active500em wired web user interface manual
TRANSCRIPT
-
7/27/2019 Active500EM Wired Web User Interface Manual
1/289
Users Manual
active500EM
Wired Web Interace
-
7/27/2019 Active500EM Wired Web User Interface Manual
2/289
iactive500EM Wired Web Interface Users Manual
This is the active500EM Wired Web Interface Users Manual. It contains instructions to configure the active500EM Access Control data
networking switch and any of its associated access points (AP).
Intended audienceThis manual is designed to be used by network managers, administrators, and technicians who are responsible for installing networking
equipment in enterprise and service provider environments. Knowledge of telecommunication and Internet protocol (IP) technologies
and advanced knowledge of LAN/WLAN networking is assumed.
DocumentationactiveARC product and support documentation consists of a variety of manuals, installation guides, videos, knowledge articles,
sample designs, and troubleshooting and FAQ guides to assist you with the deployment of your new and innovative solution.
These and other documents are available for download at www.att.com/activearc/support.
To view PDF files , use Adobe Acrobat Reader 5.0 or newer. Download Acrobat Reader for free from the Adobe website:
www.adobe.com/products.
Contact informationPhone: 855.MYARC11 (855.692.7211)
E-mail: [email protected]
Icons
Table of Contents Contact Previous Page Next Page
http://att.com/activearc/supporthttp://www.adobe.com/productsmailto:support%40activearc.att-mail.com?subject=Active%20Arc%20Supportmailto:sales%40activearc.att-mail.com?subject=Active%20Arc%20Salesmailto:sales%40activearc.att-mail.com?subject=Active%20Arc%20Salesmailto:support%40activearc.att-mail.com?subject=Active%20Arc%20Supporthttp://www.adobe.com/productshttp://att.com/activearc/support -
7/27/2019 Active500EM Wired Web User Interface Manual
3/289
iiactive500EM Wired Web Interface Users Manual
Safety precautionsFor safe and efficient use, read the following information.
Text conventions
Table 0-1: Text conventions
Icon Description
NOTE
Emphasizes information to improve product use.
IMPORTANT Indicates important information or instructions that must be followed.
Indicates how to avoid equipment damage or faulty application.
Issues warnings to avoid personal injury.
Below is a listing of safety precautions and definitions.
Table 0-2: Safety precautions
Icon Description
Before working on this equipment, be aware of good safety practices and the hazards involved with
electrical circuits.
To reduce risk of fire hazard and electric shock, do not install the unit near a damp location.
To reduce the risk of fire, use only number 26 AWG or larger UL Listed or CSA Certified
telecommunication line cord for all network and telecommunication connections.
Keep the product in a clean and dust-free location. Use only a soft, damp cloth to clean the product.
DO NOT expose the product to liquid or moisture.
DO NOT expose the product to extreme temperatures.
CAUTION
CAUTION
WARNING
WARNING
WARNING
-
7/27/2019 Active500EM Wired Web User Interface Manual
4/289
ii iactive500EM Wired Web Interface Users Manual
Intended audience ..................................................................................................i
Documentation ........................................................................................................i
Contact information ...............................................................................................i
Icons ...........................................................................................................................i
Safety precautions ................ .................. .................. .................. .... ii
Text conventions ....................................................................................................ii
Table of contents ................ .................. .................. .................. ...... iii
Chapter 1: Introduction to web configuration interface .........1
1.1 Configuration preparation ...............................................................................1
1.1.1 Computer requirements ...................................................................... 1
1.1.2 Management via web ...........................................................................1
1.2 Web interface introduction ........................................................................... 7
1.2.1 Login to the active500EM switch .................................................... 7
1.2.2 Web interface introduction ..............................................................8
1.2.3 Menu introduction ..............................................................................8
1.2.4 The active500EM logout function ................................................13
Chapter 2: The active500EM management ................ ........... 14
2.1 The active500EM basic configuration .......................................................14
2.1.1 Login user configuration ...................................................................14
2.1.2 Login user authentication method configuration ......................15
2.1.3 Login user security IP management ..............................................15
2.1.4 Basic configuration ...........................................................................16
2.1.5 Save current running-configuration .............................................17
2.2 SNMP configuration .......................................................................................18
2.2.1 SNMP authentication ........................................................................18
2.2.2 SNMP management .........................................................................22
2.2.3 Community managers .................................................................... 22
2.2.4 Configure SNMP manager security IP .........................................24
2.2.5 SNMP statistics .................................................................................24
2.3 SSH management .........................................................................................25
2.3.1 Switch on-off SSH .............................................................................25
2.3.2 SSH management ............................................................................26
2.4.1 TFTP client service ...........................................................................27
2.4.2 TF TP server service .........................................................................28
2.4.3 FTP client service .............................................................................29
2.4.4 FTP server service ...........................................................................30
2.5 Telnet server configuration .........................................................................31
2.5.1 Telnet server state .............................................................................31
2.5.2 Max numbers of telnet access connection .................................31
2.6 Maintenance and debugging command .................................................32
2.6.1 Debug command ..............................................................................33
2.6.2 Show switchport interface .............................................................34
2.6.3 Others .................................................................................................36
Chapter 3: Port configuration .................. .................. ................37
3.1 Ethernet port configuration ........................................................................37
3.1.1 Port layer 1 attribution configuration ............................................ 37
3.1.2 Bandwidth control configuration ..................................................39
3.1.3 Switchport description ................................................................... 40
3.1.4 Port combo forced mode configuration .................................... 40
3.1.5 Port scan mode ................................................................................ 40
3.2 VLAN interface c onfiguration .....................................................................41
3.2.1 Add interface VLAN ...........................................................................41
3.2.2 L3 interface IP address mode configuration .............................42
3.3 SPAN configuration.......................................................................................42
3.3.1 SPAN configuration ..........................................................................42
3.4 Loopback-detection configuration ..........................................................43
Table of contents
-
7/27/2019 Active500EM Wired Web User Interface Manual
5/289
ivactive500EM Wired Web Interface Users Manual
3.4.1 Port loopback-detection mode configuration ..........................44
3.4.2 VLAN loopback-detection configuration...................................44
3.4.3 Loopback-detection interval-time configuration ....................45
3.4.4 Loopback-detection control recovery configuration .............45
3.5 Isolate-port configuration ..........................................................................46
3.5.1 Isolate-port group configuration ..................................................46
3.5.2 Interface join group configuration...............................................463.5.3 Show isolate-port group ................................................................47
3.6 Port storm-control configuration .............................................................47
3.6.1 Storm-control configuration .........................................................47
3.7 Port debug and maintenance .....................................................................48
3.7.1 Show port information .....................................................................48
3.7.2 Show entire traffic information .....................................................48
3.8 ULDP configuration ......................................................................................49
3.8.1 ULDP global enable configuration ................................................49
3.8.2 ULDP hello message configuration .............................................50
3.8.3 ULDP recovery time configuration ..............................................50
3.8.4 Show ULDP configuration ..............................................................50
3.9 LLDP configuration ........................................................................................51
3.9.1 LLDP global enable configuration..................................................51
3.9.2 LLDP port status configuration .................................................... 52
3.9.3 LLDP tx-interval config ...................................................................52
3.9.4 LLDP msgTxHold configuration ...................................................53
3.9.5 LLDP transmit delay configuration ..............................................53
3.9.6 LLDP notification interval configuration ....................................54
3.9.7 LLDP neighbors max-num configuration ...................................54
3.9.8 LLDP too many neighbors configuration ...................................55
3.9.9 LLDP transmit optional tlv configuration ................................... 55
3.9.10 Show LLDP configuration .............................................................56
3.10 Jumbo packet forwarding configuration ...............................................56
Chapter 4: MAC address table configuration ................. ........57
4.1 MAC address table configuration ...............................................................57
4.1.1 MAC address aging-time configuration .......................................57
4.1.2 Configurate MAC address...............................................................58
4.1.3 Delete MAC address .........................................................................59
4.1.4 MAC address query ..........................................................................59
Chapter 5: VLAN configuration .................................................60
5.1 VLAN configuration ...................................................................................... 60
5.1.1 Create/remove VLAN ....................................................................... 60
5.1.2 Assign ports for VLAN .......................................................................61
5.1.3 Port type configuration ....................................................................61
5.1.4 Trunk por t configuration .................................................................62
5.1.5 Private-VLAN configuration ...........................................................63
5.2 GVRP configuration ......................................................................................63
5.2.1 Enable global GVRP ..........................................................................63
5.2.2 Enable GVRP on port .......................................................................645.2.3 GARP parameters configuration ..................................................64
5.3 VLAN-translation configuration ................................................................65
5.3.1 Enable/Disable VLAN-translation .................................................65
5.3.2 Add/Delete VLAN-translation .......................................................66
5.3.3 VL AN-translation miss drop configuration ................................66
5.3.4 Show VLAN-translation ..................................................................67
5.4 Dynamic VLAN configuration .....................................................................67
5.4.1 Protocol VL AN mode configuration .............................................67
5.5 Dot1q-tunnel configuration ........................................................................68
5.5.1 Enable dot1q tunnel ..........................................................................68
5.5.2 Dot1q tunnel tpid configuration ...................................................68
Chapter 6: IGMP snooping configuration ................ ............... 69
6.1 Switch on-off IGMP snooping ......................................................................69
6.2 IGMP snooping VLAN enable ......................................................................69
6.3 IGMP snooping configuration ....................................................................70
6.4 IGMP snooping mrouter port configuration ...........................................70
-
7/27/2019 Active500EM Wired Web User Interface Manual
6/289
vactive500EM Wired Web Interface Users Manual
6.5 IGMP snooping query configuration ..........................................................71
Chapter 7: MLD snooping configuration ................ .................72
7.1 Switch on-off MLD snooping ........................................................................72
7.2 MLD snooping VL AN configuration ...........................................................7 3
7.3 MLD snooping configuration ......................................................................7 3
7.4 ML D snooping mrouter port configuration ............................................. 74
7.5 MLD snooping query configuration ...........................................................74
Chapter 8: ACL configuration ................. .................. ................ 75
8.1 Time range configuration ............................................................................75
8.2 Numeric ACL ..................................................................................................76
8.2.1 Standard numeric ACL ....................................................................76
8.2.2 Extended numeric ACL ..................................................................7 7
8.2.3 Delete numeric ACL ........................................................................82
8.3 Name ACL .......................................................................................................82
8.3.1 Standard name ACL .........................................................................82
8.3.2 Extended name ACL........................................................................83
8.3.3 Delete name ACL .............................................................................85
8.4 Filter configuration .......................................................................................86
8.4.1 Firewall configuration ......................................................................86
8.4.2 ACL binding configuration ............................................................87
8.5 Show ACL configuration ..............................................................................87
8.5.1 Show access list ................................................................................87
8.5.2 Show access group .........................................................................888.5.3 Show firewall .....................................................................................88
8.5.4 Show time range ..............................................................................88
Chapter 9: IPv6 ACL configuration .................. .................. ....... 89
9.1 IPv6 standard access-list configuration ...................................................89
9.2 IPv6 name access-list configuration ....................................................... 90
9.3 Attach IPv6 ACL to por t ................................................................................91
Chapter 10: AM configuration ................. .................. ................. 92
10.1 AM global configuration ..............................................................................92
10.1.1 Enable/disable AM ...........................................................................92
10.2 AM port configuration ................................................................................93
10.2.1 Enable/disable AM port .................................................................93
10.2.2 AM IP-pool configuration .............................................................93
10.2.3 AM MAC-IP-pool configuration ...................................................9410.3 Show AM port configuration .....................................................................95
10.3.1 Show AM port configuration .........................................................95
10.3.2 Clear port AM pool .........................................................................95
Chapter 11: Port channel configuration .................. ................. 96
11.1 LACP port group configuration ..................................................................96
Chapter 12: DHCP configuration ................................................97
12.1 DHCP management .....................................................................................97
12.1.1 Enable DHCP .....................................................................................97
12.2 DHCP server configuration .......................................................................98
12.2.1 Dynamic pool configuration .........................................................98
12.2.2 Manual DHCP IP pool configuration .........................................105
12.2.3 Address pool name configuration ............................................106
12.2.4 DHCP packet statistics ............................................................... 107
12.3 DHCP relay configuration ........................................................................107
12.3.1 DHCP relay configuration ............................................................108
12.4 DHCP debugging .......................................................................................108
12.4.1 Delete record .................................................................................108
12.4.2 Show IP-MAC binding ...................................................................110
12.4.3 Show conflict-logging ..................................................................110
Chapter 13: DHCP snooping configuration .......................... .. 111
13.1 DHCP snooping global configuration ......................................................111
13.1.1 Enable/disable DHCP snooping ....................................................111
13.1.2 DHCP snooping binding configuration ..................................... 112
-
7/27/2019 Active500EM Wired Web User Interface Manual
7/289
viactive500EM Wired Web Interface Users Manual
13.1.3 DHCP snooping binding user configuration ............................ 112
13.1.4 DHCP snooping action count configuration ............................ 113
13.1.5 DHCP snooping limit-rate configuration ..................................113
13.1.6 DHCP snooping helper-server configuration ..........................114
13.2 DHCP snooping por t configuration ........................................................114
13.2.1 Enable/disable DHCP snooping binding dot1x ........................114
13.2.2 Enable/disable DHCP snooping binding user .........................11513.2.3 Enable/disable DHCP snooping trust ....................................... 115
13.2.4 DHCP snooping action configuration....................................... 115
13.3 Show DHCP snooping configuration ......................................................116
13.3.1 Show DHCP snooping configuration .........................................116
Chapter 14: SNTP configuration ................................................117
14.1 SNTP server configuration ........................................................................ 117
14.2 Request interval configuration................................................................118
14.3 Time difference c onfiguration ................................................................ 11814.4 Show sntp .....................................................................................................119
Chapter 15: NTP configuration.................................................120
15.1 NTP global configuration ..........................................................................120
15.1.1 NTP global switch configuration ................................................. 120
15.1.2 NTP server and version configuration ....................................... 121
15.1.3 NTP broadcast or multicast address count configuration ...122
15.1.4 NTP access group configuration ................................................122
15.1.5 NTP authenticate configuration ................................................ 12315.2 NTP interface configuration ................................................................... 124
15.2.1 NTP interface switch configuration .......................................... 124
15.3 NTP configuration display ....................................................................... 125
15.3.1 NTP status display ......................................................................... 125
Chapter 16: QoS configuration .................................................126
16.1 Class-map configuration .......................................................................... 126
16.1.1 Class-map configuration ............................................................. 126
16.1.2 Classification criteria configuration ..........................................127
16.2 Policy-map configuration .........................................................................127
16.2.1 Policy-map configuration ...........................................................128
16.2.2 Class-map use to policy-map configuration ......................... 128
16.3 Apply QoS to por t ...................................................................................... 129
16.3.1 QOS port trust state configuration ........................................... 12916.3.2 QoS por t cos parameters configuration .................................130
16.3.3 QoS port select queue schedule algorithm configuration.130
16.3.4 QoS port wrr algorithm queue weight configuration ...........130
16.3.5 QoS port wdrr algorithm queue weight configuration .........131
16.3.6 QoS port queue bandwidth configuration ............................. 132
16.3.7 QoS service policy configuration ............................................. 132
16.4 QoS policy-class-map configuration .................................................... 133
16.4.1 Policy-class-map accounting configuration .......................... 133
16.4.2 Aggregate policy configuration ............................................... 133
16.4.3 Policy-class-map policy configuration ................................... 134
16.4.4 Policy-class-map set configuration ........................................ 135
16.5 QoS mapping configuration ................................................................... 135
16.5.1 CoS-to-IntP mapping ................................................................... 136
16.5.2 CoS-to-DP mapping .................................................................... 136
16.5.3 DSCP-to-DSCP mapping .............................................................137
16.5.4 DSCP-to-IntP mapping ............................................................... 138
16.5.5 DSCP-to-DP mapping ................................................................. 139
16.5.6 EXP-to-IntP mapping .................................................................. 139
16.5.7 EXP-to-DP mapping ....................................................................140
16.5.8 IntP-to-DSCP mapping ...............................................................140
16.5.9 IntP-to-EXP mapping ..................................................................140
16.6 QoS aggregate policy configuration .....................................................141
16.7 QoS service policy configuration...........................................................142
Chapter 17: Layer3 forward configuration .................. ...........143
-
7/27/2019 Active500EM Wired Web User Interface Manual
8/289
vi iactive500EM Wired Web Interface Users Manual
17.1 IP route aggregate configuration ............................................................ 143
17.1.1 Route aggregate configuration................................................... 143
17.2 ARP configuration ......................................................................................144
17.2.1 ARP configuration ..........................................................................144
17.2.2 Clear ARP cache ............................................................................ 144
17.2.3 Show ARP ........................................................................................145
17.2.4 Proxy ARP configuration ............................................................. 14517.3 Gratuitous ARP configuration .................................................................145
17.3.1 Gratuitous-ARP interval time configuration............................146
17.3.2 Interface gratuitous-ARP interval time configuration ......... 146
17.3.3 Show gratuitous-ARP configuration ........................................147
17.4 ARP protection configuration ................................................................. 147
17.4.1 ARP GUARD configuration ........................................................... 147
17.4.2 ANTI-ARPSCAN configuration ...................................................148
17.5 Show IP traffic ............................................................................................. 153
Chapter 18: Route configuration ..............................................154
18.1 Policy based routing .................................................................................. 154
18.1.1 Route map configuration ............................................................. 154
18.1.2 IP prefix configuration ..................................................................158
18.2 Static route configuration ....................................................................... 159
18.2.1 Static route configuration ...........................................................160
18.3 RIP configuration .......................................................................................160
18.3.1 Enable RIP ........................................................................................161
18.3.2 Clear IP route configuration........................................................161
18.3.3 Default configuration ..................................................................162
18.3.4 Distance configuration ............................................................... 162
18.3.5 Distribute-list configuration ...................................................... 163
18.3.6 Interface RIP configuration ........................................................ 163
18.3.7 Key or key-chain configuration .................................................164
18.3.8 Send-lifetime configuration ...................................................... 165
18.3.9 Accept-lifetime configuration ..................................................166
18.3.10 RIP maximum-prefix .................................................................. 166
18.3.11 Neighbor configuration.............................................................. 167
18.3.12 Network configuration ............................................................... 167
18.3.13 Offset-list configuration ........................................................... 167
18.3.14 Passive interface configuration .............................................. 168
18.3.15 Receive buffer size configuration ........................................... 168
18.3.16 Redistribute route configuration ............................................16818.3.17 RIP route configuration .............................................................169
18.3.18 RIP timer configuration ............................................................. 169
18.3.19 Version configuration ................................................................ 169
18.4 OSPF configuration ...................................................................................170
18.4.1 OSPF enable ...................................................................................170
18.4.2 OSPF area configuration .............................................................172
18.4.3 OSPF interface configuration ................................................... 173
18.4.4 Other parameters configuration ...............................................174
18.7 Show IP route ...............................................................................................177
Chapter 19: IPv6 route configuration ................ .................. ...178
19.1 IPv6 configuration ...................................................................................... 178
19.1.1 IPv6 basic configuration ............................................................... 178
19.1.2 IPv6 ND configuration .................................................................. 179
19.1.3 IPv6 tunnel configuration ............................................................180
19.1.4 Show IPv6 neighbor ......................................................................180
19.3 OSPFv3 configuration ............................................................................... 181
19.3.1 OSPFv3 area configuration ..........................................................181
19.3.2 OSPFv3 default-metric configuration ..................................... 182
19.3.3 OSPFv3 max-concurrent-DD configuration .......................... 182
19.3.4 OSPFv3 ABR type configuration ...............................................183
19.3.5 OSPFv3 passive-interface .......................................................... 183
19.3.6 OSPFv3 redistribute configuration .......................................... 184
19.3.7 OSPFv3 route ID configuration .................................................184
19.3.8 OSPFv3 route c onfiguration ...................................................... 185
-
7/27/2019 Active500EM Wired Web User Interface Manual
9/289
viiiactive500EM Wired Web Interface Users Manual
19.3.9 OSPFv3 timer configuration ...................................................... 185
19.3.10 OSPFv3 IPv6 (no parameter) configuration ......................... 185
19.3.11 OSPFv3 IPv6 (two parameter) configuration ........................ 186
19.3.12 OSPFv3 IPv6 (multi parameter) configuration .................... 187
19.4 Show IPv6 route ......................................................................................... 187
19.4.1 Show IPv6 route database ........................................................... 187
19.4.2 Show IPv6 NSM route ...................................................................18819.4.3 Show IPv6 FIB ................................................................................ 188
19.4.4 Show IPv6 route statistics .......................................................... 188
Chapter 20: Multicast protocol configuration ................ ......189
20.1 PIM configuration ......................................................................................189
20.1.1 Multicast common configuration ..............................................190
20.1.2 Accept-register and JP-timer configuration .........................190
20.1.3 RP-address configuration ..........................................................190
20.1.4 RP-reachability configuration ....................................................19120.1.5 Limit and suppression configuration .......................................191
20.1.6 Ignore RP-set-priority configuration ........................................191
20.1.7 Register checksum and KAT configuration ............................ 192
20.1.8 Register-source configuration ................................................. 192
20.1.9 BSR candidate configuration .................................................... 193
20.1.10 RP candidate configuration ..................................................... 193
20.1.11 SSM configuration ....................................................................... 193
20.1.12 Port mode configuration ...........................................................194
20.1.13 Hello interval and holdtime configuration ............................ 194
20.1.14 DR-priority and neighbor-filter configuration ..................... 195
20.1.15 Exclude-genid configuration ...................................................195
20.2 PIM-DM configuration ..............................................................................196
20.2.1 State-refresh interval configuration ........................................196
20.3 DVMRP configuration............................................................................... 196
20.3.1 Enable DVMRP ............................................................................... 197
20.3.2 Port enable DVMRP ..................................................................... 197
20.3.3 DVMRP report metric configuration ....................................... 197
20.3.4 Out put report delay ...................................................................198
20.3.5 DVMRP reject-non-pruners ......................................................198
20.3.6 DVMRP runnel configuration ....................................................198
20.4 DCSCM configuration ..............................................................................199
20.4.1 DCSCM source-control enable/disable configuration ........199
20.4.2 DCSCM destination-control enable/disable configuration19920.4.3 DCSCM source-control access-group configuration ....... 200
20.4.4 DCSCM destination-control access-group configuration200
20.4.5 DCSCM destination-control access-group c onfiguration (sip)
200
20.4.6 DCSCM destination-control access-group configuration
(vMAC) .......................................................................................................201
20.4.7 Multicast policy configuration .................................................2 01
20.4.8 ACL multicast source control.................................................. 202
20.5 IGMP configuration ................................................................................. 202
20.5.1 Access-group and immediate-leave configuration ............ 203
20.5.2 IGMP query-interval configuration ......................................... 203
20.5.3 Maximum response-time and timeout configuration .......204
20.5.4 Limit and version configuration ..............................................204
20.5.5 IGMP join group configuration ................................................ 205
20.5.6 IGMP static group configuration ............................................205
Chapter 21: IPv6 multicast protocol configuration ............206
21.1 IPv6 PIM configuration ............................................................................. 206
21.1.1 IPv6 multicast common configuration .................................... 207
21.1.2 IPv6 accept-register and JP-timer configuration ................ 207
21.1.3 IPv6 RP-address configuration ................................................. 208
21.1.4 IPv6 RP-reachability configuration .......................................... 208
21.1.5 IPv6 limit-and suppression configuration ..............................208
21.1.6 IPv6 ignore RP-set-priority configuration .............................. 209
21.1.7 IPv6 register checksum and KAT configuration ....................209
-
7/27/2019 Active500EM Wired Web User Interface Manual
10/289
ixactive500EM Wired Web Interface Users Manual
21.1.8 IPv6 BSR candidate configuration............................................. 210
21.1.9 IPv6 RP candidate configuration ...............................................210
21.1.10 IPv6 register-source configuration .......................................... 211
21.1.11 IPv6 SSM configuration ............................................................... 211
21.1.12 IPv6 port mode configuration ....................................................212
21.1.13 IP v6 hello interval and holdtime configuration ......................212
21.1.14 IPv6 DR-priority and neighbor-filter configuration ............. 21321.1.15 IPv6 dxclude-genid configuration ........................................... 213
21.2 PIM-DM6 configuration ............................................................................ 214
21.2.1 IPv6 state-refresh interval configuration ................................ 214
21.3 MLD configuration ..................................................................................... 214
21.3.1 MLD access-group and immediate leave configuration ...... 215
21.3.2 MLD query-interval configuration ............................................ 215
21.3.3 MLD max response-time and timeout configuration .......... 216
21.3.4 MLD limit and version configuration ........................................216
21.3.5 ML D join group configuration .....................................................217
21.3.6 MLD static group configuration .................................................217
Chapter 22: VRRP configuration ................ .................. ............ 218
22.1 VRRP set ....................................................................................................... 218
22.1.1 Create VRRP ID ............................................................................... 218
22.1.2 VRRP virtual IP configuration ..................................................... 219
22.1.3 VRRP interface............................................................................... 219
22.1.4 VRRP enable ................................................................................... 219
22.1.5 VRRP preempt .............................................................................. 220
22.1.6 VRRP priority ................................................................................. 220
22.1.7 VRRP interval ................................................................................. 220
22.1.8 VRRP circuit.....................................................................................221
22.2 Show VRRP information ............................................................................221
Chapter 23: Spanning-tree configuration ........................... 222
23.1 Spanning-tree field configuration .........................................................222
23.1.1 Instance configuration .................................................................223
23.1.2 Field name configuration ............................................................223
23.1.3 Revision-level configuration ......................................................224
23.2 Spanning-tree port configuration ........................................................224
23.2.1 PortFast configuration ................................................................224
23.2.2 Port priority configuration .........................................................225
23.2.3 Port cost configuration ..............................................................22523.2.4 Spanning-tree port mode ..........................................................226
23.2.5 Link-type configuration .............................................................226
23.2.6 Spanning-tree agreement port configuration .....................227
23.3 Spanning-tree global configuration .....................................................227
23.3.1 Spanning-tree global agreement por t configuration ..........228
23.3.2 Forward-time configuration ......................................................228
23.3.3 Hello-time configuration ...........................................................228
23.3.4 Max age time configuration.......................................................229
23.3.5 Max hop time configuration ......................................................229
23.3.6 Spanning tree mode configuration ........................................ 230
23.3.7 Priority configuration ................................................................. 230
23.4 Show spanning-tree ................................................................................ 230
23.4.1 Instance information ................................................................... 231
23.4.2 Revision-level information ........................................................ 231
Chapter 24: Cluster basic configuration .................. ............ 232
24.1 Cluster configuration ................................................................................232
24.2 Cluster candidate information ............................................................. 234
24.3 Cluster member information ................................................................ 234
24.4 Cluster member configuration ............................................................. 234
24.5 Cluster member auto configuration ....................................................235
24.6 Cluster member reset..............................................................................235
24.7 Cluster topology configuration .............................................................235
24.8 Cluster topology information ................................................................236
-
7/27/2019 Active500EM Wired Web User Interface Manual
11/289
xactive500EM Wired Web Interface Users Manual
Chapter 25: MRPP configuration .................. .................. ........ 237
25.1 MRPP global configuration.......................................................................237
25.1.1 MRPP global switch configuration .............................................237
25.1.2 MRPP poll time configuration.....................................................238
25.1.3 MRPP domain ID configuration ..................................................238
25.2 MRPP port configuration .........................................................................238
25.2.1 MRPP port property configuration ...........................................23925.3 MRPP domain configuration ...................................................................239
25.3.1 MRPP c ontrol VLAN configuration ........................................... 240
25.3.2 MRPP node mode configuration ............................................. 240
25.3.3 MRPP hello timer configuration ................................................ 241
25.3.4 MRPP fail timer configuration ................................................... 241
25.3.5 MRPP domain switch configuration .........................................242
25.4 MRPP domain switch configuration ......................................................242
25.4.1 MRPP display ..................................................................................243
25.4.2 MRPP statistics d isplay ...............................................................243
25.4.3 Clear MRPP statistics ..................................................................243
Chapter 26: ULPP Configuration .................. .................. ........ 244
26.1 ULPP global configuration ...................................................................... 244
26.1.1 ULPP group configuration .......................................................... 244
26.2 ULPP port configuration..........................................................................245
26.2.1 ULPP port property configuration ............................................245
26.3 ULP P g roup configuration ..................................................................... 246
26.3.1 UL PP group description configuration ................................... 246
26.3.2 ULPP group property configuration ........................................247
26.4 ULP P configuration display ....................................................................247
26.4.1 UL PP group configuration display ........................................... 248
26.4.2 ULPP port statistics display ..................................................... 248
26.4.3 ULPP port property display ...................................................... 248
26.4.4 ULPP port statistics clear ......................................................... 249
Chapter 27: ULSM configuration ................ .................. .......... 250
27.1 ULSM global configuration ...................................................................... 250
27.1.1 ULSM group configuration .......................................................... 250
27.2 ULSM port configuration ......................................................................... 251
27.2.1 ULSM port property configuration............................................ 251
27.3 ULSM configuration display .................................................................... 251
27.3.1 ULSM display ..................................................................................252
Chapter 28: Authentication configuration .......................... 253
28.1 RADIUS client configuration ....................................................................253
28.1.1 RADIUS global configuration ......................................................253
28.1.2 RADIUS authentication configuration .................................... 254
28.1.3 RADIUS accounting configuration ...........................................255
28.2 TACACS server configuration ................................................................255
28.2.1 TACACS g lobal configuration ....................................................256
28.2.2 TACACS server host configuration..........................................25628.3 802.1x configuration ................................................................................257
28.3.1 802.1x global configuration ........................................................257
28.3.2 802.1x port authentication configuration ..............................258
28.3.3 802.1x port MAC configuration .................................................259
28.3.4 802.1x port status list .................................................................2 60
Chapter 29: DOS attack protection configuration .............. 261
29.1 Source IP equal destination IP DOS attack protection configuration261
29.2 Source port equal destination port DOS attack protectionconfiguration ...................................................................................................... 261
29.3 TCP DOS attacks on invalid flags configuration ................................262
29.4 ICMP DOS attack protection configuration ........................................262
29.5 ICMP packet-size configuration ............................................................263
29.6 First fragment IP packet DOS attack protection configuration .....263
-
7/27/2019 Active500EM Wired Web User Interface Manual
12/289
xiactive500EM Wired Web Interface Users Manual
Chapter 30: SSL configuration .................. .................. ........... 264
30.1 IP HTTP server configuration ................................................................. 264
30.2 SSL global configuration .........................................................................265
30.3 SSL server monitor port configuration ................................................265
30.4 SSL secure-ciphersuite configuration ............................................... 266
Chapter 31: sFlow Configuration .................. .................. ........ 267
31.1 sFlow collector global address configuration .....................................267
31.2 sFlow collector port address configuration ....................................... 268
31.3 sFlow agent address configuration ...................................................... 268
31.4 sFlow priority configuration ................................................................... 269
31.5 sFlow header length configuration ...................................................... 269
31.6 sFlow data length configuration ........................................................... 270
31.7 sFlow rate configuration ......................................................................... 270
31.8 sFlow counter interval configuration .................................................... 271
31.9 sFlow analyzer configuration .................................................................. 271
Chapter 32: IPv6 security ra configuration ................ ........... 272
32.1 IPv6 security ra global configuration ....................................................272
32.2 IP v6 security ra por t configuration .......................................................273
32.3 Show IPv6 security ra ...............................................................................273
Glossary ................. .................. .................. .................. ................. 274
-
7/27/2019 Active500EM Wired Web User Interface Manual
13/289
1active500EM Wired Web Interface Users Manual
Chapter 1: Introduction to web configuration interfaceThe active500EM switch provides a Web configuration interface. This chapter will familiarize you with the Web configuration interface.
1.1 Configuration preparation
The active500EM can be managed through the Web interface.
1.1.1 Computer requirements
PC with an operating system installed (Win XP, Win 7, Win 8, Mac OS 10.6/7)
Web browser (Internet Explorer 8/9/10, Google Chrome, Firefox, Safari)
1.1.2 Management via web
To configure the active500EM locally, the PCs and the active500EMs IP addresses should be configured in the same subnet. The
active500EMs default IP address is 192.168.1.1, and the subnet mask is 255.255.255.0. The following are steps to create a network
connection:
Step 1: Set up the environment.
Connect the Ethernet port for the PC to the switchs port with an Ethernet cable. The figure is as follows:
-
7/27/2019 Active500EM Wired Web User Interface Manual
14/289
2active500EM Wired Web Interface Users Manual
Step 2: Set the network connection (as shown with Windows 7).
Click Start. Select Control Panel. Click view network status and tasks, and then click Local Area Connection. The Local Area
Connection Status dialog box will appear. The figure is as follows:
-
7/27/2019 Active500EM Wired Web User Interface Manual
15/289
3active500EM Wired Web Interface Users Manual
Click Properties to open the Local Area Connection Properties dialog box. The figure is as follows:
-
7/27/2019 Active500EM Wired Web User Interface Manual
16/289
4active500EM Wired Web Interface Users Manual
Select Internet Protocol Version 4 (TCP/IPv4), and then click Properties to open the Internet Protocol Version 4 (TCP/IPv4)
Properties dialog box. Select Use the ollowing IP address, type the IP address (between 192.168.1.2 and 192.168.1.254) and the subnet
mask (255.255.255.0), and then click OK. The figure is as follows:
-
7/27/2019 Active500EM Wired Web User Interface Manual
17/289
5active500EM Wired Web Interface Users Manual
Step 3: Use the PING command to ensure the connection status between the PC and the active500EM.
Click Start, and then type CMD in the text box to generate the following dialog box:
Press ENTER to open the Command Prompt window. Type ping 192.168.1.1 (the active500EMs default IP address), and then press
ENTER. If the network is connected, the window will include the following text:
-
7/27/2019 Active500EM Wired Web User Interface Manual
18/289
-
7/27/2019 Active500EM Wired Web User Interface Manual
19/289
-
7/27/2019 Active500EM Wired Web User Interface Manual
20/289
8active500EM Wired Web Interface Users Manual
1.2.2 Web interface introduction
Upon logging in, the Dashboard will appear, showing System Ino, Device Ino, Managed AP, and Support with four tabs: WLAN
Configuration, Monitor, Management, and Wired Configuration. When a tab is clicked, the related configuration page will open, listing
the features on the left side. The right side is the configuration zone for that feature. Pause the mouse pointer on the menu option on
the left bar to open the corresponding submenu/page, and then click the page label to configure the corresponding function for the
active500EM.
1.2.3 Menu introduction
This table provides a detailed connected configuration interface function for each menu option.
Menu Page Page unction
Switch basic configuration Switch basic configuration Configure the switchs Web language, user, clock, etc.
SNMP configurat ion Configure the SNMP authent ication, management , community ma nager, etc.
SSH management Configure switching SSH on/off , SSH management
Firmware update Update switch via FTP or TFTP
Telnet server configuration Configure the Telnet server status
Maintenance and debugging
command
Maintenance and debugging command, such as show running-config, etc.
-
7/27/2019 Active500EM Wired Web User Interface Manual
21/289
9active500EM Wired Web Interface Users Manual
Menu Page Page unction
Por t c onfiguration Etherne t por t configuration Configure por t layer 1 attributio n, bandwidth control, etc.
VLAN interface configuration Configure port layer 1 attribution, bandwidth control, etc.
SPAN configuration Configure port mirroring
Loopback-detection
configuration
Configure port loopback-detection mode, port loopback-detection interval-
time, if the loopback-detection controls auto recovery
Isolate-port configuration Configure isolate-port group, interface join group, etc.
Isolation port configuration Show storm control configuration
Port debug and maintenance Show port information and entire traffic information
ULDP configurat ion ULDP ena ble config, ULDP hello message config, ULDP recovery timer, etc.
LL DP configurat ion LL DP enable configurat ion, LLDP port status configuration, Tx-interval config,
etc.
Jumbo packet forwarding
configuration
Jumbo packet forwarding configuration
MAC address table
configuration
MAC address table
configuration
Configure MAC address table and aging-time; delete MAC address, e tc.
VLAN configuration VLAN configuration Add or remove VLAN; configure ingress VLAN rules
GVRP configuration Enable global/port GVRP, GVRP configuration
VLAN-translation configuration Enable/disable VLAN translation; add/remove VLAN translation, etc.
Dynamic VLAN configuration Protocol VLAN configuration
Dot1q tunnel configuration Enable dot1q tunnel and dot1q tunnel tpid configuration
IGMP snooping configuration IGMP snooping configuration Global/port enable IGMP snooping, IGMP snooping configuration, etc.
MLD snooping configuration MLD snooping configuration Switch on-off MLD snooping, MLD snooping port enable, etc.
ACL configuration Time range configuration Time range configuration
Numeric ACL Standard/extended numeric ACL; delete numeric ACL
Name ACL Standard/extended name ACL; delete name ACL
Filter configuration Configure firewall ACL; attach ACL to port
Show ACL configuration Show access list, access group, firewall, and time range
ACL binding configuration Attach ACL to port, show access group, clear PACL statistics, etc.
IPv6 ACL configuration IP v6 ACL configuration C onfigure IPv6 standard/name acc ess -lis t; attach IPv6 AC L to por t, etc.
AM configuration AM global configuration Enable/disable AM
AM port configuration Configure AM port enable, AM IP-pool, a nd AM MAC-IP-pool
Show AM port configuration Show AM port configuration, clear port AM pool
-
7/27/2019 Active500EM Wired Web User Interface Manual
22/289
10active500EM Wired Web Interface Users Manual
Menu Page Page unction
Port channel configurat ion Port channel configurat ion Configure L ACP group L ACP port, etc.
DHCP configuration DHCP management Enable DHCP
DHCP server configuration Configure dynamic/manual address pool
DHCP relay configuration DHCP rela y configurat ion
DHCP debugging Delete record; dis play IP-MAC binding info rmatio n and log infor mation for
addresses that have a conflict record, etc.
DHCP snooping configuration DHCP snooping global
configuration
Configure DHCP snooping status, binding, binding user, number of port
defense actions, etc.
DHCP snooping port
configuration
Configure DHCP snooping binding dot1x, binding user, trust attributes of a
port, etc.
Show DHCP snooping
configuration
Show DHCP snooping configuration
SNTP configuration SNTP configuration Configure SNTP/NTP server, the sending request time interval from SNTP
client to NTP/SNTP server, etc.
NTP configuration NTP global configuration NTP global switch configuration, etc.
NTP interface configuration NTP interface switch configuration
NTP c onfiguration dis play Sho w NTP status
QoS configuration Qos por t configuration QoS port trust state configuration, QoS port CoS parameters configuration,
etc.
QoS class-map configuration Add/delete/configure class-map and classification criteria configuration
QoS policy-map configuration Add/delete/configure the policy-map, class map use to policy map
configuration
QoS policy-class-map
configuration
Configure policy class-map accounting configuration, aggregate policy
configuration, etc.
QoS mapping configuration Configure CoS-to-DSCP mapping, DSCP-to-CoS mapping, DSCP mutationmapping, IP-precedence-to-DSCP mapping, etc.
QoS aggregate policy
configuration
Configure aggregate policy name, committed information rate, committed
burst size, etc.
QoS service policy
configuration
Configure policy-map name to VLAN
-
7/27/2019 Active500EM Wired Web User Interface Manual
23/289
11active500EM Wired Web Interface Users Manual
Menu Page Page unction
Forward configuration IP route aggregation
configuration
IP route aggregate configuration
ARP configuration ARP configuration, clear ARP cache, and show ARP
Gratuitous ARP configuration Configure global/interface gratuitous-arp interval time, etc.
ARP protection configuration ARP GUARD configuration and anti-ARP scanning prevention configuration
Show IP traffic Check statistic information of IP packets
Route configuration Policy-based routing Router map and IP prefix
Static route configuration Static route and static VPN route configuration
RIP configuration Enable RIP, default, neighbor, network configuration, etc.
OSPF configuration OSPF enable, a rea, int erfa ce, other parameters configuration
Show IP route Show IP route
IPv6 route configuration IPv6 configuration IPv6 basic, ND and tunnel configuration, etc.
OSPFv 3 configurat ion OSPFv3 area , route, t imer configurat ion, etc.
Show IPv6 route Show IPv6 route database, NSM route, FIB, route stations
Multicast protocolconfiguration
PIM configuration Multicast command configuration, etc.PIM-DM co nfiguration State-refresh inte rval configuration
DVMRP configuration Configure the DVMRP report metric, reject-non-pruners, tunnel, etc.
DCSCM configuration Configure DCSCM source-control, destination-control, source-control
access-group, etc.
IGMP configurat ion Configure IGM P query-int erval, stat ic group, access-group, immediat e lea ve,
etc.
IPv6 multicast protocol
configuration
IPv 6 P IM configuration IPv 6 multica st common configuration, etc.
PIM-DM6 configurat ion IPv 6 state-refresh interva l configuration
MLD configurat ion Configure ML D a ccess-group and immediate leave, query-int erval, ma x
response-time and timeout, static group, join group, version, and limit
Spanning-tree configuration Spanning-tree field
configuration
Configure instance and field name and c ount the revision-level
Spanning-tree port
configuration
Set the current port as edge port, port priority, port cost, etc.
Spanning-tree global
configuration
Configure spanning-tree global agreement port, forward-time, hello-time, etc.
Show spanning-tree Show instance informat ion a nd rev ision-level information
-
7/27/2019 Active500EM Wired Web User Interface Manual
24/289
12active500EM Wired Web Interface Users Manual
Menu Page Page unction
MRPP configuration MRPP global configuration MRPP global switch configuration, etc.
MRP P port configurat ion MR PP port property configuration
MRPP domain configuration MRPP control VLAN configuration, etc.
MRPP domain switch
configuration
MRPP display, etc.
ULPP configuration ULPP global configuration ULPP group configuration
ULP P port configurat ion ULP P port propert y configurat ion
ULPP group configuration ULPP group description configuration, etc.
ULPP configuration display ULPP group configuration display, etc.
ULSM configuration ULSM global configuration ULSM group configuration
ULSM port configurat ion ULSM port property configurat ion
ULSM configuration display ULSM display
Cluster basic configuration Cluster basic configuration Cluster configuration, cluster candidate information, cluster member
information, cluster member configuration, cluster member auto
configuration, cluster member reset, cluster topology configuration, cluster
topology information, etc.
Authentication configuration RADIUS client configuration RADIUS global/authentication/accounting configuration
TACACS server configuration TACACS global configuration, etc.
802.1x configuration Configure 802.1x global enable, port authentication, port MAC, and port status
list
MAB configuration MAB enable configuration, etc.
DOS attack protection
configuration
DOS attack protection
configuration
Source IP equal destination IP DOS attack protection configuration, source
port equal destination port DOS attack protection configuration, TCP DOS
attack on invalid flags configuration, etc.
SSL configuration SSL configuration Configure HTTP server enable, SSL enable, SSL server monitor port, etc.sFlow configuration sFlow configuration sFlow collector global address configuration, sFlow collector port address
configuration, sFlow agent address configuration, sFlow priority configuration,
sFlow header length configuration, sFlow data length configuration, sFlow
rate configuration, sFlow counter interval configuration, sFlow analyzer
configuration
-
7/27/2019 Active500EM Wired Web User Interface Manual
25/289
13active500EM Wired Web Interface Users Manual
Menu Page Page unction
IPv6 security RA configuration IPv6 security RA global
configuration
IPv6 security RA global configuration
IPv6 security RA port
configuration
IPv6 security RA port configuration
Show IPv6 security RA Show IPv6 security RA
1.2.4 The active500EM logout function
Click Logout to return to the login page.
The chapters that follow describe how to enable and configure various features offered by the activeARC solution. Many features
must be enabled by following the configuration steps as described in this user manual in order to properly access the advanced
configuration options for that particular feature. If the feature is not enabled, users may not be able perform advanced configuration
for that feature and warning messages may be displayed identifying that the feature must first be enabled before configuration can
complete.
-
7/27/2019 Active500EM Wired Web User Interface Manual
26/289
14active500EM Wired Web Interface Users Manual
Chapter 2: The active500EM management2.1 The active500EM basic configurationClick the Management tab, and pause the mouse pointer over Switch basic configuration to display the sub-nodes, through which
users can configure the switchs login user, user authentication method, login user Security IP, basic clock, switch name, exec timeout,
and save current running configuration.
2.1.1 Login user configuration
From the Management tab, click Switch basic configuration -> Login user configuration to add or remove users for the switch.
Example: In the User and Password fields, type user. In the Priority field, type 15.
User Choose a specific user name
Password Configure a specific password
-
7/27/2019 Active500EM Wired Web User Interface Manual
27/289
15active500EM Wired Web Interface Users Manual
Encrypted text Select whether the password information is displayed
Priority Only users with the priority of 15 can log in to the WEB management interface
Operation Select to Add or Remove the user
2.1.2 Login user authentication method configuration
From the Management tab, click Switch basic configuration -> Login user authentication method configuration to configure VTY(login with Telnet and SSH), Web, and console to select the authentication mode priority of the login user.
2.1.3 Login user security IP management
From the Management tab, click Switch basic configuration -> Login user security IP management to configure the users security IP.
-
7/27/2019 Active500EM Wired Web User Interface Manual
28/289
16active500EM Wired Web Interface Users Manual
2.1.4 Basic configuration
From the Management tab, click Switch basic configuration -> Basic configuration to configure the basic clock, switch name, and
exec timeout.
1. Basic clock configuration Set the systems date and time.
Example: Users should configure HH:MM:SS as 23:00:00 and YY.MM.DD as 2002.08.01, and then click Apply.
2. Configure exec timeout
Example: Configure the timeout as 6 minutes and 6 seconds, and then click Apply.
3. Configure switch prompt
Example: Configure the Switch name as Switch, and then click Apply.
-
7/27/2019 Active500EM Wired Web User Interface Manual
29/289
17active500EM Wired Web Interface Users Manual
2.1.5 Save current running-configuration
From the Management tab, click Switch basic configuration -> Save current running-configuration to save the current running-
configuration.
1. Save current running-configuration Click Apply to save the current running-configuration.
Display the information after successfully saving the current running-configuration.
2. Save current configuration before reboot? Select Yes or No. Reboot the active500EM by clicking Apply.
3. Reboot with the default configuration Clear all current configurations and reboot the switch by clicking Apply.
-
7/27/2019 Active500EM Wired Web User Interface Manual
30/289
18active500EM Wired Web Interface Users Manual
2.2 SNMP configurationFor any configurations discussed in the following subsections, SNMPmust be started as described in this section. If SNMP is not
started, the user may receive the message to Start SNMP first beore continuing the requested configuration.
From the Management tab, pause the mouse pointer over SNMP configuration to configure SNMP-related functions.
Note: Start SNMP to configure the related functions. Set the SNMP switch status as Open, and then click Apply.
2.2.1 SNMP authentication
From the Management tab, pause the mouse pointer over SNMP configuration -> SNMP authentication to configure users, groups,
views, etc.
2.2.1.1 Users
From the Management tab, click SNMP configuration -> SNMP authentication -> Users to add or remove SNMP users.
SNMP username The user name, containing 132 characters
SNMP group The group name that the user belongs to, containing 132 characters
Security level The encryption level of the current user: noAuthNoPrivdoes not authenticate and does not use DES for the
packet encryption; authPriv uses DES for packet encryption; authNoPriv does not use DES for the packet encryption
Authentication protocol Set the using algorithm: MD5 or SHA
Authentication password The current users authentication password
-
7/27/2019 Active500EM Wired Web User Interface Manual
31/289
19active500EM Wired Web Interface Users Manual
Privacy protocol - Sets the packet encryption security level. When authPriv security level is selected, DES is used as the
currently supported type for packet encryption
Privacy password Password for setting packet encryption for Privacy Protocol
IPv4 access control list Enter the IPv4 Access Control List number that has been previously configured (Optional)
IPv6 access control list Enter the IPv6 Access Control List number that has been previously configured (Optional)
Operation Select Add or Remove
Example: Set the SNMP username as tester, SNMP group as UserGroup, select authPriv for the Security level, the Authentication
protocol as MD5. Set the Authentication password as hellohello, select DES for the Privacy protocol, the Operation as Add, and then
click Apply. The figure is as follows:
-
7/27/2019 Active500EM Wired Web User Interface Manual
32/289
20active500EM Wired Web Interface Users Manual
2.2.1.2 Groups
From the Management tab, click SNMP configuration -> SNMP authentication -> Groups to add or remove SNMP user groups.
SNMP group The name of the SNMP user group
Security level The encryption level of the current user: noAuthNoPrivdoes not authenticate and does not use DES for the
packet encryption; authPriv uses DES for packet encryption; authNoPriv does not use DES for the packet encryption
Read SNMP view Set the readable view name Write SNMP view Set the writable view name
Notify SNMP view Set the notifiable view name
Operation Select Add or Remove
Example: Type UserGroup in the SNMP group field, select the Security level as authPriv, and type max in three SNMP views. From the
Operation drop-down list, select Add, and then click Apply.
2.2.1.3 Views
From the Management tab, click SNMP configuration -> SNMP authentication -> Views to add or remove SNMP views.
SNMP view Set the view name, containing 132 characters
OID OID number or corresponding node name, containing 1255 characters
Type Include/exclude this OID
Operation Select Add or Remove
-
7/27/2019 Active500EM Wired Web User Interface Manual
33/289
21active500EM Wired Web Interface Users Manual
Example: In the SNMP view field, type max, and for OID, type 1.3.6.1.4.1.41721.2.2.1. Select the Type as Include, the Operation as Add, and
then click Apply.
2.2.1.4 SNMP engineid configuration
From the Management tab, click SNMP configuration -> SNMP authentication -> SNMP engineid configuration to configure the
engine ID.
Engineid The engine ID shown in 132 digit hex characters
Operation Select Configuration or Deault
Example: Type the Engineid as a66688999, select the Operation as Configuration, and then click Apply.
-
7/27/2019 Active500EM Wired Web User Interface Manual
34/289
22active500EM Wired Web Interface Users Manual
2.2.2 SNMP management
Click Switch basic configuration -> SNMP configuration -> SNMP management to set SNMP Agent, RMON, TRAP and Security IP state.
Example: Select SNMP Agent state as Open, RMON state as Open, Trap state as Open, Security IP state as Close, and then click Apply.
The operation is as follows:
SNMP Agent state Open/Close SNMP agent server function
RMON state Open/Close RMON function Trap state Open/Close the receiving trap information for the device
SecurityIP state Open/Close the safety IP address authentication on NMS manage station
2.2.3 Community managers
Click Switch basic configuration -> SNMP configuration -> Community managers to manage community string and configure TRAP
manager.
1. Community managers Configure the community string and the access priority. Community string (1255 characters) Set the community string
Access priority Includes Read only and Read and write
-
7/27/2019 Active500EM Wired Web User Interface Manual
35/289
23active500EM Wired Web Interface Users Manual
Example: Configure the Community string as public and the Access priority is Read only. After configuring the Community string and
the Access priority, click Apply. The figure is as follows:
2. TRAP manager configuration
Click Switch basic configuration -> SNMP configuration -> Community managers to configure the IP address and the community
strings of the management station, which will receive SNMP Trap messages.
Trap receiver The IP address to be used to receive SNMP Trap messages
Community string (1255 characters) used to receive Trap messages
Example: Configure the Trap receiver as 192.168.1.100, the Community string as trap, and then click Apply.
-
7/27/2019 Active500EM Wired Web User Interface Manual
36/289
24active500EM Wired Web Interface Users Manual
2.2.4 Configure SNMP manager security IP
Click Switch basic configuration -> SNMP configuration -> Configure snmp manager security IP to configure the security IP address
that will be allowed access to the management station.
Security IP address The security IP address of NMS
Example: Configure the Security IP address as 192.168.1.100, and then click Apply. The figure is as follows:
2.2.5 SNMP statistics
Click Switch basic configuration -> SNMP configuration -> SNMP statistics to display the feedback information.
-
7/27/2019 Active500EM Wired Web User Interface Manual
37/289
25active500EM Wired Web Interface Users Manual
2.3 SSH managementSecure Shell (SSH) connections use a trusted SSL certificate for user logon to the web GUI interfaces. Browsers, such as Internet
Explorer, Firefox, Safari and Chrome, come preinstalled with a predetermined set of root certificates. These certificates serve as
trusted third parties and work instantly to provide seamless usability. The activeARC solution accepts root SSL certificates from all
browsers for a secure and encrypted https login. Users are not allowed to introduce their own certificates, thereby reducing the risk of
unauthorized system access.
For any configurations discussed in the following subsections, SSH must be started as described in this section. If SSH is not started,the user may receive the message to Start SSH first beore continuing the requested configuration.
Click Switch basic configuration -> SSH management to configure the SSH related functions.
Note: First, start SSH to configure the related functions. Configure the SSH switch status as Open, and then click Apply.
2.3.1 Switch on-off SSH
Click Switch basic configuration -> SSH management -> Switch on-o SSH to open or close SSH function.
-
7/27/2019 Active500EM Wired Web User Interface Manual
38/289
26active500EM Wired Web Interface Users Manual
2.3.2 SSH management
Click Switch basic configuration -> SSH management -> SSH management to configure SSH timeout management and SSH
reauthentication management, and to create an SSH RSA key.
SSH timeout Set SSH timeout; the default value is 180 seconds.
SSH reauthentication Set SSH reauthentication times; the default value is 3 times.
SSH RSA key The modulus that is used to compute the host key; valid range is 768 to 2048; the default value is 1024.
-
7/27/2019 Active500EM Wired Web User Interface Manual
39/289
27active500EM Wired Web Interface Users Manual
2.4 Firmware updatePause the mouse pointer over Switch basic configuration -> Firmware update to configure the Node Tree Diagram. Keywords and
diagrams are as follows:
1. TFTP service, including:
TFTP client service to configure TFTP client
TFTP server service to configure TFTP server
2. FTP service, including:
FTP client service to configure FTP client
FTP server service to configure FTP server
2.4.1 TFTP client service
Click Switch basic configuration -> Firmware update -> TFTP service -> TFTP client service to open the configuration interface.
Phrases are explained as follows:
Server IP address Servers IP address
Local file name Ranging from 1 to 100 characters
Server file name Ranging from 1 to 100 characters
Operation type Includes Upload and Download
Transmission type ascii to transmit files by using ASCII standard; binary means files are transmitted in binary standard
-
7/27/2019 Active500EM Wired Web User Interface Manual
40/289
28active500EM Wired Web Interface Users Manual
Example: The following figure shows how to get the system file from TFTP Server. The IP address is 192.168.1.100, the Local file name is
nos.img, and the Server file is nos.img. Click Apply.
2.4.2 TFTP server service
Click Switch basic configuration -> Firmware update -> TFTP service -> TFTP server service to open the configuration interface.
Phrases are explained as follows:
Server state The state of the server (Open or Close)
TFTP Timeout The timeout
TFTP Retransmit times Times of retransmit
Example: Set the server state as Open, and configure suitable TFTP Timeout and Retransmit times, and then click Apply. The figure is
as follows:
-
7/27/2019 Active500EM Wired Web User Interface Manual
41/289
29active500EM Wired Web Interface Users Manual
2.4.3 FTP client service
Click Switch basic configuration -> Firmware update -> FTP service -> FTP client service to open the configuration interface.
Phrases are explained as follows:
Server IP address Servers IP address
User name The name of the user, ranging from 1 to 100 characters
Password The specific password, ranging from 1 to 100 characters
Local file name Ranging from 1 to 100 characters
Server file name Ranging from 1 to 100 characters
Operation type Includes Upload and Download
Transmission type ascii to transmit files by using ASCII standard; binary means files are transmitted in binary standard
Example: The following figure shows how to get the system file from the FTP server. TheIP address is 192.168.1.100, Local file name is
nos.img, and Server file name is nos.img. The FTP user is switch, and the Password is switch. Click Apply.
-
7/27/2019 Active500EM Wired Web User Interface Manual
42/289
30active500EM Wired Web Interface Users Manual
2.4.4 FTP server service
Click Switch basic configuration -> Firmware update -> FTP service -> FTP server service to open and configure the FTP server
service node, which includes FTP server service and FTP user name and password setting.
Phrases of FTP server service are explained as follows:
FTP server state The state of the server (Open or Close)
FTP Timeout Timeout, ranging from 5 to 3600 secondsPhrases of FTP user name and password setting are explained as follows:
User The name of the user
Password The specific password
State Displays the password state, which includes Plain text and Encrypted text. Plain text displays the password; Encrypted
text cannot display the password
Operation type Includes Add and Remove user
Example 1: Set the FTP server state as Open and the FTP Timeout as 600 seconds, and then click Apply.
Example 2: Input the User as switch and the Password as switch. Select the State as Plain text and the Operation type as Add, and thenclick Apply.
-
7/27/2019 Active500EM Wired Web User Interface Manual
43/289
31active500EM Wired Web Interface Users Manual
2.5 Telnet server configurationOn the left directory of the home page, pause the mouse pointer over Switch basic configuration -> Telnet server configuration to
configure Telnet server state, Max numbers o telnet access connection for sub-nodes.
2.5.1 Telnet server state
Click Switch basic configuration -> Telnet server configuration -> Telnet server state to configure the Telnet server state.
Example: Select the Telnet server state as Open, and then click Apply to start Telnet server. The figure is as follows:
2.5.2 Max numbers of telnet access connection
Click Switch basic configuration -> Telnet server configuration -> Max numbers o telnet access connection to configure the
maximum numbers of Telnet access connection.
Example: Set the Telnet access connection number as 10, and then click Apply.
-
7/27/2019 Active500EM Wired Web User Interface Manual
44/289
32active500EM Wired Web Interface Users Manual
2.6 Maintenance and debugging commandPause the mouse pointer over Switch basic configuration -> Maintenance and debugging command to choose the sub-nodes and
open the corresponding configuration interface.
The sub-nodes are as follows:
Debug command Debugs the connection state of the switch
show clock Shows the current time
show cpu usage Shows CPU usage information in the current running state
show memory usage Shows memory usage information in the current running state
show flash Shows Flash file information
show running-config Shows the current parameters configuration
show switchport interface Shows properties of VLAN ports
show tcp Shows the current TCP connection with the switch
show udp Shows the current UDP connection with the switch
-
7/27/2019 Active500EM Wired Web User Interface Manual
45/289
33active500EM Wired Web Interface Users Manual
show telnet login Shows the client messages that connect with the switch through Telnet
show version Shows the version number of the switch
2.6.1 Debug command
Click Switch basic configuration -> Maintenance and debugging command -> Debug command to open the configuration interface,
so as to configure Basic host configuration, PING, and Traceroute for the node. The figures are as follows:
1. Basic host configuration Configure the mapping relationship between the switch and the IP address
Example: Configure the Host name as London and the IP ad