Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 62
...Defines the interface source IP address to the rule. Users can contain up to in the network. • Prefix Length - Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide - Specifies the LAG on which the access profile applies. Define the relevant fields. 4. Click Apply. Rules are : - Permits... profile is added, and the device is defined. - Specifies the port on which the access profile is updated. Specifies the VLAN on which the access profile is the default. 3. Defining Profile Rules Access profiles can also be blocked from accessing the device....
...Defines the interface source IP address to the rule. Users can contain up to in the network. • Prefix Length - Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide - Specifies the LAG on which the access profile applies. Define the relevant fields. 4. Click Apply. Rules are : - Permits... profile is added, and the device is defined. - Specifies the port on which the access profile is updated. Specifies the VLAN on which the access profile is the default. 3. Defining Profile Rules Access profiles can also be blocked from accessing the device....
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 63
... management access. Attaches the rule to the rule. - Assigns all management methods to the selected LAG. - Assigns Telnet access to the selected VLAN. • Management Method - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 4 Profile Rules Page The Profile Rules Page contains the following fields: • Access Profile Name - Attaches the rule to the...
... management access. Attaches the rule to the rule. - Assigns all management methods to the selected LAG. - Assigns Telnet access to the selected VLAN. • Management Method - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 4 Profile Rules Page The Profile Rules Page contains the following fields: • Access Profile Name - Attaches the rule to the...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 65
... the port on which the access profile is defined. Denies access to the rule. Secure HTTP (HTTPS) - Deny - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 4 • Priority - Users with this access profile can access the device using HTTP meeting access profile criteria are ...access to the rule. Defines the rule priority. If selected, users accessing the device using the management method selected. Specifies the VLAN on which the rule is matched to the device. • Interface - When the packet is defined. Defines the interface on...
... the port on which the access profile is defined. Denies access to the rule. Secure HTTP (HTTPS) - Deny - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 4 • Priority - Users with this access profile can access the device using HTTP meeting access profile criteria are ...access to the rule. Defines the rule priority. If selected, users accessing the device using the management method selected. Specifies the VLAN on which the rule is matched to the device. • Interface - When the packet is defined. Defines the interface on...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 67
SNMP - Defines the interface on which the access profile is defined. • Source IP Address - Specifies the VLAN on which the access profile is defined. The possible field values are : - Port - LAG - Deny - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 4 - The possible field values are : - Permits access to the device. Chapter 4: Configuring Device Security...
SNMP - Defines the interface on which the access profile is defined. • Source IP Address - Specifies the VLAN on which the access profile is defined. The possible field values are : - Port - LAG - Deny - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 4 - The possible field values are : - Permits access to the device. Chapter 4: Configuring Device Security...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 68
A Broadcast Storm is enabled per all nodes connected on each port and discards the frames when the rate exceeds a user-defined rate. Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Defining Traffic Control The Traffic Control section contains the following fields: 60 Chapter 4: Configuring Device Security Defining Traffic Control This occupies bandwidth, and ... Control. Click Security Suite > Traffic Control > Storm Control. The system measures the incoming Broadcast and Multicast frame rates separately on all ports on the relevant VLAN.
A Broadcast Storm is enabled per all nodes connected on each port and discards the frames when the rate exceeds a user-defined rate. Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Defining Traffic Control The Traffic Control section contains the following fields: 60 Chapter 4: Configuring Device Security Defining Traffic Control This occupies bandwidth, and ... Control. Click Security Suite > Traffic Control > Storm Control. The system measures the incoming Broadcast and Multicast frame rates separately on all ports on the relevant VLAN.
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 75
Enables port-based authentication on the device. • Authentication Method - None - Enable - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 4 Defining 802.1X Properties 1. The 802.1X Properties Page opens: 802.1X Properties Page The 802.1X ...Authenticates the user at the RADIUS server if one is enabled on the device. If a Guest VLAN is enabled on the device. Defines the user authentication methods. Enables using a Guest VLAN for unauthorized ports. Chapter 4: Configuring Device Security 67 Defining 802.1x Indicates if Port Authentication is ...
Enables port-based authentication on the device. • Authentication Method - None - Enable - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 4 Defining 802.1X Properties 1. The 802.1X Properties Page opens: 802.1X Properties Page The 802.1X ...Authenticates the user at the RADIUS server if one is enabled on the device. If a Guest VLAN is enabled on the device. Defines the user authentication methods. Enables using a Guest VLAN for unauthorized ports. Chapter 4: Configuring Device Security 67 Defining 802.1x Indicates if Port Authentication is ...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 76
Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide - Disables port-based authentication on the device. Defining Port Authentication 1. Displays the admin port authorization state. • Guest VLAN - Define the relevant fields. 3. Indicates the row number to which port authentication parameters ...Disable - Indicates the row number from which the port authentication parameters are defined, and the device is the default. • Guest VLAN ID - Click Security Suite > 802.1X > Port Authentication. Displays the user name. • Current Port Control - The ...
Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide - Disables port-based authentication on the device. Defining Port Authentication 1. Displays the admin port authorization state. • Guest VLAN - Define the relevant fields. 3. Indicates the row number to which port authentication parameters ...Disable - Indicates the row number from which the port authentication parameters are defined, and the device is the default. • Guest VLAN ID - Click Security Suite > 802.1X > Port Authentication. Displays the user name. • Current Port Control - The ...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 78
... enabled, the unauthorized port automatically joins the VLAN selected in which the selected port is reauthenticated (Range: 300-4294967295). Specifies that authentication is set to Force-Authorized (forward traffic). - The controlled port state is applied on the device. Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Port Authentication Settings Page The Port Authentication Settings...
... enabled, the unauthorized port automatically joins the VLAN selected in which the selected port is reauthenticated (Range: 300-4294967295). Specifies that authentication is set to Force-Authorized (forward traffic). - The controlled port state is applied on the device. Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Port Authentication Settings Page The Port Authentication Settings...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 79
Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 4 • Quiet Period - Displays the number of ... authentication settings for which the port authentication was terminated. 3. The total amount of seconds that the switch remains in the quiet state following fields: Chapter 4: Configuring Device Security 71 Defining 802.1x The ... The field default is 2 retries. • Supplicant Timeout - Indicates the reason for specific ports and VLANs. 1. Specifies the number of EAP requests sent. The field default is 30 seconds. • Server Timeout - Specifies...
Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 4 • Quiet Period - Displays the number of ... authentication settings for which the port authentication was terminated. 3. The total amount of seconds that the switch remains in the quiet state following fields: Chapter 4: Configuring Device Security 71 Defining 802.1x The ... The field default is 2 retries. • Supplicant Timeout - Indicates the reason for specific ports and VLANs. 1. Specifies the number of EAP requests sent. The field default is 30 seconds. • Server Timeout - Specifies...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 84
... two bits of 00.00.00.00.00.00 indicates that no bit is important. Indicates the ACL forwarding action. Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Add MAC Based ACL Page The Add MAC Based ACL Page contains the following fields: • ACL Name - Displays...Rule Priority - MAC Address - A wildcard of the IP address are used and which packets are ignored. The possible field values are ignored. • VLAN ID - Indicates the ACE priority, which determines which bits are used , while the last three bits are 1 to a packet on a first-match basis...
... two bits of 00.00.00.00.00.00 indicates that no bit is important. Indicates the ACL forwarding action. Chapter 4 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Add MAC Based ACL Page The Add MAC Based ACL Page contains the following fields: • ACL Name - Displays...Rule Priority - MAC Address - A wildcard of the IP address are used and which packets are ignored. The possible field values are ignored. • VLAN ID - Indicates the ACE priority, which determines which bits are used , while the last three bits are 1 to a packet on a first-match basis...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 102
...; The device supports up to 64 LAGs, and eight ports in each LAG. • Ports can be the same media type. • A VLAN is not configured on the port. • The port is not assigned to a different LAG. • Auto-negotiation mode is applied to the ... Click Bridging > Port Management > Lag Management. The Lag Management Page opens: 94 Chapter 5: Configuring Device Interfaces Defining LAG Management Chapter 5 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Defining LAG Management Link Aggregation optimizes port usage by linking a group of a previously configured LAG.
...; The device supports up to 64 LAGs, and eight ports in each LAG. • Ports can be the same media type. • A VLAN is not configured on the port. • The port is not assigned to a different LAG. • Auto-negotiation mode is applied to the ... Click Bridging > Port Management > Lag Management. The Lag Management Page opens: 94 Chapter 5: Configuring Device Interfaces Defining LAG Management Chapter 5 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Defining LAG Management Link Aggregation optimizes port usage by linking a group of a previously configured LAG.
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 111
... by either the end station or the network device. VLANs have no minimum number of transferring VLAN information between VLANs. Combining VLANs and GARP (Generic Attribute Registration Protocol) allows network managers...VLANs isolate traffic within the VLAN, a Layer 3 router working at Layer 2. VLANs allow traffic flow between VLAN groups. VLAN tagging attaches a 4-byte tag to be created per unit, per device, or through any other logical connection combination, since they are attached. Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 6 Configuring VLANs VLANs...
... by either the end station or the network device. VLANs have no minimum number of transferring VLAN information between VLANs. Combining VLANs and GARP (Generic Attribute Registration Protocol) allows network managers...VLANs isolate traffic within the VLAN, a Layer 3 router working at Layer 2. VLANs allow traffic flow between VLAN groups. VLAN tagging attaches a 4-byte tag to be created per unit, per device, or through any other logical connection combination, since they are attached. Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 6 Configuring VLANs VLANs...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 112
... Properties Page opens. The possible field values are : - Displays the VLAN type. Dynamic - Chapter 6 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Defining VLAN Properties The VLAN Properties Page provides information and global parameters for configuring and working with VLANs. 1. Indicates the VLAN is the default VLAN. • Authentication - Click the Add button. Static - Disables unauthorized users from using the...
... Properties Page opens. The possible field values are : - Displays the VLAN type. Dynamic - Chapter 6 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Defining VLAN Properties The VLAN Properties Page provides information and global parameters for configuring and working with VLANs. 1. Indicates the VLAN is the default VLAN. • Authentication - Click the Add button. Static - Disables unauthorized users from using the...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 113
... unauthorized users to define and configure new VLANs, contains the following fields: • VLAN ID - Displays the stacking member for enabling VLAN guest authentication, and includes the following fields: • VLAN ID - The possible field values are: - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 6 Add VLAN Page The Add VLAN Page allows network administrators to use the Guest...
... unauthorized users to define and configure new VLANs, contains the following fields: • VLAN ID - Displays the stacking member for enabling VLAN guest authentication, and includes the following fields: • VLAN ID - The possible field values are: - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 6 Add VLAN Page The Add VLAN Page allows network administrators to use the Guest...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 114
... are : - Displays the interface configuration being displayed. • Interface Status - Static - Indicates the interface status. Click Bridging > VLAN Management > Membership. Displays the VLAN name. • VLAN Type - Default - Chapter 6 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Defining VLAN Membership The VLAN Membership Page contains a table that ports are indicated in the page. • Of Unit - Indicates that maps...
... are : - Displays the interface configuration being displayed. • Interface Status - Static - Indicates the interface status. Click Bridging > VLAN Management > Membership. Displays the VLAN name. • VLAN Type - Default - Chapter 6 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Defining VLAN Membership The VLAN Membership Page contains a table that ports are indicated in the page. • Of Unit - Indicates that maps...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 115
... is to be added to the VLAN. • Interface Status - The Edit VLAN Membership Page opens: Edit VLAN Membership Page The Edit VLAN Membership Page contains the following fields: • VLAN ID - Displays the VLAN name. • Interface - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 6 - Define the relevant fields. 3. Click Bridging > VLAN Management > Membership. VLAN Membership is modified, and the...
... is to be added to the VLAN. • Interface Status - The Edit VLAN Membership Page opens: Edit VLAN Membership Page The Edit VLAN Membership Page contains the following fields: • VLAN ID - Displays the VLAN name. • Interface - Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 6 - Define the relevant fields. 3. Click Bridging > VLAN Management > Membership. VLAN Membership is modified, and the...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 116
.... • Of Unit - General - When a port is configured on the port (packet type) cannot be designated. All untagged packets arriving to a single untagged VLAN. Indicates that ports are part of a VLAN. Indicates the port mode. Chapter 6 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Defining Interface Settings The VLAN Interface Setting Page provides parameters for which are : -
.... • Of Unit - General - When a port is configured on the port (packet type) cannot be designated. All untagged packets arriving to a single untagged VLAN. Indicates that ports are part of a VLAN. Indicates the port mode. Chapter 6 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide Defining Interface Settings The VLAN Interface Setting Page provides parameters for which are : -
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 117
... on the port. - When a port is in which all ports are tagged (except for an optional single native VLAN). Click Bridging > VLAN Management > Interface Setting. The port belongs to untagged packets. Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 6 - Packets classified to 4094. Define the relevant fields. 3. The port number included in which all ports...
... on the port. - When a port is in which all ports are tagged (except for an optional single native VLAN). Click Bridging > VLAN Management > Interface Setting. The port belongs to untagged packets. Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 6 - Packets classified to 4094. Define the relevant fields. 3. The port number included in which all ports...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 118
... packets are modified, and the device is defined as per standard and industry practice as the discard VLAN. Chapter 6 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide • PVID - VLAN 4095 is updated. 110 Chapter 6: Configuring VLANs Defining Interface Settings The VLAN Interface settings are accepted on the port. - Define the relevant fields. 4. Indicates that only tagged packets...
... packets are modified, and the device is defined as per standard and industry practice as the discard VLAN. Chapter 6 SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide • PVID - VLAN 4095 is updated. 110 Chapter 6: Configuring VLANs Defining Interface Settings The VLAN Interface settings are accepted on the port. - Define the relevant fields. 4. Indicates that only tagged packets...
Cisco SGE2000, SGE2000P Gigabit Ethernet Switch Reference Guide
Page 119
Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 6 Configuring GVRP Settings GARP VLAN Registration Protocol (GVRP) is specifically provided for which the GVRP parameters are copied. • To Entry Number - The Global ...- Disable - Indicates the row number from Entry Number - Displays the stacking member for automatic distribution of VLAN membership information among VLAN-aware bridges. GVRP allows VLAN-aware bridges to automatically learn VLANs to bridge ports mapping, without having to which GVRP parameters are displayed. Indicates the port number on which...
Chapter SGE2000/SGE2000P Gigabit Ethernet Switch Reference Guide 6 Configuring GVRP Settings GARP VLAN Registration Protocol (GVRP) is specifically provided for which the GVRP parameters are copied. • To Entry Number - The Global ...- Disable - Indicates the row number from Entry Number - Displays the stacking member for automatic distribution of VLAN membership information among VLAN-aware bridges. GVRP allows VLAN-aware bridges to automatically learn VLANs to bridge ports mapping, without having to which GVRP parameters are displayed. Indicates the port number on which...