4.1 Port Setting
This page shows Port statistics like Port State, Link Status, speed & Flow control for each port. Port setting allows multiple ports Description, status, speed, duplex, flow control selection pages.
The switch comes with default port settings that should allow you to connect to the Ethernet Ports without any necessary configuration. Should there be a need to change the name of the ports, Port State, negotiation settings or flow control settings, you can do this in the Port settings as shown below:
Select Port number, Click on Edit, Enter the Port description, Select/Deselect Port State to Enable or Disable it. Select the Port speed Auto to Manually from 10M/100M/1000M. This page shows port current status and allow user to edit port configurations. Select port entry and click “Edit” button to edit port configurations.
To display Port Setting web page, click Port >> Port Setting
Fig 4.1.1 Port setting table page
Fig 4.1.2 Port setting multiple ports selection page.
Fig 4.1.3 Port setting multiple ports Description, status, speed, duplex, flow control selection page.
4.2 Error Disabled
When a port is in error-disabled state, it will shut down and no traffic is sent or received on that port. Automatic Recovery Interval to enable the error recovery
mechanism for the port security err-disable state by default is 300 seconds.
BPDU Guard : It enable the error recovery mechanism from BPDU guard error-disable state.
UDLD : It enable error recovery mechanism for the UDLD shutdown state.
Self Loop : If by mistake the ports on switches are connected by cables and self loop is formed then recovery mechanism for the self loop shutdown state.
Broadcast flood: A "Flood" is an uncontrolled broadcast, usually caused by a fault, such as when there is a loop in the physical network then recovery mechanism for the broadcast flood hanging state.
Unknown Multicast flood: Unknown multicast traffic is flooded to all Layer 2 ports then recovery mechanism for the Unknown Multicast flood hanging state.
ACL : It enable. error recovery mechanism for the ACL deny error-disable state.
Port Security : It enable the error recovery mechanism for the port security err-disable state.
DHCP Rate Limit : By default, DHCP rate limit is disabled. The maximum rate of sending DHCP messages to the DHCP server can be enabled. Excess packets in a specified period of time are discarded.
ARP Rate limit : The ARP packet rate limit feature allows you to limit the rate of ARP packets delivered to the switch. An ARP attack detection-enabled device will send all received ARP packets to the Switch for inspection. Processing excessive ARP packets will make the Switch malfunction or even crash. This feature can prevent ARP packets rate.
To configure and view Port Error disabled, click Port >> Error Disabled
Fig 4.2.1 Error disabled selection page.
Fig 4.2.2 Enabling various parameters in Error disabled selection page.
4.3 Link Aggregation
Link aggregation groups (LAGs) allow you to combine multiple Ethernet links into a single logical link. Network devices treat the aggregation as if it were a single link, which increases fault tolerance and load sharing. Specify LAG membership before you enable the LAG. The switch supports up to Eight static LAGs.
This page shows Link Aggregation configuration.
4.3.1 Group
Link aggregation group function allows you to aggregate multiple physical ports into one logic port to increase bandwidth. This switch supports up to 8 groups Link Aggregation & up to 8 ports as one group. This page is to configure link aggregation group load balance algorithm and select group member.
To view the Group menu, Click Port >> Link Aggregation >> Group.
Fig 4.3.1 Link Aggregation group selection page.
Fig 4.3.2 Link Aggregation LAG selection for editing page.
Fig 4.3.3 Link Aggregation Edit LAG page.
Fig 4.3.4 Link Aggregation Table page.
Fig 4.3.5 LACP Edit LAG page.
Fig 4.3.6 Link Aggregation group configuration page
4.3.2 Port Setting
This page shows Port Setting Table of LAG like Type, Description, State, Link Status, Speed, Duplex & Flow Control. This page shows LAG port current status and allow user to edit LAG port configurations. Select LAG entry and click Edit button to edit LAG port configurations.
To display LAG Port Setting web page, click Port >> Link Aggregation >> Port
Setting.
Fig 4.3.7 Link Aggregation port setting table page
Fig 4.3.8 Link Aggregation selecting port page
Fig 4.3.9 Link Aggregation port setting for LAG1-LAG2 speed to 100M and flow control page
Fig 4.3.10 Link Aggregation port setting table for LAG1-LAG2 page
4.3.3 LACP
Link Aggregation Control Protocol (LACP) is part of the IEEE specification (802.3az) that enables you to bundle several physical ports together to form a single logical channel (LAG). The Link Aggregation Control Protocol (LACP) provides a method to control the bundling of several physical ports together to form a single logical channel. LAGs multiply the bandwidth, increase port flexibility, and provide link redundancy between two devices.
Two types of LAGs are supported:
Static LAG : A LAG is static if the LACP is disabled on it. The group of ports
assigned to a static LAG are always active members.
Dynamic LAG : In Dynamic LAG LACP is enabled on it. The group of ports
assigned to dynamic LAG determines which ports are active member ports. The non-active ports are standby ports ready to replace any failing active member ports.
Load Balancing Traffic forwarded to a LAG is load-balanced across the active member ports, thus achieving an effective bandwidth close to the aggregate bandwidth of all the active member ports of the LAG.
Traffic load balancing over the active member ports of a LAG is managed by a
hash-based distribution function that distributes Unicast and Multicast traffic
based on Layer 2 or Layer 3 packet header information.
The device supports two modes of load balancing:
MAC Addresses :Based on the Destination and Source MAC addresses of all packets.
IP and MAC Addresses: Based on the Destination and Source IP addresses for IP packets, and Destination and Source MAC addresses for non-IP packets.
Timeout:--> The Timeout controls the period between BPDU transmissions. Long will transmit LACP packets each second, while Short will wait for 30 seconds before sending a LACP packet.
Port Priority:--> It controls the priority of the ports. If the LACP partner wants to form a larger group than is supported by this device then this parameter will control which ports will be active & which ports will in backup role. Lower the number means greater the priority. By default system priority for LACP is 32768.
LAG is treated by the system as a single logical port. In particular, the LAG has port attributes similar to a regular port, such as state and speed.
The device supports 8 LAGs with up to 8 ports in a LAG group. Link Aggregation Control Protocol (LACP) provides a standardized means for exchanging information between Switches connected by multiple links that require high-speed redundant links. This page allow user to configure LACP global and port configurations. Select ports and click Edit button to edit port configuration. To display the LACP Setting page , click Port >> Link Aggregation >> LACP.
Fig 4.3.6 Link Aggregation LACP Port Setting Table page
Fig 4.3.7 Link Aggregation LACP Port Setting port selection page
Fig 4.3.8 Edit LACP Port Setting page
Fig 4.3.9 LACP Port Setting Table page
4.4 EEE
802.3az EEE is designed to save power when there is no traffic on the link. IEEE 802.3az Energy Efficient Ethernet (EEE) function, cable length power saving, and link-up and link-down power saving. It Combines the Energy Efficient Ethernet (EEE) 802.3 MAC sublayer with the 10/100/1000BASE-TX physical layers to support operation in Low Power and save power during periods of low link utilization. Short Cable Power Saving dynamically detects and adjusts power that is required for the detected cable length. Link-Down Power Saving reduces the power consumption considerably when the network cable is disconnected. When the network cable is reconnected, the switch detects an incoming signal and restores normal power. This page shows Port setting for EEE, i.e. (Energy Efficient Ethernet) is a technology that reduces switch power consumption during periods of low network traffic. By default EEE is disabled on E2000 Series Switch and after enabling EEE on Switch it required 50sec time required for EEE activation. This page allow user to configure Energy Efficient Ethernet settings. To configure the EEE, click Port >> EEE.
Fig 4.4.1 Port EEE Setting Table port selection page
Fig 4.4.2 Port EEE Setting Table all ports selection page
Fig 4.4.3 Port EEE Setting port application page
Fig 4.4.4 Port EEE Setting Table after Enabled Port page
Note:- It will take 2 minutes to update the EEE on all ports.
4.5 Jumbo Frame
Jumbo frames are frames larger than the standard Ethernet frame size of 1518 bytes, which includes the Layer 2 header and Frame Check Sequence (FCS). In other words, jumbo frames refer to Ethernet packets of up to 10000 bytes in size. This page shows the maximum transmission unit (MTU) size of packet that the switch can receive/transmit. User can change the MTU configuration in this page. By default, Jumbo frames are disabled. This page allow user to configure switch jumbo frame size. To Configure Jumbo Frame, click Port >> Jumbo Frame.
Fig 4.5.1 Jumbo frame enable page
Fig 4.5.2 Jumbo Frame Enable for 9216 bytes page
4.6 Port Security
Port security monitors received and learned packets. Access to locked ports is limited to users with specific MAC addresses. Violation Action is when a device with an unauthorized MAC address attempts to use the port, the port will be administratively disabled and must be manually re-enabled.
Protect: Drops packets with unknown source MAC addresses until secure MAC addresses is learned.
Restrict: A port security violation restricts packet after Security Violation. This result into increase in counter and causes an SNMP Notification to be generated.
Shutdown: Discards packets from any unlearned source and shuts down the port. The port remains shut down until reactivated, or until the device is rebooted.
Sticky: You can Enable/Disable MAC addresses to be sticky. These can be dynamically learned or manually configured, stored in the address table, and added to the running configuration. If these addresses are saved in the configuration file, the interface does not need to dynamically relearn MAC address when the switch restarts.
This page allow user to configure port security settings for each interface. When
port security is enabled on interface, Violation action will be performed as per limitation. To Configure Port Security , click Port>> Port Security
Fig 4.6.1 Default Port Security Table page
Fig 4.6.2 Selecting Port Security GE4 page
Port Security Configuration:
Click on “Port Security” from menu, then Select Port number from Table click on “Edit”. Then Select/Deselect “State” to enable/Disable, Select the Violet Action “Protect or Restrict or Shutdown”, SelectDeselect “Sticky” option & Click on “Apply”.
Fig 4.6.3 Edit Port security for GE4 interface page
Fig 4.6.4 Port security for GE4 port interface page
4.7 Protected Port
Protected Ports provide Layer 2 isolation between interfaces ports and LAGs that share the same VLAN. Packets received from protected ports can be forwarded only to unprotected egress ports. Port protection is not subject to VLAN membership. Devices connected to protected ports are not allowed to communicate with each other, even if they are members of the same VLAN.
This shows Protected Port function to make port to be protected. Protected port is only allowed to communicate with unprotected port. In other words, protected port is not allowed to communicate with another protected port. To Configure Protected Port, click Security >> Protected Port.
Fig 4.7.1 Protected Port Table page
Fig 4.7.2 Selection of GE6 port for Protected page
Fig 4.7.3 Enable GE6 port for Protected Port configuration page
Fig 4.7.4 Protected Port Table after enabling GE1 page
4.7 Storm Control
When Broadcast, Multicast, or Unknown Unicast frames are received, they are duplicated, and a copy is sent to all possible egress ports. This means that in practice they are sent to all ports belonging to the relevant VLAN. In this way, one ingress frame is turned into many, creating the potential for a traffic storm.
Storm protection enables you to limit the number of frames entering the device and to define the types of frames that are counted towards this limit. By default, storm control is disabled. Broadcast storm control is a feature in which the switch intentionally ceases to forward all broadcast traffic if the bandwidth consumed by incoming broadcast frames exceeds a designated threshold.
If a particular type of ingress traffic (unicast, broadcast and multicast) is more than the rising threshold configured on a switch, the interface goes to blocked state for that particular traffic. Storm control prevents traffic on a LAN from being disrupted by a broadcast, multicast, or unicast storm on a port. To configure Storm Control global setting, click Security >> Storm Control.
Fig 4.8.1 Default Storm control port setting table page
Fig 4.8.2 Storm control Selecting port setting page
Fig 4.8.3 Storm control Edit port setting page
Fig 4.8.4 Storm control port setting selection page