Cisco Systemsメーカー200の使用説明書/サービス説明書
ページ先へ移動 of 351
Cis c o Sm all Busine s s 200 S erie s Smar t Switch Administration Guide Releas e 1 .3 ADMINISTR A TION GUIDE.
Cisco Small Busine ss 200 Series Smar t Switch Administ ration Guide 2 Con t en ts Chapter 1: Getting Started 1 Starting the Web-based Configuration Utility 1 Launching the Configuration Utility 2 HTT.
Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 3 Con te nt s Upgrade/Backup Firmware/Language 35 Upgrade/Backing Firmware or Language File 36 Download/Backup Configuration/Log 39.
Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 4 Con te nt s Adding a Unicast SNTP Server 69 Configuring the SNTP Mode 72 Defining SNTP Authentication 72 Chapter 7: Administratio.
Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 5 Con te nt s Chapter 9: Port Management 112 Configuring Po rts 112 Setting Port Config uration 113 Configuring Link Aggregation 11.
Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 6 Con te nt s Identifying Smartport Type 139 Using CDP/LLDP Information to Identify Smartport Types 140 Multiple Devices Attached t.
Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 7 Con te nt s Voice VLAN Overview 179 Dynamic Voice VLAN Modes 181 Voice End-Points 182 Auto Voice VLAN, Auto Smartports, CDP, and .
Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 8 Con te nt s Configuring IGMP Snooping 214 MLD Snooping 216 Querying IGMP/MLD IP Multicast Group 218 Defining Multicast Router Por.
Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 9 Con te nt s Defaults 248 Interactions With Other Features 249 Radius Workflow 249 Configuring Management Access Authentication 25.
Cisco Small Busine ss 200 Series Smar t Switch Administ ration Guide 10 Con t en ts Protection Methods 277 Passwords 277 Public/Private Keys 278 Import Keys 278 SSH Server Auth entication 279 SSH Clie.
Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 11 Con te nt s Running Configuration File 297 Backup and Mirror Configuration File 298 Sensitive Data Z ero-Touch Auto Configurati .
Cisco Small Busine ss 200 Series Smar t Switch Administ ration Guide 12 Con t en ts Configuring SNMP Views 325 Creating SNMP Groups 327 Managing SNMP Users 329 Defining SNMP Communities 331 Defining T.
Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 13 Con te nt s.
1 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 1 Get ting St ar te d This section provides an introduction to the web-bas ed configuration utilit y , and covers the f o llowing.
Get ting Star te d Star ting the Web-b ase d C onfigur ation Utilit y Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 2 1 La unching the Configuration Utilit y T o open the web-bas ed configuration utilit y : STEP 1 Open a W eb br owser .
Getting Started Star ting the W eb -bas ed Configur a tion Utilit y 3 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 1 STEP 3 If this is the first time that you logged on with the default us er ID ( cis co ) and the default password ( cisco ) or your pas sword has ex pir ed, the Change P assword Page appears.
Get ting Star te d Star ting the Web-b ase d C onfigur ation Utilit y Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 4 1 Logging Out By default, the application logs out after t en minutes of inactivit y . Y ou can change this def ault value as described in the De fining Idle S es sion Timeout se ction.
Getting Started Quick Star t D evice C onfigur ation 5 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 1 Quick Star t D evic e C onfigura tion T o simplify device configuration throug h quick navigation, the Getting Star ted page provides links t o the most commonly use d pages .
Get ting Star te d In terface Naming Conventions Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 6 1 • Type of inter face : The f ollowing t ypes of inter faces ar e f ound on the various typ e s o f d ev ice s: - Fa st Ethernet ( 10/ 100 bit s) — Thes e ar e displa yed as FE .
Getting Started W indow Na viga tion 7 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 1 Window Na viga tion This se ction describ es the f eatures of the web- base d switch configurati on utility. Applic a tion Header The Application Header a ppears on ev ery page.
Get ting Star te d W indow Naviga tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 8 1 Language Menu This menu provides the f ollowing options : • Sele ct a language: Sele ct one of the languages that appear in the menu. This language will be the web - base d configu ration utilit y language.
Getting Started W indow Na viga tion 9 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 1 Management But ton s The f ollowing table de scrib es the commonly-use d but t ons that appear on various pages in the system.
Get ting Star te d W indow Naviga tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 10 1 Cop y Sett in gs A table typically c ontains one or mor e entries containing configuration s ett ings.
Getting Started W indow Na viga tion 11 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 1.
2 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 12 St a tus and St a tistic s This sect ion describ es how to view device statistic s. It covers the f ollowin g t opics : • Viewing Ethernet Interfac e s • Viewing Etherlik e St a tistics • Viewing 802.
Status and Statistics V iewing E therlike Sta tistics 13 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 - 60 Se c —Statistics are r efr e shed ever y 60 seconds . The Receive Statistics area displays inf ormation about incoming packets.
Status and Statistic s V iewing 802. 1 X E AP S ta tis tics Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 14 2 • Interfac e —Sele ct the t ype of int er face and spe cific interface f or which Ethernet statistics are t o be display ed.
Status and Statistics V iewing 802. 1 X E AP Sta tis tics 15 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 STEP 1 Click Sta tus and Statistics > 802. 1 x E AP . STEP 2 Se lec t t he Interfac e that is pol led f or statistics .
Status and Statistic s Managing RMON Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 16 2 Managing RMON RMON (Remote Networ king Monitoring) is an SNM P specifi cation that enables an SNMP agent in the device to pr oactively monit or traffic statistics over a given period and send traps to an SNMP manager .
Status and Statistics Managing RMON 17 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 T o view RMON statistics and/ or s et the r efresh rat e: STEP 1 Click Sta tus and Statistics > RMON > Statistics . STEP 2 Se lec t t he Interfac e f or which Ethernet statistics ar e t o be display ed.
Status and Statistic s Managing RMON Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 18 2 • Co llisions —Number of c ollisions r eceived. If Jumb o Frames are enabled, the threshold of Jabber Frames is raise d to the ma ximum size of Jumbo Frames .
Status and Statistics Managing RMON 19 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 T o ent er RMON control inf ormation: STEP 1 Click Sta tus and Statistics > RMON > Histor y . The fields display ed on this page ar e defined in the Add RMON Hist or y page, below .
Status and Statistic s Managing RMON Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 20 2 The fields are displa y ed f or the selected sample. • Ow n e r —Histor y table entr y owner . • Sam p l e N o . —Statist ics were tak en fr om this sample.
Status and Statistics Managing RMON 21 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 • Alarms Page —Configur es the occurrences that trigger an alarm. T o define RMON ev ents: STEP 1 Click Sta tus and Statistics > RMON > Events .
Status and Statistic s Managing RMON Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 22 2 Viewing the RMON Events Lo gs The Ev ent L og T able page displays the log of events (actions ) that occurred. T wo type s of events can be logged: Lo g or L o g and T rap .
Status and Statistics Managing RMON 23 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2 T o ent er RMON alarms: STEP 1 Click Sta tus and Statistics > RMON > Alarms . All previously-defined alarms ar e display ed. The fields are describ ed in the Add RMON Alarm page b elow .
Status and Statistic s Managing RMON Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 24 2 • Inter val —Ent er the alarm interval time in s econds . • Ow n e r —Enter the name of the user or network management system that receives the alarm.
Status and Statistics Managing RMON 25 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 2.
3 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 26 Administra tion: System Lo g This section de scribes the System L o g f eature, which enables the device to generat e several independent logs . Each log is a set of mes sage s descr ibing syst em events.
Administration: System Log Setting Syst em Log Settings 27 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 3 The event severity levels ar e list ed from the highest s everity to the lowest s everity , as f ollows : • Eme r g en cy —Syst em is no t usable.
Administration: System Lo g Setting Remo te L ogging S ettings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 28 3 • Originator Identifier —Enable s adding an origin identifier to S YSL OG mes sages . The options ar e: - Non e —Do not include the origin identifier in S Y SL OG mes sage s.
Administration: System Log V iewing Memory Logs 29 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 3 - Link L ocal — The IP v6 address uniquely identifie s hosts on a single network link . A link local addr ess has a prefix of FE80 , is not r outable, and can be use d f or communication only on the local net work .
Administration: System Lo g Vi e w i ng M e m o r y Lo g s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 30 3 R AM Memor y The R AM Memor y pag e displays all mess ages that were sav ed in the R AM (cache) in chro nological order .
Administration: System Log V iewing Memory Logs 31 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 3.
4 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 32 Administra tion: F ile Man agement This section de scribe s how syst em files are managed.
Administration: F ile Managemen t Sys tem F iles 33 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 When a configuration is r ef erenced on the devic e, it is r ef erenced by its.
Administration: File Management Syste m Files Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 34 4 Only the syst em can copy the Star tup Configuration to the Mirr or Configuration. However , you can copy fr om the Mirr or Configuration to other file typ es or t o another device.
Administration: F ile Managemen t Upgrade/Backup Firmw are/Language 35 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 This se ction covers the f ollowing topics: • Upgrade/B a.
Administration: File Management Upgrade/Backup Firm war e/Language Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 36 4 Up grade/B acking Firm ware or L anguage Fil e T o upgrade or backup a soft war e image or language file: STEP 1 Click Admin ist ra tion > Fil e Ma n a ge m ent > Up grade/Backup Firmwar e/ Lan g ua ge .
Administration: F ile Managemen t Upgrade/Backup Firmw are/Language 37 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 • Link Loc al Interface —S elect the link lo cal interface (if IP v6 is use d) from the list . • TFTP S er ver IP A ddress/Name —Enter the IP address or the domain name of the TFTP s er ver .
Administration: File Management Upgrade/Backup Firm war e/Language Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 38 4 Select one of the f ollowing Save Actions : • Up grade —Sp ecifies that the file type on th e device is t o be replace d with a new version of that file typ e located on a TF TP ser ver .
Administration: F ile Managemen t D ownload/Backup Configura tion/Log 39 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 • If SS H ser ver authentication is not enabled, the operation succee ds f or any SC P s erve r .
Administration: File Management Download/B ackup Configur a tion/L og Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 40 4 Other wis e, if the S yste m mode is changed, the f ollo.
Administration: F ile Managemen t D ownload/Backup Configura tion/Log 41 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 - Gl ob al — The IP v6 addres s is a global Unicast IPV 6 t ype that is visible and reachable from other netw orks.
Administration: File Management Download/B ackup Configur a tion/L og Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 42 4 - Plai ntex t —Include s ensitive data in the backup in its plaintext f orm. NOTE The a vailable sensitive data option s ar e determi ned by the curr ent us er SSD r u l es.
Administration: F ile Managemen t D ownload/Backup Configura tion/Log 43 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 STEP 5 f y ou sele ct ed via S CP (O ver S SH) , s ee SS H Clien t Configuration T hrough the GUI f o r instructions.
Administration: File Management Configur a tion Files Proper tie s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 44 4 If Sa v e Act ion is Download (replacing the file on the device with a new version from another device), enter the f ollowing fields .
Administration: F ile Managemen t Cop y /Sa ve Con figur at io n 45 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 IT o set whether mirror configuration files wi ll be crea ted,.
Administration: File Management Cop y /Sav e Con figu r a tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 46 4 The f o llowing combinations of copying internal file type s ar e allowed: • Fr om the Running Configuration to the Star tup Configuration or B ackup Configuration.
Administration: F ile Managemen t DHCP Auto Configur a tion 47 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 DHCP Auto C onfigura tion Aut o configuration enables pas sing configur ation inf ormation to hosts on a T CP /IP network .
Administration: File Management DHCP Auto Con figur a tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 48 4 DHCP S er ver O ptions DHCP mes sage s might contain the c onfiguration ser ver name/ addres s and the configuration file name/path (these are op tional options ).
Administration: F ile Managemen t DHCP Auto Configur a tion 49 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 NOTE T he SS H Client authenticati on paramet ers can also be use d when downloadin g a file f or manual downlo ad (a download that is not per f orme d through the DHCP A ut o Configuration f eature).
Administration: File Management DHCP Auto Con figur a tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 50 4 - The SS H Ser ver is configur ed in the SS H T rusted Ser vers list .
Administration: F ile Managemen t DHCP Auto Configur a tion 51 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4 and f ormat of the file are checked, bu t the validity of the c onfiguration para met ers is not checked prior to loading it to the Star tup Configuration.
Administration: File Management DHCP Auto Con figur a tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 52 4 STEP 3 Enter the f ollowing optional inf ormation t o be use d if no configuration file name was received from the DHCP ser ver .
Administration: F ile Managemen t DHCP Auto Configur a tion 53 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 4.
5 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 54 Administra tion: General Inf ormation This section describ es how to view syst em inf ormation and configure various options on the device.
Administration: General Information Dev i ce M ode l s 55 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 5 The f ollowing table de scrib es the various models , the number and t ype of por ts on them and their P oE inf ormation.
Administration: General Informa tion Syst em In f orma tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 56 5 System Information The Syst em Summar y page pro vides a graphic v.
Administration: General Information Sys tem I n f orma tion 57 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 5 • HT TPS S er vice —Displays whether HTTPS is enabled/ disable d. • SNMP Ser vice —Displays whether SNMP is enabled/ disabled.
Administration: General Informa tion Reb oot in g th e D e vi c e Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 58 5 • Custom Login S creen S et tings — T o display te x t on the Login page, ent er the t ext in the Login B anner t e xt bo x.
Administration: General Information Reb o ot in g t he D ev ic e 59 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 5 • Rebo ot —R eboots the device.
Administration: General Informa tion Monitori ng F an Sta tus Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 60 5 Monitoring F an Sta tus The Health page displays the f an status on all device s with fans. Dep ending on the model, there ar e one or mor e fa ns on a device.
Administration: General Information D e fining Idle Se ssion T ime out 61 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 5 T o view the device health parameters, click Status and Statistics > He alth . The Health page displays the f oll owing fields: • Fan S t atu s —F an status.
Administration: General Informa tion Pinging a Ho st Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 62 5 Pinging a Ho st Ping is a utility us ed to t est if a r emot e host can be r eached and to measure the r ound-trip time f or packets sent from the device t o a destinatio n device.
Administration: General Information Pinging a Host 63 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 5 • Status — Di sp la ys w he th er th e p in g s uc ceeded or f ai led .
6 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 64 Administra tion: Time S et tings Synchr onized syst em clocks provide a frame of ref erence betw een all devices on the network .
Administration: Time Settings Sys tem T ime Op tions 65 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 6 System Time Options Syst em time can be set manually by the us er , dynamically from an SNTP ser ver , or synchronized fr om the PC running the GUI.
Administ ra tion: Time Set tings SNTP Mode s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 66 6 Time Zone and Da ylight Savings Time (DST ) The T ime Z one and DST can be set on.
Administration: Time Settings Configuring Syst em T ime 67 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 6 C onfiguring S ystem Time S elec ting S ource of S ystem Time Use the Syst em T ime page t o select the system time sour ce.
Administ ra tion: Time Set tings Configuring Sys t em T ime Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 68 6 Manual Set tings —Set the date and time manually . The local time is us ed when ther e is no alt ernate source of time, such as an SN TP ser ver : • Date —Ent er the system dat e.
Administration: Time Settings Configuring Syst em T ime 69 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 6 - Fro m —Day and ti me that DST st ar ts. - To —Day and time that DST ends. Sel ect in g Recurring allows diff erent cust omization of the star t and stop of DS T : • Fro m —Date when DST begins each year .
Administ ra tion: Time Set tings Configuring Sys t em T ime Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 70 6 • Poll Inter val —Displays whether polling is enabled or dis abled. • Authentication K ey ID —Ke y Identification use d t o communicate betw een the SNTP ser v er and device.
Administration: Time Settings Configuring Syst em T ime 71 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 6 • IP V ersion —S elect the version of the IP address : Ve r s i o n 6 or Ve rs i o n 4 . • IP v 6 Addres s Typ e —Sele ct the IP v6 addr es s typ e (if IP v6 is used) .
Administ ra tion: Time Set tings Configuring Sys t em T ime Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 72 6 C onfiguring the SNTP Mode The device can be in active and/ or pas sive mode ( see SNTP Mo des fo r m o r e inf o rmation).
Administration: Time Settings Configuring Syst em T ime 73 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 6 The authentication k ey is cr eated on the SNTP se rver i n a sep ar at e pr ocess th at depends on the t ype of S NTP ser ver you ar e using.
7 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 74 Administra tion: Diagno stic s This section c ontains inf ormation f or configuring por t mirroring, running cable tests, and viewing device op erational inf ormation.
Administration: Diagnostics Te s t i n g C o p p e r P o r t s 75 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 7 • (Optional) Disable EEE (see the Port Management > Green Ethernet > Pr oper ties page) Use a CA T5 data cable when t esting cables using ( VCT ) .
Administration: Diagno stic s Displaying Op tical Mo dule Sta tus Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 76 7 I f t h e p o r t b e i ng te s te d i s a Gi g a p o r t , .
Administration: Diagnostics Configuring P or t and VL AN Mirroring 77 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 7 • MGBLH 1 : 1000BA SE-LH S FP transc eiver , f or single-mo de fiber , 1310 nm wav elength, suppor ts up to 40 km.
Administration: Diagno stic s Configuring P or t and VL AN Mirro ring Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 78 7 A pack et that is r eceived on a net work por t assigne d t o a VLAN that is subject to mirr oring is mirror e d to the analyzer por t even if the pack et was eventually trapped or discarded.
Administration: Diagnostics V iewing CP U Utiliz a tion and Secure Core T echnolo gy 79 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 7 - Rx O n l y —P or t mirroring on incoming pack ets. - Tx O n l y —Por t mirroring on outgoing pack ets .
8 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 80 Administra tion: Dis c over y This sect ion pr ovides inf ormation f or configuring Dis cover y .
Administration: Discovery LLDP and CDP 81 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 By default , Bonjour is enabled on all interface s that are me mbers of the Management VLAN. T o globally enable Bonjour : STEP 1 Click Adm in ist ra tion > Disc over y - B onjour .
Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 82 8 • Aut o Smartp or t r equires CDP and/ or LLDP to be enabled. Aut o Smartp or t automatically configur es an inter face based on the CD P /LLDP adver tisement r eceived from the int er face.
Administration: Discovery Configuring LLDP 83 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Configuring LLDP MED Por t S et tings • Displaying LLD P Por t Sta tus • Dis.
Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 84 8 3. Creat e LLDP MED network policie s by using the LLDP MED Net work Policy page. 4. A ss ociate LLDP MED network p olicies and the optional LLDP -MED TL Vs t o the desired int er faces by using the LLDP MED Port Set tings page.
Administration: Discovery Configuring LLDP 85 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Tr a n s m i t D e l a y —Enter the amount of time in s econds that pass es b etwe en succe ssive LLDP frame transmis sions due to changes in the LLDP local systems MIB.
Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 86 8 The time inter val bet ween notifications is enter ed in the T opology Change SNMP Notification Int er val field in the LLDP P roperties page.
Administration: Discovery Configuring LLDP 87 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 lowest IP address among the dynamic IP addres ses . If there ar e no dynamic addr es ses , the soft ware choose s the lowest IP addr es s among the static IP addr ess es .
Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 88 8 Set ting LLDP MED Net work Policy An LLDP -MED net work policy is a relate d set of configuration s ettin gs f or a specific real-time application such as vo ice, or vide o.
Administration: Discovery Configuring LLDP 89 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • VL AN T ag —S elect whether the traf fic is T agge d or Untagged. • User Priorit y —Select the traffic priorit y applied to tra ffic define d by this network p olicy .
Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 90 8 • SNMP Notification —Sele ct whether S NMP notification is sent on a per -por t basis when an end station that suppor ts MED is discovered; f or example a SNMP managing system, when ther e is a topology change.
Administration: Discovery Configuring LLDP 91 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Chas sis ID Subt ype — T ype of chas sis ID (f or e xample, MAC addr ess). • Chassis ID —Identifier of chassis . Wher e the chassis ID subt ype is a MAC address , the MAC addr es s of the device appears.
Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 92 8 This page provides the f ollowing fields : Glo b al • Chassi s ID Subt yp e — T yp e of chassis ID . (For e x ample, the MAC addr ess .
Administration: Discovery Configuring LLDP 93 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Auto-Ne gotiation Adver tise d Cap abilities —Por t spee d aut o-negotiation capabilities ; f or example, 1000BAS E- T half duplex mode, 100BAS E- T X full duplex mode.
Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 94 8 - Endpoint Clas s 1 —Indicates a generic endpoint class , of f ering b asic LLDP ser vice s. - Endpoint Clas s 2 —Indicat es a media endpoint class , off ering media streaming capabilities, as well as all Clas s 1 f eatures .
Administration: Discovery Configuring LLDP 95 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 - Untagged —Indicat es the net work policy is define d f or untagged VL ANs . • User Priorit y —Network policy user priorit y . • DSCP —Network policy D S CP .
Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 96 8 Ba sic Details • Chassi s ID Subt yp e — T yp e of chassis ID (f or e xample, MAC addr ess). • Chassi s ID —Identifi er of the 802 LAN neig hboring devic e chass is.
Administration: Discovery Configuring LLDP 97 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Op era tional MAU Type —Medium Attachment Unit (MA U) t ype.
Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 98 8 MED Details • Capabilitie s Supp orte d —MED capabilities enabled on the p or t . • Current Capabilitie s — M E D T L V s a d v e rt i sed by th e p o rt .
Administration: Discovery Configuring LLDP 99 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Enable d —En ab led P or t a nd Pr ot oco l V LAN I Ds. VL AN IDs • VID —P or t and Prot o col VL AN ID . • VL AN Name s —Adver tised VL AN name s.
Administration: Disc over y Configuring LLDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 100 8 STEP 1 Click Admin ist ra tion > Disc over y - LLDP > LLDP Sta tistics . F or each por t , the fields ar e displa yed: • Interfac e —Identifier of inter face.
Administration: Discovery Configuring LLDP 101 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Lef t to S end (By te s) — T otal number of a vailable by tes left f or additional LLDP inf ormation in each packet . • Status — Whether TL V s are being transmitted or if they ar e overloade d.
Administration: Disc over y Configuring CDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 102 8 • LLDP Option al TL V s - Size (Bytes) — T otal LLDP MED optional TL Vs pack ets by te size. - Status —If the LLDP MED optional TL V s packe ts wer e sent , or if they were overloaded.
Administration: Discovery Configuring CDP 103 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 CDP Configuration W ork flow The f o llowings is sample work flow in configuring CDP on the device. Y ou can als o find additional CDP c onfiguration guideline s in the LLDP /CDP secti on.
Administration: Disc over y Configuring CDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 104 8 • CDP Hold Time —Amount of time that CDP packets are held be f ore the packets ar e discarded, measured in multiples of the TL V Adver tise Inter val.
Administration: Discovery Configuring CDP 105 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 Editing CDP Inter face S et tings Use the Interface S ettings page to activate LLDP and remot e log ser ver notification per por t , and t o select the TL V s include d in LLDP PDUs.
Administration: Disc over y Configuring CDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 106 8 • Syslo g V oi ce VL A N Mismatch —Select t o enable the option of sending a .
Administration: Discovery Configuring CDP 107 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 - Por t ID —Identifi er of por t adver tise d in the por t TL V .
Administration: Disc over y Configuring CDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 108 8 - Req ue st ID —La st pow er r equest ID r eceiv ed ec hoes th e R equ est -ID field last r eceived in a P ower Request ed TL V . It is 0 if no P ower Requested TL V was r eceived sinc e the int er face last transitioned to Up.
Administration: Discovery Configuring CDP 109 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8 • Cap abilities —Capabilit ies adver tise d by neighbor . • Platform —Inf ormation from Pl atf orm TL V of neighbor . • Neighb or Interfac e —Outgoing int er face of the neighbor .
Administration: Disc over y Configuring CDP Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 110 8 Viewing CDP Statistics The CDP Statistics page displays inf ormation regarding Cisco Dis cover y Prot ocol (CDP) frames that wer e sent or r e ceived from a por t .
Administration: Discovery Configuring CDP 111 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 8.
9 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 112 Por t Management This section de scribe s por t configurat ion, link aggregation, and the Green Ethernet f eature.
Port Management Setting Por t Configura tion 113 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 S et ting Por t C onfigura tion The Po r t Set tings page displays the global and per p or t set ting of all the por ts. This page enables you to select and configure the desir ed por ts from the Edit P ort Set tings page.
Por t Management Setting Por t C onfigur a tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 114 9 • Operational Status —Displa ys whethe r the por t is curr ently Up or Down. If the por t is down be cause of an error , the des cription of the error is displa yed.
Port Management Setting Por t Configura tion 115 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 - 1000 F ull — 1000 Mbps spe ed and Full Duplex mode. • Op era tional A dver tisement —Displays the capabilities curr ently published to the por ts neighbor .
Por t Management Configuring Link Aggr egation Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 116 9 C onfiguring Link Aggre ga tion This section de scribe s how t o configure LAGs .
Port Management Configuring Link Aggr egation 117 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 The device suppor ts t wo modes of load ba lancing: • By MAC Addr es ses —B ase d on the destination and s ource MAC addresse s of all packets.
Por t Management Configuring Link Aggr egation Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 118 9 Static and Dynamic L A G W orkflow After a LAG has been manually creat e d, L ACP cannot be added or removed until the LAG is edited and a member is removed.
Port Management Configuring Link Aggr egation 119 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 STEP 3 Click Apply . The Load Balance Algorithm is sav ed to the Running Configuration file. T o defi ne the member or candidat e por ts in a LAG.
Por t Management Configuring Link Aggr egation Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 120 9 • Reac tiva te Suspende d L A G —S elect to r eactivat e a por t if the L AG has been dis abled through the locked por t securit y option .
Port Management Configuring Link Aggr egation 121 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 C onfiguring LA C P A dynamic LAG is L ACP -enable d, and LACP is run on ever y candidate por t defined in the L AG.
Por t Management Configuring Link Aggr egation Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 122 9 However , ther e are cases when one link par tner is t emporarily not configured f or LACP .
Port Management Configuring Gr een Etherne t 123 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 STEP 5 Click Apply . The Running C onfiguration file is updated. C onfiguring Green Ethernet This se ction describ es the Green Ethernet f eature that is designed to sa ve power on the device.
Por t Management Configuring Gr een Etherne t Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 124 9 In addition t o the above Gr e en Ethernet f eatures, the 802.3az Energy Ef ficient Ethernet (EEE) is f ound on devic es suppor ting GE por ts .
Port Management Configuring Gr een Etherne t 125 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 802.3az Energy Ef ficient Ethernet Feature This section de scrib es the 802.3az Energy Efficient Ethernet (EEE) f eatur e. It covers the f ollowing topics : • 802.
Por t Management Configuring Gr een Etherne t Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 126 9 Ad ver tise Capa biliti es N egoti a tio n 802.
Port Management Configuring Gr een Etherne t 127 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 802. 3a z EEE Configuration W orkflow This se ction describ es how to configure the 802.
Por t Management Configuring Gr een Etherne t Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 128 9 • Energy De tect Mo de —Disabled by de fault. Click the checkbox to enable. • Shor t Re ach —Glob ally enable or dis able Shor t Reach mode if there are GE por ts on the device.
Port Management Configuring Gr een Etherne t 129 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9 T o defi ne per port Gr een Eth er net setti ng s: STEP 1 Click Port Management > Gr een Ethernet > Por t Set tings .
Por t Management Configuring Gr een Etherne t Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 130 9 - EEE Suppor t o n Remote— Displa ys whether EEE is suppor ted on the link par tner . EEE must be supp or ted on both the local and remot e link par tners.
Port Management Configuring Gr een Etherne t 131 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 9.
10 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 132 Smar tp or t This document de scribe s the Smar tp or ts f eature. It contains the f ollowing t opics : • O ver view • W.
Smartport Wha t is a Smar tp or t 133 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 Ther e ar e two ways t o apply a Smartp ort macro by Smartp or t typ e t o an interfac e: • Static Smar tpor t — Y ou manually as sign a Smar tpor t type to an interface.
Smar tp or t Smar tpor t T yp es Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 134 10 • Deskt op • Guest • Ser ver • Host • IP Camera • IP phone • IP Phone+Desktop.
Smartport Smar tpor t T yp es 135 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 Sp eci al Smar tp or t Typ e s Ther e ar e two spe cial Smar tpor t type s; default and un known . T h es e tw o ty pes ar e not as sociated with macros, but they exist t o signify the state of the int erfac e re ga rdi ng S m ar tp or t .
Smar tp or t Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 136 10 NOTE Thr oughout this section, the term “ aged ou t ” i s u s e d to d e s c r i b e t h e L L D P a n d C DP mes sages via their TTL .
Smartport Macro F ailure and the Reset Opera tion 137 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 • If the Star tup Configuration File sp ecifies a static Smartp ort t ype, the Smar tpor t t ype of the inter face is set to this static type.
Smar tp or t How the S mar tpor t F eatur e W orks Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 138 10 How the Smar tpor t Fe a tur e W orks Y ou can apply a Sma r tpor t macr o t o an int erface by the Smartp ort t ype ass ociated with the macr o.
Smartport Auto Smar tpor t 139 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 • If a device is aged out (no longer r eceiving adver tisements from other device s ), the inter face configurat ion is changed acc ording t o its P ersist ent Status.
Smar tp or t Auto Smartp or t Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 140 10 Using CDP / LLDP Informa tion to Identify Smar tp or t Typ es The device detects the typ e of device attache d t o the por t , b ased on the CDP / LLDP capabilities .
Smartport Auto Smar tpor t 141 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 NOTE If only the IP Phone and Host bits ar e set , then the Smar tpor t t ype is ip_phone_desktop.
Smar tp or t Er ror H an d li n g Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 142 10 F or mor e inf orm ation about LLDP /CDP ref er to the Configuring LLDP and Co nfiguring CDP section s, r especti ve ly .
Smartport Rela tionship s with Other Fea tur es and Back wards Compa tibility 143 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 Rela tionships with O ther Featur es and B ack war ds C omp a tibilit y Aut o Smartp or t is enabled by default and ma y be disable d.
Smar tp or t Common Smar tp or t T asks Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 144 10 W ork flow2: T o configure an in ter fac e as a static Smar tpor t , per f orm the fol lo wing steps : STEP 1 T o enable the Smartpor t featur e on the inter face, open the Smar tpor t > Interface Set tings page.
Smartport Configuring Smar tp or t Using The W eb -bas ed Interface 145 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 W ork flow4: T o rerun a Smar tp or t macro a fter it ha s failed, per form the fol l ow in g st e p s : STEP 1 In the Int er face Settings page, sele ct an int er face with Smar tpor t t ype Unknown.
Smar tp or t Configuring Smartp or t Using The Web-b ase d In terfac e Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 146 10 Smar tpor t Prop er tie s T o configur e the Smartp or t f eature globally : STEP 1 Click Smar tp or t > Prop er ties .
Smartport Configuring Smar tp or t Using The W eb -bas ed Interface 147 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 Smar tpor t Typ e S et tings Use the Smar tpor t T yp e Settings page to edit the Smar tpor t T yp e sett ings and view the Macro Sour ce.
Smar tp or t Configuring Smartp or t Using The Web-b ase d In terfac e Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 148 10 currently assigned with the Smar tp or t t ype by Aut o Smar tpor t . Auto Smartp or t does not apply the changes to int er faces that wer e statically assigned a Smar tpor t typ e.
Smartport Configuring Smar tp or t Using The W eb -bas ed Interface 149 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 T o apply a Smartp or t macro: STEP 1 Click Smartp or t > Inter face S et tings .
Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 150 10 • Smar tp or t Type —Displays the Smartp or t type currently assigned t o the port /LAG . • Smar tp or t Applic a tion —Sele ct the Smar tpor t typ e fr om the Smar tpor t Application pull-down.
Smartport Built-in Smar tpor t Macros 151 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 • guest • serve r • ho st • ip_camera • ip_phone • ip_phone_desktop • swi.
Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 152 10 [no_desktop] #macro description No Desktop # no smartport switchport trunk nati ve .
Smartport Built-in Smar tpor t Macros 153 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 # no switchport access vlan no switchport mode # no port security no port security mode.
Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 154 10 # no port security no port security mode # no smartport storm-control broadca st en.
Smartport Built-in Smar tpor t Macros 155 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 no port security mode no port security max # no smartport storm-control broadcast e nab.
Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 156 10 no port security max # no smartport storm-control broadca st enable no smartport st.
Smartport Built-in Smar tpor t Macros 157 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 # spanning-tree portfast auto # @ ip_phone [ip_phone] #macro description ip_phone #macr.
Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 158 10 # no port security no port security mode no port security max # no smartport storm-.
Smartport Built-in Smar tpor t Macros 159 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 #macro key description: $voice_vlan: The voice VLAN ID # #Default Values are #$voice_vl.
Smar tp or t Built-in Smar tpor t Macros Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 160 10 smartport switchport trunk allowed vlan remove all # no spanning-tree link-type # @.
Smartport Built-in Smar tpor t Macros 161 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 10 no smartport storm-co ntrol broadcast level # no spanning-tree link-type # @ ap [ap] #m.
11 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 162 Por t Management : PoE The P ower over Ethernet (P oE) f eature is only a vailable on PoE-base d devices . F or a list of Po E-base d devices , ref er to the De v ice M od e l s sect io n.
Port Management: PoE PoE o n t h e D e v ic e 163 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 11 Power ov er Ethernet can be used in any ent erprise net work that deploys r ela.
Por t Management : PoE PoE o n t he D e v ic e Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 164 11 Y ou can decide the f ollowing: • Maximum power a PS E is allowed to supply to a PD • During device operation, to change the mode from Class Power Limit t o Port Limit and vice versa.
Port Management: PoE Configuring PoE Pr op er tie s 165 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 11 may not be able t o pr operly supply power to its attaching PDs . T o pr event fa lse detection, you should disable PoE on the por ts on the PoE swit ches that are used to connect to PSEs .
Por t Management : PoE Configuring P oE Settings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 166 11 The f ollowing c ounters ar e displ a yed f or each device: • Nominal Power — The total amount of power th e devic e can supply to all the connected PD s.
Port Management: PoE Configuring PoE Settings 167 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 11 The administrator sets the priority for each por t , allocating how much p ower it can be gi v en. Thes e p ri or it ies ar e en t er ed in th e P oE Se ttin gs pa ge .
Por t Management : PoE Configuring P oE Settings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 168 11 • Pow e r C o n su m pt i on —Display s the amount of power in milliwat ts assigned t o the powered device co nnected t o the selected int er face.
Port Management: PoE Configuring PoE Settings 169 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 11.
12 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 170 VL AN Man agement This section c overs the f ollowing topics: • VL ANs • Configuring D e fault VL AN S et tings • Crea.
VLAN Management VL ANs 171 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 VLANs addres s securit y and scalabilit y issues . T r affic from a VLAN sta ys within the VLAN, and terminat es at devices in the VL AN.
VL AN Management VL ANs Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 172 12 • Management VLAN: For mor e inf ormat ion r ef er to the Configuring IP Inf o rmation section. QinQ QinQ provides isolation betwe en ser vice pr ovider networks and customers' networks .
VLAN Management Configuring Def ault VL AN S ettings 173 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 C onfiguring D e f ault VL AN S et tings When using fact or y default se.
VL AN Management Crea ting VL ANs Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 174 12 STEP 3 Click Apply . STEP 4 Click Sa ve (in the upp er-right corner of the window) and s a ve the Running Configuration to the Star tup Configuration.
VLAN Management Configuring VL AN Inter f ace S ettings 175 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 T o cr eat e a range of VLANs, sele ct the Range radio button, and specif y the range of VLANs to be creat ed by entering the Starting VID and Ending VID , inclusive.
VL AN Management De fin i ng V L AN Me m ber shi p Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 176 12 • Admini stra tive PVID —Enter the P ort VL AN ID (PVID) of the VL AN to which incoming untagge d and priority tagged frame s ar e classified.
VLAN Management De f i ni n g VLAN M e mbe r s hi p 177 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 Frames that are VLAN-t agged can pas s through other networ k devices that are VLAN-aware or VLAN-unawar e.
VL AN Management De fin i ng V L AN Me m ber shi p Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 178 12 C onfiguring VL AN Memb ership The Por t VL AN M emb ers hip page disp lays a ll por ts on the devic e along with a list of VLANs to which each por t belongs .
VLAN Management Vo i c e V L A N 179 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 - Forbidden — The interface is not allowed to join the VLAN. When a p or t is not a member of any other VLAN, enabling this option on the por t makes the por t par t of internal VLAN 4095 (a reser ved VID) .
VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 180 12 • Vo i c e V L A N Q o S • V oic e VL AN C onstraints • V oic e VL AN Workflows The .
VLAN Management Vo i c e V L A N 181 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 The device suppor ts a single voice VL AN. By default, the voice VL AN is VL AN 1 . The voice VLAN is default ed to VLAN 1 . A diff erent v oice VLAN can b e manually configured.
VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 182 12 V oic e End-Points T o ha ve a v oice VL AN work pr operly , the voice devices , such as Cisco phone s and V oIP endpoints , must be as signed to the voice VLAN where it sends and r eceives its voice traffic.
VLAN Management Vo i c e V L A N 183 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 NOTE The default configuration list her e applies to swit ches whose firmware version suppor ts Auto V oice VL AN out of the box.
VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 184 12 Aut o Smartp or t works with CDP /LLDP t o maintain the por t member ships of the voice VL.
VLAN Management Vo i c e V L A N 185 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 • The V oice VL AN cannot be Smar tpor t enable d. • The V oice VL AN QoS decision has priorit y over an y other Q oS decision, ex c ept f or the P olicy decision.
VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 186 12 NOTE St ep 7 and St ep 8 ar e optional as they are enabled by def ault . W ork flow2: T o configure the T elephon y OUI Method STEP 1 Open the VL AN Management > V oice VL AN > Proper ties page.
VLAN Management Vo i c e V L A N 187 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 T o view and configure V oice VL AN pr oper ties : STEP 1 Click VL AN Management > Vo i c e V L A N > Prop er tie s .
VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 188 12 NOTE Manually r e-configuring the voice VL AN ID , C oS/802. 1 p, and/ or D SCP from their default values r esults in a static voice VL AN, which has higher priority than auto voice VLAN that was learned from e xternal sources.
VLAN Management Vo i c e V L A N 189 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 • Swi tc h M A C Add ress —Base MAC addr es s of the device. If the device's Switch MA C addr es s is the Root Switch MA C Address , the device is the Auto V oi ce VL A N root d evic e.
VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 190 12 - Ye s — The device use s this voice VLAN to synchr onize with other Aut o V oice VL AN-enabled swit ches . This voice VL AN is the voice VLAN f or the network unle ss a voice VL AN from a higher priority source is discovered.
VLAN Management Vo i c e V L A N 191 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12 • Remark C oS/802. 1 p —Sele ct whether t o r emark egr ess traf fic.
VL AN Management Vo i c e V L A N Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 192 12 Use the T elephony OUI Int er face page to add an int er face to the voice VLAN on the basis of the OUI identifier and to configure the OUI QoS mode of voice VL AN.
VLAN Management Vo i c e V L A N 193 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 12.
13 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 194 Sp anning T re e This section de scribe s the Spanning T ree Prot o col (STP) (IEEE802.
Spanning Tree Configuring S TP Status and Global Settings 195 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 13 topology is naturally tr e e-structured, and ther ef ore f ast er conv ergence might be po ssible. RSTP is enabled by default .
Sp anning Tree Configuring S TP Sta tus and Global Settings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 196 13 Bridge Set tings : • Priorit y —Sets the bridge priority value. Af ter e xchanging BPDUs , the device with the lowest priorit y be comes the Root Bridge.
Spanning Tree Defining Spanning T ree Int er face S e ttings 197 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 13 D efining Sp anning T r e e Inter face S et tings The STP Int e .
Sp anning Tree Defining Spannin g T r ee In ter f ace S ettings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 198 13 • BPDU Guard —Enabl es or disables the Bridge Pr ot ocol Data Unit (BPDU) Guar d f eature on the por t .
Spanning Tree Configur ing Rapid Spann ing T ree S etting s 199 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 13 • Des i g na ted Br i d g e I D —Displa ys the bridge priority and the MAC address of the designated bridge. • Des i g na ted Po rt I D —Displays the priority and interface of the sele ct ed port .
Sp anning Tree Configuring R apid Spanning T r ee S ettings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 200 13 the device continue s t o communicate with it by using S TP . O ther wise, if it has been migrated t o RS TP, the device communicates with it using RSTP.
Spanning Tree Configur ing Rapid Spann ing T ree S etting s 201 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 13 • Fas t Li n k O p e r ati o n al S t at us —Displays whether the F ast Link (Edge Port) is enabled, disabled, or automatic f or the inte r face.
14 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 202 Man aging MA C A ddre s s T able s This section de scribe how to add MA C addresse s t o the syst em.
Managing MAC Address Tables Configuring Sta tic MAC Addr ess es 203 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 14 C onfiguring Static MA C A ddres s es Static MAC a ddresses are assigne d t o a specific physical i nt er face and VLAN on the device.
Ma nagi ng M A C Ad d r ess T a bl es Managing Dynamic MAC Addr ess es Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 204 14 Managing D yn amic MA C Addre s s e s The Dynamic Addr e ss T able (bridg ing table ) contains the MA C addr esse s acquired by monit oring the source addr es ses of frame s ent ering the device.
Managing MAC Address Tables Managing Dynamic MAC Addresse s 205 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 14 T o delet e all of the dynamic MA C addr ess es.
15 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 206 Multic ast This section de scribe s the Multicast F or warding f eature, and covers the f ollowing top i cs : • Multicast .
Multicast Multicast F orwarding 207 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 F or Multicast f or warding t o work acr os s IP subnets, node s, and rout ers must be Multicast-capable. A Multicast -capable node must be able to: • Send and r eceive Multicast pa ckets.
Multic ast Multicas t Forwar ding Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 208 15 The device can f orward Multicast str eams based on one of the f ollowing options: • Mul.
Multicast Defining Multicas t Pr op er tie s 209 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 • T o map an IP Multicast gr oup addres s to an La yer 2 Multicast address : - F or IP v 4, this is m apped by taking t he 23 low-order bits fr om the IP v 4 address , and adding them t o the 01 :00:5 e prefix.
Multic ast Adding MAC Gr oup Address Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 210 15 • IP Group Address —B ased on the de stination IP addr es s of the IP pack et (*,G). • Sou r ce Spec i f ic I P Gr ou p A dd ress —Based on both the de stination IP addr es s and the source IP addr es s of the IP pack et (S,G) .
Multicast Adding MAC Gr oup Addr ess 211 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 When a frame is received from a VLAN that is c onfigured t o f or ward Multicast streams.
Multic ast Adding IP Multicast Gr oup Addresse s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 212 15 T o configur e and display the r e gistration f o r the int er faces within the group, select an address , and click D et ails.
Multicast Adding IP M ulticas t Gr oup Address es 213 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 T o defi ne and view IP Multicast g roups: STEP 1 Click Multicast > IP Multicast Group Addre ss . The page contains all of the IP Multicast gr oup addr ess es learned by sno oping.
Multic ast Configuring IGMP Sn ooping Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 214 15 STEP 8 F or each int erface, sele ct its ass ociation typ e. The options ar e as f ollows : • Static —A ttache s the int er face t o the Multicast gr oup as a static memb er .
Multicast Configuring IGMP Snooping 215 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 T o enable IGMP Snooping and identify th e devic e as an IGMP Snooping Querier on a VLAN: STEP 1 Click Multicast > IGMP Sno oping . STEP 2 Enable or disable t he IGMP Snoopin g status.
Multic ast MLD Snooping Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 216 15 • Last Memb er Quer y C ounter —Ent er the number of IGMP Gr oup-Specific Queries s ent bef or e the device as sumes ther e are no mor e memb ers f or the gro up, if the device is the elected querier .
Multicast MLD Snooping 217 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 In an appr oach similar to IGMP snooping, MLD frames are snoop ed as they are f or war ded by the device from stations t o an upstream Multicast r outer and vice versa.
Multic ast Quer ying IGMP /MLD IP Multicast G roup Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 218 15 • Operational Quer y Robustnes s —Displays the r obustnes s variable sent by the elected querier .
Multicast Defining Multic ast R out er Po r ts 219 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 Ther e might be a dif f erence bet ween information on this page and, f or example, inf ormation displa yed in the MAC Gr oup Addr es s page .
Multic ast Defining F orward All Multicast Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 220 15 T o statically configur e or see dynamically- detect ed por ts conne cted t o the Multicast rout er : STEP 1 Click Multic ast > Multicast Router Por t .
Multicast D e fining Unr egistered Multicast Settings 221 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15 IGMP or MLD mes sages ar e not f or warded to por ts defined as Fo r w ar d All . NOTE The configuration aff e cts only the por ts that are members of the selected VLAN.
Multic ast Defining Unr egister ed Multicas t Settings Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 222 15 Y ou can select a p or t t o r ec eive or filt er unr egist ered Multicast str eams . The configuratio n is valid f or a n y VLAN of which it is a member (or will b e a member) .
Multicast D e fining Unr egistered Multicast Settings 223 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 15.
16 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 224 IP C onfigura tion IP int er face addr es ses can b e configured manually by the user , or automatically configured by a DHCP se r ver . This se ction provides inf ormation f or defin ing the device IP address es , either manually or by making the device a DHCP client .
IP Configuration IPv4 Managemen t and In terface s 225 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 If the device does not receive a DHCP v 4 r esponse in 60 se conds, it c ontinues to send DHCPDIS COVER querie s, and adopts the default IP v 4 addres s: 192.
IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 226 16 T o configure the IPv 4 device IP address : STEP 1 Click Administration > Management Interfac e > IP v4 Interfac e .
IP Configuration IPv4 Managemen t and In terface s 227 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 If a dynamic IP addr es s is r etrieved fr om the DHCP ser ver , select th.
IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 228 16 - All —Deletes all of the static and dynamic address es imme diately . - Dyna mi c —Deletes all of the dynamic addr e sse s immediately .
IP Configuration IPv4 Managemen t and In terface s 229 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 IP v 6 Glob al C onfiguration T o define IPv6 glob al parameters and DHCPv6 client se ttings : STEP 1 Click Adm in ist ra tion > Managemen t Inte r face > IP v 6 Glob al Configuration .
IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 230 16 T o define an IPv6 inter face: STEP 1 Click Admin ist ra tion > Management Interfac e > IP v6 Inter fac es . STEP 1 STEP 2 Click Add t o add a new int er face on which interface IP v6 is enabled.
IP Configuration IPv4 Managemen t and In terface s 231 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 • Sen d I CM P v6 M essag es —Enable generating unreachable destination mess ages. STEP 6 Click Apply t o enable IPv6 proce ssing on the sele cted int erfac e.
IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 232 16 • Rec eive d Information Refresh Time —Refr esh time r e ceived fr om D HCPv6 ser ver . • Remaining Information Refresh Time —Remaining time until ne xt refresh.
IP Configuration IPv4 Managemen t and In terface s 233 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 Co nfiguring T unnels NOTE T o configur e a tunnel, first configur e an IPv6 inter face as a tunnel in the IPv6 Interface s page.
IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 234 16 D efining IP v6 A ddres s e s T o assign an IP v6 addres s to an IPv6 Inte.
IP Configuration IPv4 Managemen t and In terface s 235 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 T o define prefixes to be adver tis ed on the inter faces o f the devic e: STEP 5 IP v 6 D e fault Router List The IP v6 Default Rout er List page enables c onfiguring and viewing the default IP v6 rout er addres ses .
IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 236 16 - Un re a c h ab le —Positive confirmation was not received within the Reachable T ime.
IP Configuration IPv4 Managemen t and In terface s 237 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 T o define IPv6 neighb ors: STEP 1 Click Administra tion > Management I.
IP Configuration IPv4 Management and In terface s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 238 16 • IP v 6 Addres s —Ent er the IP v6 network addres s assigne d to the int er face. The address must be a valid IP v6 ad dr es s.
IP Configuration Do m a i n N am e 239 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 network . Only one link local address is suppor ted. If a link lo cal addr es s exists on the int erface, this entr y replaces the addr es s in the configuration.
IP Configuration Domain Name Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 240 16 DNS S et tings Use the DNS Set tings page to e nable the DNS f eatur e, configure the DNS ser vers and set the default domain use d by the device.
IP Configuration Do m a i n N am e 241 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 • Sou r ce —Source of the ser ver ’ s IP address (static or DHCP v 4 or DHCP v6) • Interfac e —Int er face of the ser ver ’ s IP address .
IP Configuration Domain Name Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 242 16 • Interfac e —Interface of the s er ver ’s IP addr e ss fo r this domain. • Pref erence — This is the order in which the domains ar e us ed (from low t o high).
IP Configuration Do m a i n N am e 243 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 16 - OK —A t t e mpt s ucceed ed. - Negative Cache —Attempt f ailed, do not tr y again. - No Response — There was no r esponse, but system can tr y again in future.
17 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 244 Sec u r i t y This section de scrib es device s ecurit y and acces s control. The syst em handles various typ es of se curit y . The f ollowing list of topics des cribes the various t ype s of securit y f eatures des cribed in this se ction.
Security De fin i ng Us er s 245 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 Pr otection fr om other network us ers is describe d in the f ollowing s ections. Thes e ar e att acks that pass through, but ar e not dir ected at , the device.
Secu r ity De fin i ng U ser s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 246 17 Wh e n p as sw ord re c ov er y m e c ha ni s m i s di sable d, acc es sing the bo ot menu is still allowed and you can trigger the password recover y proces s.
Security De fin i ng Us er s 247 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 NOTE P assword aging also applies to zer o-length pas swor ds (no password). STEP 3 Se lec t Password Com plexit y S et tings to enable complexity rule s f or passwords .
Secu r ity Configuring RADIUS Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 248 17 C onfiguring R A DIUS Remot e Authorization Dial-In User Ser vic e (R ADIUS) ser v ers pr ovide a centralized 80 2. 1 X or MA C-based n etwo rk access co nt r o l.
Security Configur ing R ADIU S 249 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 Interactions With O ther Fe a tures Y ou cannot enable accounting on b oth a R ADIUS and T ACA CS+ s er ver . Radius W orkflow T o user a R A DIUS ser ver , do the f ollowing: STEP 1 Open an acc ount f or the device on the R ADIUS ser ver .
Secu r ity Configuring RADIUS Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 250 17 STEP 3 Click Apply . The R ADIUS default s ettings f or the device are updated in the Running Configuration file. T o add a R ADIUS ser v er , click Add.
Security Configurin g Manageme nt Acc es s Authentication 251 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • Authentication Port —Enter the UDP por t number of the R ADIUS ser v er por t f o r authentication r eque sts.
Secu r ity Defining Management Acc ess Method Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 252 17 If an authentication method fails or the us er has insuff icient privilege level, the user is de ni ed a ccess t o the de vi ce.
Security Defining Managemen t Ac ce ss Method 253 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 Acces s profiles consist of one or mor e rules. The rules are e x ecuted in or der of their priority within the ac ces s profile (t op to bot t om).
Secu r ity Defining Management Acc ess Method Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 254 17 A caution mes sage displays if you selected any other acces s profile, warning you that , depending on the s elected acces s profile, y ou might be disc onnected from the web- base d configuration utilit y .
Security Defining Managemen t Ac ce ss Method 255 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • Applies to S ource IP Addres s —Select the t ype of s our ce IP address to which the acces s profile applies. The Sou r ce I P Ad dre ss field is valid f or a subnetwork .
Secu r ity Defining Management Acc ess Method Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 256 17 The selected acce ss profile appears in the Pr ofile Rule T able. STEP 3 Click Add t o add a rule. STEP 4 Enter the paramet ers. • Ac ce s s Profile Name —Select an ac ce ss profile.
Security SSL Serve r 257 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • IP V ersion —S elect the supp or t ed IP version of the source addr ess : IP v6 or IP v 4.
Secu r ity SSL Serve r Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 258 17 D efault Set tings and Configuration By default , the device c ontains a cer t ificate that can be mo dified.
Security Configuring T CP /UDP Ser v ice s 259 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 - Dur ati on— Spe cifies the numb er of days a cer tification is valid. • Generate Cer tificate Reque st— Generate a cer tificate r equest to be signed by a CA .
Secu r ity Configuring T CP /UDP S er vic es Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 260 17 • HT TP —Enabled by fact or y default • HT TPS —Enabled by fact or y de.
Security Defining St orm Cont rol 261 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • Type —IP prot ocol the ser vic e uses . • Loc al IP Addre ss —L ocal I P a d dr es s t hr ough w h ich the device is off ering the ser v ice.
Secu r ity Configuring P or t S ecurit y Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 262 17 • Storm Control Ra te Threshold —Ent er the maximum rat e at which unknown packets can be f or warded. The def ault f or this threshold is 10,000 f or FE devices and 100,000 f or GE devic es .
Security Configuring P or t Se curit y 263 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • Se cure Delete on Re set —Deletes the curr ent dynamic MAC addr esse s ass ociated with the por t a fter r eset . New MAC addresses can b e learned as Delete-On-R eset ones up to the maximum addr e ss es allowed on the por t .
Secu r ity Configuring P or t S ecurit y Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 264 17 - Limited Dynamic L ock —L ocks the po r t by deleting the current dynamic MAC addr ess es ass ociated with the port . The port learns up to the maximum addr es se s allowed on the por t .
Security Configuring 802. 1 X 265 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 C onfiguring 802. 1 X Port-based ac ce ss co ntr ol has the effect of cr eating t wo t ypes of ac ces s on the dev ice ports.
Secu r ity Configuring 802. 1 X Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 266 17 • (Optional) Define one or more static VLANs as unauthenticated VL ANs as descr ibed in the D efining 802.
Security Configuring 802. 1 X 267 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 STEP 3 Click Apply . The 802. 1 X proper ties are written t o the Running Configuration file. D efining 802. 1 X Por t Authentic a tion The Port Authentication page enables co nfiguration of 802.
Secu r ity Configuring 802. 1 X Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 268 17 • Authentication Method —S elect the authentication metho d f or the p or t . The options are: - 802. 1 X O nly —802. 1 X authentication is the only authentication method per f orme d on the port .
Security Configuring 802. 1 X 269 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 D efining Ho st and S e ssion Authentic a tion The Host and Se ssion Authentication page enables defining the mode in which 802. 1 X operates on the por t and the action to per f orm if a violation has b een detect ed.
Secu r ity Configuring 802. 1 X Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 270 17 STEP 2 Select a po r t , and click Edit. STEP 3 Enter the paramet ers. • Interfac e —Enter a por t number f or which host authentication is enabled.
Security Denial of Ser vice Preven tion 271 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • Authentication Method —Metho d by which the last session was authenticated. The options ar e: - Non e —No authentication is applied; it is automatically authoriz ed.
Secu r ity Denial of S er vice Preven tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 272 17 addr es s (response to the A CK P ack et).
Security Denial of Ser vice Preven tion 273 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17 • All other DoS Prev ention f eatures are disabled by def ault . C onfiguring DoS Preven tion The f ollowing page s ar e used to configure this f eature.
Secu r ity Denial of S er vice Preven tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 274 17 - Dis ab le — The f eature is disabled on a specific inter face. - Repor t —G enerates a SYSL O G me s sage. The stat us of the p or t is changed to At ta cke d when the threshold is pass ed.
Security Denial of Ser vice Preven tion 275 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 17.
18 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 276 S e curit y : S SH Clien t This section de scrib es the device when it functions as a n SS H client .
Security: SSH Client Pro te c tion Me thods 277 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 18 When files are downloaded via TFTP or HT TP , the data transf er is unse cur ed. When files are do wnloaded via SCP , the inf ormation is downloaded from the SCP ser ver to the device via a secure channel.
Secu r i ty: SSH C li e n t Pr o t ec tio n Me th ods Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 278 18 The username/pas swor d must then be creat ed on the device. When data is transf erred from the ser ver t o the device, the username/pas sword supplied by the device must match the username/password on the ser ver .
Security: SSH Client SSH S er ver Authentica tion 279 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 18 When a privat e k ey is cr eat ed on a device, it is also p os sible to creat e an ass ociat ed passph rase . This passphrase is us ed to encrypt the private k ey and t o impor t it int o the remaining switches.
Secu r i ty: SSH C li e n t SSH Client Authen tica tion Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 280 18 S SH Client Authen tication SS H client authen tication by pas sword is enabled by defa ult , with the username / pas sword being “anonymous ”.
Security: SSH Client Be f ore Y ou Begin 281 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 18 Be f o r e Y o u Be g i n The f ollowing actions must be per f ormed befor e using the SCP f eatur e: • When using the pas swor d authentication method, a username/pas sword must be set up on the S S H ser ver .
Secu r i ty: SSH C li e n t Comm on T asks Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 282 18 STEP 4 If the public/private k ey method is being use d, per f orm the f ollowing steps : a. Select whether to use an RS A or D SA key , create a username and then generate the public/privat e k eys.
Security: SSH Client SSH Client Configur a tion Thr ough the GUI 283 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 18 S SH Client Configuration Thr ough the GUI This se ction describ es the pages us ed to configur e the SS H Client f eature.
Secu r i ty: SSH C li e n t SSH Client Configur a tion Thr ough the GUI Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 284 18 • Ke y S ou rc e —Aut o Generated or User Defined. • Fin g er p ri nt —Fingerprint generat ed from the k e y .
Security: SSH Client SSH Client Configur a tion Thr ough the GUI 285 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 18 STEP 1 Click Sec ur i ty > SS H C l i en t > Change User Password on SS H Ser ver .
19 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 286 S e curit y : S e cure S ensitive Da t a Man agement Secure Sensitive Data (SS D) is an archit ecture that facilitat es the prot e ction of sensitive data on a dev ice, such as passwo rds and k e ys.
Security: Secure Sensitive Data Ma nagement SSD R u les 287 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 SSD grants read permission to sensitive data on ly to authenticated and authorized users, and according to S SD rules.
Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t SSD R u les Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 288 19 NOTE A device ma y not suppor t all the channels defined by S SD.
Security: Secure Sensitive Data Ma nagement SSD R u les 289 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 - (Higher) Plai ntext O nly —Users are permitted to acces s sensitive data i n plainte x t only . Users will also hav e re ad and writ e permis sion t o SS D parameters as well.
Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t SSD R u les Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 290 19 * The Read mode of a ses sion can be temporarily changed in the SS D Prop er t ie s pa ge i f th e ne w read mo de do es not violat e the r ead permission.
Security: Secure Sensitive Data Ma nagement SSD R u les 291 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 NOTE When doing a file transf er initiated by an XM L or SNMP c ommand, the underlying pr otocol used is TF TP . Theref ore, the SSD rule f or insecure channel will apply .
Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t SSD Proper tie s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 292 19 The default rules can be mo dified, but they cannot be deleted. If the SS D default rules have been changed, they can be rest or ed.
Security: Secure Sensitive Data Ma nagement SSD Proper tie s 293 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 Pas sphrase A pass phrase is the basis of the securit y mechanism in the S SD featur e, and is used to generat e the ke y f or the encr yption and de cr yption of sensitive data.
Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t SSD Proper tie s Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 294 19 automatically changed t o the passphrase in the star tup configuration file, when the star tup configuration be comes the runnin g configuration of the device.
Security: Secure Sensitive Data Ma nagement Configur a tion Files 295 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 A device determines whether th e int egrit y of a conf igurati on file is pr ot ect ed by examining the F il e Int egrit y Control command in the file's SS D Control block .
Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t Configur a tion Files Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 296 19 • A te xt-based c onfiguration that does not include an SS D indicator is considered not t o contain sensitive data.
Security: Secure Sensitive Data Ma nagement Configur a tion Files 297 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 • If there is a passphras e in the SS D co ntrol block of.
Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t Configur a tion Files Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 298 19 • Wh en copi ed fr om a so ur ce fi le , t he cop y will fail if the passphrase in the source file is in plaint e xt .
Security: Secure Sensitive Data Ma nagement Configur a tion Files 299 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 • A user with Ex clude permis sion cannot acces s mirror and backup configuration file s with their file SS D indicat or showing either encr ypted or plainte x t sensitive data.
Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t SSD Management Channels Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 300 19 If the device creating the configuration fi le is in Unrestrict ed pas sphrase control mode, the devic e includes the pas sphrase in the file.
Security: Secure Sensitive Data Ma nagement Menu CLI and Passw ord R ecover y 301 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 Menu CLI and Pas sword Rec over y The Menu CLI int er face is only allowed to users if their r ead permissions are Both or Plaint e xt Only .
Secu r ity: Sec u r e Se ns i t iv e D a ta M ana gem e n t Configuring SSD Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 302 19 • Configuration File Passphras e Control —Select an option as des cribed in Configuration File Passphras e Control .
Security: Secure Sensitive Data Ma nagement Configuring SSD 303 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 19 - Sec u r e— Indicat es that this rule applies only to secure channels (cons ole, SCP , SS H and HT TPS) , not including the SNM P a n d X M L channels.
20 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 304 Qualit y of S er vic e The Quality of Ser vice f eature is applied throughout the network to ensur e that network traf fic is prioritized according t o requir ed criteria and the desi r ed traffi c r eceive s pr ef erential tr eatment .
Quality of Service QoS Fea tures and Components 305 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 Q oS Fe a tures and C omp onents The QoS f eatur e is used to optimize network per f ormance.
Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 306 20 Qo S W or kf l o w T o configur e general QoS parameters, per f orm the following: STEP 1 Enable QoS by using the QoS Proper ties page t o select the trust mod e.
Quality of Service Configuring QoS - General 307 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 STEP 3 Select a trust mo de (CoS/802. 1 p or D S CP) and click Apply . STEP 4 If you selected DS CP , procee d t o STEP 6 ; if you selected CoS, procee d t o the next step.
Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 308 20 Inter face Q oS S et tings The Int er face Set tings page enables configurin.
Quality of Service Configuring QoS - General 309 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 • Weighted Round Robin ( WRR) —In WRR mo de the number of pack ets sent from the que ue is pr opor tional to the we ight of the queue (the higher the weight the more frames are sent).
Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 310 20 STEP 3 Click Apply . The queues are configured, and the Running Configuration file is updated. Mapping C oS/802. 1 p to a Queue The CoS/802.
Quality of Service Configuring QoS - General 311 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 D efa ult Ma ppin g for 8 Queu es By changing the CoS/802.
Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 312 20 • Output Queue —Sele ct the egress queue to which the 802.
Quality of Service Configuring QoS - General 313 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 DSCP 59 51 43 35 27 19 11 3 Queue 3343 3 2 1 1 DSCP 58 50 42 34 26 18 10 2 Qu e .
Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 314 20 Queue 6 6 7 5 4321 DSCP 56 48 40 32 24 16 8 0 Queue 6 6 6 7 6611 T able 6 DS.
Quality of Service Configuring QoS - General 315 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 To m a p D S C P t o q u e u e s : STEP 1 Click Qualit y of Ser vice > General > DSCP to Queue . The DS CP to Queue page contains Ingr es s DS CP .
Qualit y of S er vice Configuring QoS - General Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 316 20 • Ingres s Rate Limit —S elect to enable the ingr es s rat e limit , which is defined in the field below . • Ingres s Rate Limit —Enter the maximum amount of bandwidth allowed on the interface.
Quality of Service Manag ing QoS Sta tisti cs 317 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 To d e f i n e e g r e s s s h a p i n g p e r q u e u e : STEP 1 Click Qualit y of Ser vice > General > Egres s Sha ping p er Queue .
Qualit y of S er vice Managing Q oS Sta tis tics Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 318 20 T o view Queues Statistics: STEP 1 Click Qualit y of Se r vic e > QoS S ta ti st i cs > Queues St atistics .
Quality of Service Manag ing QoS Sta tisti cs 319 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 20 • Dr op Pr eced e nce —L owe st drop pr e cedence has the lowe st pr obabilit y of being dropped. • To t a l P a c k e t s —Numb er of packets f or warded or tail dropped.
21 Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 320 SNMP Thi s sect io n desc ri bes t he Si mp le Netw or k Management Prot ocol (S NMP) f eatur e that pr ovides a method f or managing network device s.
SNMP SNMP V ersions and W ork flow 321 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 SNMP v1 and v2 T o control acce ss to the syst em, a list of communit y entries is define d. Each communit y entr y c onsists of a comm unit y strin g and its acce ss privilege.
SNMP SNMP V ersions and Workflow Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 322 21 If you decide to use S NMP v 1 or v 2: STEP 1 Navigat e to the SNMP -> C ommunities page and click Add . The community can be as sociated with acc es s rights and a view in B asic mode or with a group in Advanced mode.
SNMP Model OIDs 323 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 STEP 7 Define a notification r ecipient(s ) by us ing the Notification Recipients S NMP v3 page. Supp or te d MIBs F or a list of suppor ted MIBs, visit the f ollowing URL and navigat e t o the download ar ea list ed as Cisco MIB S : ww w .
SNMP SNMP Engine ID Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 324 21 The privat e Object IDs are placed under : enterprises ( 1 ).cis co ( 9).otherEnterprises (6). cisco sb( 1 ) .switch001 ( 101 ). SNMP Engine ID The Engine ID is used by S NMPv3 entiti es to uniquely identify them.
SNMP Configuring SNMP V iews 325 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 All remot e engine IDs and their IP addres ses are displa yed in the Remot e Engine ID table. STEP 3 Click Apply . The Running C onfiguration file is updated.
SNMP Configuring SNMP V iews Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 326 21 Each subtr ee is either included or ex cluded in the view being defined. The V iews page enables creating and ed iting S NMP views . The default views (Default , DefaultSuper) cannot b e changed.
SNMP Crea ting SNMP Groups 327 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 • Obje ct ID Subtree View Typ e —Displays whethe r the defined subtree is included or ex cluded in the selected S NMP view . Creating SNMP Gr oup s In SNMP v 1 and S NMP v2, a c ommunity string is s ent along with the SNMP frames .
SNMP Crea ting SNMP Groups Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 328 21 • Secu ri ty Mod el —Select the S NMP version attached to the group, SNMP v 1 , v2, or v3. Thr ee t ypes of views with various secu rit y levels can be defined.
SNMP Managing SNMP Users 329 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 Managing SNMP Us ers An SNMP us er is defined by the login credentials (username, pas swor ds, and authentication method) and by the c onte x t and sc ope in which it op erates by ass ociation with a group and an Engine ID .
SNMP Managing SNMP Us ers Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 330 21 inf o rmation. Enter the r emote engine ID . • Group Name —Select the SNMP group to which the SNMP user belongs . SNMP groups are defined in the Add Group page.
SNMP Defining SNMP Communit ies 331 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 D efining SNMP C ommunitie s Ac c ess r i g h t s in SN M Pv 1 a n d SN M Pv2 a r e managed by defining communities in the Communities page.
SNMP Defining SNMP Communities Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 332 21 - Link L o cal — The IP v6 addres s uniquely identifies hosts on a single network link . A link local address has a prefix of FE80 , is not r outable, and can be use d f or c ommunication only on the local net work .
SNMP De f i n in g T r a p Se ttin gs 333 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 D efining T rap S et tings The T rap S ettings page enables c onfigur ing whether SNMP notifications ar e sent from the device, and f or which cas es .
SNMP Notifi ca tion R ecipients Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 334 21 It is also p os sible to filt er cer tain notifica ti on s . Th is ca n b e do ne by creating a filt er in the Notification Filt er page and attaching it to an SNMP notification recipient .
SNMP Notifica tion Recipients 335 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 • Ret rie s —Enter the number of time s that the device resends an inf orm re qu e st . • Communit y String —Sele ct from the pull-down the communit y string of the trap manager .
SNMP Notifi ca tion R ecipients Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 336 21 - Link L o cal — The IP v6 addres s uniquely identifies hosts on a single network link . A link local address has a prefix of FE80 , is not r outable, and can be use d f or c ommunication only on the local net work .
SNMP SNMP Notifi ca tion Filt ers 337 Cisco Small Busines s 200 Series Smar t Switch Administration Guide 21 • Notification Filter —Sele ct to enable filt ering the typ e of SNMP notifications sent to the management station. The fi lters ar e cr eat ed in the Notification Fil ter pa g e.
SNMP SNMP Notification F ilters Cisco Small Busines s 200 Series Smar t Switch Ad ministration Guide 338 21 - If O bject ID is use d, the enter ed obje ct identifier is included in the view if the Include in filter option is sele cted. STEP 4 Select or de sele ct Include in filter .
デバイスCisco Systems 200の購入後に(又は購入する前であっても)重要なポイントは、説明書をよく読むことです。その単純な理由はいくつかあります:
Cisco Systems 200をまだ購入していないなら、この製品の基本情報を理解する良い機会です。まずは上にある説明書の最初のページをご覧ください。そこにはCisco Systems 200の技術情報の概要が記載されているはずです。デバイスがあなたのニーズを満たすかどうかは、ここで確認しましょう。Cisco Systems 200の取扱説明書の次のページをよく読むことにより、製品の全機能やその取り扱いに関する情報を知ることができます。Cisco Systems 200で得られた情報は、きっとあなたの購入の決断を手助けしてくれることでしょう。
Cisco Systems 200を既にお持ちだが、まだ読んでいない場合は、上記の理由によりそれを行うべきです。そうすることにより機能を適切に使用しているか、又はCisco Systems 200の不適切な取り扱いによりその寿命を短くする危険を犯していないかどうかを知ることができます。
ですが、ユーザガイドが果たす重要な役割の一つは、Cisco Systems 200に関する問題の解決を支援することです。そこにはほとんどの場合、トラブルシューティング、すなわちCisco Systems 200デバイスで最もよく起こりうる故障・不良とそれらの対処法についてのアドバイスを見つけることができるはずです。たとえ問題を解決できなかった場合でも、説明書にはカスタマー・サービスセンター又は最寄りのサービスセンターへの問い合わせ先等、次の対処法についての指示があるはずです。
