User Guide
Page 16
... 33.1 Access Control Overview 279 33.2 The Access Control Main Screen 279 33.3 About SNMP ...280 33.3.1 SNMP v3 and Security 281 33.3.2 Supported MIBs ...281 33.3.3 SNMP Traps ...282 33.3.4 Configuring SNMP 286 33.3.5 Configuring SNMP Trap Group 287 33.3.6 Configuring SNMP User Information 289 33.3.7 Setting Up Login Accounts 290 33.4 SSH Overview ...292... ...295 33.8.1 Internet Explorer Warning Messages 295 33.8.2 The Main Screen ...296 33.9 Service Port Access Control 297 33.10 Remote Management 298 16 MES-3528 User's Guide
... 33.1 Access Control Overview 279 33.2 The Access Control Main Screen 279 33.3 About SNMP ...280 33.3.1 SNMP v3 and Security 281 33.3.2 Supported MIBs ...281 33.3.3 SNMP Traps ...282 33.3.4 Configuring SNMP 286 33.3.5 Configuring SNMP Trap Group 287 33.3.6 Configuring SNMP User Information 289 33.3.7 Setting Up Login Accounts 290 33.4 SSH Overview ...292... ...295 33.8.1 Internet Explorer Warning Messages 295 33.8.2 The Main Screen ...296 33.9 Service Port Access Control 297 33.10 Remote Management 298 16 MES-3528 User's Guide
User Guide
Page 21
...of heavy traffic users. This section shows a few examples of the Switch. The Switch has twenty-four 10/ 100 Mbps Ethernet ports. MES-3528 User's Guide 21 See Chapter 41 on page 327 for metro ethernets. You can connect computers and servers directly to the Switch's port or ...configurator, managing and configuring the Switch is an ideal solution for a group of software features available on the console port, or third-party SNMP management. In addition, the Switch can also be used standalone for small networks where rapid growth can be managed via Telnet, any terminal ...
...of heavy traffic users. This section shows a few examples of the Switch. The Switch has twenty-four 10/ 100 Mbps Ethernet ports. MES-3528 User's Guide 21 See Chapter 41 on page 327 for metro ethernets. You can connect computers and servers directly to the Switch's port or ...configurator, managing and configuring the Switch is an ideal solution for a group of software features available on the console port, or third-party SNMP management. In addition, the Switch can also be used standalone for small networks where rapid growth can be managed via Telnet, any terminal ...
User Guide
Page 25
See the CLI Reference Guide. • FTP. The Switch can be monitored by an SNMP manager. MES-3528 User's Guide 25 Chapter 1 Getting to manage the Switch. • Web Configurator. Figure 5 Metro Ethernet 1.2 Ways to Manage the Switch Use any of the ...Switch using a (supported) web browser. See Chapter 36 on page 275. • SNMP. The Switch is recommended for firmware upgrades and configuration backup/restore. Use...
See the CLI Reference Guide. • FTP. The Switch can be monitored by an SNMP manager. MES-3528 User's Guide 25 Chapter 1 Getting to manage the Switch. • Web Configurator. Figure 5 Metro Ethernet 1.2 Ways to Manage the Switch Use any of the ...Switch using a (supported) web browser. See Chapter 36 on page 275. • SNMP. The Switch is recommended for firmware upgrades and configuration backup/restore. Use...
User Guide
Page 36
...: Make sure you to connect devices to create an error log of the alarm. See Chapter 41 on page 327 for more information on using SNMP. • The Switch can be configured to the Switch. Chapter 3 Hardware Overview 3.1.4 Power Connector (DC) Note: When installing the Switch power wire, ... power supply. 3 Repeat the previous step for more information on the Switch. • The Switch can be configured to send an SNMP trap to the SNMP server. This feature is in addition to the system alarm, which detects abnormal temperatures, voltage levels and fan speeds on using the system...
...: Make sure you to connect devices to create an error log of the alarm. See Chapter 41 on page 327 for more information on using SNMP. • The Switch can be configured to the Switch. Chapter 3 Hardware Overview 3.1.4 Power Connector (DC) Note: When installing the Switch power wire, ... power supply. 3 Repeat the previous step for more information on the Switch. • The Switch can be configured to send an SNMP trap to the SNMP server. This feature is in addition to the system alarm, which detects abnormal temperatures, voltage levels and fan speeds on using the system...
User Guide
Page 48
...DHCP settings. Configure Clone This link takes you to a screen where you can copy attributes of devices attached to other ports. 48 MES-3528 User's Guide IP address resolution table. DHCP This link takes you to screens where you can setup system logs and a system log server....management and view its status. Management Maintenance This link takes you to screens where you can change the system login password and configure SNMP and remote management. Access Control This link takes you to screens where you can perform firmware and configuration file maintenance as well as...
...DHCP settings. Configure Clone This link takes you to a screen where you can copy attributes of devices attached to other ports. 48 MES-3528 User's Guide IP address resolution table. DHCP This link takes you to screens where you can setup system logs and a system log server....management and view its status. Management Maintenance This link takes you to screens where you can change the system login password and configure SNMP and remote management. Access Control This link takes you to screens where you can perform firmware and configuration file maintenance as well as...
User Guide
Page 240
... state. The Switch sends probe packets from this row to is connected to make the setting the same for all the ports as soon as SNMP traps when it is in loop state the Switch will shut down a port via the loop guard feature. Clear this port. Click Apply to save... link on the top navigation panel to save your changes to begin configuring this check box to all ports. Select this screen afresh. 240 MES-3528 User's Guide This field displays the port number. Active Apply Cancel Note: Changes in this row are done configuring. Chapter 26 Loop Guard The following...
... state. The Switch sends probe packets from this row to is connected to make the setting the same for all the ports as soon as SNMP traps when it is in loop state the Switch will shut down a port via the loop guard feature. Clear this port. Click Apply to save... link on the top navigation panel to save your changes to begin configuring this check box to all ports. Select this screen afresh. 240 MES-3528 User's Guide This field displays the port number. Active Apply Cancel Note: Changes in this row are done configuring. Chapter 26 Loop Guard The following...
User Guide
Page 255
... the manager's computer. CHAPTER 29 Static Route This chapter shows you how to test IP connectivity. Figure 142 Static Routing Overview N1 N2 Telnet SNMP R1 R2 MES-3528 User's Guide 255 This figure shows a Telnet session coming in from network N1. Use IP static routes to have the Switch respond to... an SNMP trap server on network N2. The Switch sends reply traffic to default gateway R1 which routes it to use static routes to send data...
... the manager's computer. CHAPTER 29 Static Route This chapter shows you how to test IP connectivity. Figure 142 Static Routing Overview N1 N2 Telnet SNMP R1 R2 MES-3528 User's Guide 255 This figure shows a Telnet session coming in from network N1. Use IP static routes to have the Switch respond to... an SNMP trap server on network N2. The Switch sends reply traffic to default gateway R1 which routes it to use static routes to send data...
User Guide
Page 279
Figure 161 Management > Access Control MES-3528 User's Guide 279 See the CLI Reference Guide for more information on disabling multi-login. 33.2 The Access Control Main Screen Click Management > Access Control in the navigation panel to five accounts SNMP No limit A console port access control ... Console Port SSH Telnet FTP One session Share up to five Web sessions (five different user names and passwords) and/ or limitless SNMP access control sessions are allowed. CHAPTER 33 Access Control This chapter describes how to control access to the Switch. 33.1 Access Control ...
Figure 161 Management > Access Control MES-3528 User's Guide 279 See the CLI Reference Guide for more information on disabling multi-login. 33.2 The Access Control Main Screen Click Management > Access Control in the navigation panel to five accounts SNMP No limit A console port access control ... Console Port SSH Telnet FTP One session Share up to five Web sessions (five different user names and passwords) and/ or limitless SNMP access control sessions are allowed. CHAPTER 33 Access Control This chapter describes how to control access to the Switch. 33.1 Access Control ...
User Guide
Page 280
... consists of information to be collected about a switch. The manager is the console through the network via SNMP version one (SNMPv1), SNMP version 2c or SNMP version 3. SNMP is only available if TCP/IP is a management software module that resides in a managed switch (the ... Information Base (MIB) is a collection of accessing these objects. 280 MES-3528 User's Guide A manager station can manage and monitor the Switch through which network administrators perform network management functions. SNMP allows a manager and agents to communicate for the purpose of managed objects. An...
... consists of information to be collected about a switch. The manager is the console through the network via SNMP version one (SNMPv1), SNMP version 2c or SNMP version 3. SNMP is only available if TCP/IP is a management software module that resides in a managed switch (the ... Information Base (MIB) is a collection of accessing these objects. 280 MES-3528 User's Guide A manager station can manage and monitor the Switch through which network administrators perform network management functions. SNMP allows a manager and agents to communicate for the purpose of managed objects. An...
User Guide
Page 281
...MIBs • RFC 1155 SMI • RFC 2674 SNMPv2, SNMPv2c • RFC 1757 RMON • SNMPv2, SNMPv2c or later version, compliant with agents before conducting SNMP management sessions. Trap Used by the agent to retrieve an object variable from the agent. The Switch supports the following protocol operations: Table 100...Allows the manager to authenticate with RFC 2011 SNMPv2 MIB for IP, RFC 2012 SNMPv2 MIB for TCP, RFC 2013 SNMPv2 MIB for UDP MES-3528 User's Guide 281 Chapter 33 Access Control SNMP itself is a simple request/response protocol based on the manager/agent model.
...MIBs • RFC 1155 SMI • RFC 2674 SNMPv2, SNMPv2c • RFC 1757 RMON • SNMPv2, SNMPv2c or later version, compliant with agents before conducting SNMP management sessions. Trap Used by the agent to retrieve an object variable from the agent. The Switch supports the following protocol operations: Table 100...Allows the manager to authenticate with RFC 2011 SNMPv2 MIB for IP, RFC 2012 SNMPv2 MIB for TCP, RFC 2013 SNMPv2 MIB for UDP MES-3528 User's Guide 281 Chapter 33 Access Control SNMP itself is a simple request/response protocol based on the manager/agent model.
User Guide
Page 282
... LinkDownEventClear OBJECT ID DESCRIPTION 1.3.6.1.6.3.1.1.5.4 This trap is sent when the Ethernet link is up . 282 MES-3528 User's Guide Table 101 SNMP System Traps OPTION OBJECT LABEL OBJECT ID DESCRIPTION coldstart coldStart 1.3.6.1.6.3.1.1.5.1 This trap is sent when the Switch is...is sent when the Switch reboots by category. RebootEvent 1.3.6.1.4.1.890.1.5.0.1 This trap is sent when the 7.2.1 Switch fails to an SNMP manager when an event occurs. loopguard LoopguardEventOn 1.3.6.1.4.1.890.1.5.8.51.2 This trap is sent when the n 7.2.1 Switch automatically resets. reset...
... LinkDownEventClear OBJECT ID DESCRIPTION 1.3.6.1.6.3.1.1.5.4 This trap is sent when the Ethernet link is up . 282 MES-3528 User's Guide Table 101 SNMP System Traps OPTION OBJECT LABEL OBJECT ID DESCRIPTION coldstart coldStart 1.3.6.1.6.3.1.1.5.1 This trap is sent when the Switch is...is sent when the Switch reboots by category. RebootEvent 1.3.6.1.4.1.890.1.5.0.1 This trap is sent when the 7.2.1 Switch fails to an SNMP manager when an event occurs. loopguard LoopguardEventOn 1.3.6.1.4.1.890.1.5.8.51.2 This trap is sent when the n 7.2.1 Switch automatically resets. reset...
User Guide
Page 283
MES-3528 User's Guide 283 AuthenticationFailureEven 1.3.6.1.4.1.890.1.5.8.51.2 tOn 7.2.1 This trap is sent when authentication fails due to the normal operating range. transceiverddmi transceiverddmiEventOn ...1.3.6.1.4.1.890.1.5.8.51.2 7.2.2 This trap is sent when the nge LLDP (Link Layer Discovery Protocol) remote topology changes. Chapter 33 Access Control Table 102 SNMP Interface Traps (continued) OPTION OBJECT LABEL OBJECT ID DESCRIPTION linkdown linkDown 1.3.6.1.6.3.1.1.5.3 This trap is sent when the Ethernet link is down . Table 103 AAA...
MES-3528 User's Guide 283 AuthenticationFailureEven 1.3.6.1.4.1.890.1.5.8.51.2 tOn 7.2.1 This trap is sent when authentication fails due to the normal operating range. transceiverddmi transceiverddmiEventOn ...1.3.6.1.4.1.890.1.5.8.51.2 7.2.2 This trap is sent when the nge LLDP (Link Layer Discovery Protocol) remote topology changes. Chapter 33 Access Control Table 102 SNMP Interface Traps (continued) OPTION OBJECT LABEL OBJECT ID DESCRIPTION linkdown linkDown 1.3.6.1.6.3.1.1.5.3 This trap is sent when the Ethernet link is down . Table 103 AAA...
User Guide
Page 284
Table 104 SNMP IP Traps OPTION OBJECT LABEL ping pingProbeFailed pingTestFailed pingTestCompleted traceroute traceRoutePathChange traceRouteTestFailed traceRouteTestCompleted OBJECT ID 1.3.6.1.2.1.80.0. 1 1.3.6.1.2.1.80.0. 2 1.3.6.1.2.1.80.0. 3 1.3.6.1.2.1.81.0. 1 1.3.6.1.2.1.81.0. 2 1.3.6.1.2.1.81.0. 3 DESCRIPTION This trap is completed. 284 MES-3528 User's Guide TACACS+NotReachableEv 1.3.6.1.4.1.890.1.5.8.51.2 This trap is sent when the entClear 7.2.2 TACACS+ accounting server can be reached. This trap...
Table 104 SNMP IP Traps OPTION OBJECT LABEL ping pingProbeFailed pingTestFailed pingTestCompleted traceroute traceRoutePathChange traceRouteTestFailed traceRouteTestCompleted OBJECT ID 1.3.6.1.2.1.80.0. 1 1.3.6.1.2.1.80.0. 2 1.3.6.1.2.1.80.0. 3 1.3.6.1.2.1.81.0. 1 1.3.6.1.2.1.81.0. 2 1.3.6.1.2.1.81.0. 3 DESCRIPTION This trap is completed. 284 MES-3528 User's Guide TACACS+NotReachableEv 1.3.6.1.4.1.890.1.5.8.51.2 This trap is sent when the entClear 7.2.2 TACACS+ accounting server can be reached. This trap...
User Guide
Page 285
...than 99% of the MAC table is used . This trap is sent when the MRSTP root switch changes. MES-3528 User's Guide 285 This trap is sent when a variable goes over the RMON "rising" threshold. This trap is...detects a connectivity fault. The trap is sent when the STP topology changes. Chapter 33 Access Control Table 105 SNMP Switch Traps OPTION OBJECT LABEL stp STPNewRoot MRSTPNewRoot MSTPNewRoot STPTopologyChange MRSTPTopologyChange MSTPTopologyChange mactable MacTableFullEventOn MacTableFullEventClear rmon RmonRisingAlarm RmonFallingAlarm cfm dot1agCfmFaultAlarm...
...than 99% of the MAC table is used . This trap is sent when the MRSTP root switch changes. MES-3528 User's Guide 285 This trap is sent when a variable goes over the RMON "rising" threshold. This trap is...detects a connectivity fault. The trap is sent when the STP topology changes. Chapter 33 Access Control Table 105 SNMP Switch Traps OPTION OBJECT LABEL stp STPNewRoot MRSTPNewRoot MSTPNewRoot STPTopologyChange MRSTPTopologyChange MSTPTopologyChange mactable MacTableFullEventOn MacTableFullEventClear rmon RmonRisingAlarm RmonFallingAlarm cfm dot1agCfmFaultAlarm...
User Guide
Page 286
... the Switch. Enter the Set Community, which is only used by SNMP managers using SNMP version 2c or lower. 286 MES-3528 User's Guide The SNMP version on the Switch must match the version on the SNMP manager. Figure 163 Management > Access Control > SNMP The following table describes the labels in this section to specify the...
... the Switch. Enter the Set Community, which is only used by SNMP managers using SNMP version 2c or lower. 286 MES-3528 User's Guide The SNMP version on the Switch must match the version on the SNMP manager. Figure 163 Management > Access Control > SNMP The following table describes the labels in this section to specify the...
User Guide
Page 287
... the version of up to four managers to send your SNMP traps to. Enter the IP addresses of the SNMP trap messages. Click Apply to save your changes to send SNMP traps from the Switch. Figure 164 Management > Access Control > SNMP > Trap Group MES-3528 User's Guide 287 Click Cancel to begin configuring this section...
... the version of up to four managers to send your SNMP traps to. Enter the IP addresses of the SNMP trap messages. Click Apply to save your changes to send SNMP traps from the Switch. Figure 164 Management > Access Control > SNMP > Trap Group MES-3528 User's Guide 287 Click Cancel to begin configuring this section...
User Guide
Page 288
... first configure a trap destination IP address in this screen afresh. 288 MES-3528 User's Guide Click Apply to save your changes to the nonvolatile memory when you do not want the Switch to send to the SNMP station. Type Options Use the rest of the screen to select which traps... clears all of the category's trap check boxes (the Switch only sends traps from selected categories). Click Cancel to the SNMP manager. Select the individual SNMP traps that SNMP manager. See Section 33.3.3 on page 282 for individual traps that the Switch is turned off or loses power, so ...
... first configure a trap destination IP address in this screen afresh. 288 MES-3528 User's Guide Click Apply to save your changes to the nonvolatile memory when you do not want the Switch to send to the SNMP station. Type Options Use the rest of the screen to select which traps... clears all of the category's trap check boxes (the Switch only sends traps from selected categories). Click Cancel to the SNMP manager. Select the individual SNMP traps that SNMP manager. See Section 33.3.3 on page 282 for individual traps that the Switch is turned off or loses power, so ...
User Guide
Page 289
... Level DESCRIPTION Use this screen to distinguish different users with managers using SNMP. MES-3528 User's Guide 289 Chapter 33 Access Control 33.3.6 Configuring SNMP User Information Use this section to configure users for authentication with various access rights to the SNMP device. This is equivalent to view the screen as the password string...
... Level DESCRIPTION Use this screen to distinguish different users with managers using SNMP. MES-3528 User's Guide 289 Chapter 33 Access Control 33.3.6 Configuring SNMP User Information Use this section to configure users for authentication with various access rights to the SNMP device. This is equivalent to view the screen as the password string...
User Guide
Page 290
... • readonly - This field displays the privacy method of the user account. Chapter 33 Access Control Table 108 Management > Access Control > SNMP > User Information (continued) LABEL Authentication DESCRIPTION Select an authentication algorithm. By default, there are done configuring. The user belong to admin group has... the maximum access right to read -only group only can choose one time. 290 MES-3528 User's Guide The user belongs to the switch. • readwrite - Click Add to inset the entry to the summary table below...
... • readonly - This field displays the privacy method of the user account. Chapter 33 Access Control Table 108 Management > Access Control > SNMP > User Information (continued) LABEL Authentication DESCRIPTION Select an authentication algorithm. By default, there are done configuring. The user belong to admin group has... the maximum access right to read -only group only can choose one time. 290 MES-3528 User's Guide The user belongs to the switch. • readwrite - Click Add to inset the entry to the summary table below...
User Guide
Page 299
...save your changes to the nonvolatile memory when you are done configuring. Cancel Click Cancel to the Switch's run-time memory. MES-3528 User's Guide 299 Chapter 33 Access Control Table 111 Management > Access Control > Remote Management (continued) LABEL DESCRIPTION Telnet/FTP/ HTTP/ICMP.../ SNMP/SSH/ HTTPS Select services that may be used for managing the Switch from the specified trusted computers. Apply Click Apply to save ...
...save your changes to the nonvolatile memory when you are done configuring. Cancel Click Cancel to the Switch's run-time memory. MES-3528 User's Guide 299 Chapter 33 Access Control Table 111 Management > Access Control > Remote Management (continued) LABEL DESCRIPTION Telnet/FTP/ HTTP/ICMP.../ SNMP/SSH/ HTTPS Select services that may be used for managing the Switch from the specified trusted computers. Apply Click Apply to save ...