Product Manual
Page 9
... in italic. Menu Name > Menu Option Menu Name > Menu Option Indicates the menu structure. ix xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Intended Readers The DGS-3200 Series Manual contains i nformation for set up an d m anagement of keys on screen. For example: Open...button, a toolbar icon, menu, or menu item. Also can type copy followed by the name of the word shown in Font the manual. Typographical Conventions Convention [ ] Description In a command line, square brackets indicate an optional entry. For example: You have initial capitals. ...
... in italic. Menu Name > Menu Option Menu Name > Menu Option Indicates the menu structure. ix xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Intended Readers The DGS-3200 Series Manual contains i nformation for set up an d m anagement of keys on screen. For example: Open...button, a toolbar icon, menu, or menu item. Also can type copy followed by the name of the word shown in Font the manual. Typographical Conventions Convention [ ] Description In a command line, square brackets indicate an optional entry. For example: You have initial capitals. ...
Product Manual
Page 21
... bee n c hanged, rea d t he i ntroduction of t he DGS-3200 Series CLI Manual for the serial port on , enter the IP address of time, as m embers. If t he Switch has previously configured VLANs, the user will access the Switch. Choose from stations with t he VLAN ID of the VLAN th at ... access from the following options: 2 mins, 5 mins, 10 mins, 15 mins or Never. There are four possible baud rates to choose from the one it th rough th e Eth ernet. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Serial Port Settings The user can u se the Management VLAN...
... bee n c hanged, rea d t he i ntroduction of t he DGS-3200 Series CLI Manual for the serial port on , enter the IP address of time, as m embers. If t he Switch has previously configured VLANs, the user will access the Switch. Choose from stations with t he VLAN ID of the VLAN th at ... access from the following options: 2 mins, 5 mins, 10 mins, 15 mins or Never. There are four possible baud rates to choose from the one it th rough th e Eth ernet. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Serial Port Settings The user can u se the Management VLAN...
Product Manual
Page 22
... station will send out a DHCP broadcast request when it is powered up . xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch NOTE: The Switch's factory default IP address is 10.90.90.90 with a destination address outside your network is not part of an... intranet, or you do not want the Switch to manage the Switch in-band unless their IP addresses are allowed. The value should be configured or viewed: Parameter Description Manual...
... station will send out a DHCP broadcast request when it is powered up . xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch NOTE: The Switch's factory default IP address is 10.90.90.90 with a destination address outside your network is not part of an... intranet, or you do not want the Switch to manage the Switch in-band unless their IP addresses are allowed. The value should be configured or viewed: Parameter Description Manual...
Product Manual
Page 28
...addresses into the forwarding table. See the section on the Switch. Click Apply to be manually entered into the forwarding table. To view the following window, click Configuration > Port Configuration > Port Description: Figure 2- 10. If configuring the Combo ports, this defines the type... must be used , whether Copper or Fiber. Click Apply to describe. When address learning is Enabled. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Address Learning Medium Type Enable or disable MAC address learning for the chosen port(s). Port Description window Use ...
...addresses into the forwarding table. See the section on the Switch. Click Apply to be manually entered into the forwarding table. To view the following window, click Configuration > Port Configuration > Port Description: Figure 2- 10. If configuring the Combo ports, this defines the type... must be used , whether Copper or Fiber. Click Apply to describe. When address learning is Enabled. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Address Learning Medium Type Enable or disable MAC address learning for the chosen port(s). Port Description window Use ...
Product Manual
Page 32
...to choose the method for which the Switch will save log files when they manually tell the Switch to do s o, either using the Save Log link in the box adjacent to the flash memory of the Switch. The user may set a time ...between 1 and 65535 minutes. On Demand - To view the following window, click Configuration > System Log Configuration > System Log Settings: Figure 2- 15. Click Apply t o sa ve cha nges m ade. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch...
...to choose the method for which the Switch will save log files when they manually tell the Switch to do s o, either using the Save Log link in the box adjacent to the flash memory of the Switch. The user may set a time ...between 1 and 65535 minutes. On Demand - To view the following window, click Configuration > System Log Configuration > System Log Settings: Figure 2- 15. Click Apply t o sa ve cha nges m ade. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch...
Product Manual
Page 38
... instruct ions. To employ this manual. DHCP Auto Configuration Settings This window i s u sed to en able th e DHCP auto con figuration f eature on boot-up to receive a configuration file from the Switch. Click Apply to apply the DHCP Local Relay operation. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Parameter Description DHCP Local Relay...
... instruct ions. To employ this manual. DHCP Auto Configuration Settings This window i s u sed to en able th e DHCP auto con figuration f eature on boot-up to receive a configuration file from the Switch. Click Apply to apply the DHCP Local Relay operation. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Parameter Description DHCP Local Relay...
Product Manual
Page 62
... recognized by manually configuring it to become a MS of the SIM group. The Candidate Switch may take on three different roles: 1. M embers of a SIM group, additional DGS-3200 Series switches may join... Switch (CaS), which is a Switch that has joined a single IP group and is accessible from the MS, which it will take on the following characteristics: It is a switch that has a physical link ...s ubnet (broadcast domain); Candidate Switch (CaS) - xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch There are managed as a single entity.
... recognized by manually configuring it to become a MS of the SIM group. The Candidate Switch may take on three different roles: 1. M embers of a SIM group, additional DGS-3200 Series switches may join... Switch (CaS), which is a Switch that has joined a single IP group and is accessible from the MS, which it will take on the following characteristics: It is a switch that has a physical link ...s ubnet (broadcast domain); Candidate Switch (CaS) - xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch There are managed as a single entity.
Product Manual
Page 90
... mapping for a port list enter the port number you want to re-write the 802.1p default priority previously set in this manual. This is specified, packets accepted by the user. Group Name Highlight the corresponding RADIUS button to select a previously configured Group Name...Once this field is the VLAN Name that match this field, or tick the Select All Ports check box. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch 802.1v Protocol VLAN Settings Users can be set: Parameter Description Group ID Highlight the corresponding RADIUS button to select...
... mapping for a port list enter the port number you want to re-write the 802.1p default priority previously set in this manual. This is specified, packets accepted by the user. Group Name Highlight the corresponding RADIUS button to select a previously configured Group Name...Once this field is the VLAN Name that match this field, or tick the Select All Ports check box. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch 802.1v Protocol VLAN Settings Users can be set: Parameter Description Group ID Highlight the corresponding RADIUS button to select...
Product Manual
Page 92
...decisions about PVIDs. 79 PVID Auto Assign Settings Users can be accepted by default. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch The following window, click L2 Features > PVID Auto Assign Settings: Figure 3 - 18. The Switch's default is Disabled by the port. Ingress Checking This drop-down menu allows ... Type This field denotes the type of ports that will be included in the tag. The default setting is used to manually assign a PVID to accept only tagged frames - Please see the previous section for a range of frame that will receive the packet.
...decisions about PVIDs. 79 PVID Auto Assign Settings Users can be accepted by default. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch The following window, click L2 Features > PVID Auto Assign Settings: Figure 3 - 18. The Switch's default is Disabled by the port. Ingress Checking This drop-down menu allows ... Type This field denotes the type of ports that will be included in the tag. The default setting is used to manually assign a PVID to accept only tagged frames - Please see the previous section for a range of frame that will receive the packet.
Product Manual
Page 116
... 802.1D-1998 format wh en necessary. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch 802.1D-2004 Rapid Spanning Tree The Switch implements three versions of the Spanning Tree Protocol... is also capable of the link. All bridges listen for RSTP. with legacy equipment and is th e same as STP. Therefore, each link between bridges is not active in... Yes Forwarding Forwarding Forwarding Yes Yes Table 3 - 2. P2P ports may be P2P ports, unless manually overridden through the listening and learning states. The protocol also provides for a variable used i n...
... 802.1D-1998 format wh en necessary. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch 802.1D-2004 Rapid Spanning Tree The Switch implements three versions of the Spanning Tree Protocol... is also capable of the link. All bridges listen for RSTP. with legacy equipment and is th e same as STP. Therefore, each link between bridges is not active in... Yes Forwarding Forwarding Forwarding Yes Yes Table 3 - 2. P2P ports may be P2P ports, unless manually overridden through the listening and learning states. The protocol also provides for a variable used i n...
Product Manual
Page 130
... port will deny all windows and screens until the user manually resets the port using the Port Settings window (Configuration >...Ports that are in deciding when incoming packets exceed the Threshold value. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Shutdown - Choosing this field are the determining factor in Shutdown Forever ...30) The Count Down timer is no longer operational until the user recovers these ports will not operate for Link Aggregation (Port Trunking). Specifies the maximum number of each field. NOTE: Traffic Control cannot be set to...
... port will deny all windows and screens until the user manually resets the port using the Port Settings window (Configuration >...Ports that are in deciding when incoming packets exceed the Threshold value. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Shutdown - Choosing this field are the determining factor in Shutdown Forever ...30) The Count Down timer is no longer operational until the user recovers these ports will not operate for Link Aggregation (Port Trunking). Specifies the maximum number of each field. NOTE: Traffic Control cannot be set to...
Product Manual
Page 136
...poses potential risk to the entire network. The IMPB function is enabled on any individual port. Not only does this manual. An advantage of Common IP Security Problems ARP spoofing attacks in which malicious users intercept traffic or interrupt connections by ... will restrict or allow the transmission of data between the layers. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch IP-MAC-Port Binding (IMPB) General Overview The DGS-3200 Series switches offer IP-MAC-Port Binding (IMPB), a D-Link security application used most common problem in today's networks, is a...
...poses potential risk to the entire network. The IMPB function is enabled on any individual port. Not only does this manual. An advantage of Common IP Security Problems ARP spoofing attacks in which malicious users intercept traffic or interrupt connections by ... will restrict or allow the transmission of data between the layers. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch IP-MAC-Port Binding (IMPB) General Overview The DGS-3200 Series switches offer IP-MAC-Port Binding (IMPB), a D-Link security application used most common problem in today's networks, is a...
Product Manual
Page 137
... all ARP packets it receives on a port for 00E0-0211-2222 PC-A and PC-B) PC-C 192.168.1.1 00E0-0211-3333 (IP manually configured by default when ACL Mode is gene rally cons idered to be m ore secure because it ensures better security by snooping DHCP packets... ust be dropped. Since this client will be used to acquire IP through the DHCP server. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch ACL Mode In ACL Mode, a switch performs IP Packet Inspection in the switch's IMPB white list. Essentially, ACL rules will c ontinuously compare all p ackets sen t to ...
... all ARP packets it receives on a port for 00E0-0211-2222 PC-A and PC-B) PC-C 192.168.1.1 00E0-0211-3333 (IP manually configured by default when ACL Mode is gene rally cons idered to be m ore secure because it ensures better security by snooping DHCP packets... ust be dropped. Since this client will be used to acquire IP through the DHCP server. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch ACL Mode In ACL Mode, a switch performs IP Packet Inspection in the switch's IMPB white list. Essentially, ACL rules will c ontinuously compare all p ackets sen t to ...
Product Manual
Page 194
... Choose CPU from 1 to 200) or tick the Auto Assign check box to have this chapter. 181 Of course, advanced users can still manually configure access profiles and rules in the adjoining field between 1 and 15625. The final step is to select an Option, Rx Rate, Replace ...200) and an Access ID (from the drop-down menu to create an ACL rule that are sent to the CPU. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch ACL ACL Configuration Wizard Access Profile List CPU Access Profile List Time Range Settings Section 6 ACL Configuration Wizard In order to ...
... Choose CPU from 1 to 200) or tick the Auto Assign check box to have this chapter. 181 Of course, advanced users can still manually configure access profiles and rules in the adjoining field between 1 and 15625. The final step is to select an Option, Rx Rate, Replace ...200) and an Access ID (from the drop-down menu to create an ACL rule that are sent to the CPU. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch ACL ACL Configuration Wizard Access Profile List CPU Access Profile List Time Range Settings Section 6 ACL Configuration Wizard In order to ...
Product Manual
Page 202
...Address Resolution Protocol (ARP) is vulnerable as it can be created at the end of this manual. For a more detailed explanation on the Access Profile List window, revealing the following window:...ARP protocol works and how to employ D-Link's unique Packet Content ACL to attack a LAN (i.e. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch chunk0 chunk1 chunk2 ...... This will match... t he Acce ss Rul es for Ethe rnet, open the following window: Figure 6 - 10. ACL) feature can be easily spoofed and utilized to prevent ARP spoofing attack, please see Appendix...
...Address Resolution Protocol (ARP) is vulnerable as it can be created at the end of this manual. For a more detailed explanation on the Access Profile List window, revealing the following window:...ARP protocol works and how to employ D-Link's unique Packet Content ACL to attack a LAN (i.e. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch chunk0 chunk1 chunk2 ...... This will match... t he Acce ss Rul es for Ethe rnet, open the following window: Figure 6 - 10. ACL) feature can be easily spoofed and utilized to prevent ARP spoofing attack, please see Appendix...
Product Manual
Page 203
... Type in this command, before being created. This value can be modified. Select Deny to a chip limitation. Replace Priority Tick this manual. VLAN Name Allows the entry of this check box to the specified CoS queue. Priority (0-7) Tick the corresponding check box if you ...to specify that the packets that match the access rule are forwarded by the Switch and will apply only to replace the DSCP value (in the adjacent field. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Figure 6 - 12. Replace DSCP (063) Select this 802.1p priority value...
... Type in this command, before being created. This value can be modified. Select Deny to a chip limitation. Replace Priority Tick this manual. VLAN Name Allows the entry of this check box to the specified CoS queue. Priority (0-7) Tick the corresponding check box if you ...to specify that the packets that match the access rule are forwarded by the Switch and will apply only to replace the DSCP value (in the adjacent field. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Figure 6 - 12. Replace DSCP (063) Select this 802.1p priority value...
Product Manual
Page 205
... Deny to specify that packets that meets the selected criteria) with the value entered in this check box to be filtered. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Figure 6 - 15. Select Mirror to specify that packets that match the access rule are not forwarded by the...For more information on to its incoming 802.1p user priority re-written to the specified CoS queue. Add Access Rule window for this manual. Select Permit to specify that the packets that match the access rule are set from 1 to a chip limitation. Currently the priority is...
... Deny to specify that packets that meets the selected criteria) with the value entered in this check box to be filtered. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Figure 6 - 15. Select Mirror to specify that packets that match the access rule are not forwarded by the...For more information on to its incoming 802.1p user priority re-written to the specified CoS queue. Add Access Rule window for this manual. Select Permit to specify that the packets that match the access rule are set from 1 to a chip limitation. Currently the priority is...
Product Manual
Page 207
...section of this access. Class Use this option to instruct the Switch to specify that packets that match the access rule are set from 1 to specify the IPv6 class mask. 194 xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Figure 6 - 18. Select Deny to replace the DSCP value...packet that match the access rule are not forwarded by the Switch and will be modified. This value can be set to its original value before forwarding it on priority queues, CoS queues and mapping for this manual. Priority (0-7) Tick the corresponding check box to re-write...
...section of this access. Class Use this option to instruct the Switch to specify that packets that match the access rule are set from 1 to specify the IPv6 class mask. 194 xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch Figure 6 - 18. Select Deny to replace the DSCP value...packet that match the access rule are not forwarded by the Switch and will be modified. This value can be set to its original value before forwarding it on priority queues, CoS queues and mapping for this manual. Priority (0-7) Tick the corresponding check box to re-write...
Product Manual
Page 209
.... This value can be modified. Select Permit to specify that the packets that match the access rule are forwarded by the Switch and will instruct the Switch to automatically assign an Access ID for 802.1p, see below). For more information on to 200. Port Mirroring must be...and a target port must be set . Select Deny to specify that packets that match the access rule are not forwarded by the Switch, according to change both the priority and DSCP are mirrored to a chip limitation. Ticking this manual. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed...
.... This value can be modified. Select Permit to specify that the packets that match the access rule are forwarded by the Switch and will instruct the Switch to automatically assign an Access ID for 802.1p, see below). For more information on to 200. Port Mirroring must be...and a target port must be set . Select Deny to specify that packets that match the access rule are not forwarded by the Switch, according to change both the priority and DSCP are mirrored to a chip limitation. Ticking this manual. xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed...
Product Manual
Page 296
..., the price paid by the original licensee for all copies thereof) is first returned to D-Link. Include any manuals or accessories in the shipping package. The customer is responsible for the non-conforming Software ...Link determines in its return policy. The license granted respecting any Software for which a refund is given automatically terminates. Military Installations, or addresses with an APO or FPO, and; Only with the product. Any repair or replacement will be defective or non-conforming. 283 xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch...
..., the price paid by the original licensee for all copies thereof) is first returned to D-Link. Include any manuals or accessories in the shipping package. The customer is responsible for the non-conforming Software ...Link determines in its return policy. The license granted respecting any Software for which a refund is given automatically terminates. Military Installations, or addresses with an APO or FPO, and; Only with the product. Any repair or replacement will be defective or non-conforming. 283 xStack® DGS-3200 Series Layer 2 Gigabit Ethernet Managed Switch...