Product Manual
Page 3
DGS-3024 Gigabit Ethernet Switch Manual Table of Contents Preface ...ix Intended Readers...x Notes, Notices, and Cautions ...x Safety Instructions ...xi Introduction...1 Features...1 Ports ...1 Performance Features...1 Management...1 Unpacking and ... Switch to Hub or Switch...10 Switch to Core Router Switch ...10 Introduction to Switch Management ...11 Management Options ...11 Web-based Management Interface ...11 SNMP-Based Management...11 Command Line Console Interface Through the Serial Port...11 Connecting the Console Port (RS-232 DCE)...11 First Time Connecting to The Switch ...13 Password ...
DGS-3024 Gigabit Ethernet Switch Manual Table of Contents Preface ...ix Intended Readers...x Notes, Notices, and Cautions ...x Safety Instructions ...xi Introduction...1 Features...1 Ports ...1 Performance Features...1 Management...1 Unpacking and ... Switch to Hub or Switch...10 Switch to Core Router Switch ...10 Introduction to Switch Management ...11 Management Options ...11 Web-based Management Interface ...11 SNMP-Based Management...11 Command Line Console Interface Through the Serial Port...11 Connecting the Console Port (RS-232 DCE)...11 First Time Connecting to The Switch ...13 Password ...
Product Manual
Page 6
DGS-3024 Gigabit Ethernet Switch Manual Security ...87 Trusted Host...87 Secure Socket Layer (SSL)...88 Download Certificate...88 Configuration...89 Secure Shell (SSH) ...91 SSH Configuration...92 SSH Algorithm ...... Parameters...97 Application Authentication Settings ...97 Authentication Server Group ...98 Authentication Server Host...100 Login Method Lists...101 Enable Method Lists ...103 Configure Local Enable Password...104 Enable Admin ...105 Management...106 User Accounts...106 Admin and User Privileges ...107 SNMP Manager ...109 SNMP User Table...109 SNMP View Table...111...
DGS-3024 Gigabit Ethernet Switch Manual Security ...87 Trusted Host...87 Secure Socket Layer (SSL)...88 Download Certificate...88 Configuration...89 Secure Shell (SSH) ...91 SSH Configuration...92 SSH Algorithm ...... Parameters...97 Application Authentication Settings ...97 Authentication Server Group ...98 Authentication Server Host...100 Login Method Lists...101 Enable Method Lists ...103 Configure Local Enable Password...104 Enable Admin ...105 Management...106 User Accounts...106 Admin and User Privileges ...107 SNMP Manager ...109 SNMP User Table...109 SNMP View Table...111...
Product Manual
Page 9
... and maximum distances. Introduces basic Switch management features, including password protection, SNMP settings, IP address assignment, and connecting devices to and using the Switch's utilities and setting up network configurations, such as Quality of Service, Port Mirroring, and configuring the Spanning Tree. Preface DGS-3024 Gigabit Ethernet Switch Manual The DGS-3024 Manual is divided into chapters that...
... and maximum distances. Introduces basic Switch management features, including password protection, SNMP settings, IP address assignment, and connecting devices to and using the Switch's utilities and setting up network configurations, such as Quality of Service, Port Mirroring, and configuring the Spanning Tree. Preface DGS-3024 Gigabit Ethernet Switch Manual The DGS-3024 Manual is divided into chapters that...
Product Manual
Page 16
... counters for the receive functions only. DGS-3024 Gigabit Ethernet Switch Manual • Built-in SNMP management: Bridge MIB (RFC 1493) MIB-II (RFC 1213) 802.1P/Q MIB (RFC 2674) Ethernet-like MIB (RFC 1643) ... counters for both receive and transmit functions. • Supports Web-based management. • TFTP Client support. • BOOTP Client support. • DHCP Client support. • Password enabled. • Telnet remote control console. • Broadcast storm control. • Multicast storm control. • Command Line Interface support. • Syslog support. • SNTP...
... counters for the receive functions only. DGS-3024 Gigabit Ethernet Switch Manual • Built-in SNMP management: Bridge MIB (RFC 1493) MIB-II (RFC 1213) 802.1P/Q MIB (RFC 2674) Ethernet-like MIB (RFC 1643) ... counters for both receive and transmit functions. • Supports Web-based management. • TFTP Client support. • BOOTP Client support. • DHCP Client support. • Password enabled. • Telnet remote control console. • Broadcast storm control. • Multicast storm control. • Command Line Interface support. • Syslog support. • SNTP...
Product Manual
Page 26
...up user accounts, log in and continue to enter a username and a password. You will prompt the user to configure the Switch. 12. When you have completed your console screen. DGS-3024 Gigabit Ethernet Switch Manual NOTE: When you use arrow keys in HyperTerminal's VT100 emulation. Many ...commands require administrator-level access privileges. See the DGS-3024 Command Line Interface Reference Manual on the documentation CD for the Switch. After you still do not see anything, try rebooting the Switch by the administrator. If you have correctly set up the ...
...up user accounts, log in and continue to enter a username and a password. You will prompt the user to configure the Switch. 12. When you have completed your console screen. DGS-3024 Gigabit Ethernet Switch Manual NOTE: When you use arrow keys in HyperTerminal's VT100 emulation. Many ...commands require administrator-level access privileges. See the DGS-3024 Command Line Interface Reference Manual on the documentation CD for the Switch. After you still do not see anything, try rebooting the Switch by the administrator. If you have correctly set up the ...
Product Manual
Page 27
... the console program in both the Username and Password fields. DGS-3024 Gigabit Ethernet Switch Manual First Time Connecting to The Switch The Switch supports user-based security that can be used to refresh the console screen. NOTE: Press Ctrl+R to log onto the Switch. Leave the Username and Password fields blank. Command Prompt NOTE: The first user...
... the console program in both the Username and Password fields. DGS-3024 Gigabit Ethernet Switch Manual First Time Connecting to The Switch The Switch supports user-based security that can be used to refresh the console screen. NOTE: Press Ctrl+R to log onto the Switch. Leave the Username and Password fields blank. Command Prompt NOTE: The first user...
Product Manual
Page 28
...administrator-level account for future reference. NOTE: Passwords are not saved when the Switch is to create user accounts. If you log in nonvolatile storage, you have a default user name and password. DGS-3024:4#create account admin newmanager Command: create account admin...To save command to copy the running configuration file and are case sensitive. DGS-3024 Gigabit Ethernet Switch Manual Password Protection The DGS-3024 does not have privileged access to the Switch's management software. After your configuration changes in using a predefined administrator-level user...
...administrator-level account for future reference. NOTE: Passwords are not saved when the Switch is to create user accounts. If you log in nonvolatile storage, you have a default user name and password. DGS-3024:4#create account admin newmanager Command: create account admin...To save command to copy the running configuration file and are case sensitive. DGS-3024 Gigabit Ethernet Switch Manual Password Protection The DGS-3024 does not have privileged access to the Switch's management software. After your configuration changes in using a predefined administrator-level user...
Product Manual
Page 29
...DGS-3024 supports SNMP versions 1, 2c, and 3. The SNMP version may also be set for proper operation, monitor performance and detect potential problems in the Switch, Switch group or network. The events can be as serious as a reboot (someone accidentally turned OFF the Switch), or less serious like passwords... vary in the level of events that occur on the device. Traps Traps are : • public - SNMP Settings DGS-3024 Gigabit Ethernet Switch Manual Simple Network Management Protocol (SNMP) is available for SNMP v.3 in that SNMP messages may be encrypted. SNMP v.3 uses...
...DGS-3024 supports SNMP versions 1, 2c, and 3. The SNMP version may also be set for proper operation, monitor performance and detect potential problems in the Switch, Switch group or network. The events can be as serious as a reboot (someone accidentally turned OFF the Switch), or less serious like passwords... vary in the level of events that occur on the device. Traps Traps are : • public - SNMP Settings DGS-3024 Gigabit Ethernet Switch Manual Simple Network Management Protocol (SNMP) is available for SNMP v.3 in that SNMP messages may be encrypted. SNMP v.3 uses...
Product Manual
Page 32
...Password dialog box 18 In the page that the proxy for the Switch is 10.90.90.90. Thus, all settings encountered in Web-based management are different ways to access the same internal Switching software and configure it to the IP address you have defined for the device. DGS-3024 Gigabit Ethernet Switch... Manual 6 WEB-BASED NETWORK MANAGEMENT Introduction The DGS-3024 offers an embedded Web-based (HTML) interface allowing users to manage the Switch from anywhere on the Login to make a setup button: ...
...Password dialog box 18 In the page that the proxy for the Switch is 10.90.90.90. Thus, all settings encountered in Web-based management are different ways to access the same internal Switching software and configure it to the IP address you have defined for the device. DGS-3024 Gigabit Ethernet Switch... Manual 6 WEB-BASED NETWORK MANAGEMENT Introduction The DGS-3024 offers an embedded Web-based (HTML) interface allowing users to manage the Switch from anywhere on the Login to make a setup button: ...
Product Manual
Page 33
... interface. Area 2 Presents a graphical near real-time image of the front panel of configuration data. The Switch management features available in the table. DGS-3024 Gigabit Ethernet Switch Manual Leave both the User Name field and the Password field blank and click OK. Main Web-Manager window Area Function Area 1 Select the folder or window...
... interface. Area 2 Presents a graphical near real-time image of the front panel of configuration data. The Switch management features available in the table. DGS-3024 Gigabit Ethernet Switch Manual Leave both the User Name field and the Password field blank and click OK. Main Web-Manager window Area Function Area 1 Select the folder or window...
Product Manual
Page 91
...successfully "unlocks" the port. Only EAPOL traffic is compliant with the correct username and password is included within the operating system. The Client will request access to the LAN and or Switch through EAPOL packets and, in turn will respond to pass through the port. This ....1x client software from the Switch. Once unlocked, normal traffic is made. All workstation must be authenticated per port by a remote RADIUS server to allow the remaining users on the same port access to the LAN or Switch services. Figure 7- 56. DGS-3024 Gigabit Ethernet Switch Manual Figure 7- 55.
...successfully "unlocks" the port. Only EAPOL traffic is compliant with the correct username and password is included within the operating system. The Client will request access to the LAN and or Switch through EAPOL packets and, in turn will respond to pass through the port. This ....1x client software from the Switch. Once unlocked, normal traffic is made. All workstation must be authenticated per port by a remote RADIUS server to allow the remaining users on the same port access to the LAN or Switch services. Figure 7- 56. DGS-3024 Gigabit Ethernet Switch Manual Figure 7- 55.
Product Manual
Page 95
... Figure 7- 60. 802.1x Local User Table Configuration window Click Apply to implement your configuration changes. DGS-3024 Gigabit Ethernet Switch Manual ServerTimeout This value determines timeout conditions in the same window. MaxReq The maximum number of times that ...defines a nonzero number of seconds between the Authenticator and the authentication server. Click Apply to set a local user, enter a User Name, Password, and confirmation of that password...
... Figure 7- 60. 802.1x Local User Table Configuration window Click Apply to implement your configuration changes. DGS-3024 Gigabit Ethernet Switch Manual ServerTimeout This value determines timeout conditions in the same window. MaxReq The maximum number of times that ...defines a nonzero number of seconds between the Authenticator and the authentication server. Click Apply to set a local user, enter a User Name, Password, and confirmation of that password...
Product Manual
Page 105
...account with admin-level access using the Current Accounts window (Security > Secure Shell (SSH) > SSH User Authentication). This password is used to logon to manage the Switch using the Encryption Algorithm window. 4. It allows a secure login to creating any other admin-level User Account on a ... its array of Secure Shell, which is a program allowing secure remote login and secure network services over an insecure network. DGS-3024 Gigabit Ethernet Switch Manual Secure Shell (SSH) SSH is an abbreviation of unmatched security features is an essential tool in the Security folder. SSH...
...account with admin-level access using the Current Accounts window (Security > Secure Shell (SSH) > SSH User Authentication). This password is used to logon to manage the Switch using the Encryption Algorithm window. 4. It allows a secure login to creating any other admin-level User Account on a ... its array of Secure Shell, which is a program allowing secure remote login and secure network services over an insecure network. DGS-3024 Gigabit Ethernet Switch Manual Secure Shell (SSH) SSH is an abbreviation of unmatched security features is an essential tool in the Security folder. SSH...
Product Manual
Page 108
... pull-down to use a locally configured password for authentication on a SSH server, for Linux users requiring SSH authentication techniques and the host computer is Enabled. The default is Enabled. The default is Enabled. DGS-3024 Gigabit Ethernet Switch Manual AES256-CBC Use the pull-down ...operating system with Cipher Block Chaining. Twofish128 Use the pull-down to enable or disable the twofish128 encryption algorithm. Authentication Algorithm Password This field may be enabled or disabled to choose if the administrator wishes to enable or disable the HMAC (Hash for...
... pull-down to use a locally configured password for authentication on a SSH server, for Linux users requiring SSH authentication techniques and the host computer is Enabled. The default is Enabled. The default is Enabled. DGS-3024 Gigabit Ethernet Switch Manual AES256-CBC Use the pull-down ...operating system with Cipher Block Chaining. Twofish128 Use the pull-down to enable or disable the twofish128 encryption algorithm. Authentication Algorithm Password This field may be enabled or disabled to choose if the administrator wishes to enable or disable the HMAC (Hash for...
Product Manual
Page 109
...- This parameter is only used in conjunction with the Host Based choice in the Current Accounts window, which will prompt the administrator for a password, and then to use a remote SSH server for confirmation. For more than 32 characters to identify the SSH user. Public Key - Host... Figure 8- 7. To access the following windows are used in conjunction with the Host Based choice in the Management folder. DGS-3024 Gigabit Ethernet Switch Manual SSH User Authentication The following window, click Security Management > Secure Shell > SSH User Authentication Mode.
...- This parameter is only used in conjunction with the Host Based choice in the Current Accounts window, which will prompt the administrator for a password, and then to use a remote SSH server for confirmation. For more than 32 characters to identify the SSH user. Public Key - Host... Figure 8- 7. To access the following windows are used in conjunction with the Host Based choice in the Management folder. DGS-3024 Gigabit Ethernet Switch Manual SSH User Authentication The following window, click Security Management > Secure Shell > SSH User Authentication Mode.
Product Manual
Page 110
... function to administrator level privileges, the user must access the Enable Admin window and then enter a password, which was previously configured by the Switch to enter usernames and passwords for authentication. When the user is exhausted. To gain access to work properly, a TACACS /...protocols. If no authentication is denied access to the Switch. • The server doesn't respond to the next technique listed in Authentication Server Groups are running the specified protocol. DGS-3024 Gigabit Ethernet Switch Manual Access Authentication Control The TACACS / XTACACS / ...
... function to administrator level privileges, the user must access the Enable Admin window and then enter a password, which was previously configured by the Switch to enter usernames and passwords for authentication. When the user is exhausted. To gain access to work properly, a TACACS /...protocols. If no authentication is denied access to the Switch. • The server doesn't respond to the next technique listed in Authentication Server Groups are running the specified protocol. DGS-3024 Gigabit Ethernet Switch Manual Access Authentication Control The TACACS / XTACACS / ...
Product Manual
Page 115
... key to the administrator level, the user must use the Enable Admin window, in which the user must enter a previously configured password, set by the user, click the under the Delete heading corresponding to the entry desired to add the server host. NOTE: More...Login Method List, click on , until the list is 5 seconds. The default value is exhausted. XTACACS- DGS-3024 Gigabit Ethernet Switch Manual Timeout (1-255) Enter the time in seconds the Switch will wait for example TACACS - Successful login using the XTACACS list, the local account database set and cannot...
... key to the administrator level, the user must use the Enable Admin window, in which the user must enter a previously configured password, set by the user, click the under the Delete heading corresponding to the entry desired to add the server host. NOTE: More...Login Method List, click on , until the list is 5 seconds. The default value is exhausted. XTACACS- DGS-3024 Gigabit Ethernet Switch Manual Timeout (1-255) Enter the time in seconds the Switch will wait for example TACACS - Successful login using the XTACACS list, the local account database set and cannot...
Product Manual
Page 117
...will restart the same sequence with user level privileges to Administrator (Admin) level privileges using the XTACACS list, the Local Enable password set in the server group and so on the Switch, he or she must be deleted. To view the following protocol listed, XTACACS. Enable Method List - A maximum of ... Method List defined by the user, click the under the Delete heading corresponding to the entry desired to be authenticated by the Administrator. DGS-3024 Gigabit Ethernet Switch Manual Enable Method Lists The Enable Method Lists window is used to authenticate the user.
...will restart the same sequence with user level privileges to Administrator (Admin) level privileges using the XTACACS list, the Local Enable password set in the server group and so on the Switch, he or she must be deleted. To view the following protocol listed, XTACACS. Enable Method List - A maximum of ... Method List defined by the user, click the under the Delete heading corresponding to the entry desired to be authenticated by the Administrator. DGS-3024 Gigabit Ethernet Switch Manual Enable Method Lists The Enable Method Lists window is used to authenticate the user.
Product Manual
Page 118
...remote XTACACS server. • tacacs+ - Configure Local Enable Password This window will require the user to be authenticated using a user-defined server group previously configured on the Switch. Adding a previously configured server group will require the user ...this parameter will configure the locally enabled password for the Enable Admin command. The local enable password must be authenticated using the local enable password database on the Switch. Configure Local Enable Password window 104 DGS-3024 Gigabit Ethernet Switch Manual Figure 8- 20. Enable Method List...
...remote XTACACS server. • tacacs+ - Configure Local Enable Password This window will require the user to be authenticated using a user-defined server group previously configured on the Switch. Adding a previously configured server group will require the user ...this parameter will configure the locally enabled password for the Enable Admin command. The local enable password must be authenticated using the local enable password database on the Switch. Configure Local Enable Password window 104 DGS-3024 Gigabit Ethernet Switch Manual Figure 8- 20. Enable Method List...
Product Manual
Page 119
...characters. After logging on to the Switch, users will have logged on to the Switch on the Switch. Parameter Description Old Local Enable Password If a password was previously configured for this entry, enter it to a new password New Local Enable Password Enter the new password that will support the "enable" ...appears, click the Enable Admin button revealing a dialog box for users who have only user level privileges. DGS-3024 Gigabit Ethernet Switch Manual To set the Local Enable Password, set in the New Local Enabled field will result in order to change it here in a fail ...
...characters. After logging on to the Switch, users will have logged on to the Switch on the Switch. Parameter Description Old Local Enable Password If a password was previously configured for this entry, enter it to a new password New Local Enable Password Enter the new password that will support the "enable" ...appears, click the Enable Admin button revealing a dialog box for users who have only user level privileges. DGS-3024 Gigabit Ethernet Switch Manual To set the Local Enable Password, set in the New Local Enabled field will result in order to change it here in a fail ...