active500em wired web user interface manual

7/27/2019 Active500EM Wired Web User Interface Manual

1/289

Users Manual

active500EM

Wired Web Interace


2/289

iactive500EM Wired Web Interface Users Manual

This is the active500EM Wired Web Interface Users Manual. It contains instructions to configure the active500EM Access Control data

networking switch and any of its associated access points (AP).

Intended audienceThis manual is designed to be used by network managers, administrators, and technicians who are responsible for installing networking

equipment in enterprise and service provider environments. Knowledge of telecommunication and Internet protocol (IP) technologies

and advanced knowledge of LAN/WLAN networking is assumed.

DocumentationactiveARC product and support documentation consists of a variety of manuals, installation guides, videos, knowledge articles,

sample designs, and troubleshooting and FAQ guides to assist you with the deployment of your new and innovative solution.

These and other documents are available for download at www.att.com/activearc/support.

To view PDF files , use Adobe Acrobat Reader 5.0 or newer. Download Acrobat Reader for free from the Adobe website:

www.adobe.com/products.

Contact informationPhone: 855.MYARC11 (855.692.7211)

E-mail: [email protected]

[email protected]

Icons

Table of Contents Contact Previous Page Next Page
http://att.com/activearc/supporthttp://www.adobe.com/productsmailto:support%40activearc.att-mail.com?subject=Active%20Arc%20Supportmailto:sales%40activearc.att-mail.com?subject=Active%20Arc%20Salesmailto:sales%40activearc.att-mail.com?subject=Active%20Arc%20Salesmailto:support%40activearc.att-mail.com?subject=Active%20Arc%20Supporthttp://www.adobe.com/productshttp://att.com/activearc/support


3/289

iiactive500EM Wired Web Interface Users Manual

Safety precautionsFor safe and efficient use, read the following information.

Text conventions

Table 0-1: Text conventions

Icon Description

NOTE

Emphasizes information to improve product use.

IMPORTANT Indicates important information or instructions that must be followed.

Indicates how to avoid equipment damage or faulty application.

Issues warnings to avoid personal injury.

Below is a listing of safety precautions and definitions.

Table 0-2: Safety precautions

Icon Description

Before working on this equipment, be aware of good safety practices and the hazards involved with

electrical circuits.

To reduce risk of fire hazard and electric shock, do not install the unit near a damp location.

To reduce the risk of fire, use only number 26 AWG or larger UL Listed or CSA Certified

telecommunication line cord for all network and telecommunication connections.

Keep the product in a clean and dust-free location. Use only a soft, damp cloth to clean the product.

DO NOT expose the product to liquid or moisture.

DO NOT expose the product to extreme temperatures.

CAUTION

CAUTION

WARNING

WARNING

WARNING


4/289

ii iactive500EM Wired Web Interface Users Manual

Intended audience ..................................................................................................i

Documentation ........................................................................................................i

Contact information ...............................................................................................i

Icons ...........................................................................................................................i

Safety precautions ................ .................. .................. .................. .... ii

Text conventions ....................................................................................................ii

Table of contents ................ .................. .................. .................. ...... iii

Chapter 1: Introduction to web configuration interface .........1

1.1 Configuration preparation ...............................................................................1

1.1.1 Computer requirements ...................................................................... 1

1.1.2 Management via web ...........................................................................1

1.2 Web interface introduction ........................................................................... 7

1.2.1 Login to the active500EM switch .................................................... 7

1.2.2 Web interface introduction ..............................................................8

1.2.3 Menu introduction ..............................................................................8

1.2.4 The active500EM logout function ................................................13

Chapter 2: The active500EM management ................ ........... 14

2.1 The active500EM basic configuration .......................................................14

2.1.1 Login user configuration ...................................................................14

2.1.2 Login user authentication method configuration ......................15

2.1.3 Login user security IP management ..............................................15

2.1.4 Basic configuration ...........................................................................16

2.1.5 Save current running-configuration .............................................17

2.2 SNMP configuration .......................................................................................18

2.2.1 SNMP authentication ........................................................................18

2.2.2 SNMP management .........................................................................22

2.2.3 Community managers .................................................................... 22

2.2.4 Configure SNMP manager security IP .........................................24

2.2.5 SNMP statistics .................................................................................24

2.3 SSH management .........................................................................................25

2.3.1 Switch on-off SSH .............................................................................25

2.3.2 SSH management ............................................................................26

2.4.1 TFTP client service ...........................................................................27

2.4.2 TF TP server service .........................................................................28

2.4.3 FTP client service .............................................................................29

2.4.4 FTP server service ...........................................................................30

2.5 Telnet server configuration .........................................................................31

2.5.1 Telnet server state .............................................................................31

2.5.2 Max numbers of telnet access connection .................................31

2.6 Maintenance and debugging command .................................................32

2.6.1 Debug command ..............................................................................33

2.6.2 Show switchport interface .............................................................34

2.6.3 Others .................................................................................................36

Chapter 3: Port configuration .................. .................. ................37

3.1 Ethernet port configuration ........................................................................37

3.1.1 Port layer 1 attribution configuration ............................................ 37

3.1.2 Bandwidth control configuration ..................................................39

3.1.3 Switchport description ................................................................... 40

3.1.4 Port combo forced mode configuration .................................... 40

3.1.5 Port scan mode ................................................................................ 40

3.2 VLAN interface c onfiguration .....................................................................41

3.2.1 Add interface VLAN ...........................................................................41

3.2.2 L3 interface IP address mode configuration .............................42

3.3 SPAN configuration.......................................................................................42

3.3.1 SPAN configuration ..........................................................................42

3.4 Loopback-detection configuration ..........................................................43

Table of contents


5/289

ivactive500EM Wired Web Interface Users Manual

3.4.1 Port loopback-detection mode configuration ..........................44

3.4.2 VLAN loopback-detection configuration...................................44

3.4.3 Loopback-detection interval-time configuration ....................45

3.4.4 Loopback-detection control recovery configuration .............45

3.5 Isolate-port configuration ..........................................................................46

3.5.1 Isolate-port group configuration ..................................................46

3.5.2 Interface join group configuration...............................................463.5.3 Show isolate-port group ................................................................47

3.6 Port storm-control configuration .............................................................47

3.6.1 Storm-control configuration .........................................................47

3.7 Port debug and maintenance .....................................................................48

3.7.1 Show port information .....................................................................48

3.7.2 Show entire traffic information .....................................................48

3.8 ULDP configuration ......................................................................................49

3.8.1 ULDP global enable configuration ................................................49

3.8.2 ULDP hello message configuration .............................................50

3.8.3 ULDP recovery time configuration ..............................................50

3.8.4 Show ULDP configuration ..............................................................50

3.9 LLDP configuration ........................................................................................51

3.9.1 LLDP global enable configuration..................................................51

3.9.2 LLDP port status configuration .................................................... 52

3.9.3 LLDP tx-interval config ...................................................................52

3.9.4 LLDP msgTxHold configuration ...................................................53

3.9.5 LLDP transmit delay configuration ..............................................53

3.9.6 LLDP notification interval configuration ....................................54

3.9.7 LLDP neighbors max-num configuration ...................................54

3.9.8 LLDP too many neighbors configuration ...................................55

3.9.9 LLDP transmit optional tlv configuration ................................... 55

3.9.10 Show LLDP configuration .............................................................56

3.10 Jumbo packet forwarding configuration ...............................................56

Chapter 4: MAC address table configuration ................. ........57

4.1 MAC address table configuration ...............................................................57

4.1.1 MAC address aging-time configuration .......................................57

4.1.2 Configurate MAC address...............................................................58

4.1.3 Delete MAC address .........................................................................59

4.1.4 MAC address query ..........................................................................59

Chapter 5: VLAN configuration .................................................60

5.1 VLAN configuration ...................................................................................... 60

5.1.1 Create/remove VLAN ....................................................................... 60

5.1.2 Assign ports for VLAN .......................................................................61

5.1.3 Port type configuration ....................................................................61

5.1.4 Trunk por t configuration .................................................................62

5.1.5 Private-VLAN configuration ...........................................................63

5.2 GVRP configuration ......................................................................................63

5.2.1 Enable global GVRP ..........................................................................63

5.2.2 Enable GVRP on port .......................................................................645.2.3 GARP parameters configuration ..................................................64

5.3 VLAN-translation configuration ................................................................65

5.3.1 Enable/Disable VLAN-translation .................................................65

5.3.2 Add/Delete VLAN-translation .......................................................66

5.3.3 VL AN-translation miss drop configuration ................................66

5.3.4 Show VLAN-translation ..................................................................67

5.4 Dynamic VLAN configuration .....................................................................67

5.4.1 Protocol VL AN mode configuration .............................................67

5.5 Dot1q-tunnel configuration ........................................................................68

5.5.1 Enable dot1q tunnel ..........................................................................68

5.5.2 Dot1q tunnel tpid configuration ...................................................68

Chapter 6: IGMP snooping configuration ................ ............... 69

6.1 Switch on-off IGMP snooping ......................................................................69

6.2 IGMP snooping VLAN enable ......................................................................69

6.3 IGMP snooping configuration ....................................................................70

6.4 IGMP snooping mrouter port configuration ...........................................70


6/289

vactive500EM Wired Web Interface Users Manual

6.5 IGMP snooping query configuration ..........................................................71

Chapter 7: MLD snooping configuration ................ .................72

7.1 Switch on-off MLD snooping ........................................................................72

7.2 MLD snooping VL AN configuration ...........................................................7 3

7.3 MLD snooping configuration ......................................................................7 3

7.4 ML D snooping mrouter port configuration ............................................. 74

7.5 MLD snooping query configuration ...........................................................74

Chapter 8: ACL configuration ................. .................. ................ 75

8.1 Time range configuration ............................................................................75

8.2 Numeric ACL ..................................................................................................76

8.2.1 Standard numeric ACL ....................................................................76

8.2.2 Extended numeric ACL ..................................................................7 7

8.2.3 Delete numeric ACL ........................................................................82

8.3 Name ACL .......................................................................................................82

8.3.1 Standard name ACL .........................................................................82

8.3.2 Extended name ACL........................................................................83

8.3.3 Delete name ACL .............................................................................85

8.4 Filter configuration .......................................................................................86

8.4.1 Firewall configuration ......................................................................86

8.4.2 ACL binding configuration ............................................................87

8.5 Show ACL configuration ..............................................................................87

8.5.1 Show access list ................................................................................87

8.5.2 Show access group .........................................................................888.5.3 Show firewall .....................................................................................88

8.5.4 Show time range ..............................................................................88

Chapter 9: IPv6 ACL configuration .................. .................. ....... 89

9.1 IPv6 standard access-list configuration ...................................................89

9.2 IPv6 name access-list configuration ....................................................... 90

9.3 Attach IPv6 ACL to por t ................................................................................91

Chapter 10: AM configuration ................. .................. ................. 92

10.1 AM global configuration ..............................................................................92

10.1.1 Enable/disable AM ...........................................................................92

10.2 AM port configuration ................................................................................93

10.2.1 Enable/disable AM port .................................................................93

10.2.2 AM IP-pool configuration .............................................................93

10.2.3 AM MAC-IP-pool configuration ...................................................9410.3 Show AM port configuration .....................................................................95

10.3.1 Show AM port configuration .........................................................95

10.3.2 Clear port AM pool .........................................................................95

Chapter 11: Port channel configuration .................. ................. 96

11.1 LACP port group configuration ..................................................................96

Chapter 12: DHCP configuration ................................................97

12.1 DHCP management .....................................................................................97

12.1.1 Enable DHCP .....................................................................................97

12.2 DHCP server configuration .......................................................................98

12.2.1 Dynamic pool configuration .........................................................98

12.2.2 Manual DHCP IP pool configuration .........................................105

12.2.3 Address pool name configuration ............................................106

12.2.4 DHCP packet statistics ............................................................... 107

12.3 DHCP relay configuration ........................................................................107

12.3.1 DHCP relay configuration ............................................................108

12.4 DHCP debugging .......................................................................................108

12.4.1 Delete record .................................................................................108

12.4.2 Show IP-MAC binding ...................................................................110

12.4.3 Show conflict-logging ..................................................................110

Chapter 13: DHCP snooping configuration .......................... .. 111

13.1 DHCP snooping global configuration ......................................................111

13.1.1 Enable/disable DHCP snooping ....................................................111

13.1.2 DHCP snooping binding configuration ..................................... 112


7/289

viactive500EM Wired Web Interface Users Manual

13.1.3 DHCP snooping binding user configuration ............................ 112

13.1.4 DHCP snooping action count configuration ............................ 113

13.1.5 DHCP snooping limit-rate configuration ..................................113

13.1.6 DHCP snooping helper-server configuration ..........................114

13.2 DHCP snooping por t configuration ........................................................114

13.2.1 Enable/disable DHCP snooping binding dot1x ........................114

13.2.2 Enable/disable DHCP snooping binding user .........................11513.2.3 Enable/disable DHCP snooping trust ....................................... 115

13.2.4 DHCP snooping action configuration....................................... 115

13.3 Show DHCP snooping configuration ......................................................116

13.3.1 Show DHCP snooping configuration .........................................116

Chapter 14: SNTP configuration ................................................117

14.1 SNTP server configuration ........................................................................ 117

14.2 Request interval configuration................................................................118

14.3 Time difference c onfiguration ................................................................ 11814.4 Show sntp .....................................................................................................119

Chapter 15: NTP configuration.................................................120

15.1 NTP global configuration ..........................................................................120

15.1.1 NTP global switch configuration ................................................. 120

15.1.2 NTP server and version configuration ....................................... 121

15.1.3 NTP broadcast or multicast address count configuration ...122

15.1.4 NTP access group configuration ................................................122

15.1.5 NTP authenticate configuration ................................................ 12315.2 NTP interface configuration ................................................................... 124

15.2.1 NTP interface switch configuration .......................................... 124

15.3 NTP configuration display ....................................................................... 125

15.3.1 NTP status display ......................................................................... 125

Chapter 16: QoS configuration .................................................126

16.1 Class-map configuration .......................................................................... 126

16.1.1 Class-map configuration ............................................................. 126

16.1.2 Classification criteria configuration ..........................................127

16.2 Policy-map configuration .........................................................................127

16.2.1 Policy-map configuration ...........................................................128

16.2.2 Class-map use to policy-map configuration ......................... 128

16.3 Apply QoS to por t ...................................................................................... 129

16.3.1 QOS port trust state configuration ........................................... 12916.3.2 QoS por t cos parameters configuration .................................130

16.3.3 QoS port select queue schedule algorithm configuration.130

16.3.4 QoS port wrr algorithm queue weight configuration ...........130

16.3.5 QoS port wdrr algorithm queue weight configuration .........131

16.3.6 QoS port queue bandwidth configuration ............................. 132

16.3.7 QoS service policy configuration ............................................. 132

16.4 QoS policy-class-map configuration .................................................... 133

16.4.1 Policy-class-map accounting configuration .......................... 133

16.4.2 Aggregate policy configuration ............................................... 133

16.4.3 Policy-class-map policy configuration ................................... 134

16.4.4 Policy-class-map set configuration ........................................ 135

16.5 QoS mapping configuration ................................................................... 135

16.5.1 CoS-to-IntP mapping ................................................................... 136

16.5.2 CoS-to-DP mapping .................................................................... 136

16.5.3 DSCP-to-DSCP mapping .............................................................137

16.5.4 DSCP-to-IntP mapping ............................................................... 138

16.5.5 DSCP-to-DP mapping ................................................................. 139

16.5.6 EXP-to-IntP mapping .................................................................. 139

16.5.7 EXP-to-DP mapping ....................................................................140

16.5.8 IntP-to-DSCP mapping ...............................................................140

16.5.9 IntP-to-EXP mapping ..................................................................140

16.6 QoS aggregate policy configuration .....................................................141

16.7 QoS service policy configuration...........................................................142

Chapter 17: Layer3 forward configuration .................. ...........143


8/289

vi iactive500EM Wired Web Interface Users Manual

17.1 IP route aggregate configuration ............................................................ 143

17.1.1 Route aggregate configuration................................................... 143

17.2 ARP configuration ......................................................................................144

17.2.1 ARP configuration ..........................................................................144

17.2.2 Clear ARP cache ............................................................................ 144

17.2.3 Show ARP ........................................................................................145

17.2.4 Proxy ARP configuration ............................................................. 14517.3 Gratuitous ARP configuration .................................................................145

17.3.1 Gratuitous-ARP interval time configuration............................146

17.3.2 Interface gratuitous-ARP interval time configuration ......... 146

17.3.3 Show gratuitous-ARP configuration ........................................147

17.4 ARP protection configuration ................................................................. 147

17.4.1 ARP GUARD configuration ........................................................... 147

17.4.2 ANTI-ARPSCAN configuration ...................................................148

17.5 Show IP traffic ............................................................................................. 153

Chapter 18: Route configuration ..............................................154

18.1 Policy based routing .................................................................................. 154

18.1.1 Route map configuration ............................................................. 154

18.1.2 IP prefix configuration ..................................................................158

18.2 Static route configuration ....................................................................... 159

18.2.1 Static route configuration ...........................................................160

18.3 RIP configuration .......................................................................................160

18.3.1 Enable RIP ........................................................................................161

18.3.2 Clear IP route configuration........................................................161

18.3.3 Default configuration ..................................................................162

18.3.4 Distance configuration ............................................................... 162

18.3.5 Distribute-list configuration ...................................................... 163

18.3.6 Interface RIP configuration ........................................................ 163

18.3.7 Key or key-chain configuration .................................................164

18.3.8 Send-lifetime configuration ...................................................... 165

18.3.9 Accept-lifetime configuration ..................................................166

18.3.10 RIP maximum-prefix .................................................................. 166

18.3.11 Neighbor configuration.............................................................. 167

18.3.12 Network configuration ............................................................... 167

18.3.13 Offset-list configuration ........................................................... 167

18.3.14 Passive interface configuration .............................................. 168

18.3.15 Receive buffer size configuration ........................................... 168

18.3.16 Redistribute route configuration ............................................16818.3.17 RIP route configuration .............................................................169

18.3.18 RIP timer configuration ............................................................. 169

18.3.19 Version configuration ................................................................ 169

18.4 OSPF configuration ...................................................................................170

18.4.1 OSPF enable ...................................................................................170

18.4.2 OSPF area configuration .............................................................172

18.4.3 OSPF interface configuration ................................................... 173

18.4.4 Other parameters configuration ...............................................174

18.7 Show IP route ...............................................................................................177

Chapter 19: IPv6 route configuration ................ .................. ...178

19.1 IPv6 configuration ...................................................................................... 178

19.1.1 IPv6 basic configuration ............................................................... 178

19.1.2 IPv6 ND configuration .................................................................. 179

19.1.3 IPv6 tunnel configuration ............................................................180

19.1.4 Show IPv6 neighbor ......................................................................180

19.3 OSPFv3 configuration ............................................................................... 181

19.3.1 OSPFv3 area configuration ..........................................................181

19.3.2 OSPFv3 default-metric configuration ..................................... 182

19.3.3 OSPFv3 max-concurrent-DD configuration .......................... 182

19.3.4 OSPFv3 ABR type configuration ...............................................183

19.3.5 OSPFv3 passive-interface .......................................................... 183

19.3.6 OSPFv3 redistribute configuration .......................................... 184

19.3.7 OSPFv3 route ID configuration .................................................184

19.3.8 OSPFv3 route c onfiguration ...................................................... 185


9/289

viiiactive500EM Wired Web Interface Users Manual

19.3.9 OSPFv3 timer configuration ...................................................... 185

19.3.10 OSPFv3 IPv6 (no parameter) configuration ......................... 185

19.3.11 OSPFv3 IPv6 (two parameter) configuration ........................ 186

19.3.12 OSPFv3 IPv6 (multi parameter) configuration .................... 187

19.4 Show IPv6 route ......................................................................................... 187

19.4.1 Show IPv6 route database ........................................................... 187

19.4.2 Show IPv6 NSM route ...................................................................18819.4.3 Show IPv6 FIB ................................................................................ 188

19.4.4 Show IPv6 route statistics .......................................................... 188

Chapter 20: Multicast protocol configuration ................ ......189

20.1 PIM configuration ......................................................................................189

20.1.1 Multicast common configuration ..............................................190

20.1.2 Accept-register and JP-timer configuration .........................190

20.1.3 RP-address configuration ..........................................................190

20.1.4 RP-reachability configuration ....................................................19120.1.5 Limit and suppression configuration .......................................191

20.1.6 Ignore RP-set-priority configuration ........................................191

20.1.7 Register checksum and KAT configuration ............................ 192

20.1.8 Register-source configuration ................................................. 192

20.1.9 BSR candidate configuration .................................................... 193

20.1.10 RP candidate configuration ..................................................... 193

20.1.11 SSM configuration ....................................................................... 193

20.1.12 Port mode configuration ...........................................................194

20.1.13 Hello interval and holdtime configuration ............................ 194

20.1.14 DR-priority and neighbor-filter configuration ..................... 195

20.1.15 Exclude-genid configuration ...................................................195

20.2 PIM-DM configuration ..............................................................................196

20.2.1 State-refresh interval configuration ........................................196

20.3 DVMRP configuration............................................................................... 196

20.3.1 Enable DVMRP ............................................................................... 197

20.3.2 Port enable DVMRP ..................................................................... 197

20.3.3 DVMRP report metric configuration ....................................... 197

20.3.4 Out put report delay ...................................................................198

20.3.5 DVMRP reject-non-pruners ......................................................198

20.3.6 DVMRP runnel configuration ....................................................198

20.4 DCSCM configuration ..............................................................................199

20.4.1 DCSCM source-control enable/disable configuration ........199

20.4.2 DCSCM destination-control enable/disable configuration19920.4.3 DCSCM source-control access-group configuration ....... 200

20.4.4 DCSCM destination-control access-group configuration200

20.4.5 DCSCM destination-control access-group c onfiguration (sip)

200

20.4.6 DCSCM destination-control access-group configuration

(vMAC) .......................................................................................................201

20.4.7 Multicast policy configuration .................................................2 01

20.4.8 ACL multicast source control.................................................. 202

20.5 IGMP configuration ................................................................................. 202

20.5.1 Access-group and immediate-leave configuration ............ 203

20.5.2 IGMP query-interval configuration ......................................... 203

20.5.3 Maximum response-time and timeout configuration .......204

20.5.4 Limit and version configuration ..............................................204

20.5.5 IGMP join group configuration ................................................ 205

20.5.6 IGMP static group configuration ............................................205

Chapter 21: IPv6 multicast protocol configuration ............206

21.1 IPv6 PIM configuration ............................................................................. 206

21.1.1 IPv6 multicast common configuration .................................... 207

21.1.2 IPv6 accept-register and JP-timer configuration ................ 207

21.1.3 IPv6 RP-address configuration ................................................. 208

21.1.4 IPv6 RP-reachability configuration .......................................... 208

21.1.5 IPv6 limit-and suppression configuration ..............................208

21.1.6 IPv6 ignore RP-set-priority configuration .............................. 209

21.1.7 IPv6 register checksum and KAT configuration ....................209


10/289

ixactive500EM Wired Web Interface Users Manual

21.1.8 IPv6 BSR candidate configuration............................................. 210

21.1.9 IPv6 RP candidate configuration ...............................................210

21.1.10 IPv6 register-source configuration .......................................... 211

21.1.11 IPv6 SSM configuration ............................................................... 211

21.1.12 IPv6 port mode configuration ....................................................212

21.1.13 IP v6 hello interval and holdtime configuration ......................212

21.1.14 IPv6 DR-priority and neighbor-filter configuration ............. 21321.1.15 IPv6 dxclude-genid configuration ........................................... 213

21.2 PIM-DM6 configuration ............................................................................ 214

21.2.1 IPv6 state-refresh interval configuration ................................ 214

21.3 MLD configuration ..................................................................................... 214

21.3.1 MLD access-group and immediate leave configuration ...... 215

21.3.2 MLD query-interval configuration ............................................ 215

21.3.3 MLD max response-time and timeout configuration .......... 216

21.3.4 MLD limit and version configuration ........................................216

21.3.5 ML D join group configuration .....................................................217

21.3.6 MLD static group configuration .................................................217

Chapter 22: VRRP configuration ................ .................. ............ 218

22.1 VRRP set ....................................................................................................... 218

22.1.1 Create VRRP ID ............................................................................... 218

22.1.2 VRRP virtual IP configuration ..................................................... 219

22.1.3 VRRP interface............................................................................... 219

22.1.4 VRRP enable ................................................................................... 219

22.1.5 VRRP preempt .............................................................................. 220

22.1.6 VRRP priority ................................................................................. 220

22.1.7 VRRP interval ................................................................................. 220

22.1.8 VRRP circuit.....................................................................................221

22.2 Show VRRP information ............................................................................221

Chapter 23: Spanning-tree configuration ........................... 222

23.1 Spanning-tree field configuration .........................................................222

23.1.1 Instance configuration .................................................................223

23.1.2 Field name configuration ............................................................223

23.1.3 Revision-level configuration ......................................................224

23.2 Spanning-tree port configuration ........................................................224

23.2.1 PortFast configuration ................................................................224

23.2.2 Port priority configuration .........................................................225

23.2.3 Port cost configuration ..............................................................22523.2.4 Spanning-tree port mode ..........................................................226

23.2.5 Link-type configuration .............................................................226

23.2.6 Spanning-tree agreement port configuration .....................227

23.3 Spanning-tree global configuration .....................................................227

23.3.1 Spanning-tree global agreement por t configuration ..........228

23.3.2 Forward-time configuration ......................................................228

23.3.3 Hello-time configuration ...........................................................228

23.3.4 Max age time configuration.......................................................229

23.3.5 Max hop time configuration ......................................................229

23.3.6 Spanning tree mode configuration ........................................ 230

23.3.7 Priority configuration ................................................................. 230

23.4 Show spanning-tree ................................................................................ 230

23.4.1 Instance information ................................................................... 231

23.4.2 Revision-level information ........................................................ 231

Chapter 24: Cluster basic configuration .................. ............ 232

24.1 Cluster configuration ................................................................................232

24.2 Cluster candidate information ............................................................. 234

24.3 Cluster member information ................................................................ 234

24.4 Cluster member configuration ............................................................. 234

24.5 Cluster member auto configuration ....................................................235

24.6 Cluster member reset..............................................................................235

24.7 Cluster topology configuration .............................................................235

24.8 Cluster topology information ................................................................236


11/289

xactive500EM Wired Web Interface Users Manual

Chapter 25: MRPP configuration .................. .................. ........ 237

25.1 MRPP global configuration.......................................................................237

25.1.1 MRPP global switch configuration .............................................237

25.1.2 MRPP poll time configuration.....................................................238

25.1.3 MRPP domain ID configuration ..................................................238

25.2 MRPP port configuration .........................................................................238

25.2.1 MRPP port property configuration ...........................................23925.3 MRPP domain configuration ...................................................................239

25.3.1 MRPP c ontrol VLAN configuration ........................................... 240

25.3.2 MRPP node mode configuration ............................................. 240

25.3.3 MRPP hello timer configuration ................................................ 241

25.3.4 MRPP fail timer configuration ................................................... 241

25.3.5 MRPP domain switch configuration .........................................242

25.4 MRPP domain switch configuration ......................................................242

25.4.1 MRPP display ..................................................................................243

25.4.2 MRPP statistics d isplay ...............................................................243

25.4.3 Clear MRPP statistics ..................................................................243

Chapter 26: ULPP Configuration .................. .................. ........ 244

26.1 ULPP global configuration ...................................................................... 244

26.1.1 ULPP group configuration .......................................................... 244

26.2 ULPP port configuration..........................................................................245

26.2.1 ULPP port property configuration ............................................245

26.3 ULP P g roup configuration ..................................................................... 246

26.3.1 UL PP group description configuration ................................... 246

26.3.2 ULPP group property configuration ........................................247

26.4 ULP P configuration display ....................................................................247

26.4.1 UL PP group configuration display ........................................... 248

26.4.2 ULPP port statistics display ..................................................... 248

26.4.3 ULPP port property display ...................................................... 248

26.4.4 ULPP port statistics clear ......................................................... 249

Chapter 27: ULSM configuration ................ .................. .......... 250

27.1 ULSM global configuration ...................................................................... 250

27.1.1 ULSM group configuration .......................................................... 250

27.2 ULSM port configuration ......................................................................... 251

27.2.1 ULSM port property configuration............................................ 251

27.3 ULSM configuration display .................................................................... 251

27.3.1 ULSM display ..................................................................................252

Chapter 28: Authentication configuration .......................... 253

28.1 RADIUS client configuration ....................................................................253

28.1.1 RADIUS global configuration ......................................................253

28.1.2 RADIUS authentication configuration .................................... 254

28.1.3 RADIUS accounting configuration ...........................................255

28.2 TACACS server configuration ................................................................255

28.2.1 TACACS g lobal configuration ....................................................256

28.2.2 TACACS server host configuration..........................................25628.3 802.1x configuration ................................................................................257

28.3.1 802.1x global configuration ........................................................257

28.3.2 802.1x port authentication configuration ..............................258

28.3.3 802.1x port MAC configuration .................................................259

28.3.4 802.1x port status list .................................................................2 60

Chapter 29: DOS attack protection configuration .............. 261

29.1 Source IP equal destination IP DOS attack protection configuration261

29.2 Source port equal destination port DOS attack protectionconfiguration ...................................................................................................... 261

29.3 TCP DOS attacks on invalid flags configuration ................................262

29.4 ICMP DOS attack protection configuration ........................................262

29.5 ICMP packet-size configuration ............................................................263

29.6 First fragment IP packet DOS attack protection configuration .....263


12/289

xiactive500EM Wired Web Interface Users Manual

Chapter 30: SSL configuration .................. .................. ........... 264

30.1 IP HTTP server configuration ................................................................. 264

30.2 SSL global configuration .........................................................................265

30.3 SSL server monitor port configuration ................................................265

30.4 SSL secure-ciphersuite configuration ............................................... 266

Chapter 31: sFlow Configuration .................. .................. ........ 267

31.1 sFlow collector global address configuration .....................................267

31.2 sFlow collector port address configuration ....................................... 268

31.3 sFlow agent address configuration ...................................................... 268

31.4 sFlow priority configuration ................................................................... 269

31.5 sFlow header length configuration ...................................................... 269

31.6 sFlow data length configuration ........................................................... 270

31.7 sFlow rate configuration ......................................................................... 270

31.8 sFlow counter interval configuration .................................................... 271

31.9 sFlow analyzer configuration .................................................................. 271

Chapter 32: IPv6 security ra configuration ................ ........... 272

32.1 IPv6 security ra global configuration ....................................................272

32.2 IP v6 security ra por t configuration .......................................................273

32.3 Show IPv6 security ra ...............................................................................273

Glossary ................. .................. .................. .................. ................. 274


13/289

1active500EM Wired Web Interface Users Manual

Chapter 1: Introduction to web configuration interfaceThe active500EM switch provides a Web configuration interface. This chapter will familiarize you with the Web configuration interface.

1.1 Configuration preparation

The active500EM can be managed through the Web interface.

1.1.1 Computer requirements

PC with an operating system installed (Win XP, Win 7, Win 8, Mac OS 10.6/7)

Web browser (Internet Explorer 8/9/10, Google Chrome, Firefox, Safari)

1.1.2 Management via web

To configure the active500EM locally, the PCs and the active500EMs IP addresses should be configured in the same subnet. The

active500EMs default IP address is 192.168.1.1, and the subnet mask is 255.255.255.0. The following are steps to create a network

connection:

Step 1: Set up the environment.

Connect the Ethernet port for the PC to the switchs port with an Ethernet cable. The figure is as follows:


14/289


Step 2: Set the network connection (as shown with Windows 7).

Click Start. Select Control Panel. Click view network status and tasks, and then click Local Area Connection. The Local Area

Connection Status dialog box will appear. The figure is as follows:


15/289


Click Properties to open the Local Area Connection Properties dialog box. The figure is as follows:


16/289


Select Internet Protocol Version 4 (TCP/IPv4), and then click Properties to open the Internet Protocol Version 4 (TCP/IPv4)

Properties dialog box. Select Use the ollowing IP address, type the IP address (between 192.168.1.2 and 192.168.1.254) and the subnet

mask (255.255.255.0), and then click OK. The figure is as follows:


17/289


Step 3: Use the PING command to ensure the connection status between the PC and the active500EM.

Click Start, and then type CMD in the text box to generate the following dialog box:

Press ENTER to open the Command Prompt window. Type ping 192.168.1.1 (the active500EMs default IP address), and then press

ENTER. If the network is connected, the window will include the following text:


18/289


19/289


20/289


1.2.2 Web interface introduction

Upon logging in, the Dashboard will appear, showing System Ino, Device Ino, Managed AP, and Support with four tabs: WLAN

Configuration, Monitor, Management, and Wired Configuration. When a tab is clicked, the related configuration page will open, listing

the features on the left side. The right side is the configuration zone for that feature. Pause the mouse pointer on the menu option on

the left bar to open the corresponding submenu/page, and then click the page label to configure the corresponding function for the

active500EM.

1.2.3 Menu introduction

This table provides a detailed connected configuration interface function for each menu option.

Menu Page Page unction

Switch basic configuration Switch basic configuration Configure the switchs Web language, user, clock, etc.

SNMP configurat ion Configure the SNMP authent ication, management , community ma nager, etc.

SSH management Configure switching SSH on/off , SSH management

Firmware update Update switch via FTP or TFTP

Telnet server configuration Configure the Telnet server status

Maintenance and debugging

command

Maintenance and debugging command, such as show running-config, etc.


21/289



Por t c onfiguration Etherne t por t configuration Configure por t layer 1 attributio n, bandwidth control, etc.

VLAN interface configuration Configure port layer 1 attribution, bandwidth control, etc.

SPAN configuration Configure port mirroring

Loopback-detection

configuration

Configure port loopback-detection mode, port loopback-detection interval-

time, if the loopback-detection controls auto recovery

Isolate-port configuration Configure isolate-port group, interface join group, etc.

Isolation port configuration Show storm control configuration

Port debug and maintenance Show port information and entire traffic information

ULDP configurat ion ULDP ena ble config, ULDP hello message config, ULDP recovery timer, etc.

LL DP configurat ion LL DP enable configurat ion, LLDP port status configuration, Tx-interval config,

etc.

Jumbo packet forwarding

configuration

Jumbo packet forwarding configuration

MAC address table

configuration

MAC address table

configuration

Configure MAC address table and aging-time; delete MAC address, e tc.

VLAN configuration VLAN configuration Add or remove VLAN; configure ingress VLAN rules

GVRP configuration Enable global/port GVRP, GVRP configuration

VLAN-translation configuration Enable/disable VLAN translation; add/remove VLAN translation, etc.

Dynamic VLAN configuration Protocol VLAN configuration

Dot1q tunnel configuration Enable dot1q tunnel and dot1q tunnel tpid configuration

IGMP snooping configuration IGMP snooping configuration Global/port enable IGMP snooping, IGMP snooping configuration, etc.

MLD snooping configuration MLD snooping configuration Switch on-off MLD snooping, MLD snooping port enable, etc.

ACL configuration Time range configuration Time range configuration

Numeric ACL Standard/extended numeric ACL; delete numeric ACL

Name ACL Standard/extended name ACL; delete name ACL

Filter configuration Configure firewall ACL; attach ACL to port

Show ACL configuration Show access list, access group, firewall, and time range

ACL binding configuration Attach ACL to port, show access group, clear PACL statistics, etc.

IPv6 ACL configuration IP v6 ACL configuration C onfigure IPv6 standard/name acc ess -lis t; attach IPv6 AC L to por t, etc.

AM configuration AM global configuration Enable/disable AM

AM port configuration Configure AM port enable, AM IP-pool, a nd AM MAC-IP-pool

Show AM port configuration Show AM port configuration, clear port AM pool


22/289



Port channel configurat ion Port channel configurat ion Configure L ACP group L ACP port, etc.

DHCP configuration DHCP management Enable DHCP

DHCP server configuration Configure dynamic/manual address pool

DHCP relay configuration DHCP rela y configurat ion

DHCP debugging Delete record; dis play IP-MAC binding info rmatio n and log infor mation for

addresses that have a conflict record, etc.

DHCP snooping configuration DHCP snooping global

configuration

Configure DHCP snooping status, binding, binding user, number of port

defense actions, etc.

DHCP snooping port

configuration

Configure DHCP snooping binding dot1x, binding user, trust attributes of a

port, etc.

Show DHCP snooping

configuration

Show DHCP snooping configuration

SNTP configuration SNTP configuration Configure SNTP/NTP server, the sending request time interval from SNTP

client to NTP/SNTP server, etc.

NTP configuration NTP global configuration NTP global switch configuration, etc.

NTP interface configuration NTP interface switch configuration

NTP c onfiguration dis play Sho w NTP status

QoS configuration Qos por t configuration QoS port trust state configuration, QoS port CoS parameters configuration,

etc.

QoS class-map configuration Add/delete/configure class-map and classification criteria configuration

QoS policy-map configuration Add/delete/configure the policy-map, class map use to policy map

configuration

QoS policy-class-map

configuration

Configure policy class-map accounting configuration, aggregate policy

configuration, etc.

QoS mapping configuration Configure CoS-to-DSCP mapping, DSCP-to-CoS mapping, DSCP mutationmapping, IP-precedence-to-DSCP mapping, etc.

QoS aggregate policy

configuration

Configure aggregate policy name, committed information rate, committed

burst size, etc.

QoS service policy

configuration

Configure policy-map name to VLAN


23/289



Forward configuration IP route aggregation

configuration

IP route aggregate configuration

ARP configuration ARP configuration, clear ARP cache, and show ARP

Gratuitous ARP configuration Configure global/interface gratuitous-arp interval time, etc.

ARP protection configuration ARP GUARD configuration and anti-ARP scanning prevention configuration

Show IP traffic Check statistic information of IP packets

Route configuration Policy-based routing Router map and IP prefix

Static route configuration Static route and static VPN route configuration

RIP configuration Enable RIP, default, neighbor, network configuration, etc.

OSPF configuration OSPF enable, a rea, int erfa ce, other parameters configuration

Show IP route Show IP route

IPv6 route configuration IPv6 configuration IPv6 basic, ND and tunnel configuration, etc.

OSPFv 3 configurat ion OSPFv3 area , route, t imer configurat ion, etc.

Show IPv6 route Show IPv6 route database, NSM route, FIB, route stations

Multicast protocolconfiguration

PIM configuration Multicast command configuration, etc.PIM-DM co nfiguration State-refresh inte rval configuration

DVMRP configuration Configure the DVMRP report metric, reject-non-pruners, tunnel, etc.

DCSCM configuration Configure DCSCM source-control, destination-control, source-control

access-group, etc.

IGMP configurat ion Configure IGM P query-int erval, stat ic group, access-group, immediat e lea ve,

etc.

IPv6 multicast protocol

configuration

IPv 6 P IM configuration IPv 6 multica st common configuration, etc.

PIM-DM6 configurat ion IPv 6 state-refresh interva l configuration

MLD configurat ion Configure ML D a ccess-group and immediate leave, query-int erval, ma x

response-time and timeout, static group, join group, version, and limit

Spanning-tree configuration Spanning-tree field

configuration

Configure instance and field name and c ount the revision-level

Spanning-tree port

configuration

Set the current port as edge port, port priority, port cost, etc.

Spanning-tree global

configuration

Configure spanning-tree global agreement port, forward-time, hello-time, etc.

Show spanning-tree Show instance informat ion a nd rev ision-level information


24/289



MRPP configuration MRPP global configuration MRPP global switch configuration, etc.

MRP P port configurat ion MR PP port property configuration

MRPP domain configuration MRPP control VLAN configuration, etc.

MRPP domain switch

configuration

MRPP display, etc.

ULPP configuration ULPP global configuration ULPP group configuration

ULP P port configurat ion ULP P port propert y configurat ion

ULPP group configuration ULPP group description configuration, etc.

ULPP configuration display ULPP group configuration display, etc.

ULSM configuration ULSM global configuration ULSM group configuration

ULSM port configurat ion ULSM port property configurat ion

ULSM configuration display ULSM display

Cluster basic configuration Cluster basic configuration Cluster configuration, cluster candidate information, cluster member

information, cluster member configuration, cluster member auto

configuration, cluster member reset, cluster topology configuration, cluster

topology information, etc.

Authentication configuration RADIUS client configuration RADIUS global/authentication/accounting configuration

TACACS server configuration TACACS global configuration, etc.

802.1x configuration Configure 802.1x global enable, port authentication, port MAC, and port status

list

MAB configuration MAB enable configuration, etc.

DOS attack protection

configuration

DOS attack protection

configuration

Source IP equal destination IP DOS attack protection configuration, source

port equal destination port DOS attack protection configuration, TCP DOS

attack on invalid flags configuration, etc.

SSL configuration SSL configuration Configure HTTP server enable, SSL enable, SSL server monitor port, etc.sFlow configuration sFlow configuration sFlow collector global address configuration, sFlow collector port address

configuration, sFlow agent address configuration, sFlow priority configuration,

sFlow header length configuration, sFlow data length configuration, sFlow

rate configuration, sFlow counter interval configuration, sFlow analyzer

configuration


25/289



IPv6 security RA configuration IPv6 security RA global

configuration

IPv6 security RA global configuration

IPv6 security RA port

configuration

IPv6 security RA port configuration

Show IPv6 security RA Show IPv6 security RA

1.2.4 The active500EM logout function

Click Logout to return to the login page.

The chapters that follow describe how to enable and configure various features offered by the activeARC solution. Many features

must be enabled by following the configuration steps as described in this user manual in order to properly access the advanced

configuration options for that particular feature. If the feature is not enabled, users may not be able perform advanced configuration

for that feature and warning messages may be displayed identifying that the feature must first be enabled before configuration can

complete.


26/289


Chapter 2: The active500EM management2.1 The active500EM basic configurationClick the Management tab, and pause the mouse pointer over Switch basic configuration to display the sub-nodes, through which

users can configure the switchs login user, user authentication method, login user Security IP, basic clock, switch name, exec timeout,

and save current running configuration.

2.1.1 Login user configuration

From the Management tab, click Switch basic configuration -> Login user configuration to add or remove users for the switch.

Example: In the User and Password fields, type user. In the Priority field, type 15.

User Choose a specific user name

Password Configure a specific password


27/289


Encrypted text Select whether the password information is displayed

Priority Only users with the priority of 15 can log in to the WEB management interface

Operation Select to Add or Remove the user

2.1.2 Login user authentication method configuration

From the Management tab, click Switch basic configuration -> Login user authentication method configuration to configure VTY(login with Telnet and SSH), Web, and console to select the authentication mode priority of the login user.

2.1.3 Login user security IP management

From the Management tab, click Switch basic configuration -> Login user security IP management to configure the users security IP.


28/289


2.1.4 Basic configuration

From the Management tab, click Switch basic configuration -> Basic configuration to configure the basic clock, switch name, and

exec timeout.

1. Basic clock configuration Set the systems date and time.

Example: Users should configure HH:MM:SS as 23:00:00 and YY.MM.DD as 2002.08.01, and then click Apply.

2. Configure exec timeout

Example: Configure the timeout as 6 minutes and 6 seconds, and then click Apply.

3. Configure switch prompt

Example: Configure the Switch name as Switch, and then click Apply.


29/289


2.1.5 Save current running-configuration

From the Management tab, click Switch basic configuration -> Save current running-configuration to save the current running-

configuration.

1. Save current running-configuration Click Apply to save the current running-configuration.

Display the information after successfully saving the current running-configuration.

2. Save current configuration before reboot? Select Yes or No. Reboot the active500EM by clicking Apply.

3. Reboot with the default configuration Clear all current configurations and reboot the switch by clicking Apply.


30/289


2.2 SNMP configurationFor any configurations discussed in the following subsections, SNMPmust be started as described in this section. If SNMP is not

started, the user may receive the message to Start SNMP first beore continuing the requested configuration.

From the Management tab, pause the mouse pointer over SNMP configuration to configure SNMP-related functions.

Note: Start SNMP to configure the related functions. Set the SNMP switch status as Open, and then click Apply.

2.2.1 SNMP authentication

From the Management tab, pause the mouse pointer over SNMP configuration -> SNMP authentication to configure users, groups,

views, etc.

2.2.1.1 Users

From the Management tab, click SNMP configuration -> SNMP authentication -> Users to add or remove SNMP users.

SNMP username The user name, containing 132 characters

SNMP group The group name that the user belongs to, containing 132 characters

Security level The encryption level of the current user: noAuthNoPrivdoes not authenticate and does not use DES for the

packet encryption; authPriv uses DES for packet encryption; authNoPriv does not use DES for the packet encryption

Authentication protocol Set the using algorithm: MD5 or SHA

Authentication password The current users authentication password


31/289


Privacy protocol - Sets the packet encryption security level. When authPriv security level is selected, DES is used as the

currently supported type for packet encryption

Privacy password Password for setting packet encryption for Privacy Protocol

IPv4 access control list Enter the IPv4 Access Control List number that has been previously configured (Optional)

IPv6 access control list Enter the IPv6 Access Control List number that has been previously configured (Optional)

Operation Select Add or Remove

Example: Set the SNMP username as tester, SNMP group as UserGroup, select authPriv for the Security level, the Authentication

protocol as MD5. Set the Authentication password as hellohello, select DES for the Privacy protocol, the Operation as Add, and then

click Apply. The figure is as follows:


32/289


2.2.1.2 Groups

From the Management tab, click SNMP configuration -> SNMP authentication -> Groups to add or remove SNMP user groups.

SNMP group The name of the SNMP user group

Security level The encryption level of the current user: noAuthNoPrivdoes not authenticate and does not use DES for the

packet encryption; authPriv uses DES for packet encryption; authNoPriv does not use DES for the packet encryption

Read SNMP view Set the readable view name Write SNMP view Set the writable view name

Notify SNMP view Set the notifiable view name


Example: Type UserGroup in the SNMP group field, select the Security level as authPriv, and type max in three SNMP views. From the

Operation drop-down list, select Add, and then click Apply.

2.2.1.3 Views

From the Management tab, click SNMP configuration -> SNMP authentication -> Views to add or remove SNMP views.

SNMP view Set the view name, containing 132 characters

OID OID number or corresponding node name, containing 1255 characters

Type Include/exclude this OID



33/289


Example: In the SNMP view field, type max, and for OID, type 1.3.6.1.4.1.41721.2.2.1. Select the Type as Include, the Operation as Add, and

then click Apply.

2.2.1.4 SNMP engineid configuration

From the Management tab, click SNMP configuration -> SNMP authentication -> SNMP engineid configuration to configure the

engine ID.

Engineid The engine ID shown in 132 digit hex characters

Operation Select Configuration or Deault

Example: Type the Engineid as a66688999, select the Operation as Configuration, and then click Apply.


34/289


2.2.2 SNMP management

Click Switch basic configuration -> SNMP configuration -> SNMP management to set SNMP Agent, RMON, TRAP and Security IP state.

Example: Select SNMP Agent state as Open, RMON state as Open, Trap state as Open, Security IP state as Close, and then click Apply.

The operation is as follows:

SNMP Agent state Open/Close SNMP agent server function

RMON state Open/Close RMON function Trap state Open/Close the receiving trap information for the device

SecurityIP state Open/Close the safety IP address authentication on NMS manage station

2.2.3 Community managers

Click Switch basic configuration -> SNMP configuration -> Community managers to manage community string and configure TRAP

manager.

1. Community managers Configure the community string and the access priority. Community string (1255 characters) Set the community string

Access priority Includes Read only and Read and write


35/289


Example: Configure the Community string as public and the Access priority is Read only. After configuring the Community string and

the Access priority, click Apply. The figure is as follows:

2. TRAP manager configuration

Click Switch basic configuration -> SNMP configuration -> Community managers to configure the IP address and the community

strings of the management station, which will receive SNMP Trap messages.

Trap receiver The IP address to be used to receive SNMP Trap messages

Community string (1255 characters) used to receive Trap messages

Example: Configure the Trap receiver as 192.168.1.100, the Community string as trap, and then click Apply.


36/289


2.2.4 Configure SNMP manager security IP

Click Switch basic configuration -> SNMP configuration -> Configure snmp manager security IP to configure the security IP address

that will be allowed access to the management station.

Security IP address The security IP address of NMS

Example: Configure the Security IP address as 192.168.1.100, and then click Apply. The figure is as follows:

2.2.5 SNMP statistics

Click Switch basic configuration -> SNMP configuration -> SNMP statistics to display the feedback information.


37/289


2.3 SSH managementSecure Shell (SSH) connections use a trusted SSL certificate for user logon to the web GUI interfaces. Browsers, such as Internet

Explorer, Firefox, Safari and Chrome, come preinstalled with a predetermined set of root certificates. These certificates serve as

trusted third parties and work instantly to provide seamless usability. The activeARC solution accepts root SSL certificates from all

browsers for a secure and encrypted https login. Users are not allowed to introduce their own certificates, thereby reducing the risk of

unauthorized system access.

For any configurations discussed in the following subsections, SSH must be started as described in this section. If SSH is not started,the user may receive the message to Start SSH first beore continuing the requested configuration.

Click Switch basic configuration -> SSH management to configure the SSH related functions.

Note: First, start SSH to configure the related functions. Configure the SSH switch status as Open, and then click Apply.

2.3.1 Switch on-off SSH

Click Switch basic configuration -> SSH management -> Switch on-o SSH to open or close SSH function.


38/289


2.3.2 SSH management

Click Switch basic configuration -> SSH management -> SSH management to configure SSH timeout management and SSH

reauthentication management, and to create an SSH RSA key.

SSH timeout Set SSH timeout; the default value is 180 seconds.

SSH reauthentication Set SSH reauthentication times; the default value is 3 times.

SSH RSA key The modulus that is used to compute the host key; valid range is 768 to 2048; the default value is 1024.


39/289


2.4 Firmware updatePause the mouse pointer over Switch basic configuration -> Firmware update to configure the Node Tree Diagram. Keywords and

diagrams are as follows:

1. TFTP service, including:

TFTP client service to configure TFTP client

TFTP server service to configure TFTP server

2. FTP service, including:

FTP client service to configure FTP client

FTP server service to configure FTP server

2.4.1 TFTP client service

Click Switch basic configuration -> Firmware update -> TFTP service -> TFTP client service to open the configuration interface.

Phrases are explained as follows:

Server IP address Servers IP address

Local file name Ranging from 1 to 100 characters

Server file name Ranging from 1 to 100 characters

Operation type Includes Upload and Download

Transmission type ascii to transmit files by using ASCII standard; binary means files are transmitted in binary standard


40/289


Example: The following figure shows how to get the system file from TFTP Server. The IP address is 192.168.1.100, the Local file name is

nos.img, and the Server file is nos.img. Click Apply.

2.4.2 TFTP server service

Click Switch basic configuration -> Firmware update -> TFTP service -> TFTP server service to open the configuration interface.


Server state The state of the server (Open or Close)

TFTP Timeout The timeout

TFTP Retransmit times Times of retransmit

Example: Set the server state as Open, and configure suitable TFTP Timeout and Retransmit times, and then click Apply. The figure is

as follows:


41/289


2.4.3 FTP client service

Click Switch basic configuration -> Firmware update -> FTP service -> FTP client service to open the configuration interface.


Server IP address Servers IP address

User name The name of the user, ranging from 1 to 100 characters

Password The specific password, ranging from 1 to 100 characters

Local file name Ranging from 1 to 100 characters

Server file name Ranging from 1 to 100 characters

Operation type Includes Upload and Download

Transmission type ascii to transmit files by using ASCII standard; binary means files are transmitted in binary standard

Example: The following figure shows how to get the system file from the FTP server. TheIP address is 192.168.1.100, Local file name is

nos.img, and Server file name is nos.img. The FTP user is switch, and the Password is switch. Click Apply.


42/289


2.4.4 FTP server service

Click Switch basic configuration -> Firmware update -> FTP service -> FTP server service to open and configure the FTP server

service node, which includes FTP server service and FTP user name and password setting.

Phrases of FTP server service are explained as follows:

FTP server state The state of the server (Open or Close)

FTP Timeout Timeout, ranging from 5 to 3600 secondsPhrases of FTP user name and password setting are explained as follows:

User The name of the user

Password The specific password

State Displays the password state, which includes Plain text and Encrypted text. Plain text displays the password; Encrypted

text cannot display the password

Operation type Includes Add and Remove user

Example 1: Set the FTP server state as Open and the FTP Timeout as 600 seconds, and then click Apply.

Example 2: Input the User as switch and the Password as switch. Select the State as Plain text and the Operation type as Add, and thenclick Apply.


43/289


2.5 Telnet server configurationOn the left directory of the home page, pause the mouse pointer over Switch basic configuration -> Telnet server configuration to

configure Telnet server state, Max numbers o telnet access connection for sub-nodes.

2.5.1 Telnet server state

Click Switch basic configuration -> Telnet server configuration -> Telnet server state to configure the Telnet server state.

Example: Select the Telnet server state as Open, and then click Apply to start Telnet server. The figure is as follows:

2.5.2 Max numbers of telnet access connection

Click Switch basic configuration -> Telnet server configuration -> Max numbers o telnet access connection to configure the

maximum numbers of Telnet access connection.

Example: Set the Telnet access connection number as 10, and then click Apply.


44/289


2.6 Maintenance and debugging commandPause the mouse pointer over Switch basic configuration -> Maintenance and debugging command to choose the sub-nodes and

open the corresponding configuration interface.

The sub-nodes are as follows:

Debug command Debugs the connection state of the switch

show clock Shows the current time

show cpu usage Shows CPU usage information in the current running state

show memory usage Shows memory usage information in the current running state

show flash Shows Flash file information

show running-config Shows the current parameters configuration

show switchport interface Shows properties of VLAN ports

show tcp Shows the current TCP connection with the switch

show udp Shows the current UDP connection with the switch


45/289


show telnet login Shows the client messages that connect with the switch through Telnet

show version Shows the version number of the switch

2.6.1 Debug command

Click Switch basic configuration -> Maintenance and debugging command -> Debug command to open the configuration interface,

so as to configure Basic host configuration, PING, and Traceroute for the node. The figures are as follows:

1. Basic host configuration Configure the mapping relationship between the switch and the IP address

Example: Configure the Host name as London and the IP ad

active500em wired web user interface manual

Documents