 Desktop Inst allation T o install the Managed Switch on desktop or shelf, please follows these step[...]

  • Page 15

    FGSW-2620VM / FGSW-2624 SF User’s Manual Figure 2-5 Attach brackets to the Managed Switch. Y ou must use the screws supplied with the mounting brac kets. Damage caused to the parts by using incorrect screws would invalidat e the warranty . Step3: Secure the brackets tightly . Step4: Follow the same steps to attach the second bracket to the opposi[...]

  • Page 16

    FGSW-2620VM / FGSW-2624 SF User’s Manual 2.2.3 Inst alling the SFP transceiver The sections describe how to insert an SFP transceiver into an SFP slot. The SFP transceivers are hot-pluggable and hot-s wapp able. Y ou can plug-in and out the transceiver to/from an y SF P port without having to power do wn the Managed S witch. As the F igure 2-7 ap[...]

  • Page 17

    FGSW-2620VM / FGSW-2624 SF User’s Manual It recommends using PLANET SFPs on the Manage d Switch. If y ou insert a SFP transceiver that is not supported, the Man aged Switch will not recognize it. Before connect the other s witches, workstation or Media Converter . 1. Make sure both side of the SFP transceiver are wi th the same media type, for ex[...]

  • Page 18

    FGSW-2620VM / FGSW-2624 SF User’s Manual Figure 2-8 Pull out the SFP transceiver Never pull out the modul e without pull the handle or the push bolts on the module. Direct pul l out the module with violent could damage th e module and SFP module slot of the Managed Swi tch. 18[...]

  • Page 19

    FGSW-2620VM / FGSW-2624 SF User’s Manual 3. SWITCH MANAGEMENT This section introduces the configur at ion and functions of the Web-Based m anagement. The following configuration descriptions are based on the kernel software version 1.07. The following section will base on the Web screens of FGSW-2620VM, for FGSW-2624SF the display will be the sam[...]

  • Page 20

    FGSW-2620VM / FGSW-2624 SF User’s Manual 3.3 Prep aring for Web Management The following shows how to start up the Web Mana ge me nt of the Managed Switch. Note the FGSW Managed Switch is configured through an Ethernet connecti on, please make sure the manager PC must be set on the same IP subnet address . For example, the default IP addre ss of [...]

  • Page 21

    FGSW-2620VM / FGSW-2624 SF User’s Manual Figure 3-2 Login screen 3. Click "Enter" or "OK" , then the home screen of the W eb-based management appears. Figure 3-3 FGSW-2620VM Web Management Interface 21[...]

  • Page 22

    FGSW-2620VM / FGSW-2624 SF User’s Manual 3.5 Online Help Y ou can click button when yo u have any configurati on question dur ing the configuring. 3.6 V iew the Port Information Y ou can direct click the port on the S witch figure on the top of w eb page. Then, you wi ll see the port information. Figure 3-4 Port information interface 22[...]

  • Page 23

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4. WEB-BASED MANAGEMENT T o modify your PC’s IP domain to the same with Managed Switch then use the default IP address ( 192.168.0.100 ) to remote configure Managed Switch through the We b interface. # Notice: The following section will base on the Web screens of FG SW-2620VM, for FGSW-2624SF the display[...]

  • Page 24

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.1.1.2 Advanced Choose Advan ced from S ystem Information of Manag ed Switch, the screen in Figure 4-1-2 appears. Figure 4-1-2 Switch Advanced setting screenshot Object Description Broadcast S torm Filter Mode Configure broadcast storm control. Enab le it and set the upper threshold for individual ports. [...]

  • Page 25

    FGSW-2620VM / FGSW-2624 SF User’s Manual Hash Algorithm Provide MAC address table Hashing setting on S w itch; available opt ions a re CRC Hash and Direct Map. Default mode is CRC-Hash. Save button Press the button to complete the configur atio n. 4.1.2 IP Configuration User can configure the IP Settings and DHCP c lient function, the screen in F[...]

  • Page 26

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.1.3 Account Password Y ou can change web manage ment login user name and password. Figure 4-1-4 Account password screenshot Object Description User name T ype the ne w user name. The default is " admin ". Ne w Pa ss wor d T ype the ne w password. The default is " admin ". Confirm pass[...]

  • Page 27

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.1.4 SNMP Management The SNMP is a Protocol that governs the transceiver of information between managem ent and agent. The Switch supports SNMP V1. Y ou can define manageme nt stations as trap managers an d to enter SNMP community strings. Y ou also can define a name, location, and contact person for the [...]

  • Page 28

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.1.4.2 T rap Configuration T rap Manager A trap manager is a manag ement station that receives trap s, the system alerts generated by the switch. If no trap manager is defined, no traps will issue. Create a trap manager b y entering the IP address of the station and a community string. Figure 4-1-6 T rap [...]

  • Page 29

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.1.5 TFTP Upgrade It provides the functions to all ow a user to update the Switch firm ware. Before updating, make sure you have your TFTP server ready and the firmware image is on the TFTP server . Figure 4-1-7 TFTP Update Firmware screentshot Object Description TFTP Se rver IP Addre ss Fill in your TFTP[...]

  • Page 30

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.1.7 System Reboot Reboot the Switch in software reset. Click button to reboot the Switch. Figure 4-1-9 System Reboot screens hot 30[...]

  • Page 31

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.2 Port Configuration In Port page, it has five p arts of setting  Port control  Port mirror  Bandwidt h control  Port statistics  Port trunk. We will describe the configure detail in following. 4.2.1 Port Control This section introduces detail settings of per port on S wit ch; the screen i[...]

  • Page 32

    FGSW-2620VM / FGSW-2624 SF User’s Manual Figure 4-2-2 Select the Port Control screenshot For the model FGSw-2624SF , Port-1 to Port-24 is set to 100Full as default setting. 32[...]

  • Page 33

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.2.2 Port Mirror The Port mirroring is a method for monitor traffic in swit ched networks. T raffic through ports can be monitored by one specific port. That is, traf fic goes in or out monitored ports will be duplicated into mirror port. Figure 4-2-3 Prot Mirroring screens hot Object Description Port Mir[...]

  • Page 34

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.2.3 Bandwid th Control This section provides current rate limit and traffic shapping status of each port from the Switch, the screen in Figure 4-2-4 appears. Figure 4-2-4 Band w idth Control Screenshot Object Description InRate* Input the valu e of pa cket rate sent from the connected port to this port m[...]

  • Page 35

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.2.4 Port S t atistics The following information provides a vie w of the current port st atistic information. Scroll down for more ports statistics. Figure 4-2-5 Port S tatistics screenshot Object Description Port Indicate port 1 to port 26. Ty p e Display the S peed duplex mode of each port on the Switch[...]

  • Page 36

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.2.5 Port T runk The Link Aggregation C ontrol Protocol (LA CP) provi des a standardized means for exchanging information between Partner Systems on a link to allow their Link Aggreg ation C ontrol instances to reach agreement on the identity of the Link Aggregation Group to which the link belongs, move t[...]

  • Page 37

    FGSW-2620VM / FGSW-2624 SF User’s Manual Work Port s Allo w max four ports can be aggregated at the same time. If LACP st atic trunk group, the exceed ports are standby and able to aggregate if work ports fail. If it is local static trunk group, the number must be as sa me as the group member p orts. Choose Port Select the ports to join the trunk[...]

  • Page 38

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.2.5.3 Aggregator St ate Activity When you had setup the LA CP aggregator , you can config ure por t state activity . Y ou can mark or un-mark the port. Figure 4-2-8 Trunking – State Activit y interface Object Description Act ive The port automatically sends LACP protocol packets. Passive The port does [...]

  • Page 39

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.3 Switching In Switch p age, it has four part s of setting  VLAN,  Rapid S pannin g T ree  IGMP snooping  Forwarding table. We will describe the configure detail in following. 4.3.1 VLAN Understa nding IEEE 802.1p Priority Priority tagging is a function defined by the IEEE 802.1p st andard de[...]

  • Page 40

    FGSW-2620VM / FGSW-2624 SF User’s Manual VLAN Description A Virtual Local Area Net work (VLAN) is a network topology configured accordi ng to a lo gical scheme rather than the physical layout . VLAN can be used to combine any collec tio n of LAN segm ents into an autonomous user group that appears as a single LAN. VLAN also l ogically segment the[...]

  • Page 41

    FGSW-2620VM / FGSW-2624 SF User’s Manual Some relevant terms: T agging - The act of putting 802.1Q VLAN information into the header of a packet. Unt agging - The act of stripping 802.1Q VLAN information out of the packet header . 802.1Q VLAN T ags The figure below sho w s the 802.1Q VLAN tag. There are four additional octets inserted after the so[...]

  • Page 42

    FGSW-2620VM / FGSW-2624 SF User’s Manual Every physical port on a s witch has a PVI D. 802.1Q ports are also assigned a PVID, for use wi thin the switch. If no VLAN are defined on the switch, all ports are then assigned to a default VLA N with a PVID equal to 1. Untagged p ackets are assigned the PVID of the port on which they were received. F or[...]

  • Page 43

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.3.1.1.1 Port-based VLAN Packets can go among only members of the same VLAN gr oup. Note all unselected p orts are treated as belonging to another single VLAN. If the port-based VLAN enabled, the VLAN-tagging is ign ored. In order for an end station to send packets to dif ferent VLANs, it itself has to be[...]

  • Page 44

    FGSW-2620VM / FGSW-2624 SF User’s Manual Figure 4-3-2 VLAN – PortBase choos e interface 7. If there are many groups that over the limit of one page, you can click to vie w other VLAN groups. 8. Use button to delete un w anted VLAN. 9. Use button to modify existing VLAN gro up. If the trunk groups exist, you can see it (ex: Tr unk1, T runk2…) [...]

  • Page 45

    FGSW-2620VM / FGSW-2624 SF User’s Manual thus keeping the VLAN information intact. The VLAN information in the tag can then be used by other 802.1Q compliant devices on the network to make packet-forwarding dec isions. 。 Unt agging: Ports with unt agging enabled will strip the 802.1Q tag from all packet s that flow into those ports. I f the pac[...]

  • Page 46

    FGSW-2620VM / FGSW-2624 SF User’s Manual Figure 4-3-4 802.1Q VLAN Setting Web Page screen 6. After setup completed, please pr ess “Save” button to take effect. 7. Please press “Back” for return to VLAN configur ation screen to add other VLAN group, the screen in Figure 4-3-3 appears. 8. If there are many groups that over the limit of one [...]

  • Page 47

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.3.1.2 802.1Q Ingress Filter This section provides 802.1Q Ingre ss Filter of each port from the S w itch , the screen in Figure 4-3-5 a pp ears. Figure 4-3-5 802.1Q Ingress filter interface 47[...]

  • Page 48

    FGSW-2620VM / FGSW-2624 SF User’s Manual Object Description Ingress Filter Ingress filtering lets frames belonging to a specific VLAN to be forwarde d if the port belongs to that VLAN. Enable: Forward only packets with VID matching this port's configured VID. Disable: Disable Ingress filter function. Accept able Frame ty pe ALL: Acceptable a[...]

  • Page 49

    FGSW-2620VM / FGSW-2624 SF User’s Manual Bridge Protocol Dat a Unit s For STP to arrive at a stable network topology , the foll o wing information is used: 。 The unique s w itch identifier 。 The path cost to the root associated with each switch port 。 The por tidentifier STP communicates between switches on the net work using Brid ge Protoc[...]

  • Page 50

    FGSW-2620VM / FGSW-2624 SF User’s Manual 。 Listening – the port is waiting to receive BPDU packets that may tell the port to go back to the blocking state 。  Learning – the port is adding addresses to its forwarding database, but not yet forwarding packets 。 Forwarding – the port is forwarding packets 。 Disabled – the port o[...]

  • Page 51

    FGSW-2620VM / FGSW-2624 SF User’s Manual On the switch level, STP calculates the Brid ge Identifier for each switch and then sets the Root Bridge and the Designated Brid ges. On the port level, STP sets the R oot Port and the Designated Ports. The following are the user-conf igura ble STP p arameters for the switch level: Parameter Description De[...]

  • Page 52

    FGSW-2620VM / FGSW-2624 SF User’s Manual User-Changeable ST A Parameters The Switch’s factory default setting should cover the majority of installations. However , it is advis able to keep the default settings as set at the factory; unless, it is absolutely necessary . The user chan geable parameters in the Switch are as follows: Priority – A[...]

  • Page 53

    FGSW-2620VM / FGSW-2624 SF User’s Manual Priority setting, or influencing STP to choose a particular port to block using the Port Priori ty and Port Cost settings is, however , relatively straight forward. Bridge ID = 15 Port 3 Port 1 Port 2 A Bridge ID = 20 Port 1 Port 2 Port 3 C Bridge ID = 30 Port 1 Port 2 Port 3 B LAN 1 LAN 2 LAN 3 Portcast =[...]

  • Page 54

    FGSW-2620VM / FGSW-2624 SF User’s Manual one (optional) Gigabit port on both switch B and C. The redundant link between swit ch B and C is deliberately chosen a s a 100 Mbps Fast Ethernet link (default port cost = 19). Gigabit ports could be used, but the port cost should be increased from the default to ensure that the link bet ween switch B and[...]

  • Page 55

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.3.2.2 Per Port Configuration Y ou can configure path cost and priority of every port. Figure 4-3-7 SPT - Per Port Configuration interface Object Description Port Path cost The cost of the path to the other bridge fr om this transmitting bridge at the specified port. Enter a number 1 through 200000000. Pr[...]

  • Page 56

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.3.3 IGMP Snooping About the Interne t Group Management Protocol ( IGMP) Snoopin g Computers and network devices that want to receive multicast transmissions need to inform nearby routers that they will become members of a multicast group. T he Internet Group Management Protocol (IGMP) is used to comm uni[...]

  • Page 57

    FGSW-2620VM / FGSW-2624 SF User’s Manual members exist on their sub networks. If there is no response fr om a particular group, the r outer assumes that there are no group members on the net work. The T ime-to-Live (T TL) field of query messages is set to 1 so that the queries will not be forwarded to ot her sub networks. IGMP version 2 introduce[...]

  • Page 58

    FGSW-2620VM / FGSW-2624 SF User’s Manual Message Description Query A message sent from the querier (IGMP router or switch) asking for a response from each host belonging to the m ulticast gro up. Report A message se nt by a host to the querier to in dicate th at the host wants to be or is a member of a given group indi cated in the rep ort messag[...]

  • Page 59

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.3.4 Forwarding T able You can configure forwarding table of ev ery port, the screen in Figure 4-3-9. Figure 4-3-9 For w arding T able screen Object Description Port No Indicate port 1 to port 26. Current MAC Address List the source MAC addresses thos e be l ear ned on the specify port. 59[...]

  • Page 60

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.4 QoS Quality of Service (QoS) is an advanced traffic prioritization f eature that a llows you to es tablish control over net w ork traffic. QoS enables you to assign various grades of net work serv ice to dif ferent types of traffic, such as multi-media, video, protocol-specific, time cr itical, and fil[...]

  • Page 61

    FGSW-2620VM / FGSW-2624 SF User’s Manual Figure 4-4-1 QoS Configur ation Web Page screen 61[...]

  • Page 62

    FGSW-2620VM / FGSW-2624 SF User’s Manual Object Description QoS Mode Provid e dif ferent modes for QoS Configuration, the ava ilable options are shown as belo w: Disable QoS Priority , High Empty Then Low , Highest:secHigh:SecLow :Lowest=8:4:2:1 Highest:secHigh:SecL ow:Lowest=15:7:3:1 Highest:secHigh:SecL ow:Lowest=15:10:5:1 Default mode is Highe[...]

  • Page 63

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.5.1 802.1x/Radius Understa nding IEEE 802.1X Po rt-Based Authentication The IEEE 802.1X standard defines a client-server-b ased acce ss control and authentication protocol that restricts unauthorized clients from connecting to a LAN through publicly accessible ports. The authentication server authenticat[...]

  • Page 64

    FGSW-2620VM / FGSW-2624 SF User’s Manual z Switch (802.1X device) —controls the physi cal access to the network based on the auth enticat ion status of the client. The switch acts as an intermediary (p roxy) betw een the client and the authent ication server , requesting identity information from the client, verifying that information w ith the[...]

  • Page 65

    FGSW-2620VM / FGSW-2624 SF User’s Manual  Ports in Authorized and Unauthorized S tates The switch port state determines whether or not the client is granted acc ess to the network. The port starts in the unauthorized state. While in thi s state, the por t disallows all ingress and egress traffic except for 802.1X pr otocol packets. When a clie[...]

  • Page 66

    FGSW-2620VM / FGSW-2624 SF User’s Manual If the link state of a port transitions from up to down, or if an EAPOL-logof f frame is received, the port returns to the unauthorized state. 4.5.1.1 System Configuration The section provides 802.1x -System Co nfiguratio n, the screen i n Figure 4-5-1 Figure 4-5-1 802.1x Config ur ation - System Configura[...]

  • Page 67

    FGSW-2620VM / FGSW-2624 SF User’s Manual Object Description 802.1x Protocol Disable or enable 802.1x Protocol. Radius Server IP Set the Radi us Server IP address. Server Port Set the UDP destination port for authenticat ion requests to the specified Radius Server . Accounting Port Set the UDP d estinati on port for account ing requests to the spe[...]

  • Page 68

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.5.1.2 Per port Configuration Y ou can see the every port Authorization info rmation list i n table. Figure 4-5-2 802.1x Configur ation - Per Port Configuration Object Description Port Choose the port to set port Authorization. St ate Reject: the sp ecified port is required to be held in the Unauthorized [...]

  • Page 69

    FGSW-2620VM / FGSW-2624 SF User’s Manual 5. Create user data. T hat step is different of “Local Authe nticate”, t he establishment of the user data needs to be created on the Radius Server PC. For exam ple, the Radius Server founded on Win2000 Server , and then: 6. Enter ” Active Directory Users and Computers ”, create l e gal user data, [...]

  • Page 70

    FGSW-2620VM / FGSW-2624 SF User’s Manual 7. The last, run your 802.1X Client 4.5.1.3 802.1X Clie nt Configuration Windows XP is originally 802.1X supp ort. As to other operating systems (windows 98 SE, ME, 2000), an 802.1X client utility is needed. The following procedures sho w how to configure 802.1X Authentication in Windo ws XP . Please note [...]

  • Page 71

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4. Select “ Authentication ” tab. 5. Select “ Enable netw ork acce ss control using IEEE 802.1X ” to enable 802.1x authentica t ion. 6. Select “ MD-5 Challenge ” from the drop-down list box for EAP type. 7. Click “ OK ”. 8. When client has associated w ith the switch, a user authentication [...]

  • Page 72

    FGSW-2620VM / FGSW-2624 SF User’s Manual 9. Enter the user name, password and the lo g o n domain that your account belongs. 10. Click “ OK ” to complete the validation process . 72[...]

  • Page 73

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.5.1.4 Misc Configuration The section provides 802.1x Misc Conf i guration, the screen in Figure 4-5-3 Figure 4-5-3 802.1x Configur ation - Misc Configuration interface Object Description Quiet Period Set the period during which the port doesn't try to acquire a supplicant. Tx Period Set the period t[...]

  • Page 74

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.5.2 Access Control List The Access Control List (AC L) is a concept in computer security used to enforce privil ege se p aration. It is a means of determining the appropriate access rights to a given object dep en ding on certain aspects of the process that is making the request, principally the process&[...]

  • Page 75

    FGSW-2620VM / FGSW-2624 SF User’s Manual 4.5.3 S t atic MAC Address When you add a static MAC addr ess, it remains in the swit ch's addres s table, regardless of whether the device is physically connected to the switch. This saves the s w it ch from having to re-learn a device's MAC address when the disconnected or po wered-of f device [...]

  • Page 76

    FGSW-2620VM / FGSW-2624 SF User’s Manual Object Description MAC A ddre ss Enter the MAC address to and from which the port sh ould permanently for ward traf fic, regardless of the device network activity . Port Select a port number . VLAN ID If tag-based (IEEE 802.1Q) VLANs are set up on the sw itch, static addresses are associated with individua[...]

  • Page 77

    FGSW-2620VM / FGSW-2624 SF User’s Manual Object Description MAC A ddre ss Enter the MAC address that wants to filter . VLAN ID If tag-based (802.1Q) VLAN are set up on the s witch, in the VLAN ID box, type the VID to associate with the MAC address. Add Press this button for add MAC filtering on the Switch. Delete Press this button for delete MAC [...]

  • Page 78

    FGSW-2620VM / FGSW-2624 SF User’s Manual 5. SWITCH OPERATION 5.1 Address T able The Switch is implemented w ith an address table. This addr ess table composed of ma ny entries. Each entry is used to store the address information of some n ode in network , including MAC address, port no, etc. This information comes from the learning process of Eth[...]

  • Page 79

    FGSW-2620VM / FGSW-2624 SF User’s Manual Due to the learnin g function of the Ethernet switching, the source address and corres ponding port number of each incoming and outgo ing packet are stored in a routing table. T his information is subsequently used to fi lter packet s whose destination addr ess is on the same segment as the source addr ess[...]

  • Page 80

    FGSW-2620VM / FGSW-2624 SF User’s Manual 6. TROUBLESHOOTING This section is intended to help you solve the most common problems on the managed switch. 6.1 Incorrect connections The switch port can auto detect straight or crossover cable when you li nk switch with other Ethernet device. For the RJ-45 connector should use correct UT P or STP cable,[...]

  • Page 81

    FGSW-2620VM / FGSW-2624 SF User’s Manual APPENDIX A: CABLE PIN ASSIGNMENT 7.1 Cable Cable T ypes and Specifications Cable Ty p e Max. Length Connec tor 10BASE-T Cat. 3, 4, 5100-ohm UTP 100 m (328 ft) RJ-45 100BASE-TX Cat. 5 100-ohm UT P 100 m (32 8 ft) RJ-45 100BASE-FX 50/125 or 62.5/125 micr on core multimode fiber (MMF) 2 km (1.24 miles) SC or [...]

  • Page 82

    FGSW-2620VM / FGSW-2624 SF User’s Manual 7.3 RJ-45 cable pin assignment 2 1 3 6 1 2 3 6 2 1 3 6 The st andard RJ -45 recept acle/connec tor There are 8 wires on a standard UT P/ST P cable and each wir e is col or-cod ed. T he follo wing shows the pin allocation and color of straight cable and crossover cabl e connection: Straight Cable SIDE 1 SID[...]

  • Page 83

    FGSW-2620VM / FGSW-2624 SF User’s Manual Appendix B : Access Control List Application Guide Introduction:  What is Access Cont rol List An Access Control List (ACL) consists of a set of rule s which are matched sequentiall y against a packet. When a packet meets the match criteria of a rule , the specified rule action (Permit/Deny) is taken an[...]

  • Page 84

    FGSW-2620VM / FGSW-2624 SF User’s Manual Before the ACL Configure … Notice – It is important to set the VLAN mode to “ Port-Based” o r “ 802.1Q ” VLAN before you start the ACL configure. Due to the ACL will check the VLAN ID if necessa ry , the VLAN mode must be set to Port-Based or 802.1Q mod e. And once the VLAN mode is changed, the[...]

  • Page 85

    FGSW-2620VM / FGSW-2624 SF User’s Manual Deny Policy Sample Case 1: Deny specific Source IP Address – Host Purpose: V erify positive and negative matches to a specific h ost IP address with a 32 bit mask , no matter the rule defined as permit or deny . Check for Class A,B, and C address. 1. T o set a Host as the target at this case. 2. Once the[...]

  • Page 86

    FGSW-2620VM / FGSW-2624 SF User’s Manual Str ea m Ta r g e t ID Source Address Destinatio n Address Protocol Host 1 192.168.1.1 Any Any ACL Policy Configura tion: ACL Policy Entry: 86[...]

  • Page 87

    FGSW-2620VM / FGSW-2624 SF User’s Manual Case 2: Deny specific Source IP Address – Class C Purpose: V erify a positive and negative matches to ne t work IP addre ss with a Class C (24 bit mask) , no matter the rule defined as permit or deny . 1. Set Hosts w ithin the same Class C Net work domain, as the targets at this case. 2. Once the deny po[...]

  • Page 88

    FGSW-2620VM / FGSW-2624 SF User’s Manual Str ea m Ta r g e t ID Source Address Destinatio n Address Protocol Class C 2 192.168.1.0 / 255. 255.255.0 Any Any ACL Policy Configura tion: ACL Policy Entry: 88[...]

  • Page 89

    FGSW-2620VM / FGSW-2624 SF User’s Manual Case 3: Deny specific VLAN p acket s Purpose: V erify a positive and negative matches to ne t work IP addre ss with a specific VL A N ID , no matter the rule defined as permit or deny . 1. Packets with VLAN ID= specific ACL VLAN ID will be droppe d . 2. Packets with VLAN ID not match the specific ACL VLAN [...]

  • Page 90

    FGSW-2620VM / FGSW-2624 SF User’s Manual ACL Policy Configura tion: 90[...]

  • Page 91

    FGSW-2620VM / FGSW-2624 SF User’s Manual Case 4: Deny S pecify Protocol – HTTP / WWW Purpose: V erify positive and neg ative matches to network IP address with a specific protocol or TCP/UDP Port numbe r , no matter the rule defined as permit or den y . 1. Packets with Layer 4 protocol matc h the specific ACL protocol will be dropped . 2. Packe[...]

  • Page 92

    FGSW-2620VM / FGSW-2624 SF User’s Manual Str ea m Ta r g e t ID Source Address Destinatio n Address Protocol Host 5 192.168.1.1 / 255.255.255.255 ANY HTTP ( Port 80) ACL Policy Configura tion: ACL Policy Entry: 92[...]

  • Page 93

    FGSW-2620VM / FGSW-2624 SF User’s Manual Case 5: Deny S pecify Protocol – SMTP Purpose: 1. SMTP p acket s from specific Host IP Address will be dropped . 2. Other packet s from specific Host IP Address will be forwarded. Case Design: Action DENY Match Protocol Service T ype SMTP ( Port 25) Source IP A ddress Host Destination IP Address ANY Devi[...]

  • Page 94

    FGSW-2620VM / FGSW-2624 SF User’s Manual ACL Policy Configura tion: ACL Policy Entry: 94[...]

  • Page 95

    EC Declaration of Conformity For the following equipment: *T ype of Product: 24-Port 10/100 + 2 Gigabit TP/SFP Combo Layer 2 Managed Ethernet Switch *Model Number: FGSW -2620VM * Produced by: Manufacturer‘s Name : Planet T echnology Corp. Manufacturer‘s Address : 1 1F , No. 96, Min Chuan Road, Hsin T ien Ta i p e i , Ta i w a n , R . O . C . is[...]

  • Page 96

    EC Declaration of Conformity For the following equipm ent: *T ype of Product: 24-Port 100Mbps SFP + 2 Gigabit TP/SFP Combo W e b Sm art Ethernet Switch *Model Number: FGSW -2624SF * Produced by: Manufacturer‘s Name : Planet T echnology Corp. Manufacturer‘s Address: 1 1F , No 96, Min Chu an Road Hsin T ien, T aipei, T ai wan , R. O.C. is herewit[...]