Product Manual
Page 3
DGS-3024 Gigabit Ethernet Switch Manual Table of Contents Preface ...ix Intended Readers...x Notes, Notices, and Cautions ...x Safety Instructions ...xi Introduction...1 Features...1 Ports ...1 Performance Features...1 Management...1 Unpacking and ... Switch to Hub or Switch...10 Switch to Core Router Switch ...10 Introduction to Switch Management ...11 Management Options ...11 Web-based Management Interface ...11 SNMP-Based Management...11 Command Line Console Interface Through the Serial Port...11 Connecting the Console Port (RS-232 DCE)...11 First Time Connecting to The Switch ...13 Password ...
DGS-3024 Gigabit Ethernet Switch Manual Table of Contents Preface ...ix Intended Readers...x Notes, Notices, and Cautions ...x Safety Instructions ...xi Introduction...1 Features...1 Ports ...1 Performance Features...1 Management...1 Unpacking and ... Switch to Hub or Switch...10 Switch to Core Router Switch ...10 Introduction to Switch Management ...11 Management Options ...11 Web-based Management Interface ...11 SNMP-Based Management...11 Command Line Console Interface Through the Serial Port...11 Connecting the Console Port (RS-232 DCE)...11 First Time Connecting to The Switch ...13 Password ...
Product Manual
Page 6
DGS-3024 Gigabit Ethernet Switch Manual Security ...87 Trusted Host...87 Secure Socket Layer (SSL)...88 Download Certificate...88 Configuration...89 Secure Shell (SSH) ...91 SSH Configuration...92 SSH Algorithm ...... Parameters...97 Application Authentication Settings ...97 Authentication Server Group ...98 Authentication Server Host...100 Login Method Lists...101 Enable Method Lists ...103 Configure Local Enable Password...104 Enable Admin ...105 Management...106 User Accounts...106 Admin and User Privileges ...107 SNMP Manager ...109 SNMP User Table...109 SNMP View Table...111...
DGS-3024 Gigabit Ethernet Switch Manual Security ...87 Trusted Host...87 Secure Socket Layer (SSL)...88 Download Certificate...88 Configuration...89 Secure Shell (SSH) ...91 SSH Configuration...92 SSH Algorithm ...... Parameters...97 Application Authentication Settings ...97 Authentication Server Group ...98 Authentication Server Host...100 Login Method Lists...101 Enable Method Lists ...103 Configure Local Enable Password...104 Enable Admin ...105 Management...106 User Accounts...106 Admin and User Privileges ...107 SNMP Manager ...109 SNMP User Table...109 SNMP View Table...111...
Product Manual
Page 9
Preface DGS-3024 Gigabit Ethernet Switch Manual The DGS-3024 Manual is divided into chapters that describe the system installation and operating instructions with the basic installation of the Switch. Section 1, "Introduction" - Section 5, "Introduction to the Switch. Talks about configuring some of the basic functions of the Switch, including accessing the Switch information, using the Web-based Switch management feature on...
Preface DGS-3024 Gigabit Ethernet Switch Manual The DGS-3024 Manual is divided into chapters that describe the system installation and operating instructions with the basic installation of the Switch. Section 1, "Introduction" - Section 5, "Introduction to the Switch. Talks about configuring some of the basic functions of the Switch, including accessing the Switch information, using the Web-based Switch management feature on...
Product Manual
Page 16
...; Password enabled. • Telnet remote control console. • Broadcast storm control. • Multicast storm control. • Command Line Interface support. • Syslog support. • SNTP support. • SNMP Trap on MAC Notification support. • Jumbo frame support. • SSH support. • SSL support. • TACACS+/RADIUS support. 2 four groups. DGS-3024 Gigabit Ethernet Switch...
...; Password enabled. • Telnet remote control console. • Broadcast storm control. • Multicast storm control. • Command Line Interface support. • Syslog support. • SNTP support. • SNMP Trap on MAC Notification support. • Jumbo frame support. • SSH support. • SSL support. • TACACS+/RADIUS support. 2 four groups. DGS-3024 Gigabit Ethernet Switch...
Product Manual
Page 26
...174; 2000 operating system, ensure that you have previously set to configure the Switch. 12. You will be created by disconnecting its power supply. Initial screen after first connection 12 DGS-3024 Gigabit Ethernet Switch Manual NOTE: When you use arrow keys in HyperTerminal's VT100 emulation. When... make this connection on Windows 2000 service packs. 9. Figure 5- 1. Upon the initial connection, there is no default user name and password for information on a PC, make sure the emulation is where you are using the CLI. 13. This is configured to use HyperTerminal...
...174; 2000 operating system, ensure that you have previously set to configure the Switch. 12. You will be created by disconnecting its power supply. Initial screen after first connection 12 DGS-3024 Gigabit Ethernet Switch Manual NOTE: When you use arrow keys in HyperTerminal's VT100 emulation. When... make this connection on Windows 2000 service packs. 9. Figure 5- 1. Upon the initial connection, there is no default user name and password for information on a PC, make sure the emulation is where you are using the CLI. 13. This is configured to use HyperTerminal...
Product Manual
Page 27
... (shown below : There is no initial username or password. Leave the Username and Password fields blank. DGS-3024 Gigabit Ethernet Switch Manual First Time Connecting to The Switch The Switch supports user-based security that can be given access to the command prompt DGS-3024:4# shown below ). Press Enter in the Switch to refresh the console screen. NOTE: Press Ctrl...
... (shown below : There is no initial username or password. Leave the Username and Password fields blank. DGS-3024 Gigabit Ethernet Switch Manual First Time Connecting to The Switch The Switch supports user-based security that can be given access to the command prompt DGS-3024:4# shown below ). Press Enter in the Switch to refresh the console screen. NOTE: Press Ctrl...
Product Manual
Page 28
.... 14 To save all your initial login, define new passwords for both default user names to prevent unauthorized access to verify it. DGS-3024 Gigabit Ethernet Switch Manual Password Protection The DGS-3024 does not have privileged access to the Switch's management software. NOTE: Passwords are not saved when the Switch is to create user accounts. If you log in...
.... 14 To save all your initial login, define new passwords for both default user names to prevent unauthorized access to verify it. DGS-3024 Gigabit Ethernet Switch Manual Password Protection The DGS-3024 does not have privileged access to the Switch's management software. NOTE: Passwords are not saved when the Switch is to create user accounts. If you log in...
Product Manual
Page 29
... be as serious as a reboot (someone accidentally turned OFF the Switch), or less serious like passwords. An additional layer of security is available for a listed group of SNMP managers. The Switch generates traps and sends them to as an SNMP manager. Consequently,... and modify the settings of events that support SNMP include software (referred to the trap recipient (or network manager). SNMP Settings DGS-3024 Gigabit Ethernet Switch Manual Simple Network Management Protocol (SNMP) is an OSI Layer 7 (Application Layer) designed specifically for SNMP v.1 and v.2 management...
... be as serious as a reboot (someone accidentally turned OFF the Switch), or less serious like passwords. An additional layer of security is available for a listed group of SNMP managers. The Switch generates traps and sends them to as an SNMP manager. Consequently,... and modify the settings of events that support SNMP include software (referred to the trap recipient (or network manager). SNMP Settings DGS-3024 Gigabit Ethernet Switch Manual Simple Network Management Protocol (SNMP) is an OSI Layer 7 (Application Layer) designed specifically for SNMP v.1 and v.2 management...
Product Manual
Page 32
...button This opens the management module's user authentication window, as Opera, Netscape Navigator/Communicator, or Microsoft Internet Explorer. Enter Network Password dialog box 18 The Web-based management module and the Console program (and Telnet) are the same as a universal access tool... . Figure 6- 2. Login to Web Manager To begin managing your Switch, simply run the browser you have defined for the device. DGS-3024 Gigabit Ethernet Switch Manual 6 WEB-BASED NETWORK MANAGEMENT Introduction The DGS-3024 offers an embedded Web-based (HTML) interface allowing users to manage...
...button This opens the management module's user authentication window, as Opera, Netscape Navigator/Communicator, or Microsoft Internet Explorer. Enter Network Password dialog box 18 The Web-based management module and the Console program (and Telnet) are the same as a universal access tool... . Figure 6- 2. Login to Web Manager To begin managing your Switch, simply run the browser you have defined for the device. DGS-3024 Gigabit Ethernet Switch Manual 6 WEB-BASED NETWORK MANAGEMENT Introduction The DGS-3024 offers an embedded Web-based (HTML) interface allowing users to manage...
Product Manual
Page 33
..., allows you to view performance statistics, and permits you to the greater network. 19 NOTE: Be sure to configure the user name and password in the Save Configuration window (Maintenance → Save Changes) or use the command line interface (CLI) command save. Area 2 Presents a...the Web-based manager are explained below shows the user interface. Areas of the Switch. DGS-3024 Gigabit Ethernet Switch Manual Leave both the User Name field and the Password field blank and click OK. The Switch management features available in the table. NOTICE: Any changes made to display the...
..., allows you to view performance statistics, and permits you to the greater network. 19 NOTE: Be sure to configure the user name and password in the Save Configuration window (Maintenance → Save Changes) or use the command line interface (CLI) command save. Area 2 Presents a...the Web-based manager are explained below shows the user interface. Areas of the Switch. DGS-3024 Gigabit Ethernet Switch Manual Leave both the User Name field and the Password field blank and click OK. The Switch management features available in the table. NOTICE: Any changes made to display the...
Product Manual
Page 91
DGS-3024 Gigabit Ethernet Switch Manual Figure 7- 55. For users running software that wishes to gain access to requests from an outside source. Once unlocked, normal traffic is included within ... traffic is allowed to access the network. The Client will respond to the LAN or Switch services. Authenticator Client The Client is made. This port is "locked" until the point when a Client with the correct username and password is compliant with the 802.1x protocol. Figure 7- 56. The implementation of authorizing and...
DGS-3024 Gigabit Ethernet Switch Manual Figure 7- 55. For users running software that wishes to gain access to requests from an outside source. Once unlocked, normal traffic is included within ... traffic is allowed to access the network. The Client will respond to the LAN or Switch services. Authenticator Client The Client is made. This port is "locked" until the point when a Client with the correct username and password is compliant with the 802.1x protocol. Figure 7- 56. The implementation of authorizing and...
Product Manual
Page 95
... changes. Figure 7- 60. 802.1x Local User Table Configuration window Click Apply to set a local user, enter a User Name, Password, and confirmation of the authentication sessions. The default setting is 3600 seconds. To view configurations for the 802.1X function, click Configuration...the 802.1x Local User Table in the exchanges between periodic reauthentication of times that password. To set the local users. 81 The default setting is 2. DGS-3024 Gigabit Ethernet Switch Manual ServerTimeout This value determines timeout conditions in the same window. The default setting ...
... changes. Figure 7- 60. 802.1x Local User Table Configuration window Click Apply to set a local user, enter a User Name, Password, and confirmation of the authentication sessions. The default setting is 3600 seconds. To view configurations for the 802.1X function, click Configuration...the 802.1x Local User Table in the exchanges between periodic reauthentication of times that password. To set the local users. 81 The default setting is 2. DGS-3024 Gigabit Ethernet Switch Manual ServerTimeout This value determines timeout conditions in the same window. The default setting ...
Product Manual
Page 105
...steps required to use the SSH protocol for the method SSH will use a specified authorization method to manage the Switch using the SSH protocol. 2. DGS-3024 Gigabit Ethernet Switch Manual Secure Shell (SSH) SSH is an abbreviation of Secure Shell, which is an essential tool in today...'s networking environment. SSH, with its array of executing commands on the Switch, including specifying a password. Configure the User Account ...
...steps required to use the SSH protocol for the method SSH will use a specified authorization method to manage the Switch using the SSH protocol. 2. DGS-3024 Gigabit Ethernet Switch Manual Secure Shell (SSH) SSH is an abbreviation of Secure Shell, which is an essential tool in today...'s networking environment. SSH, with its array of executing commands on the Switch, including specifying a password. Configure the User Account ...
Product Manual
Page 108
...enabled or disabled to choose if the administrator wishes to use a publickey configuration set on a SSH server, for authentication on the Switch. The default is Enabled. The default is Enabled. Public Key This field may be enabled or disabled to choose if the administrator... enabled or disabled to choose if the administrator wishes to use a locally configured password for authentication. This field is running the Linux operating system with Cipher Block Chaining. DGS-3024 Gigabit Ethernet Switch Manual AES256-CBC Use the pull-down to enable or disable the Advanced Encryption...
...enabled or disabled to choose if the administrator wishes to use a publickey configuration set on a SSH server, for authentication on the Switch. The default is Enabled. The default is Enabled. Public Key This field may be enabled or disabled to choose if the administrator... enabled or disabled to choose if the administrator wishes to use a locally configured password for authentication. This field is running the Linux operating system with Cipher Block Chaining. DGS-3024 Gigabit Ethernet Switch Manual AES256-CBC Use the pull-down to enable or disable the Advanced Encryption...
Product Manual
Page 109
DGS-3024 Gigabit Ethernet Switch Manual SSH User Authentication The following windows are used in conjunction with the Host Based choice in the Auth. Host Based - This parameter should be previously configured. Choosing this manual located in order to identify the SSH user. Password - This parameter is... the user to input the following to set the SSH User Authentication parameters on the Switch, a User Account must be chosen if the administrator wishes to re-type the password for authentication purposes. NOTE: To set the authorization for users attempting to use a ...
DGS-3024 Gigabit Ethernet Switch Manual SSH User Authentication The following windows are used in conjunction with the Host Based choice in the Auth. Host Based - This parameter should be previously configured. Choosing this manual located in order to identify the SSH user. Password - This parameter is... the user to input the following to set the SSH User Authentication parameters on the Switch, a User Account must be chosen if the administrator wishes to re-type the password for authentication purposes. NOTE: To set the authorization for users attempting to use a ...
Product Manual
Page 110
... must be granted normal user privileges on the Switch. When a user logs in the server group for authentication, until the authentication has been verified or denied, or the list is prompted for a password. DGS-3024 Gigabit Ethernet Switch Manual Access Authentication Control The TACACS / XTACACS... / TACACS+ / RADIUS commands let you secure access to the Switch using the TCP protocol to ensure reliable delivery In order for the ...
... must be granted normal user privileges on the Switch. When a user logs in the server group for authentication, until the authentication has been verified or denied, or the list is prompted for a password. DGS-3024 Gigabit Ethernet Switch Manual Access Authentication Control The TACACS / XTACACS... / TACACS+ / RADIUS commands let you secure access to the Switch using the TCP protocol to ensure reliable delivery In order for the ...
Product Manual
Page 115
...Enable Admin window, in which the user must enter a previously configured password, set in the Switch is 5 seconds. To configure a new Method List, click the Add button. Login Method List Settings window The Switch contains one authentication protocol can be modified. Retransmit (1- If the ...If no response comes from the server host, the Switch will resend an 255) authentication request when the TACACS server does not respond. DGS-3024 Gigabit Ethernet Switch Manual Timeout (1-255) Enter the time in seconds the Switch will wait for more detailed information concerning the Enable ...
...Enable Admin window, in which the user must enter a previously configured password, set in the Switch is 5 seconds. To configure a new Method List, click the Add button. Login Method List Settings window The Switch contains one authentication protocol can be modified. Retransmit (1- If the ...If no response comes from the server host, the Switch will resend an 255) authentication request when the TACACS server does not respond. DGS-3024 Gigabit Ethernet Switch Manual Timeout (1-255) Enter the time in seconds the Switch will wait for more detailed information concerning the Enable ...
Product Manual
Page 117
... with user level privileges to Administrator (Admin) level privileges using the XTACACS list, the Local Enable password set the Local Enable Password, see the next section, entitled Local Enable Password. To view the following protocol listed, XTACACS. This default Enable Method List cannot be deleted but... by the user, click the under the Delete heading corresponding to the entry desired to be configured. Edit window 103 DGS-3024 Gigabit Ethernet Switch Manual Enable Method Lists The Enable Method Lists window is used to authenticate the user. Enable Method List Settings window To...
... with user level privileges to Administrator (Admin) level privileges using the XTACACS list, the Local Enable password set the Local Enable Password, see the next section, entitled Local Enable Password. To view the following protocol listed, XTACACS. This default Enable Method List cannot be deleted but... by the user, click the under the Delete heading corresponding to the entry desired to be configured. Edit window 103 DGS-3024 Gigabit Ethernet Switch Manual Enable Method Lists The Enable Method Lists window is used to authenticate the user. Enable Method List Settings window To...
Product Manual
Page 118
... require the user to be authenticated using a user-defined server group previously configured on the Switch. Adding this parameter will require the user to 15 characters. DGS-3024 Gigabit Ethernet Switch Manual Figure 8- 20. Add window To define an Enable Login Method List, set the ...following parameters and click Apply: Parameter Description Method List Name Enter a method list name defined by the user in the next section entitled Local Enable Password. ...
... require the user to be authenticated using a user-defined server group previously configured on the Switch. Adding this parameter will require the user to 15 characters. DGS-3024 Gigabit Ethernet Switch Manual Figure 8- 20. Add window To define an Enable Login Method List, set the ...following parameters and click Apply: Parameter Description Method List Name Enter a method list name defined by the user in the next section entitled Local Enable Password. ...
Product Manual
Page 119
...level privileges, the user will have logged on to access Administrator Level privileges on the Switch. Confirm Local Enable Confirm the new password entered above. Possible authentication methods for this window and will support the "enable" ...password. Parameter Description Old Local Enable Password If a password was previously configured for this window appears, click the Enable Admin button revealing a dialog box for users who have only user level privileges. Enter Network Password dialog box 105 DGS-3024 Gigabit Ethernet Switch Manual To set the Local Enable Password...
...level privileges, the user will have logged on to access Administrator Level privileges on the Switch. Confirm Local Enable Confirm the new password entered above. Possible authentication methods for this window and will support the "enable" ...password. Parameter Description Old Local Enable Password If a password was previously configured for this window appears, click the Enable Admin button revealing a dialog box for users who have only user level privileges. Enter Network Password dialog box 105 DGS-3024 Gigabit Ethernet Switch Manual To set the Local Enable Password...