User Interface for PoE Switches Models: ES-24-250W, ES-24-500W, Administration Guide ES-48-500W, ES-48-750W www.4Gon.co.uk [email protected] Tel: (0)0330 088 0295 Fax: +44 (0)1245 808299 EdgeSwitch™ Administration Guide Table of Contents Table of Contents About This Document ..........................................................7 Purpose and Audience ............................................................7 Document Organization ..........................................................7 Products and Models .............................................................7 Related Documents ..............................................................8 Typographical Conventions .......................................................8 Chapter 1: Getting Started ......................................................9 Connecting the Switch to the Network ............................................9 Understanding the User Interfaces ................................................9 Using the EdgeSwitch UI ......................................................9 Accessing the UI ...........................................................9 EdgeSwitch UI Page Layout ................................................10 Device View ...............................................................10 Navigation Menu ..........................................................11 Configuration and Status Fields ............................................12 Table Filtering .............................................................14 Help Page Access .........................................................14 User-Defined Fields .......................................................14 Using the Command-Line Interface ...........................................15 Chapter 2: Configuring Power over Ethernet ...............................16 Chapter 3: Configuring System Information ................................18 Viewing ARP Cache ..............................................................19 Viewing Inventory Information ..................................................20 Viewing the Dual Image Status ..................................................21 Viewing System Resources .......................................................22 System Resource Status ......................................................22 System Resource Configuration ...............................................23 Defining General Device Information ............................................24 System Description ...........................................................25 IP Address Conflict Detection .................................................26 Network Port IPv6 Neighbors .................................................29 DHCP Client Options .........................................................30 Secure HTTP Configuration ...................................................31 SSH Configuration ............................................................32 Authentication Server Users ..................................................36 Logged in Sessions ...........................................................38 Ubiquiti Networks, Inc. i www.4Gon.co.uk [email protected] Tel: (0)0330 088 0295 Fax: +44 (0)1245 808299 EdgeSwitch™ Administration Guide Table of Contents Accounting Selection .........................................................40 Authentication Selection .....................................................43 Last Password Result .........................................................47 Denial of Service Configuration ...............................................48 CLI Banner Configuration .....................................................50 Basic Switch Configuration ......................................................51 Switch Configuration .........................................................51 Managing Logs ..................................................................52 Log Configuration ............................................................52 Buffered Log .................................................................54 Event Log ....................................................................55 Logging Hosts. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .56 Syslog Source Interface Configuration ........................................57 Persistent Log ................................................................58 Configuring Email Alerts .........................................................59 Email Alert Global Configuration ..............................................59 Email Alert Server Configuration ..............................................60 Email Alert Statistics ..........................................................61 Email Alert Subject Configuration .............................................62 Email Alert To Address Configuration .........................................63 Viewing Device Port Information .................................................64 Port Summary ................................................................64 Port Description ..............................................................66 Cable Test ....................................................................67 Mirroring .....................................................................68 Configuring a Port Mirroring Session ......................................69 Configuring Port Mirroring Source Ports ...................................69 Configuring the Port Mirroring Destination ................................70 Defining SNMP Parameters ......................................................71 SNMP v1 and v2 ..............................................................71 SNMP v3 .....................................................................71 SNMP Community Configuration .............................................72 SNMP v1/v2 Trap Receivers Configuration .....................................73 SNMP v3 Trap Receivers Configuration ........................................74 SNMP Access Control Group ..................................................75 SNMP User Security Model ...................................................76 SNMP Trap Source Interface Configuration ....................................77 Viewing System Statistics ........................................................79 Switch Detailed Statistics .....................................................79 Port Summary ................................................................81 Port Detailed Statistics .......................................................82 Network Port DHCPv6 Client Statistics ........................................85 Ubiquiti Networks, Inc. ii www.4Gon.co.uk [email protected] Tel: (0)0330 088 0295 Fax: +44 (0)1245 808299 EdgeSwitch™ Administration Guide Table of Contents Time-Based Group Statistics ..................................................86 Time-Based Flow Statistics ...................................................87 Time-Based Statistics ........................................................89 Using System Utilities ............................................................90 System Reset .................................................................90 Ping .........................................................................90 TraceRoute ...................................................................93 IP Address Conflict Detection .................................................94 Uploading Files ...........................................................96 Downloading Files ........................................................97 AutoInstall ......................................................................98 Managing SNMP Traps ......................................................... 100 System Trap Log ............................................................ 100 System Trap Flags .......................................................... 101 Managing the DHCP Server .................................................... 102 DHCP Server Global Configuration .......................................... 102 DHCP Server Pool Configuration ............................................ 103 DHCP Server Pool Options .................................................. 104 DHCP Server Bindings Information .......................................... 106 DHCP Server Statistics ...................................................... 107 DHCP Server Conflicts Information .......................................... 108 Configuring Time Ranges ...................................................... 109 Time Range Configuration .................................................. 109 Time Range Entry Configuration ............................................ 110 Configuring DNS .............................................................. 112 DNS Global Configuration .................................................. 112 DNS IP Mapping Configuration ............................................. 113 DNS Source Interface Configuration ........................................ 114 Configuring SNTP Settings ..................................................... 115 SNTP Global Configuration ................................................. 116 SNTP Global Status ......................................................... 117 SNTP Server Configuration ................................................. 118 SNTP Server Status ......................................................... 119 Configuring the Time Zone .................................................... 121 Time Zone Configuration ................................................... 122 Summer Time Configuration ................................................ 123 Chapter 4: Configuring Switching Information .......................... 125 Managing VLANs .............................................................. 126 VLAN Status ................................................................ 126 VLAN Port Configuration ................................................... 127 VLAN Port Summary ........................................................ 128 Ubiquiti Networks, Inc. iii www.4Gon.co.uk [email protected] Tel: (0)0330 088 0295 Fax: +44 (0)1245 808299 EdgeSwitch™ Administration Guide Table of Contents VLAN Internal Usage ....................................................... 129 Reset VLAN Configuration .................................................. 130 Managing Voice VLANs ........................................................ 131 Voice VLAN Configuration .................................................. 131 Voice VLAN Interface Summary ............................................. 131 Creating MAC Filters ........................................................... 133 MAC Filter Configuration ................................................... 133 GARP Configuration ........................................................... 134 GARP Switch Configuration ................................................. 134 Configuring DHCP Snooping .................................................. 136 Global DHCP Snooping Configuration ...................................... 136 DHCP Snooping Static Bindings ............................................ 139 DHCP Snooping Dynamic Bindings ......................................... 140 DHCP Snooping Persistent Configuration ................................... 141 DHCP Snooping Statistics .................................................. 142 Configuring IGMP Snooping ................................................... 143 Global Configuration and Status ............................................ 143 Interface Configuration ..................................................... 144 IGMP Snooping Source Specific Multicast ................................... 145 IGMP Snooping VLAN Status ................................................ 146 IGMP Snooping Multicast Router Configuration ............................. 147 IGMP Snooping Multicast Router VLAN Status ............................... 148 IGMP Snooping Multicast Router VLAN Configuration ....................... 149 Configuring IGMP Snooping Querier ........................................... 150 IGMP Snooping Querier Configuration ...................................... 150 VLAN Configuration ........................................................ 151 IGMP Snooping Querier VLAN Status ....................................... 152 Creating Port Channels ........................................................ 153 Port Channel Summary ..................................................... 153 Port Channel Statistics ...................................................... 155 Viewing Multicast Forwarding Database Information ........................... 156 Multicast Forwarding Database Summary ................................... 156 Multicast Forwarding Database GMRP Table ................................ 157 Configuring Protected Ports ................................................... 159 Configuring Spanning Tree Protocol ........................................... 160 Spanning Tree Switch Configuration ........................................ 160 Spanning Tree CST Configuration ........................................... 161 Spanning Tree CST Port Configuration ...................................... 163 Spanning Tree MST Configuration .......................................... 165 Spanning Tree MST Port Configuration ...................................... 167 Spanning Tree Statistics .................................................... 169 Ubiquiti Networks, Inc. iv www.4Gon.co.uk [email protected] Tel: (0)0330 088 0295 Fax: +44 (0)1245 808299 EdgeSwitch™ Administration Guide Table of Contents Configuring Port Security ...................................................... 171 Port Security Global Administration ......................................... 171 Port Security Interface Status ............................................... 172 Port Security Statically Configured MAC Addresses .......................... 173 Port Security Dynamically Learned MAC Addresses .......................... 174 Managing LLDP ............................................................... 175 LLDP Global Configuration ................................................. 175 LLDP Interface Configuration ............................................... 176 LLDP Local Device Summary ................................................ 177 Remote Device Summary ................................................... 178 LLDP Statistics ............................................................. 179 LLDP-MED. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 181 LLDP-MED Global Configuration ............................................ 181 LLDP-MED Local Device Information ........................................ 183 LLDP-MED Remote Device Information ..................................... 184 Chapter 5: Configuring Routing ............................................. 186 Configuring ARP ............................................................... 187 ARP Table .................................................................. 188 ARP Table Configuration .................................................... 189 Configuring Global IP Settings ................................................. 190 Routing IP Configuration ................................................... 190 Routing IP Interface Summary .............................................. 192 Routing IP Interface Configuration .......................................... 194 Routing IP Statistics ........................................................ 196 Router ........................................................................ 199 Route Table ................................................................ 199 Configured Routes ......................................................... 200 Adding a Static Route ................................................... 200 Configuring Policy-Based Routing ............................................. 202 Chapter 6: Managing Device Security ..................................... 203 Port Access Control ............................................................ 203 Global Port Access Control Configuration ................................... 204 Port Access Control Port Summary ......................................... 205 Port Access Control Port Configuration ..................................... 207 Port Access Control Port Details. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 210 Port Access Control Statistics ............................................... 212 Port Access Control Client Summary ........................................ 214 Port Access Control Privileges Summary .................................... 215 Port Access Control History Log Summary .................................. 216 Ubiquiti Networks, Inc. v www.4Gon.co.uk [email protected] Tel: (0)0330 088 0295 Fax: +44 (0)1245 808299 EdgeSwitch™ Administration Guide Table of Contents RADIUS Settings ............................................................... 217 RADIUS Configuration ...................................................... 217 RADIUS Named Server Status ............................................... 218 RADIUS Server Statistics .................................................... 219 RADIUS Accounting Server Status. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 220 RADIUS Accounting Server Statistics ........................................ 221 RADIUS Clear Statistics ..................................................... 222 RADIUS Source Interface Configuration ..................................... 223 TACACS+ Settings ............................................................. 224 TACACS+ Configuration .................................................... 224 TACACS+ Server Summary .................................................. 225 TACACS+ Server Configuration ............................................. 226 TACACS+ Source Interface Configuration ................................... 227 Chapter 7: Configuring Quality of Service ................................ 228 Configuring Access Control Lists ............................................... 229 IP Access Control Lists ...................................................... 229 Access Control List Summary ............................................... 230 Access Control List Configuration ........................................... 231 Access Control List Interface Summary ...................................... 235 Access Control List VLAN Summary ......................................... 236 Configuring Auto VoIP ......................................................... 237 Auto VoIP Global Configuration ............................................. 237 OUI Table Summary ........................................................ 238 OUI Based Auto VoIP ....................................................... 239 Protocol Based Auto VoIP .................................................. 240 Configuring Class of Service ................................................... 242 CoS IP DSCP Mapping Configuration ........................................ 242 CoS Interface Queue Configuration ......................................... 245 CoS Interface Queue Drop Precedence Configuration ....................... 246 Configuring Diffserv ........................................................... 247 Diffserv Global Configuration and Status .................................... 247 Diffserv Class Summary ..................................................... 248 Diffserv Class Configuration ................................................ 249 Diffserv Policy Summary .................................................... 252 Diffserv Policy Configuration ............................................... 253 Diffserv Service Summary .................................................. 255 Diffserv Service Performance Statistics ...................................... 256 Diffserv Policy Performance Statistics ....................................... 257 Ubiquiti Networks, Inc. vi www.4Gon.co.uk [email protected] Tel: (0)0330 088 0295 Fax: +44 (0)1245 808299 EdgeSwitch™ Administration Guide Table of Contents Appendix A: Configuration Examples ..................................... 258 Configuring VLANs ............................................................ 258 Using the EdgeSwitch UI to Configure VLANs ............................... 258 Using the CLI to Configure VLANs ........................................... 260 Configuring Multiple Spanning Tree Protocol .................................. 261 Using the Web UI to Configure MSTP ........................................ 261 Using the CLI to Configure MSTP ............................................ 263 Configuring VLAN Routing ..................................................... 264 Using the CLI to Configure VLAN Routing ................................... 264 Configuring Policy-Based Routing ............................................. 266 Configuring Policy-Based Routing Using the CLI ............................. 266 Configuring 802.1X Network Access Control ................................... 269 Using the CLI to Configure 802.1X Port-Based Access Control ................ 269 Configuring Differentiated Services for VoIP .................................... 270 Using the CLI to Configure DiffServ VoIP Support ........................... 270 Appendix B: Contact Information .......................................... 272 Ubiquiti Networks Support .................................................... 272 Online Resources ........................................................... 272 Ubiquiti Networks, Inc. vii www.4Gon.co.uk [email protected] Tel: (0)0330 088 0295 Fax: +44 (0)1245 808299 EdgeSwitch™ Administration Guide About This Document About This Document This section contains the following information about this document: • “Purpose and Audience” on page 8 • “Document Organization” on page 8 • “Products and Models” on page 8 • “Related Documents” on page 9 • “Typographical Conventions” on page 9 • “Typographical Conventions” on page 9 Purpose and Audience This guide describes how to configure the EdgeSwitch software features using the browser-based EdgeSwitch user interface (UI). The information in this guide is intended for system administrators who are responsible for configuring and operating a network using EdgeSwitch devices. To obtain the greatest benefit from this guide, you should have an understanding of the base software and should have read the specification for your networking device platform. You should also have basic knowledge of Ethernet and networking concepts. Document Organization This guide contains the following sections: • “Chapter 1: Getting Started” on page 10 contains information about performing the initial system configuration and accessing the user interface. • “Chapter 3: Configuring System Information” on page 19 describes how to configure administrative features such as SNMP, system users, and port information. • “Chapter 4: Configuring Switching Information” on page 126 describes how to manage and monitor the Layer-2 switching features. • “Chapter 5: Configuring Routing” on page 187 describes how to configure the Layer-3 routing features. • “Chapter 6: Managing Device Security” on page 204 contains information about configuring switch security information such as port access control, TACACS+, and RADIUS server settings. • “Chapter 7: Configuring Quality of Service” on page 229 describes how to manage the EdgeSwitch software ACLs, and how to configure the Differentiated Services and Class of Service features. • “Appendix A: Configuration Examples” on page 259 describes how to configure selected features on the switch using either the EdgeSwitch UI, command-line interface, and/or Simple Network Management Protocol (SNMP). Products and Models This document covers the following Ubiquiti products and models: Affected Products Name Description Part Number EdgeSwitch 48-port 750W Managed PoE+ Gigabit Switch with SFP+ ES-48-750W EdgeSwitch 48-port 500W Managed PoE+ Gigabit Switch with SFP+ ES-48-500W EdgeSwitch 24-port 500W Managed PoE+ Gigabit Switch with SFP ES-24-500W EdgeSwitch 24-port 250W Managed PoE+ Gigabit Switch with SFP ES-24-250W Ubiquiti Networks, Inc. 8 www.4Gon.co.uk [email protected] Tel: (0)0330 088 0295 Fax: +44 (0)1245 808299 EdgeSwitch™ Administration Guide About This Document Related Documents • EdgeSwitch CLI Command Reference • EdgeSwitch Quick Start Guide For additional information, refer to the EdgeSwitch community website: community.ubnt.com/edgemax Typographical Conventions The following table lists typographical conventions used throughout this document. Typographical Conventions Convention Indicates Example Bold User selection Select VLAN 2 from the VLAN ID list; Click Submit User-entered text enter 3 to assign VLAN 3 as the default VLAN Italic Name of a field delete the existing name in the Username field Name of UI page, dialog box, window, etc. Use the IP Address Conflict Detection page > Order of navigation selections to access a page To access the Session page, click System > Users > Session Courier font CLI commands and their output show network Ubiquiti Networks, Inc. 9 www.4Gon.co.uk [email protected] Tel: (0)0330 088 0295 Fax: +44 (0)1245 808299
Description: