Inhaltszusammenfassung zur Seite Nr. 1
ADMINISTRATION
GUIDE
Cisco Small Business 300 Series Managed Switch
Administration Guide Release 1.3
Inhaltszusammenfassung zur Seite Nr. 2
Contents Chapter 1: Getting Started 1 Starting the Web-based Configuration Utility 1 Launching the Configuration Utility 2 HTTP/HTTPS 3 Logging Out 4 Quick Start Device Configuration 5 Interface Naming Conventions 6 Window Navigation 7 Application Header 7 Management Buttons 9 Chapter 2: Status and Statistics 12 Viewing Ethernet Interfaces 12 Viewing Etherlike Statistics 13 Viewing GVRP Statistics 15 Viewing 802.1X EAP Statistics 16 Viewing TCAM Utilization[ 17 Managing RMON 18 Viewing RMON Stat
Inhaltszusammenfassung zur Seite Nr. 3
Contents Chapter 4: Administration: File Management 34 System Files 34 Upgrade/Backup Firmware/Language 37 Upgrade/Backing Firmware or Language File 38 Active Image 41 Download/Backup Configuration/Log 41 Configuration File Backwards Compatibility 42 Downloading or Backing-up a Configuration or Log File 43 Configuration Files Properties 47 Copy/Save Configuration 48 DHCP Auto Configuration 49 DHCP Server Options 50 Auto Configuration Download Protocol (TFTP or SCP) 50 SSH Client Authentication P
Inhaltszusammenfassung zur Seite Nr. 4
Contents System Time Options 73 Time 73 Time Zone and Daylight Savings Time (DST) 74 SNTP Modes 74 Configuring System Time 75 Selecting Source of System Time 75 Adding a Unicast SNTP Server 77 Configuring the SNTP Mode 80 Defining SNTP Authentication 80 Time Range 81 Absolute Time Range 82 Recurring Time Range 83 Chapter 7: Administration: Diagnostics 84 Testing Copper Ports 84 Displaying Optical Module Status 86 MSA-compatible SFPs 86 Configuring Port and VLAN Mirroring 87 Viewing CPU Utilizati
Inhaltszusammenfassung zur Seite Nr. 5
Contents Displaying LLDP Neighbors Information 108 Accessing LLDP Statistics 112 LLDP Overloading 113 Configuring CDP 115 Setting CDP Properties 115 Editing CDP Interface Settings 118 Displaying CDP Local Information 119 Displaying CDP Neighbors Information 121 Viewing CDP Statistics 123 Chapter 9: Port Management 124 Configuring Ports 124 Setting Port Configuration 125 Configuring Link Aggregation 128 Link Aggregation Overview 129 Load Balancing 129 Default Settings and Configuration 130 Static
Inhaltszusammenfassung zur Seite Nr. 6
Contents What is a Smartport 146 Smartport Types 146 Special Smartport Types 148 Smartport Macros 149 Applying a Smartport Type to an Interface 150 Macro Failure and the Reset Operation 150 How the Smartport Feature Works 151 Auto Smartport 152 Enabling Auto Smartport 152 Identifying Smartport Type 152 Using CDP/LLDP Information to Identify Smartport Types 153 Multiple Devices Attached to the Port 154 Persistent Auto Smartport Interface 155 Error Handling 155 Default Configuration 156 Relationsh
Inhaltszusammenfassung zur Seite Nr. 7
Contents Chapter 12: VLAN Management 184 VLANs 184 Configuring Default VLAN Settings 187 Creating VLANs 189 Configuring VLAN Interface Settings 190 Defining VLAN Membership 191 Configuring Port to VLAN 192 Configuring VLAN Membership 193 GVRP Settings 194 Defining GVRP Settings 195 VLAN Groups 195 MAC-based Groups 196 Assigning MAC-based VLAN Groups 196 Mapping VLAN Group to VLAN Per Interface 197 Voice VLAN 198 Voice VLAN Overview 198 Dynamic Voice VLAN Modes 199 Voice End-Points 200 Auto Voice
Inhaltszusammenfassung zur Seite Nr. 8
Contents Customer Port Multicast TV VLAN 214 Mapping CPE VLANs to Multicast TV VLANs 215 CPE Port Multicast VLAN Membership 216 Chapter 13: Spanning Tree 218 STP Flavors 218 Configuring STP Status and Global Settings 219 Defining Spanning Tree Interface Settings 221 Configuring Rapid Spanning Tree Settings 223 Multiple Spanning Tree 226 Defining MSTP Properties 226 Mapping VLANs to a MSTP Instance 227 Defining MSTP Instance Settings 228 Defining MSTP Interface Settings 229 Chapter 14: Managing M
Inhaltszusammenfassung zur Seite Nr. 9
Contents MLD Snooping 247 Querying IGMP/MLD IP Multicast Group 249 Defining Multicast Router Ports 250 Defining Forward All Multicast 251 Defining Unregistered Multicast Settings 252 Chapter 16: IP Configuration 254 Overview 254 Layer 2 IP Addressing 255 Layer 3 IP Addressing 256 IPv4 Management and Interfaces 256 IPv4 Interface 256 Defining an IPv4 Interface in Layer 2 System Mode 257 Defining IPv4 Interface in Layer 3 System Mode 258 IPv4 Routes 260 ARP 261 ARP Proxy 262 UDP Relay/IP Helper 26
Inhaltszusammenfassung zur Seite Nr. 10
Contents DHCP Server 276 DHCP Options 276 Dependencies Between Features 278 Default Settings and Configurations 278 DHCPv4 Server 279 Network Pool 279 Excluded Addresses 281 Static Hosts 281 Address Binding 283 IPv6 Management and Interfaces 284 IPv6 Global Configuration 285 IPv6 Interface 285 IPv6 Tunnel 288 Configuring Tunnels 289 Defining IPv6 Addresses 290 IPv6 Default Router List 291 Defining IPv6 Neighbors Information 293 Viewing IPv6 Route Tables 294 DHCPv6 Relay 296 Dependencies with Oth
Inhaltszusammenfassung zur Seite Nr. 11
Contents Interactions With Other Features 308 Workflow 308 Configuring a TACACS+ Server 308 Configuring RADIUS 311 Accounting Using a RADIUS Server 311 Defaults 311 Interactions With Other Features 312 Radius Workflow 312 Configuring Management Access Authentication 315 Defining Management Access Method 316 Active Access Profile 317 Defining Profile Rules 319 SSL Server 321 SSL Overview 321 Default Settings and Configuration 322 SSL Server Authentication Settings 322 Configuring TCP/UDP Services
Inhaltszusammenfassung zur Seite Nr. 12
Contents Default Configuration 342 Configuring DoS Prevention 342 Security Suite Settings 342 SYN Protection 344 Martian Addresses 345 SYN Filtering 346 SYN Rate Protection 347 ICMP Filtering 348 IP Fragmented Filtering 348 IP Source Guard 349 Interactions with Other Features 349 Filtering 350 Configuring IP Source Guard Work Flow 350 Enabling IP Source Guard 351 Configuring IP Source Guard on Interfaces 351 Binding Database 352 Dynamic ARP Inspection 353 How ARP Prevents Cache Poisoning 354 Int
Inhaltszusammenfassung zur Seite Nr. 13
Contents SSD Default Read Mode Session Override 366 SSD Properties 366 Passphrase 367 Default and User-defined Passphrases 367 Local Passphrase 367 Configuration File Passphrase Control 368 Configuration File Integrity Control 368 Read Mode 369 Configuration Files 369 File SSD Indicator 369 SSD Control Block 370 Startup Configuration File 370 Running Configuration File 371 Backup and Mirror Configuration File 372 Sensitive Data Zero-Touch Auto Configuration 373 SSD Management Channels 374 Menu C
Inhaltszusammenfassung zur Seite Nr. 14
Contents SSH Client Configuration Through the GUI 387 SSH User Authentication 387 SSH Server Authentication 388 Modifying the User Password on the SSH Server 388 Chapter 20: Security: SSH Server 390 Overview 390 Common Tasks 391 SSH Server Configuration Pages 392 SSH User Authentication 392 SSH Server Authentication 393 Chapter 21: Access Control 396 Access Control Lists 396 Defining MAC-based ACLs 398 Adding Rules to a MAC-based ACL 399 IPv4-based ACLs 401 Defining an IPv4-based ACL 401 Adding
Inhaltszusammenfassung zur Seite Nr. 15
Contents Configuring Bandwidth 423 Configuring Egress Shaping per Queue 425 Configuring VLAN Ingress Rate Limit 425 TCP Congestion Avoidance 427 QoS Basic Mode 427 Workflow to Configure Basic QoS Mode 427 Configuring Global Settings 428 Interface QoS Settings 429 QoS Advanced Mode 429 Workflow to Configure Advanced QoS Mode 431 Configuring Global Settings 431 Configuring Out-of-Profile DSCP Mapping 432 Defining Class Mapping 434 QoS Policers 435 Defining Aggregate Policers 436 Configuring a Poli
Inhaltszusammenfassung zur Seite Nr. 16
Contents Configuring SNMP Views 452 Creating SNMP Groups 453 Managing SNMP Users 455 Defining SNMP Communities 457 Defining Trap Settings 459 Notification Recipients 460 Defining SNMPv1,2 Notification Recipients 460 Defining SNMPv3 Notification Recipients 462 SNMP Notification Filters 463 Cisco Small Business 300 Series Managed Switch Administration Guide 15
Inhaltszusammenfassung zur Seite Nr. 17
Contents Cisco Small Business 300 Series Managed Switch Administration Guide 16
Inhaltszusammenfassung zur Seite Nr. 18
1 Getting Started This section provides an introduction to the web-based configuration utility, and covers the following topics: • Starting the Web-based Configuration Utility • Quick Start Device Configuration • Interface Naming Conventions • Window Navigation Starting the Web-based Configuration Utility This section describes how to navigate the web-based switch configuration utility. If you are using a pop-up blocker, make sure it is disabled. Browser Restrictions • If you are using older
Inhaltszusammenfassung zur Seite Nr. 19
Getting Started Starting the Web-based Configuration Utility 1 Launching the Configuration Utility To open the web-based configuration utility: STEP 1 Open a Web browser. STEP 2 Enter the IP address of the device you are configuring in the address bar on the browser, and then press Enter. NOTE When the device is using the factory default IP address of 192.168.1.254, its power LED flashes continuously. When the device is using a DHCP assigned IP address or an administrator-configured static
Inhaltszusammenfassung zur Seite Nr. 20
Getting Started Starting the Web-based Configuration Utility 1 STEP 3 If this is the first time that you logged on with the default user ID (cisco) and the default password (cisco) or your password has expired, the Change Password Page appears. See Password Expiration for additional information. STEP 4 Choose whether to select Disable Password Complexity Enforcement or not. For more information on password complexity, see the Setting Password Complexity Rules section. STEP 5 Enter the new pa