araknis 220 Series Installation Manual

araknis 220 Series Installation Manual

Managed switch
Table of Contents

Advertisement

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the 220 Series and is the answer not in the manual?

Questions and answers

Summary of Contents for araknis 220 Series

  • Page 1: Table Of Contents

    Table of Contents Araknis 220/320 Series Managed Switch Installation and Software Guide Series overview Unboxing Installation Rack mounting guidelines Connections PoE budgeting LED states and reset procedures Reset procedures Interface access Configuring the switch in OvrC Logging into the web interface Other access methods: DHCP IP address...
  • Page 2 Port Port Isolation Mirror Jumbo Frames PoE Port Settings Power Budget VLANs 802.1Q PVID & Ingress Filter Voice VLAN Global Settings OUI Settings Port Settings Global Settings Root Bridge Information RSTP Port Settings CIST Port Settings MST Instance Settings MST Port Settings Multicast Unregistered Multicast Behavior IGMP Snooping...
  • Page 3 Group List Router Settings MLD Snooping Global Settings Port Settings VLAN Settings Querier Settings Group List Router Settings Link Aggregation LACP Settings Timeout Access Management Administration Diagnostics Ping Test Trace Route File Management Neighbors MAC Address Table Static MAC Address Dynamic MAC Address MAC Aging Time LLDP...
  • Page 4 Global Settings Local Device Remote Device Global Settings CoS Mapping DSCP Mapping Port CoS Bandwidth Control Storm Control 802.1X Global Settings Port Settings Authenticated Host Authentication Port Security MAC ACL MAC ACE IPv4 ACL IPV4 ACE Port Binding SNMP Global Settings User List Community List Group List...
  • Page 5 Target Address Notify Settings Port Statistics 802.1X Security Port SFP Module Info Module System Logs Log Table Global Settings Local Logging Remote Logging...
  • Page 6: Araknis 220/320 Series Managed Switch

    Switch Installation and Software Guide Thank you for choosing an Araknis® x20 Series Network Switch. With Gigabit connectivity on all ports, updated modern aesthetics, and a managed interface, the Araknis 220/320-series switch is a sleek and highly capable addition to any network.
  • Page 7: Unboxing

    Unboxing The package contains: Switch Rubber feet for flat Rack-mount kit: surfaces (4) ears (2), screws Quick Start Guide QR card AC power cord...
  • Page 8: Installation

    Installation Rack mount Wall mount Shelf mount To avoid possible interference or damage, do not stack equipment on top Caution: of the switch. If wall mounting, the Ethernet ports must face the floor or ceiling. Wall mounting is not recommended for the AN-320-SW-F/R-POE and AN-320- SW-F-48.
  • Page 9   Make sure the rack is grounded and the equipment is surge protected.   Do not overload the power equipment, or the switch. Check out our WattBox Best Practices for more information.
  • Page 10: Connections

    Connections Connect SFP ports using Araknis SFP adapters for RJ45 or multi-mode fiber Note: -__. cables. SFP adapters sold separately.
  • Page 11: Poe Budgeting

    PoE budgeting The PoE budget (Power over Ethernet) limits the amount of power available to all ports, with a maximum of 30W on an individual port. Add the total number of possible watts that the connected devices can consume to make sure everything can receive power reliably.
  • Page 12: Led States And Reset Procedures

    LED states and reset procedures LED state Description Switch is powered on Power Switch is powered of Port is connected at 1000Mbps 1Gbps Port is connected at 10/100Mbps Port detects a connection Link/Act Blinking Packets are flowing through the port Port does not detect a connection Reset procedures To restart the switch, press and hold the Reset button for 5 seconds, then release.
  • Page 13: Interface Access

    Interface access Araknis switches can be configured through OvrC or the local interface. The local interface is accessible using OvrC’s webconnect feature, typing the switch’s DHCP address into your browser’s address bar, or using the switch’s default IP address. Only features in the local UI are supported by Snap One.
  • Page 14: Other Access Methods: Dhcp Ip Address

    Check the client table on your router.   Use a network scanner (e.g. Fing) to scan the network. The Araknis switch manufacturer field displays SnapAV.   See the highlighted field in the Fing screenshot to the right for an example of an Araknis device being identified.
  • Page 15: Accessing The Switch Using The Default Ip Address

    Accessing the switch using the default IP address If the switch is not given a DHCP address, or needs to be accessed while not connected to a network, you can configure your computer’s network connection to access the switch using the default IP address, 192.168.20.254.  1.
  • Page 16  4. Click Change adapter settings.  5. Right-click the icon for the wired network connection, then left-click Properties.
  • Page 17  6. Select Internet Protocol Version 4 (TCP/IPv4), then click Properties...
  • Page 18  7. In the General tab, click Use the following IP address: and enter the IP address and subnet mask, then click OK. IP Address 192.168.20.2 Subnet Mask 255.255.255.0...
  • Page 19  8. Open a browser and navigate to https://192.168.20.254/. Log in using the default credentials: Username araknis Password araknis  9. After configuring the switch, set your computer’s IPv4 Properties back to Obtain an IP address automatically, then click OK.
  • Page 21: Interface Overview

    Interface overview Araknis 220 and 320 switches use the main navigation menu and page tabs to organize the system information and configurable settings. Definitions   Interface— A port on the switch. Also called a switchport.   Clients— A device on the network. Sometimes written as a client device.
  • Page 22: Applying And Resetting Changes

    Applying and resetting changes The Apply changes button is in the upper right corner of the page. Use the Reset button if you’d like to revert the changes to their last saved state. System This page provides an overview of the switch’s configuration. Click the Refresh button for the latest information.
  • Page 23   Model Name — Use this field to verify the switch’s model number. Notated as AN (Araknis) – SW (switch) – R/F (rear or front-facing ports) - X (the number of RJ-45 ports the switch has) - POE (Power-over-Ethernet).  ...
  • Page 24: Real-Time Statistics

      IGMP Groups — Displays the amount of Multicast Groups registered on the switch. See Settings > Multicast > IGMP Snooping > Group List for more info.   STP — Displays if Spanning Tree Protocol is enabled on the switch. Configurable under Settings >...
  • Page 26: Ports

    Ports This page provides information about specific switchport configurations. Refresh the page to update the page. Table field descriptions:   Port — The number assigned to the port of the switch. The SFP ports are always the last.   Name — The assignable name for the port. Edit the name at Settings > Ports > General.
  • Page 27: System

      Link Speed — Shows the speed setting for the port. Configurable under Settings > Ports.   Aggregation Group — Displays the link aggregation group the port is a member of, if configured under Settings > Link Aggregation.   Bytes Sent — The number of bytes, in seconds, being transmitted on the port.  ...
  • Page 28: Ip Settings

      System Contact — Enter the name of your company to provide the user of the switch a point of contact, should they need it.   LED — Select the behavior of the port Speed/PoE LEDs. Whether they illuminate for a 1Gbps connection, if they’re delivering PoE, or disable them.
  • Page 29: System Time

      DNS Server 1 and 2 — The DNS servers assigned to the switch.   Configuration — Select DHCP or Static. You must select Static to edit the fields above.   Management VLAN — Allows you to select which VLAN you must be connected to for access to the switch’s local user interface.
  • Page 30: Ports

      Recurring From — Set the start time for Daylight Savings Time.   Recurring To — Set the end time of Daylight Savings Time.   SNTP/NTP Server Address — Select the server the switch contacts to keep its system time up to date. Ports Port Use this page to assign port names, speed, and alter their Flow Control settings.
  • Page 31: Port Isolation

    Port Isolation Port isolation allows you to restrict ports from communicating with downstream ports. They can still communicate with upstream ports.  1. To isolate a port(s), select them, then click Edit.  2. Set the Status to Isolate, then click Apply.
  • Page 32: Mirror

    Mirror Port mirroring allows you to monitor traffic from selected ports by mirroring their traffic to a Destination Port, which typically has a computer running port analyzer software to capture the traffic. You can create three total mirroring sessions on the switch. Disable unnecessary sessions to avoid issues and reduce processing Caution: overhead on the switch.
  • Page 33: Jumbo Frames

    Jumbo Frames Use this page to edit the maximum payload limit the switch can receive. Use this page to enable EEE (Energy Efficient Ethernet) on a per-port basis. PoE Port Settings Use this page to select a specific port(s) and Restart their PoE power or Edit their PoE settings.
  • Page 34 Configurable settings include:   State — Enabled or disabled.   Priority — The priority level for PoE power to be delivered to the port. Devices like access points are typically set to High.   Power Limit Type — Auto Class or User defined.
  • Page 35: Power Budget

      User Power Limit(W) — Only available if the Power Limit Type is User defined. Enter a value between 1-30. Power Budget Use this page to alter the Total Power Budget of the switch. VLANs VLANs, or Virtual Local Area Networks, segment a LAN into logical sub-networks with isolated broadcast domains over the same physical topology.
  • Page 36 To add a VLAN:  1. Click the Add button.  2. Enter a VID and a meaningful Name. Then click Apply.  3. Click the Edit button in the far right of the VLAN’s row.  4. For Access Ports, select ports that should only be in contact with clients on the selected VLAN.
  • Page 37 Custom ports are only configurable from the PVID & Ingress Filter page. Note: -__. 802.1Q 802.1Q (also known as Dot1q) is used to tag the traffic as belonging to a VLAN. By clicking Edit in a VLANs row, you can select which ports to Tag with that VLANs traffic and which port should be Untagged.
  • Page 38: Pvid & Ingress Filter

    Click the checkmark icon, then Apply to save your changes. PVID & Ingress Filter Ingress filtering discards frames from ports that are not a member of the VLAN they are trying to access. Use this page to assign ingress filtering rules to a port’s PVID, a switchport property used to identify what VLAN it’s a member of.
  • Page 39: Voice Vlan

    Voice VLAN Voice over Internet Protocol (VoIP) allows telephone calls over a data network, like the internet. With the network acting as the backbone for many multimedia applications, it’s important to properly configure the switch to prioritize VoIP traffic to ensure the application runs smoothly.
  • Page 40 Configurable settings include:   Voice VLAN State — Select Disable, Auto, or OUI. The Auto feature detects voice traffic in the switch and provides them with a better class of service. OUI allows you to manually configure the packet priority.  ...
  • Page 41: Oui Settings

      Remark CoS/802.1p — Can only be edited with an OUI selection. Select what priority level to give voice packets if 802.1p Remark is enabled. Higher values receive a higher priority. Default: 5   Aging Time — Can only be edited with an OUI selection. The number of minutes the switch monitors a port for VoIP traffic.
  • Page 42: Port Settings

    Port Settings Use this page to manage Voice VLAN settings for individual ports. Configurable settings include:   Port — The switchport identifier.   State — Whether the port is examining voice traffic or not.   CoS Mode — The Class of Service (CoS) mode in use on the port.  ...
  • Page 43: Stp

      Operate Status — Displays the current operating status of the voice VLAN on the port. Select a port(s), then click the Edit button to change these settings. Global Settings STP is a Layer 2 protocol that decides the best path for LAN traffic when multiple options exist, preventing network loops while guaranteeing redundancy in case of link failure.
  • Page 44 Configurable settings include:   STP State — Enables or disables STP on the switch.   Force Protocol Version — Choose the STP version for the switch to use.
  • Page 45   RSTP — (Default) Rapid Spanning Tree Protocol (RSTP) behaves like classic STP but can also configure and recognize full-duplex connectivity and ports that are connected to end stations, resulting in rapid transitioning of the port to the Forwarding state and the suppression of Topology Change Notifications.
  • Page 46: Root Bridge Information

      Hello Time — The number of seconds between BPDUs (Bridge Protocol Data Units) sent by the root bridge. Default: 2 Root Bridge Information This page displays information about the device acting as the Root Bridge of the local network’s STP configuration. RSTP Port Settings Use this page to modify RTSP (Rapid Spanning Tree Protocol) settings on a per-port basis.
  • Page 48 Configurable settings include:   Port — The port number being configured.   Priority — The path cost from the port to the root bridge. Default: 128   Path Cost — The path cost from the interface to the RTSP regional root. Default: Auto...
  • Page 49: Cist Port Settings

      Auto Edge — Enable to allow the interface to become an edge port if it does not receive any BPDUs within a given amount of time. Default: Yes   Edge Port Conf/Oper (Configured/Operating) — Select Yes to allow the interface to become an edge port if it does not receive any BPDUs within a given amount of time.
  • Page 50 Configurable settings include:   Port — The port number being configured.   Priority — The path cost from the port to the root bridge.   Path Cost — The path cost from the interface to the RSTP regional root.   Auto Edge —...
  • Page 51: Mst Instance Settings

      Edge Port Conf/Oper (Configured/Operating) — Select Yes to allow the interface to become an edge port if it does not receive any BPDUs within a given amount of time.   P2P MAC Conf/Oper — Auto (the default) allows P2P ports to function in full duplex mode.
  • Page 52: Mst Port Settings

    Configurable settings include:   MST ID — Select an identifier for the MST instance.   VLAN List — Enter the VLAN ID or VLAN ID range to map to the MSTI (MST instance).   Priority — The bridge priority for the spanning tree instance. This value affects the likelihood that the bridge is selected as the root bridge.
  • Page 53 Table field descriptions:   MST ID — The identifier for the MST instance.   Port — The port number of the switch.   Priority — The priority for the port within the MSTI. This value is used to determine which interface becomes the root port when two ports have the same least-cost path to the root.
  • Page 54   Root – The port links the switch to the root bridge device.   Designated — Ports in use within the MSTP region.   Disabled — Port is not in use.   Port State — States include:   Root — The port links the switch to the root bridge device.  ...
  • Page 55: Multicast

      Priority — The priority for the port within the MSTI. This value is used to determine which interface becomes the root port when two ports have the same least-cost path to the root. The port with the lower priority value becomes the root port. If the priority values are the same, the port with the lower interface index becomes the root port.
  • Page 56: Igmp Snooping

    Available states are:   Forward — (Default) Unregistered multicast packets are forwarded to all active interfaces on the switch but not to the CPU, to reduce overhead.   Drop — The switch does not forward unregistered multicast packets to the interfaces.
  • Page 57: Port Settings

    Port Settings Use this page to enable or disable Fast Leave on a port(s). Fast Leave tells a port receiving an IGMP leave message to remove the associated multicast group from the port, without waiting for the normal message interval to end. This feature is typically enabled when the multicast streams are each more than half the available bandwidth of the switch port.
  • Page 58: Vlan Settings

    VLAN Settings Use this page to enable IGMP snooping and select the IGMP version on a per-VLAN basis. Click the Edit button, under the Action column, to change the IGMP Snooping Status of a VLAN. Consult the application documentation when choosing an IGMP version. Note: -__.
  • Page 59: Querier Settings

    Querier Settings Use this page to modify the IGMP Querier configuration on each VLAN. An IGMP Snooping Querier asks all the devices on the network what multicast traffic they want. IGMP-enabled devices send IGMP Join messages back to the IGMP Snooping Querier. The Querier sends this information to each switch to update their IGMP Multicast Group Tables, which are used to organize the multicast addresses that switch ports are asking for.
  • Page 60 Table field descriptions:   VLAN ID — The VLAN identifier used to configure IGMP snooping.   Querier State — Displays if IGMP querier is enabled for this switch on the VLAN.   Querier Version — The IGMP version configured for the VLAN under the VLAN Settings tab.
  • Page 61 Configurable settings include:   Querier State — Enable or disable this switch as an IGMP querier for the VLAN.   Interval — The amount of time (in seconds) that the switch sends querier messages to discover which multicast groups the hosts on the network have joined.
  • Page 62: Group List

      Startup Query Counter — The number of IGMP queries the switch sends at startup. Default: 2   Max Response Interval — The maximum amount of time (in seconds) that hosts are allowed to wait before responding to the General Query. Default: 12  ...
  • Page 63: Mld Snooping

    Click the Edit button, under the Actions column to add ports to the Static and Forbidden port lists. Click the checkmark button to save those changes. MLD Snooping MLD (Multicast Listener Discovery) snooping is used by IPv6 multicast routers to detect multicast listeners.
  • Page 64: Port Settings

    Port Settings Use this page to enable or disable Fast Leave on a port(s). Fast Leave tells a port receiving an MLD leave message to remove the associated multicast group from the port, without waiting for the normal message interval to end. This feature is typically enabled when the multicast streams are each more than half the available bandwidth of the switch port.
  • Page 65: Vlan Settings

    VLAN Settings Use this page to enable MLD snooping and select the IGMP version on a per-VLAN basis. Click the Edit button, under the Action column, to change the MLD Snooping Status of a VLAN. Consult the application documentation when choosing an MLD version. Note: -__.
  • Page 66: Querier Settings

    Querier Settings Use this page to modify the MLD Querier configuration on each VLAN. An MLD Snooping Querier asks all the devices on the network what multicast traffic they want. MLD- enabled devices send MLD Join messages back to the MLD Snooping Querier. The Querier sends this information to each switch to update their MLD Multicast Group Tables, which are used to organize the multicast addresses that switch ports are asking for.
  • Page 67 Configurable settings include:   Querier State — Enable or disable this switch as an MLD querier for the VLAN.   Interval — The amount of time (in seconds) that the switch sends querier messages to discover which multicast groups the hosts on the network have joined.
  • Page 68: Group List

    Group List This page displays the MLD multicast groups (Group Address) reporting to the switch and the ports (Member Ports) that are sending and receiving packets in that group. Router Settings Use this page to configure Multicast router ports (Mrouter ports) for specific VLANs. Mrouter ports forward multicast messages to other members of the multicast group.
  • Page 69: Link Aggregation

    Link Aggregation Link Aggregation (Port Trunking) uses multiple ports in parallel to increase the link speed between two switches, increasing redundancy for higher availability. Use this page to create a Link Aggregation Group (LAG). This switch supports two modes for link aggregation:  ...
  • Page 70: Lacp

    LACP Use this page to configure the Link Aggregation Control Protocol for the switch. Settings Configurable settings include:   System Priority — The priority value the switch takes in determining which switch informs others of a LAG creation. The lower the number the higher the priority level. If multiple switches share the same priority number, the switch with a small MAC...
  • Page 71: Timeout

    address takes priority. Defaut: 32768   System Policy — Select a load balancing policy. Options are:   src-mac — Calculated by source MAC addresses.   dest-mac — Calculated by destination MAC addresses.   src-dest-mac — Calculated by the Exclusive-Or result of destination MAC addresses.
  • Page 72: Access Management

    Access Management This switch allows you to configure access management settings on the Administration, Web, and CLI (Command Line Interface) levels.
  • Page 73: Administration

      Admin — Has full access to the switch.   User — Allows access to the switch, but removes the ability to make changes. The original admin username cannot be changed from “araknis” and it Note: -__. cannot be deleted.
  • Page 74: Cli

    Use this page to enable or disable the Telnet and SSH Service and alter the Timeout settings.
  • Page 75: Diagnostics

    Diagnostics Ping Test Use a ping test to measure the amount of time it takes to reach an address on the local network or the internet. You can enter the IP address or the hostname, such as www.wikipedia.com. Before selecting a DNS server, use a ping test to measure the fastest Pro Tip: response time.
  • Page 76: Trace Route

    Trace Route Use a traceroute to diagnose network interruptions between the switch and an address on the local network or the internet. You can enter an IP address or a hostname, such as www.youtube.com.
  • Page 77: File Management

    File Management Use this to download or upload a configuration file, restore factory defaults, and perform firmware upgrades. Use OvrC to confirm if the switch is up to date. If not, click the Update button Pro Tip: for OvrC to update the switch to the latest firmware.
  • Page 78 Note: -__. You can use either partition to update the switch. OvrC always updates the inactive partition.
  • Page 79: Neighbors

    Neighbors MAC Address Table Use these tables to see which MAC addresses are connected to the switch and add static MAC address entries. Static MAC Address Static MAC address entries speed up the recovery time for critical devices after a restart.
  • Page 80: Dynamic Mac Address

    Dynamic MAC Address The switch discovers dynamic MAC addresses. This table shows which port the MAC address is connected to and the VLAN ID (VID) it was discovered on. Use the Move to Static button under the Actions column to statically assign the address.
  • Page 81: Mac Aging Time

    MAC Aging Time Use this page to adjust the MAC Aging Time. This is the amount of time the switch waits to remove a MAC address from the Dynamic MAC address table after it stops sending packets to the switch. The default is 300 seconds. LLDP Link Layer Discovery Protocol (LLDP) is a generic protocol used to advertise the device’s capabilities to other devices on the network.
  • Page 82: Local Device

      Holdtime Multiplier — Multiply the value entered with the Transmit interval to determine the Time to Live (TTL) value that the switch advertises. The TTL value is the number of network hops that a packet can take before it’s discarded by the router.
  • Page 83: Remote Device

    Remote Device This page displays a table with LLDP information the switch has collected from local network hosts. Use the ··· button to edit the table fields.
  • Page 84: Qos

    Quality of Service (QoS) organizes and prioritizes packet flow and bandwidth use on the LAN based on traffic type, source, or destination to help guarantee network performance for critical services. Global Settings Use this page to enable and configure QoS. Configurable settings include:  ...
  • Page 85: Cos Mapping

      802.1p - DSCP — (Default)Traffic is prioritized based on both 802.1p and DSCP priority tags.   DSCP — Traffic is prioritized based on its DSCP priority tag.   802.1p — Traffic is prioritized based on its 802.1p priority tag. CoS Mapping Class of Service (CoS) allows you to directly configure certain aspects of switch queueing, allowing you to configure Quality of Service (QoS) behavior when the...
  • Page 86: Port Cos

    Port CoS Use this page to assign a CoS Value to ports and turn Trust On or Off. Configure the Trust Mode on the QoS > Global Settings page. On tells the switch to trust the QoS tag from the connected device. Off does not trust the QoS tag of the connected device and re-tags the traffic.
  • Page 87 Configurable settings include:...
  • Page 88: Storm Control

      Ingress and Ingress Rate (kbps) — Enable to limit the data rate of incoming traffic.   Egress and Egress Rate (kbps) — Enable to limit the data rate of outgoing traffic. Rate values must be a multiple of 16 between 16 and 1,000,000. Note: -__.
  • Page 89 Configurable settings include:   Broadcast (kbps) — Check the box to enable Broadcast storm control, then enter the maximum broadcast traffic rate.   Unknown Multicast (kbps) — Check the box to enable Multicast storm control, then enter the maximum multicast traffic rate.  ...
  • Page 90: Global Settings

    802.1X 802.1x allows port-based client authentication with the use of a RADIUS server. Global Settings Use this page to enable and configure 802.1x. Configurable settings include:   State — Enabled or disabled.   Guest VLAN — Enable or disable guest VLAN use for 802.1x. When enabled, all unauthorized clients will be connected to the VLAN.
  • Page 91 Configurable settings include:   Mode — Options include:   Auto — The port only allows packets used for authentication and network discovery until the client is authenticated, then allows uninterrupted traffic.   Force unAuthorized — The port remains unauthorized and ignores all attempts to authenticate a client.
  • Page 92: Authenticated Host

      RADIUS VLAN Assign — Also known as Dynamic VLAN Assignment or VLAN Steering. This is the RADIUS server authenticating the user also assigns the user a VLAN. Default: On Authenticated Host This page displays hosts that have connected and authenticated using 802.1x. Table field descriptions:  ...
  • Page 93: Authentication

    Authentication Use this page to Add, Edit, or Delete a RADIUS server. The Remote Authentication Dial- In User Service (RADIUS) protocol provides central management for users connecting for network services.
  • Page 94 Configurable settings include:   Server IP — The IPv4 address of the RADIUS server.   Authorized Port — The port to communicate with the RADIUS server.   Key String — Enter the authentication key required to connect with the RADIUS server.  ...
  • Page 95: Port Security

      Retry — The number of attempts the switch makes to connect to the RADIUS server before it stops. Default: 3 Port Security Use this page to limit the number of connected devices on a given port by limiting the total number of MAC addresses a port can identify.
  • Page 96: Acl

    The Max MAC address value must be between 1-256. Note: -__. Access Control Lists (ACLS) make sure that only authorized users have access to specific resources and block unwanted attempts by filtering packets based on rules. ACLs are used to control traffic flow, restrict the contents of routing updates, decide which types of traffic to block or forward and provide network security.
  • Page 97: Mac Ace

    MAC ACE Use this page to define Access Control Entries (ACEs) associated with each MAC ACL list. Use the ··· button to edit the table fields. Click the Add button to create a new ACE. Click the Edit or Delete button under the Action column to change the ACE configuration.
  • Page 98 Configurable settings include:   ACL Name — Select an ACL to associate with the ACE.   Sequence Range — Enter a value for the ACE to be processed sequentially with the other ACEs. The smallest value is processed first.   Action —...
  • Page 99: Ipv4 Acl

      VLAN ID — Enter the VLAN ID to monitor.   Source MAC — If desired, enter a Source MAC address to monitor. If the field is left blank all MAC addresses on the VLAN are monitored.   Source MAC Mask — Only available if a Source MAC address is defined. Enter a Source MAC mask to monitor for.
  • Page 100: Ipv4 Ace

    IPV4 ACE Use this page to define Access Control Entries (ACEs) associated with each IPv4 ACL list. Use the ··· button to edit the table fields. Click the Add button to create a new ACE. Click the Edit or Delete button under the Action column to change the ACE configuration.
  • Page 101 Configurable settings include:   ACL Name — Select an ACL to associate with the ACE.   Sequence Range — Enter a value for the ACE to be processed sequentially with the other ACEs. The smallest value is processed first.   Action —...
  • Page 102   Type of Service — Enter a DSCP index to monitor.   Destination IP — If desired, enter a Destination IPv4 address to monitor. If the field is left blank all IPv4 addresses on the VLAN are monitored.   Destination IP Mask — Only available if a Destination IPv4 address is defined. Enter a Destination IPv4 mask to monitor for.
  • Page 103: Port Binding

      TCP Flags — Only available if the selected Protocol is TCP-based. Use the drop- downs to set the below TCP Flag types to monitor.             Port Binding Use this page to assign MAC and IPv4 ACLs to specific ports. Select a Port(s), then click the Edit button to assign ACLs.
  • Page 104: Snmp

    These objects are defined in a Management Information Base (MIB). The Araknis switch includes an SNMP agent that supports SNMP versions 1, 2c, and 3. This agent continuously monitors the status of the switch and the traffic passing through its ports.
  • Page 105: User List

    User List Use this page to configure SNMP users. Click the Add button to create a new user.
  • Page 106 Configurable settings include:   User Name — Enter a user name for the user.   Privilege Mode — Use the drop-down to select one of the following:   No authentication — No authentication is used.   Authentication — SNMP messages are authenticated.  ...
  • Page 107: Community List

      Authentication Password — Enter a password for user authentication.   Encryption Protocol — Select whether to use DES or AES encryption. The Privilege Mode must be set to Privilege to make a selection.   Encryption Key — Enter a key to use that is at least 8 characters long. Community List Use this page to create SNMP Communities.
  • Page 108: Group List

    Configurable settings include:   Community Name — Enter a name for the community.   Security Name — Select an SNMP user name to add to the Community, or none.   Transport Tag — Enter a tag value to compare with the other transport endpoints to identify requests from this community.
  • Page 109 Configurable settings include:   Group Name — Enter a name for the group.   Security Mode — Select SNMP version 1, 2c, or 3.   Security Name — Select an SNMP user.
  • Page 110: Access List

    Access List Use this page to create an Access List and apply it to an SNMP Group. Access Lists control which addresses can manage and monitor the switch. Click the Add button to create a new community. Use the Edit and Delete buttons under the Action column to change the configuration.
  • Page 111: View List

    Configurable settings include:   Group Name — Select a previously configured SNMP Group.   Security Mode — Follows the SNMP Group security mode.   Privilege Mode — Follows the SNMP User Privilege mode. Read, Write, and Notify View cannot be changed. Note: -__.
  • Page 112: Target Parameters

    Click the Add button to create a new View. Use the Edit and Delete buttons under the Action column to change the configuration. Configurable settings include:   View Name — Enter a name for the View.   Subtree OID — Enter the Subtree Object Identifier (OID) value (must begin with a “.”).
  • Page 113 Configurable settings include:...
  • Page 114: Target Address

      Target Parameter Name — Enter a name for the parameter.   Message Processing Model — Select the SNMP version. 1, 2c, or 3.   Security Mode —Select SNMP v1, 2c, or 3.   Security Name — Select an SNMP user.  ...
  • Page 115 Configurable settings include:   Target Address Name — Enter a name for the target.   IP Address — Enter an IP address for the target.   UDP Port — The UDP port to communicate on.
  • Page 116: Notify Settings

      Timeout — The amount of time (in seconds) the switch will wait for a reply from the target before reattempting.   Retry — The number of times the switch will attempt to contact the target address.   Target Identifier — Enter a name to act as the target address’s identifier.  ...
  • Page 117 Configurable settings include:   Notify Name — Enter a name for the notifications.   Tag Identifier — Enter a name to act as the notification’s identifier.   Notify Type — Select Trap or Inform:   Trap — An SNMP message that notifies the host when an event occurs on the switch.
  • Page 118: Port Statistics

    Port Statistics Use this page to view Spanning Tree statistics for each port. You can select a Port(s) and click the Clear button to restart the data gathered. 802.1X Security Use this page to view 802.1x statistics for each port. You can select a Port(s) and click the Clear button to restart the data gathered.
  • Page 119: Port

    Port Use this page to view general statistics for each port. You can select a Port(s) and click the Clear button to restart the data gathered.
  • Page 120: Sfp Module Info

    SFP Module Info Module Use this page to view information about the SFP module in a specific port. Use the Display Module Information in Port drop-down to select the SFP module you want to see data for.
  • Page 121: Ddm

    Use this page to view the SFP module’s Digital Diagnostic Monitoring (DDM) from a specific port. Use the Display Module Information in Port drop-down to select the SFP module you want to see data for.
  • Page 123: System Logs

    System Logs Log Table Use this page to review, refresh, download, or clear events recorded to the switch’s log. There are separate tabs for events recorded to the RAM (temporary) and Flash (permanent) memory. Global Settings Use this page to enable or disable logging.
  • Page 124: Local Logging

    Local Logging Use this page to select the type of events recorded to the RAM and Flash logs. Click the Edit button in the Action column of the Log row you wish to make changes to. In the Edit window, select the Event type you’d like to change the state of (yes or no), then click Apply.
  • Page 125: Remote Logging

    Remote Logging Use this page to configure a remote server to record logs to. Click the Add button to configure a new server. Click the Edit button in the Action column of the server’s row to make changes. Configurable settings include:...
  • Page 126   IP/Hostname — Enter the IP address of the remote log server.   Server Port — Enter the port to communicate with the server.   Event — Select the event type you want to record. The default is EMERG(ency). To add more event types to log, apply the current configuration, then edit the server entry and select another event type, then click Apply.

Table of Contents

Save PDF