User ManualTable of ContentsTable of Contents3About This Guide11EX2500 Ethernet Switch Applications15Accessing the Switch17Configuring the Management Interface17Dynamic Host Configuration Protocol18Using Telnet19Using the EX2500 Web Device Manager19Configuring EX2500 Web Device Manager Access via HTTP20Configuring EX2500 Web Device Manager Access via HTTPS20Using SNMP21SNMPv1, SNMPv221SNMPv322Default Configuration22User Configuration22Configuring SNMP Trap Hosts23SNMPv1 Trap Host Configuration23SNMPv2 Trap Host Configuration23SNMPv3 Trap Host Configuration24Securing Access to the Switch24RADIUS Authentication and Authorization25How RADIUS Authentication Works25Configuring RADIUS on the Switch25RADIUS Authentication Features in the EX2500 Switch26Switch User Accounts27RADIUS Attributes for EX2500 User Privileges27TACACS+ Authentication28How TACACS+ Authentication Works28TACACS+ Authentication Features in the EX2500 Switch28Authorization28Accounting29Command Authorization and Logging30Configuring TACACS+ Authentication on the Switch30Secure Shell31Configuring SSH Features on the Switch31SSH Encryption of Management Messages31Generating RSA Host and Server Keys for SSH Access31SSH Integration with RADIUS and TACACS+ Authentication32End User Access Control32Considerations for Configuring End User Accounts33User Access Control33Setting Up User IDs33Defining a User’s Access Level33Enabling or Disabling a User33Listing Current Users34Logging In to an End User Account34VLANs35VLAN Overview35VLANs and Port VLAN ID Numbers36VLAN Numbers36PVID Numbers36VLAN Tagging37VLAN Topologies and Design Considerations40VLAN Configuration Rules40Multiple VLANs Configuration Example41Private VLANs43Private VLAN Ports43Private VLAN Configuration Guidelines44Private VLAN Configuration Example44Spanning Tree Protocol45Spanning Tree Overview45Bridge Protocol Data Units (BPDUs)46Determining the Path for Forwarding BPDUs46Bridge Priority46Port Priority47Port Path Cost47Spanning Tree Group Configuration Guidelines47Changing the Spanning Tree Mode47Assigning a VLAN to a Spanning Tree Group47Creating a VLAN48Rules for VLAN Tagged Ports48Adding and Removing Ports from STGs48Rapid Spanning Tree Protocol49Port State Changes49Port Type and Link Type50Edge Port50Link Type50RSTP Configuration Guidelines50RSTP Configuration Example50Per VLAN Rapid Spanning Tree51Default Spanning Tree Configuration51Why Do We Need Multiple Spanning Trees?51PVRST Configuration Guidelines52Configuring PVRST52Multiple Spanning Tree Protocol53MSTP Region53Common Internal Spanning Tree53MSTP Configuration Guidelines53Multiple Spanning Tree Groups Configuration Example54Fast Uplink Convergence55Configuration Guidelines56Configuring Fast Uplink Convergence56Ports and Trunking57Trunking Overview57Statistical Load Distribution57Built-In Fault Tolerance58Before Configuring Static Trunks58Trunk Group Configuration Rules58Port Trunking Configuration Example59Configurable Trunk Hash Algorithm61Link Aggregation Control Protocol61LACP Configuration Guidelines63Configuring LACP63Optionally Reducing LACP Timeout63Quality of Service65QoS Overview65Using ACL Filters66MAC Extended ACLs67IP Standard ACLs67IP Extended ACLs68Understanding ACL Priority69Assigning ACLs to a Port70Viewing ACL Statistics70ACL Configuration Examples70ACL Example 1-Blocking Traffic to a Host70ACL Example 2-Blocking Traffic from a Source to a Destination71ACL Example 3-Blocking HTTP Traffic71ACL Example 4-Blocking All Except Certain Packets72Using Storm Control Filters73Broadcast Storms73Configuring Storm Control73Using DSCP Values to Provide QoS74Differentiated Services Concepts74Per Hop Behavior75QoS Levels76DSCP Mapping76Using 802.1p Priority to Provide QoS77Queuing and Scheduling78Remote Monitoring79RMON Overview79RMON Group 1-Statistics80RMON Group 2-History81History MIB Object ID81Configuring RMON History81RMON Group 3-Alarms82Alarm MIB Objects82Configuring RMON Alarms82RMON Group 9-Events83IGMP85IGMP Snooping85FastLeave86IGMPv3 Snooping87IGMP Snooping Configuration Example87Static Multicast Router88High Availability Through Uplink Failure Detection89High Availability Overview89Failure Detection Pair90Spanning Tree Protocol with UFD90UFD Configuration Guidelines90UFD Configuration Example91Monitoring UFD91Appendixes93Monitoring Ports with Port Mirroring95Port Mirroring Overview95Configuring Port Mirroring96Indexes97Index99Numerics99A99B99C99D99E99F99H100I100J100L100M100N100O100P100Q101R101S101T101U102V102W102Size: 1.05 MBPages: 102Language: EnglishOpen manual