NETGEAR 7000 инструкция обслуживания

202-10194-02 May 2006 NETGEAR , Inc. 4500 Great America Parkway Santa Clara, CA 95054 USA NETGEAR 7000 Series Managed Switch Administration Guide[...]

ii v1.1, May 2006 © 2006 by NETGEAR, Inc. All rights reserved. FullManual. T rademarks NETGEAR and Auto Uplink are trademarks or regis ter ed trademarks of NETGEAR , Inc. . Microsoft, W indows, and W indow s NT are registered trademar ks of Microsoft Corporation. Other brand and product names are registered trademarks or trad emarks of their respe[...]

v1.1, May 2006 iii FCC Information to User This product does not contain an y user serviceable co mponents and is to be us ed with approved antennas only . Any product changes or modifications wi ll invalidate all applic able regul atory certifications and approvals FCC Guidelines for Human Exposure This equipment complies with FCC radiat ion expos[...]

v1.1, May 20 06 iv • Consult the dealer or an experien ced radio/TV tec hnician for help. Modifications made to the product, unle ss expressly approved byNETGEAR, Inc., c ould void the user's right to operate the equipment. Canadian Dep artment of Communications Radio Interference Regulations This digital apparatus (7000 Series Mana ged Swit[...]

v v1.1, May 2006 Content s NETGEAR 7000 Series Managed Sw itch Administration Guide About This Book ...................... ................ ................ ................ ............. ................ ............. .... xi Chapter 1 Getting Started In-band and Out-of-band Connectivity ................ ................ ................ .........[...]

vi v1.1, May 2006 Example #3: Assign Ports to VLAN3 .. .......... ... ................ ................. ............ ............ 3-3 Example #4: Assign VLAN3 as the Default VLAN ........................... ................ ........ 3-3 Graphical User Interface ........ ... ............. ............. ................ ............. ...............[...]

vii v1.1, May 2006 Proxy Address Resolution Protocol (AR P) ... ...... ................ ............. ................ ............. 5-21 Overview ............ ............. ................ ............. ................ ............. ................ ............. 5-21 CLI Examples ..... ............. ................ ............. ..............[...]

viii v1.1, May 2006 Example #2: set classofservice trust mode .. ................ ................ ................ ............ 8-4 Example #3: show classofservice ip-precede nce mapping .............. ................... ..... 8-5 Example #4: Configure Co s-queue Min-ban dwidth and S trict Priority Scheduler Mode 8-5 Example #5: Set CoS T rust Mo[...]

ix v1.1, May 2006 Example #2: script list and script delete . ............ ................. ................ ................ ... 13-2 Example #3: script apply running-config.scr .......... ................ ............. ............. ...... 13-2 Example #4: Creating a Configuration Script ............ ................ ............. ............. [...]

x v1.1, May 2006 Chapter 18 Syslog Overview ............. ................ ................ ................ ................ ................ ................ ......... .1 8 - 1 Persistent Log Files ............ ... .... ... ............. ... ... ... .... ... ... ... .... ... ............. ... ... ... .... ... ... 18-1 Interpreting Log Files .....[...]

xi v1.1, May 2006 About This Book This document provid es an understanding of th e CLI and W eb configuratio n options for software Release 4.3 features. Document Organization This document provides exa mples of the use of the switch software in a typical network. It describes the use and advantages of specific f unctions provided by the 7000 Serie[...]

NETGEAR 7000 Series Managed Switch Administration Guide xii v1.1, May 2006 • Multicast – IGMP Snooping • Security – Denial of Service – Port Security • Operating System – Dual Configuration •T o o l s –A l a r m M a n a g e r – T raceroute – Configuration Scripting – Advance Keying – Prelogin Banner – Port Mirroring –S[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide xiii v1.1, May 2006 Refer to the Command Line Refer ence for information for the command structure Related Document ation Before proceeding, read the Release Notes for this switch pr oduct. The Relea se Notes detail the platform specific functionality of the Switching , Routing, SNMP , Config[...]

NETGEAR 7000 Series Managed Switch Administration Guide xiv v1.1, May 2006[...]

1-1 v1.1, May 2006 Chapter 1 Getting S tarted Connect a terminal to the sw itch to begin configuration. In-band and Out-of-band Connectivity Ask the system administrator to determine whet her you will configure the switch for in-band or out-of-band connec tivity . Configuring for In -band Connectivity In-band connectivity allows you to access the s[...]

NETGEAR 7000 Series Managed Switch Administration Guide 1-2 Getting Started v1.1, May 2006 MAC Address MAC address of the switch When you connect the switch to the network for th e first time after setting up the BootP or DHCP server , it is configured with the information supplied above. The switch is ready for in-ban d connectivity over the netwo[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Getting Started 1-3 v1.1, May 2006 config network parms ipaddress netmask g ateway 6. T o enable these changes to be retain ed during a reset of the switch, type Ctrl-Z to return to the main prompt, type save config at the main menu prompt, and ty pe y to confirm th e changes . 7. T o view th[...]

NETGEAR 7000 Series Managed Switch Administration Guide 1-4 Getting Started v1.1, May 2006 e. Select the proper mode under Properti es . f. Select T erminal keys. 3. Connect the female connec tor of the RS-232 cr ossover cable directly to the switch console port, and tighten the captive retaining screws. S t arting the Switch 1. Make sure that the [...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Getting Started 1-5 v1.1, May 2006 • The console co nnection was establishe d and the console prompt appears on the screen of a VT100 terminal or terminal equivalent. The initial switch configuratio n is performed through the c onsole port. After the initial configuration, you can manage th[...]

NETGEAR 7000 Series Managed Switch Administration Guide 1-6 Getting Started v1.1, May 2006 Sof tware Installation This section contains procedures to help you b ecome acquainted quickly with the switch software. Before installing switch software, you should verify that the switch operates with the most recent firmware. Quick S t arting the Networki[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Getting Started 1-7 v1.1, May 2006 • Uploading from Network ing Device to Out-of-Band PC (Only XMODEM) • Downloading from Out-of-Ban d PC to Networking Device ( Only XMODEM) • Downloading from TFTP Server • Restoring factory defaults If you configure any network parameters, you should[...]

NETGEAR 7000 Series Managed Switch Administration Guide 1-8 Getting Started v1.1, May 2006 copy system:run- ning-config nvram:startup- config Privileged EXEC Saves passwords and all other changes to the device. If you do not save the configurat ion, all changes are lost when you power down or reset the networking device. In a stackin g environment,[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Getting Started 1-9 v1.1, May 2006 copy nvram:error- log <tftp:// <ipaddress>/ <filepath>/<file- name>> Privileged EXEC Starts the error log upload, displays the mode and typ e of upload and confirms th e upload i s progressing. The URL must be specified as: xmodem:<[...]

NETGEAR 7000 Series Managed Switch Administration Guide 1-10 Getting Started v1.1, May 2006 copy <tftp:// <ipaddress>/ <filepath>/<file- name>> sys- tem:image Privileged EXEC Sets the destination (downlo ad) datatype to be an image. The URL must be specified as: tftp://<ipaddress>/<filepath>/<fi lename> The[...]

2-1 v1.1, May 2006 Chapter 2 Using the W eb Interface This chapter is a brief introduction to the web interface — it explains how to access the W eb-based management panels to configure an d manage the system. Y ou can manage your switch through a W eb brow ser and Internet connection. This is referred to as W eb-based managem ent. T o use W eb-b[...]

NETGEAR 7000 Series Managed Switch Administration Guide 2-2 Using the Web Interf ace v1.1, May 2006 a. At the CLI prompt, enter the show network command. b. Set Web Mode to Enabled. S t arting the Web Interface Follow these steps to start the switch W eb interface: 1. Enter the IP address of the switch in the W eb browser address field. 2. When the[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Using the Web Interfa ce 2-3 v1.1, May 2006 3. Enter a new user name in the User Name field. 4. Enter a new user password in the Password fiel d and then retype it in the Confirm Password field. 5. If you do not need authe n tication, go to S tep 9. 6. T o enable authentication, use the Authe[...]

NETGEAR 7000 Series Managed Switch Administration Guide 2-4 Using the Web Interf ace v1.1, May 2006[...]

3-1 v1.1, May 2006 Chapter 3 V irtual LANs Adding V i rtual LAN (VLAN) support to a Layer 2 switch offers some of the benefits of both bridging and routing . Like a bridge, a VLAN switch forwards traffic based on the Layer 2 head er , which is fast, and like a router , it partitions the network into lo gical segments, which prov ides better adminis[...]

NETGEAR 7000 Series Managed Switch Administration Guide 3-2 Virtual LANs v1.1, May 2006 VLAN Configuration Example The diagram in this section shows a switch with four ports configured to handle the traffic for two VLANs. port 1/0/2 handles traf fic for both VLANs, while port 1/0/1 is a member of VLAN 2 only , and ports 1/0/3 and 1/0/4 are members [...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Virtual LANs 3-3 v1.1, May 2006 Example #2: Assign Port s to VLAN2 This sequence shows how to assign ports to VLAN2, specify that frames w ill always be transmitted tagged from all member ports, and that untagged frames will be rejected on receipt. Example #3: Assign Port s to VLAN3 This exam[...]

NETGEAR 7000 Series Managed Switch Administration Guide 3-4 Virtual LANs v1.1, May 2006 Graphical User Interface Use the following screens to pe rform the same configuration usin g the Graphical User Interface: • Switching --> VLAN- -> Configuration . T o create the VLANs and specify port participation. • Switching --> VLAN --> Port[...]

4-1 v1.1, May 2006 Chapter 4 Link Aggregation This section includes instruc tions on configuring Link Aggregation u sing the Command Line Interface and the Graphical User Interface. Link Aggregation (LAG) allows the switch to treat multiple physical l inks between two end-points as a single logical link. All of the physical links in a given LAG mus[...]

NETGEAR 7000 Series Managed Switch Administration Guide 4-2 Link Aggr egation v1.1, May 2006 Figure 4-1 shows the example network. Figure 4-1[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Link Aggregatio n 4-3 v1.1, May 2006 Example 1: Create two LAGS: Use the show port-c hannel all command to show the logical interface ids you will use to identify the LAGs in subsequent c ommands. Assume that lag_10 is assigned id 1/1/1 and lag_20 is assigned id 1/1/2. (Netgear Switch) #confi[...]

NETGEAR 7000 Series Managed Switch Administration Guide 4-4 Link Aggr egation v1.1, May 2006 Example 2: Add the port s to the LAGs: Example 3: Enable both LAGs. By default, the system en ables link trap notification At this point, the LAGs could be added to VLANs. (Netgear Switch) #config (Netgear Switch) (Config)#interface 0/2 (Netgear Switch) (In[...]

5-1 v1.1, May 2006 Chapter 5 IP Routing Services IP routing services are divided into five areas : • Port Routing • VLAN Routing • Routing Information Protocol (RIP) • Open Shortest Path First (OSPF) Protocol • Proxy Address Resolut ion Protocol (ARP) Port Routing The first networks were small en ough for the end stations to co mmunicate [...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-2 IP Routing Services v1.1, May 2006 Port Routing Configuration The 7000 Series M anaged Switch always supp orts Layer 2 bridging, but Layer 3 routing must be explicitly enabled, first for the 7000 Series Managed Switch as a wh ole, and then for each port which is to participate in the route[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide IP Routing Services 5-3 v1.1, May 2006 CLI Examples This diagram shows a Layer 3 switch configured fo r port routing. It co nnects three different subnets, each connected to a diff erent port. Th e script shows the comm ands you would use to configure a 7000 Series Managed Switch to provide t[...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-4 IP Routing Services v1.1, May 2006 Example 2. Enabling Routing for Port s on the Switch Use the following commands to enable routing for ports on th e switch. The de fault link-level encapsulation format is Ethernet. Configure the IP addresses and subnet masks for the ports. Network direct[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide IP Routing Services 5-5 v1.1, May 2006 The next section will show you how to config ure the 7000 Series Managed Switch to support VLAN routing and how to use RIP and OSPF . A port may be either a VLAN port or a router port, but not both. However , a VLAN port may be pa rt of a VLAN that is it[...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-6 IP Routing Services v1.1, May 2006 Example 1: Create T wo VLANs The following code sequence show s an example of creating two VL ANs with egress frame tagging enabled. Example 2: Set Up VLAN Routing for the VLANs and the Switch. The following code sequence shows ho w to enable routing for [...]

NETGEAR 7000 Series Managed Switch Admini stration Guide IP Routing Services 5-7 v1.1, May 2006 The next sequence shows an e xample of config uring the IP addresses and subnet masks for the virtual router ports. VLAN Routing RIP Configuration Routing Information Prot ocol (RIP) is one of the pro tocols which may be used by routers to exchange netwo[...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-8 IP Routing Services v1.1, May 2006 CLI Example This example adds support for RIPv2 to the co nfiguration created in the base VLAN routing example. A second router , using port routing rath er than VLAN routing, has been added to the network. Figure 5-3[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide IP Routing Services 5-9 v1.1, May 2006 Example of configuring VLAN Rou ting with RIP support on a 7000 Series Manag ed Switch (Netgear Switch) #vlan data (Netgear Switch) (Vlan)#vlan 10 (Netgear Switch) (Vlan)#vlan 20 (Netgear Switch) (Vlan)#vlan routing 10 (Netgear Switch) (Vlan)#vlan routin[...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-10 IP Routing Services v1.1, May 2006 VLAN Routing OSPF Configuration For larger networks Open Shortest Path First (OSP F) is generally used in preference to RIP . OSPF offers several benefits to the administrator of a large and/or complex network: • Less network traffic: – Routing table[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide IP Routing Services 5-11 v1.1, May 2006 Example of configuring OSPF on a 7000 Series Managed Switch acting as an inter-area router : (Netgear Switch) #vlan data (Netgear Switch) (Vlan)#vlan 10 (Netgear Switch) (Vlan)#vlan 20 (Netgear Switch) (Vlan)#vlan routing 10 (Netgear Switch) (Vlan)#vlan[...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-12 IP Routing Services v1.1, May 2006 Routing Information Protocol Routing Information Prot ocol (RIP) is one of the pro tocols which may be used by routers to exchange network topology informa tion. It is characterized as an “interior” ga teway protocol, and is typically used in small t[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide IP Routing Services 5-13 v1.1, May 2006 • T o prevent any RIP packets from being transmitted CLI Example The configuratio n commands used in the follo wing example enable RIP o n ports 1/0/2 and 1/0/3 as shown in the network illustrated in Figure 5-4 Example #1: Enable Routing for the Switc[...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-14 IP Routing Services v1.1, May 2006 Example #2: Enable Routing for Port s The following command sequence en ables routing and assigns IP addresses for ports 1/0/2 and 1/ 0/3. Example #3. Enable RIP for the Switch The next sequence enables RIP for the switch. the route preference defaults t[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide IP Routing Services 5-15 v1.1, May 2006 Example #4. Enable RIP for port s 1/0/2 and 1/0/3 This command sequence en ables RIP for ports 1/0/2 and 1/0/3. Au thentication defaults to none, and no default route entry is created. The commands specify that both ports receive both RIPv1 and RIPv2 fr[...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-16 IP Routing Services v1.1, May 2006 • Intra-area • Inter-area • External type 1: the route is external to the AS • External T ype 2: the route was learned from other protocol s such as RIP CLI Examples The examples in this section show you how to co nfigure a 7000 Series Managed Sw[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide IP Routing Services 5-17 v1.1, May 2006 Example #1 Configuring an Inter-Are a Router Enable Routing for the Switch. The following command sequence enables ip routing for the switch. Assign IP Addresses for Ports. The following sequence enables routing and assigns IP addresses for ports 1/0/2 [...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-18 IP Routing Services v1.1, May 2006 Specify Router ID and Enable OSPF for the Switch. The following sequence specifies the router ID and enables OSPF for the switch. Set disable1583 compatibility to prevent the routing loop. Enable and Configure OSPF for the Ports. The following sequence e[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide IP Routing Services 5-19 v1.1, May 2006 Example #2 - Configuring OSPF on a Border Router Figure 5-6[...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-20 IP Routing Services v1.1, May 2006 The following example configures OSPF on a 7000 Series Mana ged Switch operating as a border router: Enable routing for the switch. (Netgear Switch) #config (Netgear Switch) (Config)#ip routing Enable routing & assign IP for ports 1/0/2, 1/0/3 and 1/[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide IP Routing Services 5-21 v1.1, May 2006 Proxy Address Resoluti on Protocol (ARP) This section describes the Proxy Address Resolution Protocol (ARP) feature. Overview • Proxy ARP allows a router to answer ARP requests where the target IP address is not the router itself but a destination tha[...]

NETGEAR 7000 Series Managed Switch Administration Guide 5-22 IP Routing Services v1.1, May 2006 CLI Examples The following are examples of the comm ands used in the proxy ARP feature. Example #1: show ip interface Example #2: ip proxy-arp (Netgear Switch) #show ip interface ? <slot/port> Enter an in terface in slot/port format. brief Display [...]

6-1 v1.1, May 2006 Chapter 6 V i rtual Router Redundancy Protocol When an end station is statically configured w ith the address of the router that will handle its routed traf fic, a single point of failure is intro duced into the network. If the router goes down, the end station is unable to communicate. Since sta tic configuration is a co nvenien[...]

NETGEAR 7000 Series Managed Switch Administration Guide 6-2 Virtual Router Redun dan cy Protocol v1.1, May 2006 CLI Examples This example shows how to configure the 7000 Series Managed Switch to support V RRP . Router 1 will be the default master router for the virtual route, and Router 2 will be the backup router . Figure 6-1[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Virtual Router Redunda ncy Pr otocol 6-3 v1.1, May 2006 The following is an examp le of configurin g VRRP on a 7000 Series Managed Switch acting as the master router: Enable routing for the switch. IP forwardi ng will then be enabled by default. (Netgear Switch) #config (Netgear Switch) (Conf[...]

NETGEAR 7000 Series Managed Switch Administration Guide 6-4 Virtual Router Redun dan cy Protocol v1.1, May 2006 The following is an examp le of configurin g VRRP on a 7000 Series Managed Switch acting as the backup route r: Enable routing for the switch. IP forwardi ng will then be enabled by default. (Netgear Switch) #config (Netgear Switch) (Conf[...]

7-1 v1.1, May 2006 Chapter 7 Access Control List s (ACLs) This section describes the Access Control Lists (ACLs) feat ure . Overview Access Control Lists (ACLs) can control the traffic entering a network. Normally ACLs reside in a firewall router or in a router connecting two internal network s. Wh en you configure ACLs, yo u can selectively admit [...]

NETGEAR 7000 Series Managed Switch Administration Guide 7-2 Access Control Lists (ACLs) v1.1, May 2006 • Destination MAC address with mask • VLAN ID (or range of IDs) • Class of Service (CoS) (802.1p) • Ethertype • L2 ACLs can apply to one or mo re interfaces • Multiple access lists can be a pplied to a single interface - se quence numb[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Access Control Lists (ACLs ) 7-3 v1.1, May 2006 Process T o configure ACLs, follow these steps: • Create an ACL by specifying a name (MAC ACL) or a number (IP ACL) • Add new rules to the ACL • Configure the match criteria for the rules • Apply the ACL to one or more interfaces IP ACL [...]

NETGEAR 7000 Series Managed Switch Administration Guide 7-4 Access Control Lists (ACLs) v1.1, May 2006 The following is an example of co nfiguring ACL su pport on a 7000 Series Managed Switch: MAC ACL CLI Examples The following are examples of the comm ands used for the MAC ACLs feature. Create ACL 101. Define the first rule: it will permit packets[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Access Control Lists (ACLs ) 7-5 v1.1, May 2006 Example #1: mac access list (Netgear Switch)(Config)#mac access- list ? extended Configure extended MAC Access List parameters. Netgear Switch)(Config)#mac access-l ist extended ? <name> Enter access-list name up to 31 characters in length[...]

NETGEAR 7000 Series Managed Switch Administration Guide 7-6 Access Control Lists (ACLs) v1.1, May 2006 Example #2: permit any (Netgear Switch) (Config-mac access- list)#permit ? <srcmac> Enter a MAC address. any Configure a match condition for all the destination MAC addresses in the Destination MAC Address field. (Netgear Switch) (Config-mac[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Access Control Lists (ACLs ) 7-7 v1.1, May 2006 Example #3 Configure mac access-group (Netgear Switch) (Config)#interface 1/0/5 (Netgear Switch) (Interface 1/0/5)#m ac ? access-group Attach MAC Access Li st to Interface. (Netgear Switch) (Interface 1/0/5)#m ac access-group ? <name> Ente[...]

NETGEAR 7000 Series Managed Switch Administration Guide 7-8 Access Control Lists (ACLs) v1.1, May 2006 Example #4 permit (Netgear Switch) (Config)#mac access -list extended b2 (Netgear Switch) (Config-mac-access- list)#permit 00:00:00:00:00:00 ? <dstmac> Enter a MAC Address. any Configure a a match condition for al l the destination MAC addre[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Access Control Lists (ACLs ) 7-9 v1.1, May 2006 Example #5: show mac access-list s (Netgear Switch) #show mac access-li sts Current number of all ACLs: 2 Max imum number of all ACLs: 100 MAC ACL Name Rules Interface( s) Direction ------------ ----- ----------- - --------- b1 1 1/0/5 inbound b[...]

NETGEAR 7000 Series Managed Switch Administration Guide 7-10 Access Control Lists (ACLs) v1.1, May 2006[...]

8-1 v1.1, May 2006 Chapter 8 Class of Service (CoS) Queuing This section describes the Class of Service (C oS) Queue Mapping and T raffic Shaping features. Overview Each port has one or more queues for packet transmission. During configuration, you can determine the mapping and conf iguration of these queues. Based on service rate and other criteri[...]

NETGEAR 7000 Series Managed Switch Administration Guide 8-2 Class of Service (CoS) Queuing v1.1, May 2006 – IP Precedence – IP Dif fServ Code Point (DSCP) The system can assign service level based upon the 802.1p priority field of the L2 header . Y ou configure this by mapping the 80 2.1p priorities to one of three traffic class queues. These q[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Class of Service (CoS) Queuing 8-3 v1.1, May 2006 – T ail drop vs. WRED Drop Precedence Conf iguration (per Queue) •W R E D p a r a m e t e r s – Minimum threshold – Maximum threshold – Drop probability – Scale factor • T ail Drop parameters – Threshold Per Interface Basis •[...]

NETGEAR 7000 Series Managed Switch Administration Guide 8-4 Class of Service (CoS) Queuing v1.1, May 2006 Example #1: show classofservice trust Example #2: set clas sofservice trust mode (Netgear Switch) #show classofservic e trust ? <cr> Press Enter to execute the command. (Netgear Switch) #show classofservic e trust Class of Service Trust M[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Class of Service (CoS) Queuing 8-5 v1.1, May 2006 Example #3: show classofser vice ip-precedence mapping Example #4: Configure Cos-queue Min-bandwid th and Strict Priority Scheduler Mode (Netgear Switch) #show classofservic e ip-precedence-mapping IP Precedence Traffic Class ------------- ---[...]

NETGEAR 7000 Series Managed Switch Administration Guide 8-6 Class of Service (CoS) Queuing v1.1, May 2006 Example #5: Set CoS T rus t Mode of an Interface T raffic Shaping This section describes the T raffic Shaping feature. T raffic shaping controls the amou nt and volume of traf fic transmitted through a network. This has the ef fect of smoothing[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Class of Service (CoS) Queuing 8-7 v1.1, May 2006 Example #1 traffic-shape (Netgear Switch) (Config)#traffic-sh ape ? <bw> Enter the s haping bandwidth percentage from 0 to 100 in incremen ts of 5. (Netgear Switch) (Config)#traffic-sh ape 70 ? <cr> Press Enter to execute the comma[...]

NETGEAR 7000 Series Managed Switch Administration Guide 8-8 Class of Service (CoS) Queuing v1.1, May 2006[...]

9-1 v1.1, May 2006 Chapter 9 Differentiated Services Differentiated Services ( DiffServ) is one technique for implementing Qu ality of Service (QoS) policies. Using DiffServ in your network allows you to direct ly co nfigure the relevant parameters on the switches and routers ra ther than using a re source reservation protocol.This section explain [...]

NETGEAR 7000 Series Managed Switch Administration Guide 9-2 Differentiated Services v1.1, May 2006 – Marking the packet with a given DSCP code point, IP precedence, or CoS – Policing packets by dropping or re -marking th ose that exceed the class’ s assigned data rate – Counting the traffic within the class • Service. Assigns a policy to [...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Differentiated Services 9-3 v1.1, May 2006 The following examp le configures Dif fServ on a 7000 Series Managed Switch: Ensure DiffServ operation is enabled for the switch. (Netgear Switch) #config (Netgear Switch) (Config)#diffserv Create a DiffServ class of type “all” for each of the de[...]

NETGEAR 7000 Series Managed Switch Administration Guide 9-4 Differentiated Services v1.1, May 2006 DiffServ for V oIP Configuration Example One of the most valuable uses of Dif fServ is to support V oice over IP (V oIP). V oIP traffic is inherently time-sensitive: for a ne twork to provide acceptable servic e, a guaranteed transmission rate is vita[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Differentiated Services 9-5 v1.1, May 2006 a class for UDP traffic, have that traf fic marked on the inbound side, and then expedite the traffic on the outbound side. The config uration script is for Router 1 in the acco mpanying diagram: a similar script should be applied to Router 2. Figure[...]

NETGEAR 7000 Series Managed Switch Administration Guide 9-6 Differentiated Services v1.1, May 2006 The following example config ures Dif fServ V oIP support: Enter Global Config mode. Set queue 5 on all ports to use strict priority mode. This queue shall be used for all VoIP packets. Activate DiffServ for the switch. (Netgear Switch) #config (Netge[...]

10-1 v1.1, May 2006 Chapter 10 IGMP Snooping This section describes the Internet Group Mana gement Prot ocol (IGMP) feature: IGMPv3 and IGMP Snooping. Overview IGMP: • Uses V ersion 3 of IGMP • Includes snoopin g • Snooping can be e nab led per VLAN CLI Examples The following are examples of the commands used in the IGMP Snooping feature. Exa[...]

NETGEAR 7000 Series Managed Switch Administration Guide 10-2 IGMP Snooping v1.1, May 2006 Example #2: show igmp snooping Example #3: show mac-ad dress-t able igmp snooping (Netgear Switch) #show igmpsnoop ing? <cr> Press Enter to execute the co mmand. <slot/port> Enter interface in sl ot/port format. mrouter Display IGMP Snooping Multic[...]

11-1 v1.1, May 2006 Chapter 1 1 Port Security This section describes the Port Security feature. Overview Port Security: • Allows for limiting the number of MAC addresses on a given port • Packets that have a matching MAC address (secure packets) are forwarde d; all other packets (unsecure packets) are restricted • Enabled on a per port basis [...]

NETGEAR 7000 Series Managed Switch Administration Guide 11-2 Port Security v1.1, May 2006 Operation Port Security: • Helps secure network by preventing u nknown devices from forwarding packets • When link goes down, all dynamica lly locked addresses are ‘freed’ • If a specific MAC address is to be set for a port , set the dynamic entries [...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Port Security 11-3 v1.1, May 2006 CLI Examples The following are examples of the commands used in the Port Security feature. Example #1: show port security Example #2: show port securi ty on a specific interface Example #3: (Config) port security (Netgear Switch) #show port-security ? <cr&[...]

NETGEAR 7000 Series Managed Switch Administration Guide 11-4 Port Security v1.1, May 2006[...]

12-1 v1.1, May 2006 Chapter 12 T raceroute This section describes the T raceroute feature. Use T raceroute to discover the routes that packets take when traveli ng on a hop-by -hop basis to their destination through the network. • Maps network routes by sending packets with small T ime-to-Live (TTL) values and watches the ICMP time-ou t announcem[...]

NETGEAR 7000 Series Managed Switch Administration Guide 12-2 Traceroute v1.1, May 2006 CLI Example The following shows an example of using the traceroute command to determi ne how many hops there are to the des tination. Th e command output shows each IP ad dress the packet passes through and how long it takes to get there. In this example, the pac[...]

13-1 v1.1, May 2006 Chapter 13 Configuration Scripting This section describes the Conf iguration Scripting feature. Overview Configuration Scripting: • Allows you to generate text-formatted files • Provides scrip ts tha t ca n be uplo aded and download ed to the system • Provides flexibility to create command configuration scripts • May be [...]

NETGEAR 7000 Series Managed Switch Administration Guide 13-2 Configuration Scripting v1.1, May 2006 Example #1: script Example #2: script list and script delete Example #3: script apply running-config.scr (Netgear Switch) #script ? apply Applies configuration script to the swit ch. delete Deletes a confi guration script file from the switch. list L[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Configuration Scripting 13-3 v1.1, May 2006 Example #4: Creating a Configuration Script Example #5: Upload a Configuration Script (Netgear Switch) #show running-confi g running-config.scr Config script created successfully. (Netgear Switch) #script list Configuration Script Name Siz e(Bytes) [...]

NETGEAR 7000 Series Managed Switch Administration Guide 13-4 Configuration Scripting v1.1, May 2006[...]

14-1 v1.1, May 2006 Chapter 14 Outbound T elnet This section describes the Outbound T elnet feature. Overview Outbound T elnet: • Establishes an outbound telnet connection between a de vice and a remote host • A telnet connection is initiated, each side of the conn ection is assumed to originate and terminate at a “Network V irtual T erminal?[...]

NETGEAR 7000 Series Managed Switch Administration Guide 14-2 Outbound Telnet v1.1, May 2006 Example #1: show network Example #2: show telnet (Netgear Switch Routing) >telnet 192 .168.77.151 Trying 192.168.77.151... (Netgear Switch Routing) User:admin Password: (Netgear Switch Routing) >en Password: (Netgear Switch Routing) #show ne twork IP A[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Outbound Telnet 14-3 v1.1, May 2006 Example #3: transport output telnet Example #4: session-limi t and session-timeout (Netgear Switch Routing) (Config)#li neconfig ? <cr> Press Enter to execute the command. (Netgear Switch Routing) (Config)#li neconfig (Netgear Switch Routing) (Line)#t[...]

NETGEAR 7000 Series Managed Switch Administration Guide 14-4 Outbound Telnet v1.1, May 2006[...]

15-1 v1.1, May 2006 Chapter 15 Port Mirroring This section describes the Port Mirroring feature. Overview Port Mirroring: • Allows you to monitor network traf fi c with an external network analyzer • Forwards a copy of each incoming a nd outgoing packet to a sp ecific port • Is used as a diagnostic to ol, deb ugging feature or me ans of fendi[...]

NETGEAR 7000 Series Managed Switch Administration Guide 15-2 Port Mirr oring v1.1, May 2006 Example #1: show monitor session Example #2: show port all Example #3: show port interface Use this command for a specific por t. The output shows whether the port is the mirror or the probe (Netgear Switch Routing) #show monit or session 1 Session ID Admin [...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Port Mirroring 15-3 v1.1, May 2006 port, and what is enabled or disable d on the port. Example #4: (Config) monitor session 1 mode T o set up port mirroring, spe cify th e monitor session, then the mode. (Netgear Switch Routing) #show port 0/7 Admin Physical Physical Link Link LACP Intf Type [...]

NETGEAR 7000 Series Managed Switch Administration Guide 15-4 Port Mirr oring v1.1, May 2006 Example #5: (Config) monito r session 1 source interface Specify the source (mirrored) ports and destination (probe) port. Example #6: (Interf ace) port security (Netgear Switch Routing)(Config)#mon itor session 1 source? interface Configure interface. (Netg[...]

16-1 v1.1, May 2006 Chapter 16 Simple Network T ime Protocol (SNTP) This section describes the Simple Netw ork T ime Protocol (SNTP) feature . Overview SNTP: • Used for synchronizin g network resources • Adaptation of NTP • Provides synchr onized network tim estamp • Can be used in broadcast or unicast mode • SNTP client implemented over [...]

NETGEAR 7000 Series Managed Switch Administration Guide 16-2 Simple Network Time Protocol (SNTP) v1.1, May 2006 Example #2: show sntp client Example #3: show sntp server Example #4: Configure SNTP Netgear switches do not have a built-in real-time cloc k. However , it is possible to use SNTP to get the time from a public SNTP/NTP se rver over the In[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Simple Network Time Protocol (SNTP) 16-3 v1.1, May 2006 1. Configure the SNTP server IP address. The IP address can be either from the public NTP server or your own. Y ou can search the Intern et to locate the public server . The serve rs available could be listed in domain-name format instea[...]

NETGEAR 7000 Series Managed Switch Administration Guide 16-4 Simple Network Time Protocol (SNTP) v1.1, May 2006[...]

17-1 v1.1, May 2006 Chapter 17 Pre-Login Banner This section describes the Pre-Login Banner feature. Overview Pre-Login Banner: • Allows you to create message screens when logging into the CLI Interface • By default, no Banner file exists • Can be uploaded or downloaded • File size cannot be larger than 2K The Pre-Login Banner feature is on[...]

NETGEAR 7000 Series Managed Switch Administration Guide 17-2 Pre-Login Banner v1.1, May 2006 2. T ransfer the file from the PC to the switch using TFTP (Netgear Switch Routing) #copy tftp: //192.168.77.52/banner.txt nvram:clibanner Mode................................ ........... TFTP Set TFTP Server IP.................. ........... 192.168.77.52 T[...]

18-1 v1.1, May 2006 Chapter 18 Syslog This section provides informa tion about the Syslog feature. Overview Syslog: • Allows you to store system messages and/or errors • Can store to local files on the switch or a remote server running a syslog daemon • Method of collecting messag e logs from many systems Persistent Log Files • Currently th[...]

NETGEAR 7000 Series Managed Switch Administration Guide 18-2 Syslog v1.1, May 2006 Interpreting Log Files CLI Examples The following are examples of the comm ands used in the Syslog feature. <130> JAN 01 00:00:0 6 0.0.0.0-1 UNKN [0x 800023]: bootos .c(386) 4 %% Event (0x aaaaaaaa) A. Priority B. T imestamp C. S tack ID D. Component Name E. Th[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Syslog 18-3 v1.1, May 2006 Example #1: show logging Example #2: show logging buffered (Netgear Switch Routing) #show loggi ng Logging Client Local Port : 514 CLI Command Logging : disabled Console Logging : disabled Console Logging Severity Filter : alert Buffered Logging : enabled Syslog Log[...]

NETGEAR 7000 Series Managed Switch Administration Guide 18-4 Syslog v1.1, May 2006 Example #3: show logging traplogs Example 4: show logging host s (Netgear Switch Routing) #show logging traplogs ? <cr> Press Enter to execute the c ommand. (Netgear Switch Routing) #show logging traplogs Number of Traps Since Last Reset.... ........ 6 Trap Log[...]

NETGEAR 7000 Series Managed Switch Admini stration Guide Syslog 18-5 v1.1, May 2006 Example #5: logging port configuration (Netgear Switch Routing) #config (Netgear Switch Routing) (Config)#logging ? buffered Buffered (In-Memory) Logging Configuration. cli-command CLI Command Logging Configuration. console Console Logging Configuration. host Enter [...]

NETGEAR 7000 Series Managed Switch Administration Guide 18-6 Syslog v1.1, May 2006[...]