Allied-telesis AT-S63 User Manual

Management SoftwareAT-S63◆Menus InterfaceUser’s GuideAT-9424T/SP AND AT-9424T/GBLAYER 2+ GIGABIT ETHERNET SWITCHESVERSION 1.0.0®PN 613-50570-00 Rev A

Contents10GARP VLAN Registration Protocol ...

Chapter 5: Enhanced Stacking100 Section I: Basic FeaturesSelecting a Switch in an Enhanced StackBefore you perform a procedure on a switch in an enhan

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 1013. From the Stacking Services menu, type 1 to select Get/Refresh L

Chapter 5: Enhanced Stacking102 Section I: Basic Features5. Type the number of the switch in the list you want to manage.A prompt is displayed if the

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 103Returning to the Master Switch When you have finished managing a s

Chapter 5: Enhanced Stacking104 Section I: Basic FeaturesDisplaying the Enhanced Stacking StatusTo view the stacking status of a switch in a stack, pe

Section I: Basic Features 105Chapter 6Port ParametersThis chapter contains the procedures for viewing and changing the parameter settings for the indi

Chapter 6: Port Parameters106 Section I: Basic FeaturesConfiguring Port ParametersTo configure the most basic parameter settings for a port, perform t

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 107The Port Configuration menu is shown in Figure 27.Figure 27. Port

Chapter 6: Port Parameters108 Section I: Basic Featuresto the port. After the problem has been fixed, you can enable the port again to resume normal o

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 109A switch port using autonegotiation defaults to half-duplex if it

AT-S63 Management Software Menus Interface User’s Guide11Configuring the Web Server ...

Chapter 6: Port Parameters110 Section I: Basic Featuresthrough or crossover twisted pair cable when connecting any network device to a port on the swi

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 111Configuring Head of Line BlockingHead of line (HOL) blocking is a

Chapter 6: Port Parameters112 Section I: Basic FeaturesFor example, referring to the figure above, when the utilization of the storage capacity of por

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 113Configuring Flow Control and Back PressureA switch port uses flow

Chapter 6: Port Parameters114 Section I: Basic Features3. Enter the number of the port you want to configure. To configure a range of ports, enter the

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 1158. Type 4 to select Back Pressure Threshold. This selection specif

Chapter 6: Port Parameters116 Section I: Basic FeaturesConfiguring FilteringIf the performance of your network is affected by heavy traffic, you can u

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 1176. Type 2 to toggle Unknown Multicast Filtering between Disabled a

Chapter 6: Port Parameters118 Section I: Basic FeaturesSetting Up Rate LimitingThe rate limiting feature allows you to set the maximum number of ingre

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 119A prompt is displayed:Enter the Rate Limit (packets/second):[0 to

Contents12Deleting a Certificate ...

Chapter 6: Port Parameters120 Section I: Basic FeaturesResetting a PortResetting a port is useful in situations where a port is having problems establ

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 121Forcing Port RenegotiationPort renegotiation prompts the port to a

Chapter 6: Port Parameters122 Section I: Basic FeaturesResetting the Port Configuration to the DefaultsYou can return port settings to the default val

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 123Displaying Port StatisticsTo display Ethernet port statistics, per

Chapter 6: Port Parameters124 Section I: Basic FeaturesThe Display Port Statistics menu is shown in Figure 33. Figure 33. Display Port Statistics Men

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 125Multicast Frames SentNumber of multicast frames transmitted from t

Chapter 6: Port Parameters126 Section I: Basic FeaturesClearing Port StatisticsTo clear the Ethernet port statistics and reset them to “0”, perform th

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 127Displaying Port StatusTo display the current status of the ports o

Chapter 6: Port Parameters128 Section I: Basic FeaturesUp - Indicates that a valid link exists between the port and the end node. Down - Indicates tha

Section I: Basic Features 129Chapter 7MAC Address TableThe chapter contains the procedures for viewing the static and dynamic MAC address table.This c

AT-S63 Management Software Menus Interface User’s Guide13IP Options Attack ...

Chapter 7: MAC Address Table130 Section I: Basic FeaturesMAC Address OverviewEach hardware device that you connect to your Ethernet network has a uniq

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 131learns by examining the source MAC addresses of the frames receive

Chapter 7: MAC Address Table132 Section I: Basic FeaturesDisplaying the MAC Address TablesThe AT-S63 management software has two menu selections for d

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 133Choose one of the following display types.1 - Display AllThis sele

Chapter 7: MAC Address Table134 Section I: Basic FeaturesTypeThe type of the address: static or dynamic.An example of a multicast MAC address table is

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 1353 - Display DynamicThis selection displays only the dynamic addres

Chapter 7: MAC Address Table136 Section I: Basic FeaturesAdding Static Unicast and Multicast MAC AddressesThis section contains the procedure for addi

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 137If you are entering a static multicast address, you must specify t

Chapter 7: MAC Address Table138 Section I: Basic FeaturesDeleting Unicast and Multicast MAC AddressesTo delete a dynamic or static unicast or multicas

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 139Deleting All Dynamic MAC AddressesTo delete all dynamic unicast an

Contents14Index ...

Chapter 7: MAC Address Table140 Section I: Basic FeaturesChanging the Aging TimeThe switch uses the aging time to delete inactive dynamic MAC addresse

Section I: Basic Features 141Chapter 8Port TrunkingThis chapter contains the procedures for creating, modifying, and deleting port trunks. Sections in

Chapter 8: Port Trunking142 Section I: Basic FeaturesPort Trunking OverviewA port trunk is an economical way for you to increase the bandwidth between

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 143❑ When you cable a trunk, the order of the connections should be m

Chapter 8: Port Trunking144 Section I: Basic FeaturesThe AT-S63 management software offers six load distribution methods. They are: ❑ Source MAC Addre

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 145data link provided by an SFP transceiver in switch #2.Figure 41.

Chapter 8: Port Trunking146 Section I: Basic FeaturesNote that packets sent back from the destination node to the original source node may travel the

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 147Table 2 shows how switch #2 might distribute the server traffic ac

Chapter 8: Port Trunking148 Section I: Basic FeaturesThis method is useful when a port trunk needs to send packets from one source node to many destin

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 149Creating a Port TrunkThis section contains the procedure for creat

15FiguresFigure 1: Connecting the Management Cable to the RJ-45 Serial Terminal Port ...

Chapter 8: Port Trunking150 Section I: Basic FeaturesThe Port Trunking menu is shown in Figure 42.Figure 42. Port Trunking Menu3. From the Port Trunk

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 151The following prompt is displayed:Enter Trunk Name:7. Type a name

Chapter 8: Port Trunking152 Section I: Basic FeaturesModifying a Port TrunkThis section contains the procedure for modifying a port trunk on the switc

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 153The Modify Trunk menu is displayed. The menu displays the operatin

Chapter 8: Port Trunking154 Section I: Basic Features7. To change the ports of a trunk, type 4 to select Trunk Ports and, when prompted, enter the new

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 155Deleting a Port TrunkCautionDisconnect the cables from the port tr

Chapter 8: Port Trunking156 Section I: Basic FeaturesDisplaying the Port TrunksTo display a port trunk, perform the following procedure:1. From the Ma

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 157SRC IP - Source IP address trunkingDST IP - Destination IP address

Chapter 8: Port Trunking158 Section I: Basic Features

Section I: Basic Features 159Chapter 9Port MirroringThis chapter contains the procedures for creating and deleting a port mirror. Sections in the chap

Figures16Figure 38: Display All Menu - Multicast MAC Addresses ...

Chapter 9: Port Mirroring160 Section I: Basic FeaturesPort Mirroring OverviewThe port mirroring feature allows you to unobtrusively monitor the traffi

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 161Creating a Port MirrorTo create a port mirror, perform the followi

Chapter 9: Port Mirroring162 Section I: Basic Features5. Type 2 to select Mirror-To (Destination) Port.The following prompt is displayed:Mirror-To Por

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 163Disabling a Port MirrorTo delete a port mirror, perform the follow

Chapter 9: Port Mirroring164 Section I: Basic FeaturesModifying a Port MirrorTo modify the port mirror, perform the following procedure:1. From the Ma

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 165Displaying the Port MirrorTo display the port mirror, perform the

Chapter 9: Port Mirroring166 Section I: Basic Features

167Section IIAdvanced FeaturesThe chapters in this section explain additional switch management features of the AT-S63 management software. The chapte

168 Section II: Advanced Features

Section II: Advanced Features 169Chapter 10File SystemThe chapter describes the AT-S63 file system, and how you can use the file system to copy, renam

AT-S63 Management Software Menus Interface User’s Guide17Figure 93: CIST and VLAN Guideline - Example 2 ...

Chapter 10: File System170 Section II: Advanced FeaturesFile System OverviewThe AT-S63 management software has a file system for storing system files.

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 171where:❑ filename is a descriptive name for the file, and may b

Chapter 10: File System172 Section II: Advanced FeaturesWorking with Boot Configuration FilesA boot configuration file contains a series of commands t

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 173page 175Creating a Boot Configuration FileBefore you begin to

Chapter 10: File System174 Section II: Advanced Features5. Enter a file name for the new boot configuration file. The file name can be up to 16 alphan

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 175Selecting the Active Boot Configuration File for the SwitchYou

Chapter 10: File System176 Section II: Advanced FeaturesThe file name is displayed following selection 1 in the File Operations menu. The file name sh

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 177The contents of the boot configuration file are displayed in t

Chapter 10: File System178 Section II: Advanced FeaturesThe following are several guidelines for editing a boot configuration file:❑ The text editor m

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 179Copying a System FileTo copy a file in the file system, perfor

Figures18Figure 148: GID Architecture ...

Chapter 10: File System180 Section II: Advanced FeaturesRenaming a System FileTo rename a system file, perform the following procedure:1. From the Mai

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 181Deleting a System FileTo delete a system file, perform the fol

Chapter 10: File System182 Section II: Advanced FeaturesDisplaying System FilesUse this procedure to display a list of the system files currently stor

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 183The List Files menu is displayed. An example of the menu is sh

Chapter 10: File System184 Section II: Advanced Features

Section I: Basic Features 185Chapter 11File Downloads and UploadsThis chapter contains the procedures for downloading a new AT-S63 image file onto the

Chapter 11: File Downloads and Uploads186 Section I: Basic FeaturesDownloading the AT-S63 Image File onto a SwitchThis section contains two procedures

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 187Downloadingthe AT-S63Image from aLocalManagementSessionTo download

Chapter 11: File Downloads and Uploads188 Section I: Basic FeaturesThe following prompt is displayed:TFTP Server IP address:b. Enter the IP address of

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 18910. From the HyperTerminal main window, select Send File from the

AT-S63 Management Software Menus Interface User’s Guide19Figure 203: Display Port Access Status Menu ...

Chapter 11: File Downloads and Uploads190 Section I: Basic Featuresstatus of the software download. The download process takes several minutes to comp

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 1915. From the Downloads and Uploads menu, type 1 to select Download

Chapter 11: File Downloads and Uploads192 Section I: Basic FeaturesDownloading an AT-S63 Image File Switch to SwitchThe previous section contained pro

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 193NoteYou cannot download AT-S63 software onto any type of enhanced

Chapter 11: File Downloads and Uploads194 Section I: Basic FeaturesDownloading an AT-S63 Configuration File Switch to SwitchThis procedure explains ho

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 195NoteYou can download an AT-9400 Series configuration file only ont

Chapter 11: File Downloads and Uploads196 Section I: Basic FeaturesDownloading a System FileThis section contains the procedures for downloading a sys

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 197❑ If you are using TFTP, you should start the TFTP server before y

Chapter 11: File Downloads and Uploads198 Section I: Basic FeaturesGetting the file from Remote TFTP Server - Please wait ...e. If you have not alread

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 199The Send File window is shown in Figure 54. Figure 57. Send File

Copyright © 2004 Allied Telesyn, Inc. All rights reserved. No part of this publication may be reproduced without prior written permission from Allied

Figures20

Chapter 11: File Downloads and Uploads200 Section I: Basic FeaturesDownloading aSystem Filefrom a TelnetManagementSessionTo download a system file ont

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 201Uploading a System FileYou use the procedures in this section to u

Chapter 11: File Downloads and Uploads202 Section I: Basic FeaturesUploading aSystem Filefrom a LocalManagementSessionTo upload a system file to a wor

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 203After the switch has uploaded the system file, the following messa

Chapter 11: File Downloads and Uploads204 Section I: Basic Features11. From the HyperTerminal main window, select select Receive File from the Transfe

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 205The System Utilities menu is shown in Figure 7 on page 58.3. From

Chapter 11: File Downloads and Uploads206 Section I: Basic Features

Section II: Advanced Features 207Chapter 12Event LogThis chapter describes the event log that allows you to view information about network activity. S

Chapter 12: Event Log208 Section II: Advanced FeaturesEvent Log OverviewA managed switch is a complex piece of computer equipment that includes both h

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 209Enabling or Disabling the Event LogsTo enable or disable the e

21TablesTable 1: Switch #1 - Source MAC Address Load Distribution ...

Chapter 12: Event Log210 Section II: Advanced Features4. To determine what action the switch takes when the event log reaches its maximum capacity, ty

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 211Displaying EventsEach time that you want to view the event log

Chapter 12: Event Log212 Section II: Advanced FeaturesFullDisplays the same information as Normal, plus the file name, line number, and event ID. An e

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 213Table 6 shows the list of modules.Table 6. AT-S63 Software Mo

Chapter 12: Event Log214 Section II: Advanced FeaturesTo select specific modules, type the names separated by commas. The module names are not case se

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 215Figure 62 shows an example of an event log in Normal mode. Fig

Chapter 12: Event Log216 Section II: Advanced FeaturesWhen you display the events in full mode, more information is included. Figure 63 shows the same

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 217Clearing the Event LogYou can clear the event log to remove ol

Chapter 12: Event Log218 Section II: Advanced FeaturesSaving an Event Log to a FileYou can save anevent log to a file to review later. The file is sav

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 219The File Operations menu is displayed, as shown in Figure 49 o

Tables22

Chapter 12: Event Log220 Section II: Advanced Features

Section II: Advanced Features 221Chapter 13Quality of ServiceThis chapter contains the procedures for configuring Quality of Service (QoS). Sections i

Chapter 13: Quality of Service222 Section II: Advanced FeaturesQuality of Service OverviewWhen a port on an Ethernet switch becomes oversubscribed—its

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 223Each switch port has eight egress queues. The queues are Q0 th

Chapter 13: Quality of Service224 Section II: Advanced Featurespackets with a priority of 2 should be handled in Q0. The result is shown in Table 9.Th

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 225Q3, the highest priority queue, before moving on to the other

Chapter 13: Quality of Service226 Section II: Advanced FeaturesTable 10 shows an example of weighted round robin priority scheduling.In this example,

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 227Configuring CoSAs explained in ”Quality of Service Overview” o

Chapter 13: Quality of Service228 Section II: Advanced FeaturesThe Class of Service (CoS) menu is shown in Figure 65.Figure 65. Class of Service (CoS

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 2295. Enter a value from 0to 7 that corresponds to the egress que

23PrefaceThis guide contains instructions on how to configure an AT-9400 Series Layer 2+ Gigabit Ethernet Switch using the AT-S63 management software

Chapter 13: Quality of Service230 Section II: Advanced FeaturesMapping CoS Priorities to Egress QueuesThis procedure explains how to change the defaul

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 231Configuring Egress SchedulingThis procedure explains how to se

Chapter 13: Quality of Service232 Section II: Advanced FeaturesLeaving the default value of 1 for each queue gives all egress queues the same weight.5

Section II: Advanced Features 233Chapter 14IGMP SnoopingThis chapter explains how to activate and configure the Internet Group Management Protocol (IG

Chapter 14: IGMP Snooping234 Section II: Advanced FeaturesIGMP Snooping OverviewThe IGMP snooping protocol enables routers to create lists of nodes th

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 235Without IGMP snooping a switch would be obligated to flood mul

Chapter 14: IGMP Snooping236 Section II: Advanced FeaturesConfiguring IGMP SnoopingTo configure IGMP snooping on the switch, perform the following pro

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 2373. Adjust the following parameters as necessary:1 - IGMP Snoop

Chapter 14: IGMP Snooping238 Section II: Advanced FeaturesWhen you select a value for this parameter, it is important to note that the value you enter

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 239Enabling or Disabling IGMP SnoopingTo configure IGMP snooping

Preface24lists, encryption, web server, port-based access control, Denial of Service, TACACS+ and RADIUS.For information on managing a AT-9400 Series

Chapter 14: IGMP Snooping240 Section II: Advanced FeaturesDisplaying a List of Host NodesYou can use the AT-S63 management software to display a list

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 241Port/TrunkThe port on the switch to which a host node of the m

Chapter 14: IGMP Snooping242 Section II: Advanced FeaturesDisplaying a List of Multicast RoutersA multicast router is a router that is receiving multi

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 243Router IPThe IP address of the multicast router.

Chapter 14: IGMP Snooping244 Section II: Advanced Features

Section II: Advanced Features 245 Chapter 15RRP SnoopingThis chapter explains RRP snooping and contains the following sections: ❑ ”RRP Snooping Overvi

Chapter 15: RRP Snooping246 Section II: Advanced FeaturesRRP Snooping OverviewThe Router Redundancy Protocol (RRP) allows multiple routers to share th

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 247The following guidelines apply to the RRP snooping feature:❑ T

Chapter 15: RRP Snooping248 Section II: Advanced FeaturesEnabling or Disabling RRP SnoopingTo enable or disable RRP snooping on a switch, perform the

Section II: Advanced Features 249Chapter 16STP and RSTPThis chapter provides background information on the Spanning Tree Protocol (STP) and Rapid Span

AT-S63 Management Software Menus Interface User’s Guide25Document ConventionsThis document uses the following conventions:NoteNotes provide additional

Chapter 16: STP and RSTP250 Section II: Advanced FeaturesSTP and RSTP OverviewThe performance of a Ethernet network can be negatively impacted by the

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 251Bridge Priorityand the RootBridgeThe first task that bridges p

Chapter 16: STP and RSTP252 Section II: Advanced FeaturesPath Costs and Port CostsAfter the root bridge has been selected, the bridges must determine

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 253Table 14 lists the STP port costs with Auto-Detect when a port

Chapter 16: STP and RSTP254 Section II: Advanced Featurespriority for a port, you enter the increment of the desired value. Table 17 lists the values

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 255root bridge sufficient time to propagate a topology change thr

Chapter 16: STP and RSTP256 Section II: Advanced FeaturesSeries switches that have been connected with one data link. With the link operating in full-

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 257A port can be both a point-to-point and an edge port at the sa

Chapter 16: STP and RSTP258 Section II: Advanced Featureson the switches, one of the links is disabled. In the example, the port on the top switch tha

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 259Enabling or Disabling a Spanning Tree ProtocolThe AT-S63 manag

Preface26Where to Find Web-based GuidesThe installation and user guides for all Allied Telesyn products are available in portable document format (PDF

Chapter 16: STP and RSTP260 Section II: Advanced Features4. If you selected STP as the active spanning tree protocol, go to ”Configuring STP” on page

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 261Configuring STPThis section contains the following procedures:

Chapter 16: STP and RSTP262 Section II: Advanced Features3. Adjust the following parameters as needed.1 - Bridge PriorityThe priority number for the b

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 2634. After making changes, type R until you return to the Main M

Chapter 16: STP and RSTP264 Section II: Advanced FeaturesThe Configure STP Port Settings menu is shown in Figure 81.Figure 81. Configure STP Port Set

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 265Displaying STPPort SettingsTo display STP port settings, perfo

Chapter 16: STP and RSTP266 Section II: Advanced FeaturesCostPort cost of the port. The default is Auto-Update.Priority The number used as a tie break

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 267Configuring RSTPThis section contains the following procedures

Chapter 16: STP and RSTP268 Section II: Advanced Features3. Adjust the following parameters as necessary.1 - Force VersionThis selection determines wh

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 2696 - Bridge IdentifierThe MAC address of the bridge. The bridge

AT-S63 Management Software Menus Interface User’s Guide27Contacting Allied TelesynThis section provides Allied Telesyn contact information for technic

Chapter 16: STP and RSTP270 Section II: Advanced Features4. Enter the number of the port you want to configure. To configure a range of ports, enter t

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 2713 - Point-to-PointThis parameter defines whether the port is f

Chapter 16: STP and RSTP272 Section II: Advanced FeaturesThe Display RSTP Port Configuration menu is shown in Figure 86.Figure 86. Display RSTP Port

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 273The Spanning Tree Configuration menu is shown in Figure 78 on

Chapter 16: STP and RSTP274 Section II: Advanced Features❑ Learning - The port is enabled for receiving, but not forwarding packets.❑ Forwarding - Nor

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 2754. Type Y for Yes or N for No and press Return.The RSTP config

Chapter 16: STP and RSTP276 Section II: Advanced Features

Section II: Advanced Features 277Chapter 17MSTPThis chapter provides background information on the Multiple Spanning Tree Protocol (MSTP) and contains

Chapter 17: MSTP278 Section II: Advanced FeaturesMSTP OverviewAs mentioned in Chapter 16, ”STP and RSTP” on page 249, STP and RSTP are referred to as

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 279Multiple Spanning Tree Instance (MSTI)The individual spanning

Preface28Management Software UpdatesNew releases of management software for our managed products are available for download from either of the followi

Chapter 17: MSTP280 Section II: Advanced FeaturesIn Figure 88, the link between the two parts of the Production VLAN is blocked, resulting in a loss o

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 281Figure 89 illustrates the same two AT-9400 Series switches and

Chapter 17: MSTP282 Section II: Advanced FeaturesA MSTI can contain more than one VLAN. This is illustrated in Figure 90 where there are two AT-9400 S

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 283❑ An AT-9400 Series switch can support up to 16 spanning tree

Chapter 17: MSTP284 Section II: Advanced Featuresthat you maintain this number, only that each bridge in a region have the same number.The bridges of

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 285Figure 91 illustrates the concept of regions. It shows one MST

Chapter 17: MSTP286 Section II: Advanced FeaturesThe same is true for any ports connected to bridges running the single-instance spanning tree STP or

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 287❑ Each MSTI must have a regional root for locating loops in th

Chapter 17: MSTP288 Section II: Advanced FeaturesMSTP with STP and RSTPMSTP is fully compatible with STP and RSTP. If a port on an AT-9400 Series swit

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 289❑ All of the bridges in a region must have the same configurat

29Chapter 1OverviewThis chapter describes the AT-S63 software functions, the types of sessions you can use to access the software, and the management

Chapter 17: MSTP290 Section II: Advanced Featuresthat the port is a member of both CIST and MSTI 7, while the BPDUs from port 1 would indicate the por

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 291To avoid this issue, always assign all VLANs on a switch, incl

Chapter 17: MSTP292 Section II: Advanced FeaturesThere are several ways to address this issue. One is to have only one MSTP region for each subnet in

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 293Selecting MSTP as the Spanning Tree ProtocolTo select and acti

Chapter 17: MSTP294 Section II: Advanced FeaturesConfiguring MSTP Bridge SettingsTo configure a bridge’s MSTP settings, perform the following procedur

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 2952 - Hello TimeThe time interval between generating and sending

Chapter 17: MSTP296 Section II: Advanced Featuresrevision level must be the same on all bridges in a region. Different regions can have the same revis

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 297Configuring the CIST PriorityThis procedure explains how to ad

Chapter 17: MSTP298 Section II: Advanced FeaturesThe following prompt is displayed:Enter new priority [the value will be multiplied by 4096]: [0 to 15

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 299Displaying the CIST PriorityTo change the CIST priority, perfo

3ContentsFigures ...

Chapter 1: Overview30Management OverviewThe AT-S63 management software is intended for the AT-9400 Series switches. You use the software to monitor an

Chapter 17: MSTP300 Section II: Advanced FeaturesPath CostSpecifies the path cost from the bridge to the regional root. If the bridge is the regional

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 301Creating, Deleting, and Modifying MSTI IDsThe following sectio

Chapter 17: MSTP302 Section II: Advanced Features8. After making changes, type R until you return to the Main Menu. Then type S to select Save Configu

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 303Enter the MSTI ID to be modified: [1 to 15] ->5. Enter the

Chapter 17: MSTP304 Section II: Advanced FeaturesAdding, Removing, or Modifying VLAN Associations to MSTI IDsWhen you create a new MSTI ID, you are gi

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 305The VLAN-MSTI Association menu is shown in Figure 98.Figure 98

Chapter 17: MSTP306 Section II: Advanced Features4. From the MSTP menu, type V to select VLAN-MSTI Association menu.The VLAN-MSTI Association menu is

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 3076. Enter the MSTI ID to which you want to associate a VLAN. A

Chapter 17: MSTP308 Section II: Advanced FeaturesThe VLANs already associated with the MSTI ID are removed when the new VLANs are added. The removed V

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 309Configuring MSTP Port SettingsTo configure a port’s MSTP param

AT-S63 Management Software Menus Interface User’s Guide31There are four ways to access the management software on an AT-9400 Series switch. These meth

Chapter 17: MSTP310 Section II: Advanced FeaturesThe Configure MSTP Port Settings menu is shown in Figure 100.Figure 100. Configure MSTP Port Setting

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 311Table 19 lists the RSTP port costs with Auto-Detect when the p

Chapter 17: MSTP312 Section II: Advanced FeaturesDisplaying the MSTP Port Configuration To display the MSTP port configuration, perform the following

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 313PortThe port number.Edge-PortWhether or not the port is functi

Chapter 17: MSTP314 Section II: Advanced FeaturesDisplaying the MSTP Port StateTo display the MSTP port state, perform the following procedure:1. From

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 315The MSTP Port State menu displays a table that contains the fo

Chapter 17: MSTP316 Section II: Advanced FeaturesResetting MSTP to the DefaultsTo reset MSTP to the defaults, perform the following procedure:1. From

Section II: Advanced Features 317Chapter 18SNMPv3This chapter provides a description of the AT-S63 implementation of the SNMPv3 protocol. In addition,

Chapter 18: SNMPv3318 Section II: Advanced FeaturesSNMPv3 OverviewThe SNMPv3 protocol builds on the existing SNMPv1 and SNMPv2c protocol implementatio

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 319❑ ”SNMPv3 Tables” on page 322❑ ”SNMPv3 Configuration Example”

Chapter 1: Overview32Local Management SessionYou establish a local management session with an AT-9400 Series switch when you use the RJ-45 to RS-232 m

Chapter 18: SNMPv3320 Section II: Advanced FeaturesSNMPv3 MIBViewsThe SNMPv3 protocol allows you to configure MIB views for users and groups. The MIB

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 321a MIB subtree view and a subtree mask is analogous to the rela

Chapter 18: SNMPv3322 Section II: Advanced Features❑ Privacy Protocol❑ GroupTo configure the SNMP security information, you associate a user and its r

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 323operator privileges. See Appendix B, ”SNMPv3” on page 317 for

Chapter 18: SNMPv3324 Section II: Advanced Features❑ ”SNMPv3 User Table” on page 324❑ ”SNMPv3 View Table” on page 324❑ ”SNMPv3 SecurityToGroup Table”

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 325For each group, you can assign read, write, and notify views o

Chapter 18: SNMPv3326 Section II: Advanced FeaturesSNMPv3 Target Parameters TableThe Configure SNMPv3 Target Parameters Table menu allows you to defin

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 327Configuring SNMPv3 EntitiesThis section describes how to confi

Chapter 18: SNMPv3328 Section II: Advanced FeaturesConfiguring the SNMPv3 User TableThis section contains a description of the SNMPv3 User Table and h

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 329The Configure SNMPv3 Table menu is shown in Figure 106.Figure

AT-S63 Management Software Menus Interface User’s Guide33Telnet Management SessionYou can use any management station on your network that has the Teln

Chapter 18: SNMPv3330 Section II: Advanced Features5. To create a new user table, type 1 to select Create SNMPv3 Table Entry.The following prompt is d

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 3318. Enter an authentication password of up to 32 alphanumeric c

Chapter 18: SNMPv3332 Section II: Advanced FeaturesN-NonVolatileSelect this storage type if you want the ability to save an entry in the SNMPv3 User T

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 333Modifying anSNMPv3 UserTable EntryThis section describes how t

Chapter 18: SNMPv3334 Section II: Advanced Features4. To change the authentication protocol and password, type 1 to select Set Authentication Protocol

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 335Authentication protocol algorithm has been changed.The followi

Chapter 18: SNMPv3336 Section II: Advanced FeaturesThe following prompt is displayed:Enter Privacy Protocol [D-DES, N-None]:6. Choose one of the follo

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 337The Modify SNMPv3 Table menu is shown in Figure 108 on page 33

Chapter 18: SNMPv3338 Section II: Advanced FeaturesConfiguring the SNMPv3 View TableThis section contains a description of the SNMPv3 View Table and h

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 339The Configure SNMPv3 View Table menu is shown in Figure 109.Fi

Chapter 1: Overview34Web Browser Management SessionYou can also use a web browser to manage a switch. This too is referred to as remote management, ju

Chapter 18: SNMPv3340 Section II: Advanced FeaturestcpThe following prompt is displayed:Enter Subtree Mask (Hex format):6. Enter a subtree mask in hex

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 341making changes to an SNMPv3 View Table entry with a Volatile s

Chapter 18: SNMPv3342 Section II: Advanced Features5. Enter the subtree for this view.Do you want to delete this table entry?(Y/N):[Yes/No]->6. Ent

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 343The Modify SNMPv3 View Table menu is shown in Figure 110.Figur

Chapter 18: SNMPv3344 Section II: Advanced FeaturesThis is an optional parameter that is used to further refine the value in the View Subtree paramete

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 345Enter View Name:5. Enter a View Name that was previously confi

Chapter 18: SNMPv3346 Section II: Advanced Features3. From the Configure SNMPv3 View Table menu, type 3 to select Modify SNMPv3 Table Entry.The Modify

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 347Configuring the SNMPv3 Access TableThis section contains a des

Chapter 18: SNMPv3348 Section II: Advanced FeaturesThe Configure SNMPv3 Access Table menu is shown in Figure 111.Figure 111. Configure SNMPv3 Access

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 349NoteThe Context Prefix and the Context Match fields are a read

AT-S63 Management Software Menus Interface User’s Guide35SNMP Management SessionAnother way to remotely manage the switch is with an SNMP management p

Chapter 18: SNMPv3350 Section II: Advanced FeaturesP-AuthPrivThis option represents authentication and the privacy protocol. Select this security leve

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 351storage type, the S - Save Configuration Changes option does n

Chapter 18: SNMPv3352 Section II: Advanced FeaturesEnter Group Name:4. Enter the Group Name that you want to delete.The following prompt is displayed:

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 353protocol and authenticate SNMP entities. This level provides t

Chapter 18: SNMPv3354 Section II: Advanced Features1. Follow steps 1 through 5 in the procedure described in ”Creating an SNMPv3 User Table Entry” on

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 3556. Enter the Security Model configured for this Group Name. Yo

Chapter 18: SNMPv3356 Section II: Advanced FeaturesEnter Read View Name:8. Enter a value that you configured with the View Name parameter in the SNMPv

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 357Select one of the following SNMP protocols:1-v1Select this val

Chapter 18: SNMPv3358 Section II: Advanced FeaturesEnter Write View Name:8. Enter a value that you configured with the View Name parameter in the SNMP

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 3591-v1Select this value to associate the Group Name with the SNM

Chapter 1: Overview36Management Access LevelsThere are two levels of management access in the AT-S63 management software: manager and operator. When y

Chapter 18: SNMPv3360 Section II: Advanced Features8. Enter a value that you configured with the View Name parameter in the SNMPv3 View Table. A Notif

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 3611-v1Select this value to associate the Group Name with the SNM

Chapter 18: SNMPv3362 Section II: Advanced Features8. Select one of the following storage types for this table entry:V - VolatileSelect this storage t

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 363Configuring the SNMPv3 SecurityToGroup TableThis section conta

Chapter 18: SNMPv3364 Section II: Advanced FeaturesThe Configure SNMPv3 SecurityToGroup Table menu is shown in Figure 113.Figure 113. Configure SNMPv

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 3653-v3Select this value to associate the Group Name with the SNM

Chapter 18: SNMPv3366 Section II: Advanced Features8. After making changes, type R until you return to the Main Menu. Then type S to select Save Confi

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 3673-v3Select this value to associate the Group Name with the SNM

Chapter 18: SNMPv3368 Section II: Advanced FeaturesThe Modify SecurityToGroup Table is displayed as shown Figure 113.Figure 114. Modify SNMPv3 Securi

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 3693-v3Select this value to associate the User Name with the SNMP

37Section IBasic FeaturesThe chapters in this section provide information and procedures for basic switch setup using the AT-S63 management software.

Chapter 18: SNMPv3370 Section II: Advanced Features6. Enter the Security Model configured for this User Name. You cannot change the value of the Secur

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 371Configuring the SNMPv3 Notify TableThis section contains a des

Chapter 18: SNMPv3372 Section II: Advanced FeaturesThe Configure SNMPv3 Notify Table menu is shown in Figure 115.Figure 115. Configure SNMPv3 Notify

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 373I-InformIndicates this notify table is used to send inform mes

Chapter 18: SNMPv3374 Section II: Advanced FeaturesThe Configure SNMPv3 Notify Table menu is shown in Figure 115 on page 372.NoteTo display a Group Na

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 375The Configure SNMPv3 Notify Table menu is shown in Figure 115

Chapter 18: SNMPv3376 Section II: Advanced Features7. After making changes, type R until you return to the Main Menu. Then type S to select Save Confi

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 377Modifying a Storage TypeTo modify the Storage Type parameter i

Chapter 18: SNMPv3378 Section II: Advanced Features7. After making changes, type R until you return to the Main Menu. Then type S to select Save Confi

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 379Configuring the SNMPv3 Target Address TableThis section contai

38 Section I: Basic Features

Chapter 18: SNMPv3380 Section II: Advanced FeaturesThe Configure SNMPv3 Table menu is shown in Figure 106 on page 329.2. From the Configure SNMPv3 Tab

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 3816. Enter a UDP port.You can enter a UDP port in the range of 0

Chapter 18: SNMPv3382 Section II: Advanced FeaturesTarget Parameters Name parameter in the Configure SNMPv3 Target Parameters Table.The following prom

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 383The Configure SNMPv3 Target Address Table menu is shown in Fig

Chapter 18: SNMPv3384 Section II: Advanced Features1. Follow steps 1 through 5 in the procedure described in ”Creating an SNMPv3 User Table Entry” on

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 385This is the name of the SNMP manager, or host, that manages th

Chapter 18: SNMPv3386 Section II: Advanced FeaturesThe following prompt is displayed:Enter UDP Port#: [0 to 65535]-> 1626. Enter a UDP port.You can

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 387Enter Timeout (10mS): [0 to 2147483647]-> 15006. Enter a ti

Chapter 18: SNMPv3388 Section II: Advanced FeaturesThe following prompt is displayed:Enter Retries:[0 to 255]-> 36. Enter the number of times the s

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 389Enter a Tag List of up to 256 alphanumeric characters. Use a s

Section I: Basic Features 39Chapter 2Starting a Local or Telnet Management SessionThis chapter contains the procedure for starting a local or Telnet m

Chapter 18: SNMPv3390 Section II: Advanced FeaturesThe value configured here must match the value configured with the Target Parameters Name parameter

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 391file. After making changes to an SNMPv3 Target Address Table e

Chapter 18: SNMPv3392 Section II: Advanced FeaturesConfiguring the SNMPv3 Target Parameters TableThis section contains a description of the SNMPv3 Tar

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 393❑ Storage TypeThere are three functions you can perform with t

Chapter 18: SNMPv3394 Section II: Advanced Features3. To create an SNMPv3 Target Parameters Table, type 1 to select Create SNMPv3 Table Entry.The foll

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 395Enter Security Level [N-NoAuthNoPriv, A-AuthNoPriv, P-AuthPriv

Chapter 18: SNMPv3396 Section II: Advanced FeaturesN-NonVolatileSelect this storage type if you want the ability to save an entry in the SNMPv3 Target

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 397The following prompt is displayed:Do you want to delete this t

Chapter 18: SNMPv3398 Section II: Advanced FeaturesNoteYou cannot modify the Target Params Name parameter.NoteYou cannot modify an entry in the SNMPv3

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 399The Modify SNMPv3 Target Parameters Table menu is shown in Fig

Contents4How Do You Assign an IP Address? ...

Chapter 2: Starting a Local or Telnet Management Session40 Section I: Basic FeaturesLocal Management SessionTo establish a local management session, y

Chapter 18: SNMPv3400 Section II: Advanced FeaturesModifying the Security ModelFor the Security or User Name you have selected, the value of the Secur

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 4011-v1Select this value if this User Name is associated with the

Chapter 18: SNMPv3402 Section II: Advanced FeaturesEnter a value of up to 32 alphanumeric characters.The following prompt is displayed:Enter Security

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 403Modifying the Message Process ModelYou can modify the Message

Chapter 18: SNMPv3404 Section II: Advanced Features3-v3Select this value to process messages with the SNMPv3 protocol. 7. After making changes, type R

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 405N-NonVolatileSelect this storage type if you want the ability

Chapter 18: SNMPv3406 Section II: Advanced FeaturesConfiguring the SNMPv3 Community TableThis section contains a description of the SNMPv3 Community T

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 407For each SNMPv3 Community Table entry, you can configure the f

Chapter 18: SNMPv3408 Section II: Advanced FeaturesThe Configure SNMPv3 Community Table menu is shown in Figure 121.Figure 121. Configure SNMPv3 Comm

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 409The following prompt is displayed:Enter Security Name:6. Enter

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 412. Connect the other end of the cable to an RS-232 port on a termin

Chapter 18: SNMPv3410 Section II: Advanced FeaturesNoteThe Row Status parameter is a read-only field. The Active value indicates the SNMPv3 Community

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 411Modifying anSNMPv3CommunityTable EntryFor each entry in the SN

Chapter 18: SNMPv3412 Section II: Advanced FeaturesThe Modify SNMPv3 Community Table menu is shown in Figure 122.Figure 122. Modify SNMPv3 Community

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 413Modifying the Security NameTo modify the Security Name paramet

Chapter 18: SNMPv3414 Section II: Advanced FeaturesThe Configure SNMPv3 Table menu is displayed as shown in Figure 106 on page 329.2. From the Configu

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 4153. From the Configure SNMPv3 Community Table, type 3 to select

Chapter 18: SNMPv3416 Section II: Advanced FeaturesDisplaying SNMPv3 Table MenusThe procedures in this section describe how to display the SNMPv3 Tabl

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 417The Display SNMPv3 Table menu is shown in Figure 123.Figure 12

Chapter 18: SNMPv3418 Section II: Advanced Features1. Follow steps 1 through 5 in the procedure described in ”Displaying the Display SNMPv3 User Table

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 419The Display SNMPv3 Access Table menu is shown in Figure 126.Fi

Chapter 2: Starting a Local or Telnet Management Session42 Section I: Basic FeaturesIf the switch has been configured with a name, the name is display

Chapter 18: SNMPv3420 Section II: Advanced FeaturesThe Display SNMPv3 SecurityToGroup Table menu is shown in Figure 127.Figure 127. Display SNMPv3 Se

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 421Displaying theDisplay SNMPv3Target AddressTable MenuThis secti

Chapter 18: SNMPv3422 Section II: Advanced FeaturesThe Display SNMPv3 Target Parameters Table menu is shown in Figure 127.Figure 130. Display SNMPv3

AT-S63 Management Software Menus Interface User’s GuideSection II: Advanced Features 423The Display SNMPv3 Community Table menu is shown in Figure 127

Chapter 18: SNMPv3424 Section II: Advanced Features

425Section IIIVLANsThe chapters in this section explain how to set up VLANs using the AT-S63 management software. The chapters include:❑ Chapter 19, ”

426 Section III: VLANs

Section III: VLANs 427 Chapter 19Port-based and Tagged VLANsThis chapter contains basic information about virtual LANs (VLANs) and procedures for crea

Chapter 19: Port-based and Tagged VLANs428 Section III: VLANsVLAN OverviewA VLAN is a group of ports on an Ethernet switch that form a logical Etherne

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 429But with VLANS, you can change the LAN segment assignment of an end node

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 43Quitting a LocalManagementSessionTo quit a local management session

Chapter 19: Port-based and Tagged VLANs430 Section III: VLANsPort-based VLAN OverviewAs explained in ”VLAN Overview” on page 428, a VLAN consists of a

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 431recognize and forward frames belonging to the same VLAN even though the V

Chapter 19: Port-based and Tagged VLANs432 Section III: VLANsGeneral Rulesfor Creating aPort-basedVLANBelow is a summary of the general rules to obser

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 433Port-basedExample 1Figure 132 illustrates an example of one AT-9424T/SP G

Chapter 19: Port-based and Tagged VLANs434 Section III: VLANsPort-basedExample 2Figure 133 illustrates more port-based VLANs. In this example, two VLA

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 435The table below lists the port assignments for the Sales, Engineering, an

Chapter 19: Port-based and Tagged VLANs436 Section III: VLANsTagged VLAN OverviewThe second type of VLAN supported by the AT-S63 management software i

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 437❑ VLAN Identifier❑ Tagged and Untagged Ports❑ Port VLAN IdentifierNoteFor

Chapter 19: Port-based and Tagged VLANs438 Section III: VLANsGeneral Rulesfor Creating aTagged VLANBelow is a summary of the rules to observe when you

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 439Tagged VLANExampleFigure 134 illustrates how tagged ports can be used to

Chapter 2: Starting a Local or Telnet Management Session44 Section I: Basic FeaturesTelnet Management SessionYou can use the Telnet application from a

Chapter 19: Port-based and Tagged VLANs440 Section III: VLANsThis example is nearly identical to the ”Port-based Example 2” on page 434. Tagged ports

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 441Creating a New Port-based or Tagged VLANTo create a new port-based or tag

Chapter 19: Port-based and Tagged VLANs442 Section III: VLANsThe Configure VLANs menu is shown in Figure 136.Figure 136. Configure VLANs Menu3. From

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 443The name can be from one to fifteen alphanumeric characters in length. Th

Chapter 19: Port-based and Tagged VLANs444 Section III: VLANs8. If the VLAN will contain tagged ports, type 3 to select Tagged Ports and specify the p

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 445Example of Creating a Port-based VLANThe following procedure creates the

Chapter 19: Port-based and Tagged VLANs446 Section III: VLANsExample of Creating a Tagged VLANThe following procedure creates the Engineering VLAN in

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 447Modifying a VLANNoteTo modify a VLAN, you need to know its VID. To view V

Chapter 19: Port-based and Tagged VLANs448 Section III: VLANsEnter new value -> [1 to 4096] ->5. Enter the VID of the VLAN you want to modify.Th

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 4493 - Tagged PortsUse this selection to add or remove tagged ports from the

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 45Quitting aTelnetManagementSessionTo end a Telnet management session

Chapter 19: Port-based and Tagged VLANs450 Section III: VLANsand reentering them again using the VID of the VLAN to which the port has been moved to.

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 451Displaying VLANsTo view the name, VID number, and member ports of all the

Chapter 19: Port-based and Tagged VLANs452 Section III: VLANsProtocolThe protocol associated with this VLAN. The possible settings are:Blank - The VLA

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 453Deleting a VLANNoteTo delete a VLAN, you need to know its VID. To view VL

Chapter 19: Port-based and Tagged VLANs454 Section III: VLANsNoteYou cannot delete the Default_VLAN, which has a VID of 1.The Delete VLAN menu expands

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 4559. Repeat this procedure starting with Step 4 to delete other VLANs.10. A

Chapter 19: Port-based and Tagged VLANs456 Section III: VLANsResetting to the Default VLANThe following procedure for deletes all VLANs, except the De

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 4576. After making changes, type R until you return to the Main Menu. Then t

Chapter 19: Port-based and Tagged VLANs458 Section III: VLANsDisplaying PVIDsThe following procedure displays a menu that lists the PVIDs for all the

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 459Enabling or Disabling Ingress FilteringThere are rules a switch follows w

Chapter 2: Starting a Local or Telnet Management Session46 Section I: Basic Features

Chapter 19: Port-based and Tagged VLANs460 Section III: VLANsActivating or deactivating ingress filtering has no effect on the switch’s handling of pr

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 461Specifying a Management VLANThe management VLAN is the VLAN on which an A

Chapter 19: Port-based and Tagged VLANs462 Section III: VLANsneed to create the NMS VLAN on each AT-9400 Series switch that you want to manage remotel

Section III: VLANs 463 Chapter 20Multiple VLANsThis chapter describes the multiple VLAN modes and how to select a mode.This chapter contains the follo

Chapter 20: Multiple VLANs464 Section III: VLANsMultiple VLAN Mode OverviewThe multiple VLAN modes are designed to simplify the task of configuring th

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 465VLANs. It also assigns the PVID values as well. For example, the PVID for

Chapter 20: Multiple VLANs466 Section III: VLANsThis highly segmented configuration is useful in situations where traffic generated by each end node o

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 467Another difference with this mode is that the uplink port is untagged. Co

Chapter 20: Multiple VLANs468 Section III: VLANsSelecting a VLAN ModeThe following procedure explains how to select a VLAN mode. Available modes are:❑

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 469Displaying VLAN InformationTo view the VLANs on the switch while the unit

Section I: Basic Features 47Chapter 3Basic Switch ParametersThis chapter contains a variety of information and procedures for basic switch setup. Sect

Chapter 20: Multiple VLANs470 Section III: VLANsThe Show Multiple VLANs menu is shown in Figure 145.Figure 145. Show VLANs Menu, Multiple VLANSThe Sh

Section III: VLANs 471Chapter 21GARP VLAN Registration ProtocolThis chapter describes the GARP VLAN Registration Protocol (GVRP) and contains the foll

Chapter 21: GARP VLAN Registration Protocol472 Section III: VLANsGARP VLAN Registration Protocol (GVRP) OverviewThe GARP VLAN Registration Protocol (G

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 473Figure 146 provides an example of how GVRP works.Figure 146. GVRP Exampl

Chapter 21: GARP VLAN Registration Protocol474 Section III: VLANsVLAN. If it is not a member, it automatically adds the port to the VLAN as an tagged

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 475❑ You can convert dynamic GVRP VLANs and dynamic GVRP port assignments to

Chapter 21: GARP VLAN Registration Protocol476 Section III: VLANsGenericAttributeRegistrationProtocol (GARP)OverviewThe following is a technical overv

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 477GARP architecture is shown in Figure 147. Figure 147. GARP Architecture

Chapter 21: GARP VLAN Registration Protocol478 Section III: VLANsthe applicant and registrar. This is shown in Figure 148.Figure 148. GID Architectur

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 479The job of the registrar is to record whether an attribute is registered,

Chapter 3: Basic Switch Parameters48 Section I: Basic Features❑ ”Displaying Uplink Port Information” on page 76

Chapter 21: GARP VLAN Registration Protocol480 Section III: VLANsConfiguring GVRPTo configure GVRP, perform the following procedure: The timers in the

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 4815. Type 2 to select GVRP GIP Status.The following prompt is displayed:Ent

Chapter 21: GARP VLAN Registration Protocol482 Section III: VLANsEnabling or Disabling GVRP on a PortThis procedure enables and disables GVRP on a swi

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 4835. Enter a port or a list of ports.The Configure GVRP Port Settings menu

Chapter 21: GARP VLAN Registration Protocol484 Section III: VLANsDisplaying the GVRP Port ConfigurationTo display the GVRP port configuration, perform

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 485Displaying GVRP CountersTo display GVRP counters, perform the following p

Chapter 21: GARP VLAN Registration Protocol486 Section III: VLANsThe GVRP Counters menu (page 1) is shown in Figure 154.Figure 154. GVRP Counters Men

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 487Figure 155. GVRP Counters Menu (page 2)The GVRP counters in the menus ar

Chapter 21: GARP VLAN Registration Protocol488 Section III: VLANsReceive Discarded: Port Not ListeningNumber of GARP PDUs discarded because the port t

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 489Receive GARP Messages: LeaveEmptyTotal number of GARP LeaveEmpty messages

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 49When Does a Switch Need an IP Address?One of the tasks of building

Chapter 21: GARP VLAN Registration Protocol490 Section III: VLANsDisplaying the GVRP DatabaseTo display GVRP database, perform the following procedure

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 491GID indexValue of the GID index corresponding to the attribute. GID index

Chapter 21: GARP VLAN Registration Protocol492 Section III: VLANsDisplaying the GIP Connected Ports RingTo display the GIP connected ports ring, perfo

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 493STP IDPresent if the GARP application is GVRP; identifies the spanning tr

Chapter 21: GARP VLAN Registration Protocol494 Section III: VLANsDisplaying the GVRP State MachineTo display the GVRP state machine, perform the follo

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 495The GVRP State Machine menu (page 2) is displayed, as shown in Figure 159

Chapter 21: GARP VLAN Registration Protocol496 Section III: VLANsApp Applicant state machine for the GID index on that particular port. One of:Normal

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 497App (Continued) Non-Participant Management state:“Von” Very Anxious Obser

Chapter 21: GARP VLAN Registration Protocol498 Section III: VLANs

Section III: VLANs 499 Chapter 22Protected Ports VLANsThis chapter explains protected ports VLANs. It contains the following sections: ❑ ”Protected Po

AT-S63 Management Software Menus Interface User’s Guide5Adding Static Unicast and Multicast MAC Addresses ...

Chapter 3: Basic Switch Parameters50 Section I: Basic FeaturesHow Do YouAssign an IPAddress?There are two ways that a switch can obtain an IP address.

Chapter 22: Protected Ports VLANs500 Section III: VLANsProtected Ports VLAN OverviewThe purpose of a protected ports VLAN is to allow multiple ports o

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 501In contrast, the uplink port in a protected ports VLAN, which is shared b

Chapter 22: Protected Ports VLANs502 Section III: VLANsinformation when you create the VLAN, and having the tables handy will make the job easier.Prot

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 503Creating a Protected Ports VLANTo create a new protected ports VLAN, perf

Chapter 22: Protected Ports VLANs504 Section III: VLANsNoteA VLAN must be assigned a name.6. Type 2 to select VLAN ID (VID.The following prompt is dis

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 50511. To make this a protected ports VLAN, type Y. If you do not want this

Chapter 22: Protected Ports VLANs506 Section III: VLANsModifying a Protected Ports VLANPlease note the following before you perform this procedure:❑ T

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 5073. From the Configure VLANs menu, type 2 to select Modify VLAN.The Modify

Chapter 22: Protected Ports VLANs508 Section III: VLANs2 - VLAN ID (VID)This is the VLAN’s VID value. You cannot change this value. 3 - Tagged PortsUs

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 50911. If there are ports within the VLAN that still need to be assigned to

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 51Configuring the IP Address, Switch Name, and Other Basic Parameters

Chapter 22: Protected Ports VLANs510 Section III: VLANsDisplaying a Protected Ports VLANTo view the name, VID number, and member ports of all the VLAN

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 511An example of the Show VLANs window is shown in Figure 163.Figure 163. S

Chapter 22: Protected Ports VLANs512 Section III: VLANsDeleting a Protected Ports VLANAll untagged ports in a deleted protected ports VLAN are automat

AT-S63 Management Software Menus Interface User’s GuideSection III: VLANs 513The Delete VLAN menu expands to contain all relevant information about th

Chapter 22: Protected Ports VLANs514 Section III: VLANs9. Repeat this procedure starting with Step 4 to delete other VLANs.10. After making changes, t

515Section IVSecurityThe chapters in this section describe the security features you can implement for an AT-9400 Series switch using the AT-S63 manag

516 Section IV: Security

Section IV: Security 517Chapter 23Port Security This chapter explains how you can use the dynamic and static MAC addresses learned on the ports of the

Chapter 23: Port Security518 Section IV: SecurityMAC Address Security OverviewThis feature can enhance the security of your network. You can use it to

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 519A dynamic MAC address learned on a port operating in the Limited securi

Chapter 3: Basic Switch Parameters52 Section I: Basic FeaturesThe System Configuration menu is shown in Figure 5.Figure 5. System Configuration Menu3

Chapter 23: Port Security520 Section IV: Securityport after the port had reached its maximum number of dynamic MAC addresses, or that was not assigned

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 521Configuring MAC Address Port SecurityTo set the port security level, pe

Chapter 23: Port Security522 Section IV: Security5. From the Configure Port Security menu, type 1 to select Security Mode. The following prompt is dis

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 523T - Trap: The port discards invalid frames and sends an SNMP trap.D - D

Chapter 23: Port Security524 Section IV: SecurityDisplaying Port Security LevelsTo view the current security levels for the ports on the switch, perfo

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 525The Display Port Security menu is shown in Figure 170.Figure 170. Disp

Chapter 23: Port Security526 Section IV: SecurityParticipatingThis column applies only when the intrusion action for a port is set to trap or disable.

Section IV: Security 527Chapter 24Access Control ListsThis chapter explains how to create an access control list (ACL) to restrict Telnet and web brow

Chapter 24: Access Control Lists528 Section IV: SecurityManagement ACL Security OverviewThis chapter explains how to restrict remote management access

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 529MaskYou need to enter a mask that indicates the parts of the IP address

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 53from a management station that is separated from the switch by a ro

Chapter 24: Access Control Lists530 Section IV: Securitythem.❑ The protocol is always TCP.❑ The management ACL does not control local management or re

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 531Mask 255.255.255.0Protocol TCPInterface WebA management ACL can contain

Chapter 24: Access Control Lists532 Section IV: SecurityCreating the Management ACLTo create a management ACL, perform the following procedure:1. From

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 5335. Enter a mask that indicates the parts of the IP address the switch s

Chapter 24: Access Control Lists534 Section IV: Security11. After making changes, type R until you return to the Main Menu. Then type S to select Save

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 535Adding an ACETo add an ACE, repeat the procedure in ”Creating the Manag

Chapter 24: Access Control Lists536 Section IV: SecurityDeleting an ACETo delete an ACE, perform the following procedure:1. From the Main Menu, type 5

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 537Displaying the ACEsTo display the ACEs, perform the following procedure

Chapter 24: Access Control Lists538 Section IV: SecurityInterfaceThe interface that the management station uses to manage the switch. The options are

Section IV: Security 539Chapter 25Web ServerThe chapter provides an overview of the web server feature and procedures to configure the server. It cont

Chapter 3: Basic Switch Parameters54 Section I: Basic FeaturesActivating the BOOTP and DHCP Client SoftwareThe BOOTP and DHCP application protocols we

Chapter 25: Web Server540 Section IV: SecurityWeb Server OverviewThe AT-S63 management software is shipped with web server software. The software is a

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 541❑ TLS (Transmission Layer Security) version 1.0

Chapter 25: Web Server542 Section IV: SecurityConfiguring the Web ServerThis procedure explains how to enable and disable the web server and how to co

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 543The Web Server Configuration menu is shown in Figure 173.Figure 173. W

Chapter 25: Web Server544 Section IV: Security7. To enable the web server, type 1 to toggle Status to Enabled.The Web Server Configuration menu is red

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 545General Steps for Configuring the Web Server for EncryptionThere are se

Chapter 25: Web Server546 Section IV: Security6. After you have received the appropriate certificates back from the CA, download them into the AT-S63

Section IV: Security 547Chapter 26Encryption KeysThis chapter describes encryption keys and how you can use keys to improve the security of your switc

Chapter 26: Encryption Keys548 Section IV: SecurityBasic OverviewProtecting your managed switches from unauthorized management access is an important

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 549Encryption KeyLengthTo create a key pair, you must specify its length.

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 55The following prompt is displayed:BOOTP/DHCP (E-Enabled, D-Disabled

Chapter 26: Encryption Keys550 Section IV: Securitypackets are sent encrypted. The web server on an AT-9400 Series switch, can operate in either mode.

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 551Technical Overview of Secure Sockets LayerThis section describes the Se

Chapter 26: Encryption Keys552 Section IV: Securitywith by a third party because any change to the message changes the MAC.SSL uses asymmetrical (Publ

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 553Authentication Authentication is the process of ensuring that both the

Chapter 26: Encryption Keys554 Section IV: SecurityTechnical Overview of EncryptionThe encryption feature provides the following data security service

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 555Plaintext is divided into 64-bit blocks which are encrypted with the DE

Chapter 26: Encryption Keys556 Section IV: SecurityAsymmetrical (Public Key) EncryptionAsymmetrical encryption algorithms use two keys—one for encrypt

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 557Typically a MAC is calculated using a keyed one-way hash algorithm. A k

Chapter 26: Encryption Keys558 Section IV: SecurityThe Diffie-Hellman algorithm, which is used by the AT-S63 management software, is one of the more c

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 559Creating an Encryption KeyThis section contains the procedure for creat

Chapter 3: Basic Switch Parameters56 Section I: Basic FeaturesDisplaying the AT-9400 Series Switch Hardware and Software InformationTo display informa

Chapter 26: Encryption Keys560 Section IV: SecurityThe Keys/Certificate Configuration menu is shown in Figure 176.Figure 176. Keys/Certificate Config

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 561The Create Key menu is shown in Figure 178.Figure 178. Create Key Menu

Chapter 26: Encryption Keys562 Section IV: Security9. Type 4 to select Key Description.The following prompt is displayed:Enter new Description ->10

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 563Deleting an Encryption KeyThis section contains the procedure for delet

Chapter 26: Encryption Keys564 Section IV: SecurityModifying an Encryption KeyThe Key Management menu has a selection for modifying the description of

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 565Exporting an Encryption KeyThe following procedure exports the public k

Chapter 26: Encryption Keys566 Section IV: SecurityThe Export Key to File menu is shown in Figure 179.Figure 179. Export Key to File Menu5. Type 1 to

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 567Key Export in Progress. Please wait...Done11. Press any key to return t

Chapter 26: Encryption Keys568 Section IV: SecurityImporting an Encryption KeyUse the following procedure to import a public key from the AT-S62 file

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 569The Import Key from File menu is shown in Figure 180.Figure 180. Impor

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 57Model NameModel name of the AT-9400 Series switch. You cannot chang

Chapter 26: Encryption Keys570 Section IV: Security10. Type 5 to select Import Key From File to import a key to the switch from an external file.The f

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 571Displaying the Encryption KeysTo display the encryption keys, perform t

Chapter 26: Encryption Keys572 Section IV: SecurityLengthThe length of the key in bits.DigestThe CRC32 value of the MD5 digest of the public key.Descr

Section IV: Security 573Chapter 27PKI Certificates and SSLThis chapter contains the procedures for creating public key infrastructure (PKI) certificat

Chapter 27: PKI Certificates and SSL574 Section IV: SecurityNoteThis feature is only supported on the version of AT-S63 management software that featu

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 575Basic OverviewThis chapter describes the second part of the encryption

Chapter 27: PKI Certificates and SSL576 Section IV: Securitycompany’s network equipment. The value of a private CA is that the company can keep track

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 577Following are a few examples. This distinguished name contains only one

Chapter 27: PKI Certificates and SSL578 Section IV: SecurityGuidelines The guidelines for creating certificates are:❑ A certificate can have only one

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 579Technical OverviewThe public key infrastructure (PKI) feature is part o

Chapter 3: Basic Switch Parameters58 Section I: Basic FeaturesRebooting a SwitchThis procedure reboots the switch.NoteAny configuration changes not sa

Chapter 27: PKI Certificates and SSL580 Section IV: SecurityCautionAlthough a certificate binds a public key to a subject to ensure the public key’s s

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 581Elements of aPublic KeyInfrastructureA public key infrastructure is a s

Chapter 27: PKI Certificates and SSL582 Section IV: SecurityCertificateValidationTo validate a certificate, the end entity verifies the signature in t

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 583PKIImplementationThe following sections discuss Allied Telesyn’s implem

Chapter 27: PKI Certificates and SSL584 Section IV: SecurityCreating a Self-signed CertificateThis section contains the procedure for creating a self-

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 585The Public Key Infrastructure (PKI) Configuration menu is shown in Figu

Chapter 27: PKI Certificates and SSL586 Section IV: SecurityNoteIn the X509 Certificate Management menu, MTrust means manually trusted. This field ind

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 5879. Enter the ID number of the encryption key that you want to use to cr

Chapter 27: PKI Certificates and SSL588 Section IV: SecurityAdding a Certificate to the DatabaseAfter you have created a certificate or received a cer

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 589The Add Certificate menu is shown in Figure 185.Figure 185. Add Certif

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 59CautionThe switch does not forward traffic while it reloads its ope

Chapter 27: PKI Certificates and SSL590 Section IV: SecurityNoteThis parameter has no affect on the operation of a certificate. The parameter is inclu

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 591Modifying a CertificateThe procedure in this section modifies a certifi

Chapter 27: PKI Certificates and SSL592 Section IV: Security6. Enter the name of the certificate you want to modify. (This field is case sensitive.)Th

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 59310. After making changes, type R until you return to the Main Menu. The

Chapter 27: PKI Certificates and SSL594 Section IV: SecurityDeleting a CertificateThe procedure in this section deletes a certificate from the certifi

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 5955. From the X509 Certificate Management menu, type 3 to select Delete C

Chapter 27: PKI Certificates and SSL596 Section IV: SecurityViewing a CertificateThis procedure displays information about a certificate, such as its

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 597The View Certificate Details menu (page 1) is shown in Figure 187.Figur

Chapter 27: PKI Certificates and SSL598 Section IV: SecurityPublic Key AlgThe public key algorithm.Not Valid BeforeThe date the certificate became act

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 599Generating an Enrollment RequestTo request a certificate from a CA, you

Contents6Downloading a System File from a Telnet Management Session ...

Chapter 3: Basic Switch Parameters60 Section I: Basic FeaturesConfiguring the Manager and Operator PasswordsThere are two levels of management access

Chapter 27: PKI Certificates and SSL600 Section IV: SecurityThe Generate Enrollment Request menu is shown in Figure 189.Figure 189. Generate Enrollme

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 601NoteYou cannot change option 4, Type. The PKCS10 value indicates the in

Chapter 27: PKI Certificates and SSL602 Section IV: SecurityInstalling CA Certificates onto a SwitchThis section lists the procedures that you will ne

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 603Viewing or Configuring the Number of Certificates in the DatabaseThe ma

Chapter 27: PKI Certificates and SSL604 Section IV: SecurityConfiguring SSLTo configure the SSL protocol, perform the following procedure:1. From the

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 6055. After making changes, type R until you return to the Main Menu. Then

Chapter 27: PKI Certificates and SSL606 Section IV: Security

Section IV: Security 607Chapter 28Secure Shell (SSH)The chapter contains overview information about the Secure Shell (SSH) protocol as well a procedur

Chapter 28: Secure Shell (SSH)608 Section IV: SecuritySSH OverviewSecure management is increasingly important in modern networks, as the ability to ea

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 609❑ RSA public keys with lengths of 512 to 2048 bits are supported. Keys

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 61The Passwords Configuration menu is shown in Figure 9.Figure 9. Pa

Chapter 28: Secure Shell (SSH)610 Section IV: SecurityYou can download client software from the Internet. Two popular SSH clients are PuTTY and CYGWIN

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 611Figure 191 SSH Remote Management of a Slave SwitchBecause enhanced sta

Chapter 28: Secure Shell (SSH)612 Section IV: Security1. Create two encryption key pairs on the master switch of the enhanced switch. One pair will fu

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 613Configuring SSHThis section describes how to configure the switch as an

Chapter 28: Secure Shell (SSH)614 Section IV: Security3. Type 2 to select Host Key ID.The following prompt is displayed:Enter Host Key ID [0 to 65535]

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 615Type E to enable the SSH server. Select this value after you have finis

Chapter 28: Secure Shell (SSH)616 Section IV: SecurityDisplaying SSH InformationTo display SSH server information, perform the following procedure:1.

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 617Server PortThe well-known port for SSH. The default is port 22.Host Key

Chapter 28: Secure Shell (SSH)618 Section IV: Security

Section IV: Security 619Chapter 29802.1x Port-based Network Access ControlThis chapter explains 802.1x Port-based Network Access Control and how you c

Chapter 3: Basic Switch Parameters62 Section I: Basic FeaturesSetting the System TimeThis procedure explains how to set the switch’s date and time. Se

Chapter 29: 802.1x Port-based Network Access Control620 Section IV: SecurityIEEE 802.1x Port-based Network Access Control OverviewThe AT-S63 managemen

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 621prohibits network access by a supplicant until the network user has ent

Chapter 29: 802.1x Port-based Network Access Control622 Section IV: SecurityPort Roles Part of the task of implementing this feature is specifying the

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 623Figure 194. Example of the Authenticator RoleAs mentioned earlier, the

Chapter 29: 802.1x Port-based Network Access Control624 Section IV: SecurityFigure 195. Example of the Supplicant RoleNoteStrictly limit the use of t

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 625❑ The date and time when the event occurred❑ The number of packets tran

Chapter 29: 802.1x Port-based Network Access Control626 Section IV: Security❑ The IP addresses of up to three RADIUS servers. ❑ The encryption key use

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 627log on.❑ A username and password combination is not tied to the MAC add

Chapter 29: 802.1x Port-based Network Access Control628 Section IV: Security❑ Set ports used to interconnect switches to the none role. This is illust

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 629Setting Port RolesThis procedure sets port roles. For an explanation of

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 63The Configure System Time menu is shown in Figure 10.Figure 10. Co

Chapter 29: 802.1x Port-based Network Access Control630 Section IV: SecurityThe Configure Port Access Role menu is shown in Figure 198.Figure 198. Co

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 631Enabling or Disabling 802.1x Port-based Network Access ControlThis proc

Chapter 29: 802.1x Port-based Network Access Control632 Section IV: SecurityConfiguring Authenticator Port ParametersTo configure authenticator port p

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 633The Configure Authenticator Port Access Parameters menu is shown in Fig

Chapter 29: 802.1x Port-based Network Access Control634 Section IV: Security2 - Quiet PeriodThe quiet period is the number of seconds that the port re

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 635Ingress - A port, when in the unauthorized state, discards all ingress

Chapter 29: 802.1x Port-based Network Access Control636 Section IV: SecurityConfiguring Supplicant Port ParametersTo configure supplicant port paramet

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 637The Configure Supplicant Port Access Parameters menu is shown in Figure

Chapter 29: 802.1x Port-based Network Access Control638 Section IV: Security5 - User NameThe user name is the username for the switch port. The port s

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 639Displaying the Port Access ParametersTo display the port access paramet

Chapter 3: Basic Switch Parameters64 Section I: Basic Features3. From the System Configuration menu, type 8 to select Configure System Time.The Config

Chapter 29: 802.1x Port-based Network Access Control640 Section IV: SecurityPort RolePort access role configured for the port. The possible settings a

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 641Configuring RADIUS AccountingThe AT-S63 management software supports RA

Chapter 29: 802.1x Port-based Network Access Control642 Section IV: Security2 - PortThis parameter specifies the UDP port for RADIUS accounting. The d

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 643

Section IV: Security 644Chapter 30TACACS+ and RADIUS ProtocolsThis chapter describes how you can use two authentication protocols, TACACS+ and RADIUS,

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 645TACACS+ and RADIUS OverviewThe AT-S63 management software has two stand

Chapter 30: TACACS+ and RADIUS ProtocolsSection IV: Security 646password combination that you create on the server software. The access level can eith

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 647Administrative for this attribute gives the username and password combi

Chapter 30: TACACS+ and RADIUS ProtocolsSection IV: Security 648Enabling or Disabling TACACS+ or RADIUSTo enable or disable the server-based authentic

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 649NoteBefore enabling server-based authentication on the switch, you shou

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 65NoteThe switch does not set DST automatically. If the switch is in

Chapter 30: TACACS+ and RADIUS ProtocolsSection IV: Security 650Configuring TACACS+To configure the TACACS+ client software, perform the following pro

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 651If you will be specifying more than one TACACS+ server and if all of th

Chapter 30: TACACS+ and RADIUS ProtocolsSection IV: Security 652Displaying the TACACS+ SettingsTo display the TACACS+ settings, perform the following

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 653TAC TimeoutThe maximum amount of time the switch waits for a response f

Chapter 30: TACACS+ and RADIUS ProtocolsSection IV: Security 654Configuring RADIUSTo configure the RADIUS protocol, perform the following procedure:1.

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 655the list. If there are no more servers, then the switch defaults to the

Chapter 30: TACACS+ and RADIUS ProtocolsSection IV: Security 656Displaying RADIUS Status and SettingsTo display the RADIUS status and settings, perfor

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 657Auth PortUDP port of the RADIUS protocol.Encryption KeyEncryption key f

Chapter 30: TACACS+ and RADIUS ProtocolsSection IV: Security 658

Section IV: Security 659Chapter 31Denial of Service DefenseThis chapter contains procedures for configuring the switch to protect against denial of se

Chapter 3: Basic Switch Parameters66 Section I: Basic FeaturesConfiguring the Console Startup ModeYou can configure the AT-S63 management software to

Chapter 31: Denial of Service Defense660 Section IV: SecurityDenial of Service OverviewThe AT-S63 management software can help protect your switch aga

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 661SMURF Attack This DoS attack is instigated by an attacker sending a ICM

Chapter 31: Denial of Service Defense662 Section IV: SecurityFollowing is a simplified overview of how the process takes place. This example assumes t

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 663If one is found, the following occurs:❑ The switch sends an SNMP trap t

Chapter 31: Denial of Service Defense664 Section IV: SecurityIP OptionsAttackIn the basic scenario of an IP attack, an attacker sends packets containi

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 665Configuring Denial of Service DefenseTo configure DoS defense, perform

Chapter 31: Denial of Service Defense666 Section IV: Securityb. Type 1 to select IP Address.The following prompt is displayed:Enter the IP Address for

AT-S63 Management Software Menus Interface User’s GuideSection IV: Security 667A menu is displayed containing either one or two options, depending on

Chapter 31: Denial of Service Defense668 Section IV: Security

669Appendix AAT-S63 Default SettingsThis appendix lists the AT-S63 factory default settings. It contains the following sections in alphabetical order:

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 67Configuring the Console TimerThe AT-S63 management software uses th

Appendix A: AT-S63 Default Settings670❑ ”Management Access Control List Default Setting” on page 692

AT-S63 Management Software Menus Interface User’s Guide671Basic Switch Default SettingsThis section lists the default settings for basic switch parame

Appendix A: AT-S63 Default Settings672NoteLogin names and passwords are case sensitive.RJ-45 SerialTerminal PortDefault SettingsThe following table li

AT-S63 Management Software Menus Interface User’s Guide673SwitchAdministrationDefault SettingsThe following table describes the switch administration

Appendix A: AT-S63 Default Settings674Enhanced Stacking Default SettingThe following table lists the enhanced stacking default setting.Enhanced Stacki

AT-S63 Management Software Menus Interface User’s Guide675SNMP Default SettingsThe following table describes the SNMP default settings.SNMP Communitie

Appendix A: AT-S63 Default Settings676Port Configuration Default SettingsThe following table lists the port configuration default settings.Port Config

AT-S63 Management Software Menus Interface User’s Guide677Event Log Default SettingsThe following table lists the event log default settings.Event Log

Appendix A: AT-S63 Default Settings678Quality of ServiceThe following table lists the default mappings of IEEE 802.1p priority levels to egress port p

AT-S63 Management Software Menus Interface User’s Guide679IGMP Snooping Default SettingsThe following table lists the IGMP Snooping default settings.I

Chapter 3: Basic Switch Parameters68 Section I: Basic FeaturesEnabling or Disabling the Telnet ServerThis procedure describes how to enable or disable

Appendix A: AT-S63 Default Settings680Denial of Service Prevention Default SettingsThe following table lists the default settings for the Denial of Se

AT-S63 Management Software Menus Interface User’s Guide681STP, RSTP, and MSTP Default SettingsThis section provides the spanning tree, STP RSTP, and M

Appendix A: AT-S63 Default Settings682MSTP DefaultSettingsThe following table lists the MSTP default settings.Port Priority 128RSTP Setting DefaultMST

AT-S63 Management Software Menus Interface User’s Guide683VLAN Default SettingsThis section provides VLAN default settings.VLAN Setting DefaultDefault

Appendix A: AT-S63 Default Settings684GVRP Default SettingsThis section provides the default settings for GVRP.GVRP Setting DefaultStatus DisabledGIP

AT-S63 Management Software Menus Interface User’s Guide685Port Security Default SettingsThe following table lists the port security default settings.P

Appendix A: AT-S63 Default Settings686802.1x Port-Based Network Access Control Default SettingsThe following table describes the 802.1x Port-based Net

AT-S63 Management Software Menus Interface User’s Guide687Web Server Default SettingsThe following table lists the web server default settings.Web Ser

Appendix A: AT-S63 Default Settings688SSL Default SettingsThe following table lists the SSL default settings.SSL Setting DefaultMaximum Number of Sess

AT-S63 Management Software Menus Interface User’s Guide689PKI Default SettingsThe following table lists the PKI default settings, including the genera

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 69Setting the Baud Rate of the RJ-45 Type Serial Terminal PortThe def

Appendix A: AT-S63 Default Settings690SSH Default SettingsThe following table lists the SSH default settings.SSH Setting DefaultStatus DisabledHost Ke

AT-S63 Management Software Menus Interface User’s Guide691Server-Based Authentication Default SettingsThis section describes the server-based authenti

Appendix A: AT-S63 Default Settings692Management Access Control List Default SettingThe following table lists the default setting for the Management A

693Appendix BSNMPv3 Configuration ExamplesThis appendix provides two examples of SNMPv3 configuration using the SNMPv3 Table menus and a worksheet to

Appendix B: SNMPv3 Configuration Examples694SNMPv3 Configuration ExamplesThis appendix provides SNMPv3 configuration examples for the following types

AT-S63 Management Software Menus Interface User’s Guide695Configure SNMPv3 SecurityToGroup TableUser Name:systemadmin24Security Model:v3Group Name: Ma

Appendix B: SNMPv3 Configuration Examples696Configure SNMPv3 View Table Menu View Name: internetView Subtree OID: 1.3.6.1 (or internet)Subtree Mask: V

AT-S63 Management Software Menus Interface User’s Guide697Group NameSecurity ModelSecurity LevelRead View NameWrite View NameNotify View NameStorage T

Appendix B: SNMPv3 Configuration Examples698SNMPv3 Target Parameters TableTarget Parameters NameUser (Security) NameSecurity ModelSecurity LevelStorag

699IndexNumerics802.1x Port-based Network Access Controlaccess role, configuring 629authentication process 621authenticator portconfiguring 632describ

AT-S63 Management Software Menus Interface User’s Guide7Displaying the RSTP Port State ...

Chapter 3: Basic Switch Parameters70 Section I: Basic FeaturesPinging a Remote SystemYou can instruct the switch to ping a remote device on your netwo

Index700forced 121status 128Bback pressuredefault setting 676described 113baud rate, terminal port 69boot configuration fileconfiguring parameters 174

AT-S63 Management Software Menus Interface User’s Guide701downloading switch to switch 194configuration name 283, 295console disconnect intervalconfig

Index702software module list 213Ffactory defaultslist 669resetting 71file naming conventions 170file system, description 170files, upoading 201filteri

AT-S63 Management Software Menus Interface User’s Guide703IEEE 802.1p standard 222IEEE 802.1w standard 267image file, downloading 190ingress filtering

Index704MIB treediagram 320RFC 320MIB view 320MIBssupported 35viewing 318MSTI association to a VLANcreating 305removing 306MSTI IDassociating to VLANs

AT-S63 Management Software Menus Interface User’s Guide705path cost 300path cost, desciption 252PEM certificate format 587, 600Ping of Death attack 66

Index706diagram 433displaying 451, 469drawbacks 432modifying 447rules 432ports, untagged 431priority level and egress queue mappings 223privacy 319pri

AT-S63 Management Software Menus Interface User’s Guide707configuring 230, 231described 224strict priorityconfiguring 231described 225weighted round r

Index708SNMPv3 Access Table, described 324SNMPv3 community 406SNMPv3 Community Table entrycreating 407deleting 410displaying 422modifyingcommunity nam

AT-S63 Management Software Menus Interface User’s Guide709Spanning Tree Protocol (STP)and VLANs 257bridge forwarding delay 262bridge hello time 262bri

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 71Returning the AT-S63 Management Software to the Factory Default Val

Index710temperature threshold, setting 74terminal port baud rate, setting 69TFTPdefault setting for remote management 671downloading and uploading fil

Chapter 3: Basic Switch Parameters72 Section I: Basic FeaturesIf you respond with yes, the following prompt is displayed:Do you want to reset static I

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 73Displaying and Setting System Hardware InformationYou can view info

Chapter 3: Basic Switch Parameters74 Section I: Basic FeaturesThe System Hardware Information menu provides the following information:System 1.25 V Po

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 75The Configure System Hardware menu is shown in Figure 13. Figure 13

Chapter 3: Basic Switch Parameters76 Section I: Basic FeaturesDisplaying Uplink Port InformationTo display the information about the GBIC or SFP trans

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 77The GBIC/SFP Information menu (page 1) is displayed. Figure 15 show

Chapter 3: Basic Switch Parameters78 Section I: Basic FeaturesThe information displayed depends upon whether a GBIC or an SFP transceiver is installed

Section I: Basic Operations 79Chapter 4SNMPv1 and SNMPv2cThis chapter explains how to activate SNMP management on the switch and how to create, modify

Contents8Deleting an SNMPv3 User Table Entry ...

Chapter 4: SNMPv1 and SNMPv2 Community Strings80 Section I: Basic OperationsSNMPv1 and SNMPv2c OverviewThe Simple Network Management Program (SNMP) is

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Operations 81Access ModeThis defines what the community string will allow a ne

Chapter 4: SNMPv1 and SNMPv2 Community Strings82 Section I: Basic OperationsIt does not matter which community strings you assign your trap receivers.

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Operations 83Enabling or Disabling SNMP ManagementTo enable or disable SNMP ma

Chapter 4: SNMPv1 and SNMPv2 Community Strings84 Section I: Basic OperationsSetting the Authentication Failure TrapAs mentioned in the SNMP Overview s

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Operations 85Creating an SNMP Community StringTo create a new SNMP community s

Chapter 4: SNMPv1 and SNMPv2 Community Strings86 Section I: Basic OperationsThe following prompt is displayed:Enter Access Mode [R-Read Only, W-Read/W

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Operations 8711. After making changes, type R until you return to the Main Men

Chapter 4: SNMPv1 and SNMPv2 Community Strings88 Section I: Basic OperationsModifying a Community StringTo modify a community string, perform the foll

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Operations 89The menu options are described below:1 - Add Attributes to Commun

AT-S63 Management Software Menus Interface User’s Guide9Deleting an SNMPv3 Community Table Entry ...

Chapter 4: SNMPv1 and SNMPv2 Community Strings90 Section I: Basic Operations3. If you want to remove the IP address of a management workstation from t

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Operations 913. Type E to enable the community string or D to disable it. This

Chapter 4: SNMPv1 and SNMPv2 Community Strings92 Section I: Basic OperationsDisplaying the SNMP Community StringsTo display the attributes of all the

Section I: Basic Features 93Chapter 5Enhanced StackingThis chapter explains the enhanced stacking feature. The sections in this chapter include:❑ ”Enh

Chapter 5: Enhanced Stacking94 Section I: Basic FeaturesEnhanced Stacking OverviewThe enhanced stacking feature can make it easier for you to manage t

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 95❑ The enhanced stacking feature uses the IP address 172.16.16.16. D

Chapter 5: Enhanced Stacking96 Section I: Basic FeaturesNoteNo IP address is required if you intend to manage the enhanced stack solely through the RJ

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 97To manage the switches of a subnet, you can start a local managemen

Chapter 5: Enhanced Stacking98 Section I: Basic FeaturesSetting a Switch’s Enhanced Stacking StatusThe enhanced stacking status of the switch can be m

AT-S63 Management Software Menus Interface User’s GuideSection I: Basic Features 99The Enhanced Stacking menu is shown in Figure 22.Figure 22. Enhanc