AV Line of Fully Managed Switches M4250 Series
Contents
1 Get Started with the Main UI
2 Configure Switch System Information
3 Configure Switching Information
4 Manage Routing
5 Configure Multicast Routing
6 Configure Quality of Service
7 Manage Switch Security
8 Monitor the Switch and Network
9 Maintenance and Troubleshooting
A Configuration Examples
B Software Default Settings and Hardware Specifications

NETGEAR GSM4248PX-100EUS User Manual

Displayed below is the user manual for GSM4248PX-100EUS by NETGEAR which is a product in the Network Switches category. This manual has pages.

Related Manuals

NETGEAR NETGEAR Manual

NETGEAR AGM731F Manual

NETGEAR ProSafe GS724TR Manual

NETGEAR GS608-300PES Manual

NETGEAR N600 Manual

NETGEAR GSM7248 Manual

NETGEAR WN2500RP Manual

NETGEAR, Inc.

350 East Plumeria Drive

San Jose, CA 95134, USA

March 2021

202-12091-02

Main User Manual

AV Line of Fully Managed Switches

M4250 Series

Firmware version 13.0.0 and later versions

AV Line of Fully Managed Switches M4250 Series

User Manual2

Support and Community

Visit netgear.com/support to get your questions answered and access the latest downloads.

You can also check out our NETGEAR Community for helpful advice at community.netgear.com.

Regulatory and Legal

Si ce produit est vendu au Canada, vous pouvez accéder à ce document en français canadien à

https://www.netgear.com/support/download/.

(If this product is sold in Canada, you can access this document in Canadian French at

https://www.netgear.com/support/download/.)

For regulatory compliance information including the EU Declaration of Conformity, visit

https://www.netgear.com/about/regulatory/.

See the regulatory compliance document before connecting the power supply.

For NETGEAR's Privacy Policy, visit https://www.netgear.com/about/privacy-policy.

By using this device, you are agreeing to NETGEAR's Terms and Conditions at

https://www.netgear.com/about/terms-and-conditions. If you do not agree, return the device to your place of

purchase within your return period.

Do not use this device outdoors. For products that support Power over Ethernet (PoE), the PoE source is intended

for intra building connection only.

Trademarks

trademarks are used for reference purposes only.

Revision History

Publication

Part Number

Publish Date Comments

202-12091-02 March 2021 This second publication is a major revision:

• We added information about the 24-port PoE+ and PoE++ models and the

40-port PoE+ and PoE++ models (see Supported switches).

• We added information about the Auto-Trunk feature (see Auto-Trunk

overview and Enable or disable Auto-Trunks).

• We added information about the Auto-LAG feature (see Auto-LAG

overview, Enable or disable Auto-LAGs, and Configure the hash mode for

Auto-LAGs).

• We revised a very large part of the manual and added multiple new sections

to provide more complete and correct information.

• We replaced the old appendix with defaults setting with a new one that also

includes hardware specifications (see Appendix B, Software Default

Settings and Hardware Specifications).

• We made multiple corrections throughout the entire manual.

202-12091-01 October 2020 First publication.

Contents

Chapter 1 Get Started with the Main UI

Supported switches. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .18

Available publications and online help. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19

Main local browser UI overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20

Main UI buttons and user-defined fields . . . . . . . . . . . . . . . . . . . . . . . . . .22

Interface naming conventions. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .23

Save your settings to the running configuration . . . . . . . . . . . . . . . . . . .23

Main UI online help . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .23

Use the Device View in the Main UI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24

Set up SNMP access. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

Chapter 2 Configure Switch System Information

Switch system information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .29

View and configure switch system information . . . . . . . . . . . . . . . . . . . .29

View the fan status. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .31

View the temperature sensor information. . . . . . . . . . . . . . . . . . . . . . . . .32

View the device status and firmware version . . . . . . . . . . . . . . . . . . . . . .33

View the system CPU status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .34

Configure the CPU thresholds. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .34

View or clear switch statistics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .35

View USB device information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .37

Loopback interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38

IPv4 management interfaces and VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39

Configure the IPv4 service port. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .40

Configure an IPv4 management VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . .41

Configure an IPv4 management interface. . . . . . . . . . . . . . . . . . . . . . . . .43

IPv6 management interfaces and VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45

Configure an IPv6 service port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .45

Manage IPv6 addresses for the IPv6 service port . . . . . . . . . . . . . . . . . .46

Configure an IPv6 management VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . .47

Manage IPv6 addresses for the IPv6 management VLAN . . . . . . . . . . .50

Manage the IPv6 default route addresses for the IPv6

management VLAN. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .51

Configure an IPv6 management interface. . . . . . . . . . . . . . . . . . . . . . . . .52

Manage IPv6 addresses for the IPv6 management interface. . . . . . . . .54

AV Line of Fully Managed Switches M4250 Series

User Manual4

Manage the IPv6 default route addresses for the IPv6

management interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .55

Time and SNTP settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56

Configure the time setting manually . . . . . . . . . . . . . . . . . . . . . . . . . . . . .56

Configure the time settings with SNTP and configure the

global SNTP settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .57

View the SNTP global status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .59

Configure SNTP servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .60

Configure daylight saving time settings . . . . . . . . . . . . . . . . . . . . . . . . . .64

View the daylight saving time status . . . . . . . . . . . . . . . . . . . . . . . . . . . . .66

Precision Time Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 67

Manage the global PTP settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .68

Manage the PTP interface settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .68

Domain Name System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .70

Configure the global DNS settings and add a DNS server. . . . . . . . . . .70

Remove a DNS server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .72

Configure and view host name-to-IP address information. . . . . . . . . . .72

Switch database management template . . . . . . . . . . . . . . . . . . . . . . . . . . . . 75

Green Ethernet settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 76

Configure green Ethernet interface settings. . . . . . . . . . . . . . . . . . . . . . .77

Configure and display detailed green Ethernet settings

for an interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .78

Display green Ethernet information for the link partner

of an interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .80

Display the green Ethernet statistics summary. . . . . . . . . . . . . . . . . . . . .81

Configure and display the green Ethernet EEE LPI history

for an interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .83

Bonjour settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 84

Enable or disable Bonjour . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .84

Display Bonjour information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .85

IPv4 DHCP server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 86

Configure a DHCP server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .86

Manage DHCP pools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .87

Configure DHCP pool options . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .91

Display DHCP server statistics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .92

Display the DHCP bindings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .93

Delete one or all dynamic DHCP bindings . . . . . . . . . . . . . . . . . . . . . . . .94

View bindings with DHCP conflicts. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .95

Delete one or all DHCP bindings with conflicts . . . . . . . . . . . . . . . . . . . .96

DHCP relay and relay statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 96

DHCP Layer 2 relay. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 98

Configure the global DHCP L2 relay settings . . . . . . . . . . . . . . . . . . . . . .98

Configure a DHCP L2 relay interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . .99

Display DHCP L2 relay interface statistics . . . . . . . . . . . . . . . . . . . . . . . 100

UDP relay . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .101

Configure the global UDP relay settings and add a UDP

switch configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 101

Change a UDP switch configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . 102

AV Line of Fully Managed Switches M4250 Series

User Manual5

Remove a UDP switch configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . 103

Add a UDP interface configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 104

Change a UDP interface configuration . . . . . . . . . . . . . . . . . . . . . . . . . 105

Remove a UDP switch configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . 106

DHCPv6 server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .106

Enable the DHCPv6 server. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 106

Manage DHCPv6 pools . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 107

Manage DHCPv6 prefix delegation for pools. . . . . . . . . . . . . . . . . . . . 109

Configure the DHCPv6 settings for an interface . . . . . . . . . . . . . . . . . 112

Display the DHCPv6 bindings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 113

Display DHCPv6 server statistics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 114

Delete DHCPv6 statistics for one or all interfaces . . . . . . . . . . . . . . . . 116

DHCPv6 relay interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .117

Power over Ethernet . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .118

PoE concepts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 118

Configure the global PoE settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 120

Configure the PoE ports settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 121

Power-cycle one or more PoE ports . . . . . . . . . . . . . . . . . . . . . . . . . . . . 125

Timer schedules. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 126

Create a timer schedule . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 126

Specify the settings for an absolute timer schedule . . . . . . . . . . . . . . 127

Specify the settings for a recurring timer schedule . . . . . . . . . . . . . . . 128

Change the settings for a recurring timer schedule entry . . . . . . . . . 130

Delete a timer schedule entry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 130

Delete a timer schedule . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 131

Simple Network Management Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . .132

Manage SNMPv1 and SNMPv2 communities . . . . . . . . . . . . . . . . . . . . 132

Manage the SNMPv1 and SNMPv2 trap settings . . . . . . . . . . . . . . . . . 134

Configure SNMPv1 and SNMPv2 trap flags . . . . . . . . . . . . . . . . . . . . . 137

Display the supported MIBs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 138

Manage SNMPv3 users. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 139

Link Layer Discovery Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .141

Configure the global LLDP settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 142

Configure LLDP interface settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 143

Display or clear LLDP statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 144

Display LLDP local device information. . . . . . . . . . . . . . . . . . . . . . . . . . 146

Display LLDP remote device information . . . . . . . . . . . . . . . . . . . . . . . 147

Display the LLDP remote device inventory . . . . . . . . . . . . . . . . . . . . . . 148

Link Layer Discovery Protocol for Media Endpoint Devices . . . . . . . . . . .149

Configure the global LLDP-MED settings . . . . . . . . . . . . . . . . . . . . . . . 149

Configure LLDP-MED interface settings . . . . . . . . . . . . . . . . . . . . . . . . 150

Display LLDP-MED local device information. . . . . . . . . . . . . . . . . . . . . 152

Display the LLDP-MED remote device information . . . . . . . . . . . . . . . 154

Display the LLDP-MED remote device inventory . . . . . . . . . . . . . . . . . 156

Link dependency . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .157

Configure a link dependency group . . . . . . . . . . . . . . . . . . . . . . . . . . . 157

Configure or display upstream and downstream interfaces

for a link dependency group. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 158

AV Line of Fully Managed Switches M4250 Series

User Manual6

Clear all interfaces in a link dependency group. . . . . . . . . . . . . . . . . . 160

Industry Standard Discovery Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . .161

Configure the global ISDP settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 161

Configure ISDP settings for an interface . . . . . . . . . . . . . . . . . . . . . . . . 162

Display or clear ISDP neighbor information . . . . . . . . . . . . . . . . . . . . . 163

Display or clear ISDP statistics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 164

Chapter 3 Configure Switching Information

VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 167

Manage the VLAN configuration on the switch . . . . . . . . . . . . . . . . . . 167

Auto-Trunk overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 171

Enable or disable Auto-Trunks. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 172

Configure the switch port mode settings for interfaces . . . . . . . . . . . 173

Configure membership interfaces for a VLAN . . . . . . . . . . . . . . . . . . . 175

View the VLAN status on the switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . 177

Change the port VLAN ID settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 177

Configure a MAC-based VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 179

Configure a protocol-based VLAN group . . . . . . . . . . . . . . . . . . . . . . . 181

Configure membership interfaces for a protocol-based

VLAN group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 184

Configure an IP subnet-based VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . 186

Configure a double VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 187

Configure a voice VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 189

Configure Generic Attribute Registration Protocol . . . . . . . . . . . . . . . 190

Auto-VoIP . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .193

Configure Auto-VoIP protocol-based settings . . . . . . . . . . . . . . . . . . . 193

Configure the Auto-VoIP OUI-based properties . . . . . . . . . . . . . . . . . 194

Configure the OUI-based interface settings . . . . . . . . . . . . . . . . . . . . . 195

Manage the OUI table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 196

Display the Auto-VoIP status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 198

Spanning Tree Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .199

Configure the STP settings and display the STP status . . . . . . . . . . . . 200

Configure the CST settings and display the CST status . . . . . . . . . . . 202

Configure the CST interface settings . . . . . . . . . . . . . . . . . . . . . . . . . . . 204

Display the CST interface Status . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 207

Manage MST instances. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 209

Configure and display the interface settings for an MST instance . . 212

Display the STP interface statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 214

Configure the PVST/RPVST VLAN settings . . . . . . . . . . . . . . . . . . . . . . 215

Change a PVST/RPVST VLAN configuration . . . . . . . . . . . . . . . . . . . . . 217

Remove a PVST/RPVST VLAN configuration . . . . . . . . . . . . . . . . . . . . . 217

Configure the PVST and RPVST interface settings . . . . . . . . . . . . . . . . 218

Display the PVST and RPVST statistics . . . . . . . . . . . . . . . . . . . . . . . . . . 219

Multicast forwarding database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .220

Display the entries in the multicast forwarding database. . . . . . . . . . 220

Remove the IGMP snooping entries from the multicast

forwarding database. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 221

AV Line of Fully Managed Switches M4250 Series

User Manual7

Remove all known multicast MAC entries from the

multicast forwarding database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 222

Display the multicast forwarding database statistics . . . . . . . . . . . . . . 223

Internet Group Management Protocol snooping. . . . . . . . . . . . . . . . . . . 224

Configure IGMP snooping automatically with IGMP Plus mode . . . . 224

Configure IGMP snooping manually . . . . . . . . . . . . . . . . . . . . . . . . . . . 226

Configure the IGMP snooping settings for interfaces . . . . . . . . . . . . . 227

Configure IGMP snooping for VLANs automatically with

IGMP Plus mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 229

Configure IGMP snooping for VLANs manually . . . . . . . . . . . . . . . . . . 230

Configure an IGMP multicast router interface . . . . . . . . . . . . . . . . . . . 232

Configure an IGMP multicast router VLAN . . . . . . . . . . . . . . . . . . . . . . 233

IGMP snooping querier overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 234

Configure the IGMP snooping querier global settings . . . . . . . . . . . . 234

Configure an IGMP snooping querier for a VLAN . . . . . . . . . . . . . . . . 235

Remove the IGMP snooping querier settings for a VLAN. . . . . . . . . . 237

Display the status of the IGMP snooping querier. . . . . . . . . . . . . . . . . 237

Multicast Listener Discovery snooping . . . . . . . . . . . . . . . . . . . . . . . . . . . . .238

Configure MLD snooping automatically with MLD Plus mode . . . . . 239

Configure MLD snooping manually . . . . . . . . . . . . . . . . . . . . . . . . . . . . 240

Configure the MLD snooping settings for interfaces. . . . . . . . . . . . . . 241

Configure MLD snooping for VLANs automatically with

MLD Plus mode . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 243

Configure MLD snooping for VLANs manually. . . . . . . . . . . . . . . . . . . 244

Remove the MLD snooping querier settings for a VLAN . . . . . . . . . . 245

Configure an MLD multicast router interface . . . . . . . . . . . . . . . . . . . . 246

Configure an MLD multicast router VLAN . . . . . . . . . . . . . . . . . . . . . . . 247

Configure the MLD snooping querier global settings . . . . . . . . . . . . 248

Configure an MLD snooping querier for a VLAN. . . . . . . . . . . . . . . . . 249

Remove the MLD snooping querier settings for a VLAN . . . . . . . . . . 250

Multicast VLAN registration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .251

Configure the global MVR settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 251

Configure an MVR group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 253

Remove an MVR group. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 254

Configure an MVR interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 254

Configure the interface members of an MVR group . . . . . . . . . . . . . . 255

Display the MVR statistics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 256

MAC address table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .257

View, search, or clear the MAC address table. . . . . . . . . . . . . . . . . . . . 257

Set the dynamic address aging interval. . . . . . . . . . . . . . . . . . . . . . . . . 259

Add a static MAC address to the MAC address table . . . . . . . . . . . . . 259

Remove a static MAC address from the MAC address table . . . . . . . 260

Port settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .261

Configure and display the port settings . . . . . . . . . . . . . . . . . . . . . . . . 261

Add port, LAG, and VLAN descriptions . . . . . . . . . . . . . . . . . . . . . . . . . 264

Display transceiver module information . . . . . . . . . . . . . . . . . . . . . . . . 265

Configure the port link flap settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . 266

Link aggregation groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .267

AV Line of Fully Managed Switches M4250 Series

User Manual8

Auto-LAG overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 268

Enable or disable Auto-LAGs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 269

Configure the hash mode for Auto-LAGs . . . . . . . . . . . . . . . . . . . . . . . 269

Configure the LAG settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 270

Configure a single LAG and its membership . . . . . . . . . . . . . . . . . . . . 272

802.1AS timing and synchronization. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .274

Configure and view the global 802.1AS settings. . . . . . . . . . . . . . . . . 274

Configure the 802.1AS interface settings . . . . . . . . . . . . . . . . . . . . . . . 276

View the 802.1AS statistics. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 278

Multiple Registration Protocol settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . .280

Configure the global MRP settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 281

Configure 802.1Qav mapping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 282

Configure the MRP interface settings. . . . . . . . . . . . . . . . . . . . . . . . . . . 283

View or clear MMRP statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 285

View or clear MVRP statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 286

View or clear MSRP statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 288

View the MSRP reservation settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . 289

Configure and view the Qav settings for interfaces. . . . . . . . . . . . . . . 291

View MSRP streams information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 292

Loop protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .294

About loop protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 294

Configure the global loop protection settings . . . . . . . . . . . . . . . . . . . 295

Configure the loop protection settings for interfaces and

display the loop protection state . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 296

Chapter 4 Manage Routing

Routing concepts. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 300

Routing table, routes and route preferences . . . . . . . . . . . . . . . . . . . . . . . .300

Configure a route and display learned routes . . . . . . . . . . . . . . . . . . . 300

Delete a route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 302

Specify route preferences . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 303

IPv4 routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .304

Manage the global IPv4 routing settings. . . . . . . . . . . . . . . . . . . . . . . . 304

Display the IPv4 statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 305

Configure IPv4 routing interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 308

Delete the routing IP address from an IPv4 routing interface . . . . . . 311

Configure a secondary IP address for an IPv4 routing interface . . . . 312

Delete the secondary IP address from an IPv4 routing interface . . . 313

IPv6 routing. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 314

Manage the global IPv6 routing settings. . . . . . . . . . . . . . . . . . . . . . . . 314

Display the IPv6 route table. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 315

Configure IPv6 routing interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 316

Configure prefix settings for an IPv6 routing interface . . . . . . . . . . . . 319

Delete a prefix setting from an IPv6 routing interface. . . . . . . . . . . . . 320

Display the IPv6 and ICMPv6 statistics for an IPv6 routing interface. 321

Display the IPv6 neighbor table or clear IPv6 neighbor entries . . . . 325

Configure IPv6 static routes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 327

AV Line of Fully Managed Switches M4250 Series

User Manual9

Delete an IPv6 static route . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 328

Configure the IPv6 route preference for the switch. . . . . . . . . . . . . . . 328

Configure IPv6 tunnels . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 329

Delete an IPv6 tunnel . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 331

Routing VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .331

Create a routing VLAN with the VLAN static routing wizard. . . . . . . . 332

Configure routing for an existing VLAN. . . . . . . . . . . . . . . . . . . . . . . . . 333

Remove the routing function from a VLAN . . . . . . . . . . . . . . . . . . . . . . 334

Address Resolution Protocol. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .335

Display the ARP entries in the ARP cache . . . . . . . . . . . . . . . . . . . . . . . 335

Add or change a static entry in the ARP table . . . . . . . . . . . . . . . . . . . 336

Delete a static ARP entry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 338

Configure the ARP table settings or remove entries from the table . 338

Routing Information Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .340

Enable or disable RIP on the switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . 341

Configure the global RIP settings for the switch . . . . . . . . . . . . . . . . . 341

Configure RIP interface settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 343

Configure the RIP route redistribution settings and display

the route redistribution summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 345

Router discovery and router advertisements . . . . . . . . . . . . . . . . . . . . . . . .347

Chapter 5 Configure Multicast Routing

IPv4 multicast routing and the IPv4 multicast route table . . . . . . . . . . . . 350

Display the IPv4 multicast route table . . . . . . . . . . . . . . . . . . . . . . . . . . 350

Add static multicast entries to the IPv4 Mroute table . . . . . . . . . . . . . 351

Delete a static multicast entry from the IPv4 Mroute table . . . . . . . . . 352

Configure global multicast settings for the switch. . . . . . . . . . . . . . . . 353

Configure a multicast interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 354

IGMP for IPv4 multicast routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .355

Configure the global IGMP settings for the switch . . . . . . . . . . . . . . . 355

Configure an IGMP routing interface . . . . . . . . . . . . . . . . . . . . . . . . . . . 356

Display the statistics for the IGMP routing interfaces . . . . . . . . . . . . . 357

Display the IGMP groups and search the IGMP group database . . . 359

Display the IGMP membership information and search the

IGMP membership database. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 360

Configure an IGMP proxy interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . 361

Display the statistics for the IGMP proxy interface. . . . . . . . . . . . . . . . 363

Display the IGMP proxy membership and search the

IGMP proxy membership database . . . . . . . . . . . . . . . . . . . . . . . . . . . . 364

PIM for IPv4 multicast routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .365

Configure the global PIM IPv4 settings on the switch . . . . . . . . . . . . . 365

Add IPv4 PIM-SSM groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 366

Delete an IPv4 PIM-SSM group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 367

Configure an IPv4 PIM interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 368

Display IPv4 PIM neighbors and search the PIM neighbor database 369

Add an IPv4 PIM candidate rendezvous point configuration. . . . . . . 370

Delete an IPv4 PIM candidate rendezvous point configuration. . . . . 371

Configure an interface as an IPv4 PIM bootstrap router candidate . 372

AV Line of Fully Managed Switches M4250 Series

User Manual10

Delete an IPv4 PIM bootstrap router candidate configuration . . . . . 373

Configure a static IPv4 PIM rendezvous point for a group . . . . . . . . . 374

Delete a static IPv4 PIM rendezvous point configuration . . . . . . . . . . 375

Static multicast routes for IPv4 addresses . . . . . . . . . . . . . . . . . . . . . . . . . 376

Configure static multicast routes for IPv4 addresses. . . . . . . . . . . . . . 376

Delete a static multicast route for an IPv4 address . . . . . . . . . . . . . . . 377

Multicast admin boundaries for IPv4 addresses. . . . . . . . . . . . . . . . . . . . 378

Configure an interface as a multicast admin boundary . . . . . . . . . . . 378

Delete a multicast admin boundary configuration for an interface. . 379

IPv6 multicast routing and the IPv6 multicast route table . . . . . . . . . . . . .379

Display the IPv6 multicast route table . . . . . . . . . . . . . . . . . . . . . . . . . . 380

PIM for IPv6 multicast routing. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .381

Configure the global PIM IPv4 settings on the switch . . . . . . . . . . . . . 381

Add IPv6 PIM-SSM groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 382

Delete an IPv6 PIM-SSM group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 383

Configure an IPv6 PIM interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 383

Display IPv6 PIM neighbors and search the PIM neighbor database 385

Add an IPv6 PIM candidate rendezvous point configuration. . . . . . . 386

Delete an IPv6 PIM candidate rendezvous point configuration. . . . . 387

Configure an interface as an IPv6 PIM bootstrap router candidate . 387

Delete an IPv6 PIM bootstrap router candidate configuration . . . . . 389

Configure a static IPv6 PIM rendezvous point for a group . . . . . . . . . 389

Delete a static IPv6 PIM rendezvous point configuration . . . . . . . . . . 390

MLD for IPv6 multicast routing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .391

Configure the global MLP settings for the switch . . . . . . . . . . . . . . . . 391

Configure an MLD routing interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . 392

Display the statistics for the MLD routing interfaces . . . . . . . . . . . . . . 394

Display the MLD groups and search the MLD group database. . . . . 395

Display or clear MLD traffic statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . 396

Configure an MLD proxy interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 397

Display the statistics for the MLD proxy interface . . . . . . . . . . . . . . . . 398

Display the MLD proxy membership and search the

MLD proxy membership database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 399

Static multicast routes for IPv6 addresses. . . . . . . . . . . . . . . . . . . . . . . . . . .401

Configure static multicast routes for IPv6 addresses. . . . . . . . . . . . . . 401

Delete a static multicast route for an IPv6 address . . . . . . . . . . . . . . . 402

Chapter 6 Configure Quality of Service

Quality of Service concepts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 404

Class of Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .404

CoS configuration concepts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 404

Configure the CoS trust mode settings globally or for a

specific interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 405

Map 802.1p priorities to queues . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 406

Map DSCP values to queues . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 407

Configure the CoS interface settings for an interface . . . . . . . . . . . . . 408

Configure CoS queue settings for an interface . . . . . . . . . . . . . . . . . . 409

AV Line of Fully Managed Switches M4250 Series

User Manual11

Configure the CoS WRED precedence settings for

dropping packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 411

Differentiated Services . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .413

Defining DiffServ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 413

DiffServ wizard overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 414

Use the DiffServ wizard to create a traffic class and policy

for one or more interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 414

Configure the DiffServ mode and display the entries in the

DiffServ private MIB tables. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 416

Configure a DiffServ class . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 417

Configure an IPv6 DiffServ class . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 423

Configure a DiffServ policy . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 427

Configure the DiffServ service interface . . . . . . . . . . . . . . . . . . . . . . . . 435

Display DiffServ service statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 438

Chapter 7 Manage Switch Security

User accounts and passwords . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .441

Add or change a user account . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 441

Delete a user account . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 442

Configure user password requirements . . . . . . . . . . . . . . . . . . . . . . . . 443

Change the privileged EXEC CLI password . . . . . . . . . . . . . . . . . . . . . 444

Change the console, Telnet, or SSH password. . . . . . . . . . . . . . . . . . . 445

RADIUS servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .446

Configure the global RADIUS server settings. . . . . . . . . . . . . . . . . . . . 446

Configure a RADIUS authentication server on the switch. . . . . . . . . . 448

Configure a RADIUS accounting server. . . . . . . . . . . . . . . . . . . . . . . . . 452

TACACS+ servers . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .455

Configure the global TACACS+ settings . . . . . . . . . . . . . . . . . . . . . . . . 455

Add a TACACS+ server to the switch . . . . . . . . . . . . . . . . . . . . . . . . . . . 456

Modify the settings for a TACACS+ server on the switch . . . . . . . . . . 457

Remove a TACACS+ server from the switch . . . . . . . . . . . . . . . . . . . . . 458

Authentication lists . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .458

Configure a login authentication list . . . . . . . . . . . . . . . . . . . . . . . . . . . 458

Delete a login authentication list . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 460

Configure an enable authentication list. . . . . . . . . . . . . . . . . . . . . . . . . 461

Delete an enable authentication list. . . . . . . . . . . . . . . . . . . . . . . . . . . . 463

Configure the Dot1x authentication list. . . . . . . . . . . . . . . . . . . . . . . . . 463

Configure the HTTP authentication list . . . . . . . . . . . . . . . . . . . . . . . . . 464

Configure the HTTPS authentication List. . . . . . . . . . . . . . . . . . . . . . . . 465

Current login sessions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .467

HHTP and HTTPS management access. . . . . . . . . . . . . . . . . . . . . . . . . . . . .468

Configure HTTP access settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 468

Configure the HTTPS access settings. . . . . . . . . . . . . . . . . . . . . . . . . . . 469

Browser security message with HTTPS access . . . . . . . . . . . . . . . . . . . 470

Manage certificates for HTTPS access . . . . . . . . . . . . . . . . . . . . . . . . . . 471

SSH management access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .474

Configure the global SSH access settings. . . . . . . . . . . . . . . . . . . . . . . 475

Manage RSA and DSA keys for SSH access . . . . . . . . . . . . . . . . . . . . . 476

AV Line of Fully Managed Switches M4250 Series

User Manual12

Telnet management access. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .480

Select Telnet authentication lists. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 480

Configure Inbound Telnet settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 481

Configure outbound Telnet settings . . . . . . . . . . . . . . . . . . . . . . . . . . . 482

Console port management access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .483

Denial of service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .484

Management access profiles and rules. . . . . . . . . . . . . . . . . . . . . . . . . . . . .486

Add an access profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 486

Add a rule to the access profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 487

Activate the access profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 488

Display the access profile summary and the number of

filtered packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 489

Deactivate an access profile . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 490

Remove an access profile. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 491

Port authentication . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 492

Configure the global 802.1X settings . . . . . . . . . . . . . . . . . . . . . . . . . . 492

Manage port authentication on individual ports . . . . . . . . . . . . . . . . . 494

Display the port summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 499

Display the client summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 500

MAC filters for traffic control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .502

Create a MAC filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 502

Delete a MAC filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 503

Display the MAC filter summary . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 504

Port security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .505

Configure the global port security mode . . . . . . . . . . . . . . . . . . . . . . . 505

Configure a port security interface. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 506

Display learned MAC addresses and convert them to static

addresses . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 507

Add a static MAC address to the MAC address table for

port security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 508

Remove a static MAC address from the MAC address table

for port security . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 509

Private port groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .510

Add a private port group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 510

Remove a private port group . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 511

Configure the membership of a private port group . . . . . . . . . . . . . . 511

Protect ports. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .512

Private VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .513

Overview of the tasks for private VLAN configuration. . . . . . . . . . . . . 514

Assign a private VLAN type to a VLAN. . . . . . . . . . . . . . . . . . . . . . . . . . 515

Configure a private VLAN association with a primary and

secondary VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 516

Remove an existing private VLAN association . . . . . . . . . . . . . . . . . . . 517

Configure the private VLAN port mode. . . . . . . . . . . . . . . . . . . . . . . . . 518

Private VLAN host interface: Assign the interface to

primary and secondary VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 520

Private VLAN host interface: Remove the interface from

primary and secondary VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 521

AV Line of Fully Managed Switches M4250 Series

User Manual13

Private VLAN promiscuous interface: Assign the interface

to primary and secondary VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 522

Private VLAN promiscuous interface: Remove the interface

from primary and secondary VLANs. . . . . . . . . . . . . . . . . . . . . . . . . . . . 524

Private VLAN promiscuous trunk interface: Add primary

and secondary VLANs to the trunk . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 525

Private VLAN promiscuous trunk interface: Remove

primary and secondary VLANs from the trunk . . . . . . . . . . . . . . . . . . . 526

Private VLAN isolated trunk interface: Add primary and

secondary VLANs to the trunk. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 527

Private VLAN isolated trunk interface: Remove primary and

secondary VLANs from the trunk . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 528

Configure native and allowed VLANs on a private

VLAN trunk interface . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 529

Storm control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 531

Configure global storm control settings . . . . . . . . . . . . . . . . . . . . . . . . 531

Configure storm control settings for one or more ports. . . . . . . . . . . 532

DHCP snooping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .534

Enable DHCP snooping for the switch. . . . . . . . . . . . . . . . . . . . . . . . . . 534

Enable DHCP snooping for a VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . 535

Configure DHCP snooping interface settings. . . . . . . . . . . . . . . . . . . . 536

Add a static DHCP binding and display dynamic DHCP bindings . . 537

Remove a static DHCP binding . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 539

Configure DHCP snooping persistent settings. . . . . . . . . . . . . . . . . . . 539

Display or clear DHCP snooping statistics . . . . . . . . . . . . . . . . . . . . . . 540

DHCPv6 snooping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .541

Enable DHCPv6 snooping for the switch. . . . . . . . . . . . . . . . . . . . . . . . 542

Enable DHCPv6 snooping for a VLAN . . . . . . . . . . . . . . . . . . . . . . . . . . 542

Configure DHCPv6 snooping interface settings . . . . . . . . . . . . . . . . . 543

Add a static DHCPv6 binding and display dynamic

DHCPv6 bindings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 545

Remove a static DHCPv6 binding. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 546

Configure DHCPv6 snooping persistent settings . . . . . . . . . . . . . . . . 547

Display or clear DHCPv6 snooping statistics . . . . . . . . . . . . . . . . . . . . 548

IP source guard interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .549

Configure IP source guard on an interface . . . . . . . . . . . . . . . . . . . . . . 549

Add a static IP source guard binding and display dynamic

IP source guard bindings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 550

Remove a static IP source guard binding . . . . . . . . . . . . . . . . . . . . . . . 552

IPv6 source guard interfaces. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .552

Configure IPv6 source guard on an interface . . . . . . . . . . . . . . . . . . . . 553

Add a static IPv6 source guard binding and display

dynamic IPv6 source guard bindings. . . . . . . . . . . . . . . . . . . . . . . . . . . 554

Remove a static IPv6 source guard binding . . . . . . . . . . . . . . . . . . . . . 555

Dynamic ARP inspection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .556

Configure the global DAI settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 556

Configure DAI VLANs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 557

Configure DAI interfaces . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 558

Create a DAI access control list . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 559

AV Line of Fully Managed Switches M4250 Series

User Manual14

Configure a rule for an existing DAI ACL. . . . . . . . . . . . . . . . . . . . . . . . 560

Delete a rule from an existing DAI ACL . . . . . . . . . . . . . . . . . . . . . . . . . 561

Delete a DAI access control list. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 562

Display the DAI statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 562

Captive portals . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 564

Configure the global captive portal settings . . . . . . . . . . . . . . . . . . . . 564

Configure a captive portal . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 566

Delete a captive portal . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 569

Configure a captive portal binding . . . . . . . . . . . . . . . . . . . . . . . . . . . . 569

Display or delete captive portal bindings in the captive

portal binding table . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 570

Configure captive portal groups. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 571

Configure captive portal users . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 573

Configure the captive portal trap flag settings. . . . . . . . . . . . . . . . . . . 575

Display or clear captive portal client statistics . . . . . . . . . . . . . . . . . . . 576

Access control lists . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 578

Use the ACL Wizard to create a simple ACL . . . . . . . . . . . . . . . . . . . . . 578

Configure a MAC ACL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 583

Configure MAC ACL rules . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 586

Configure MAC bindings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 590

Display or delete MAC ACL bindings in the MAC binding table . . . 591

Configure a basic or extended IPv4 ACL. . . . . . . . . . . . . . . . . . . . . . . . 592

Configure rules for a basic IP ACL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 595

Configure rules for an extended IPv4 ACL . . . . . . . . . . . . . . . . . . . . . . 599

Configure an IPv6 ACL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 607

Configure rules for an IPv6 ACL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 609

Configure IP ACL interface bindings . . . . . . . . . . . . . . . . . . . . . . . . . . . 615

Display or delete IP ACL bindings in the IP ACL binding table . . . . . 617

Configure VLAN ACL bindings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 618

Chapter 8 Monitor the Switch and Network

Port and EAP packet statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 621

Display or clear port statistics . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 621

Display or clear detailed statistics for a port . . . . . . . . . . . . . . . . . . . . . 622

Display or clear EAP and EAPoL statistics . . . . . . . . . . . . . . . . . . . . . . . 629

Perform a cable test . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .630

Logs. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .632

Manage and display the memory log . . . . . . . . . . . . . . . . . . . . . . . . . . 632

Message log format . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 634

Enable or disable the command configuration log. . . . . . . . . . . . . . . 634

Enable or disable console logging. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 635

Syslog and log server host settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .636

Configure the syslog settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 636

Add a syslog server. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 638

Modify the settings for a syslog server. . . . . . . . . . . . . . . . . . . . . . . . . . 639

Delete the settings for a syslog server. . . . . . . . . . . . . . . . . . . . . . . . . . 640

Trap log. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .640

AV Line of Fully Managed Switches M4250 Series

User Manual15

Event log. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .641

Port mirroring. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .642

RSPAN VLANs and source and destination switches . . . . . . . . . . . . . . . . 645

Configure an existing VLAN as an RSPAN VLAN . . . . . . . . . . . . . . . . . 645

Configure the switch as an RSPAN source switch. . . . . . . . . . . . . . . . . 646

Configure the switch as an RSPAN destination switch. . . . . . . . . . . . . 648

sFlow monitoring . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .649

sFlow agent overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 649

Configure the source interface for the sFlow agent . . . . . . . . . . . . . . 650

Configure an sFlow receiver . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 651

Configure sFlow polling and sampling on an interface . . . . . . . . . . . 652

Display license information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 654

Display license key information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 654

Display features to which the license applies . . . . . . . . . . . . . . . . . . . . 655

Chapter 9 Maintenance and Troubleshooting

Save the configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 657

Automatic installation of the configuration file . . . . . . . . . . . . . . . . . . . . . .657

Configure the auto install process . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 657

Option 125 DHCP server requirements for obtaining an

configuration file through auto install . . . . . . . . . . . . . . . . . . . . . . . . . . 659

Reboot the switch from the main local

browser UI . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .660

Reset the switch to the factory default settings . . . . . . . . . . . . . . . . . . . . . .661

Export a file from the switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .662

Export a file from the switch to a server. . . . . . . . . . . . . . . . . . . . . . . . . 662

Use HTTP to export a file from the switch to a computer . . . . . . . . . . 664

Export a file from the switch to a USB storage device . . . . . . . . . . . . . 665

Upgrade software or download a file . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .666

Upgrade the software image or download a file from a

server to the switch . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 666

Use HTTP to download a file to the switch or update the

software image. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 669

Download a file from a USB storage device to the switch . . . . . . . . . 671

Use an HTTP session to download and install an SSL

security certificate file on the switch. . . . . . . . . . . . . . . . . . . . . . . . . . . . 672

Manage software images . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .674

Copy an software image. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 674

Configure dual image settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 674

Diagnostics and troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 677

Ping an IPv4 address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 677

Ping an IPv6 address . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 678

Send an IPv4 traceroute . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 680

Send an IPv6 traceroute . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 681

Capture Packets . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 683

Perform a full memory dump. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 684

AV Line of Fully Managed Switches M4250 Series

User Manual16

Appendix A Configuration Examples

Virtual Local Area Networks (VLANs) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 687

VLAN configuration examples. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 688

Access control lists (ACLs) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .689

MAC ACL sample configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 689

Basic IP ACL sample configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 690

Differentiated Services (DiffServ) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .691

Class . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 692

DiffServ traffic classes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 693

Create policies . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 693

DiffServ example configuration. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 694

802.1X access control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .696

802.1X example configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 697

Multiple Spanning Tree Protocol . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .698

MSTP example configuration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 700

VLAN routing interfaces. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .702

Appendix B Software Default Settings and Hardware Specifications

Access default settings for the switch device UI. . . . . . . . . . . . . . . . . . . . 705

System features default settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .706

Switching features default settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .711

Routing and multicast features default settings. . . . . . . . . . . . . . . . . . . . . .720

QoS features default settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .725

Security features default settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .727

Monitoring features default settings . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .735

Model-specific hardware technical specifications. . . . . . . . . . . . . . . . . . . .737

Model M4250-10G2F-PoE+ (SKU GSM4212P). . . . . . . . . . . . . . . . . . . 737

Model M4250-10G2XF-PoE+ (SKU GSM4212PX) . . . . . . . . . . . . . . . . 738

M4250-10G2XF-PoE++ (SKU GSM4212UX) . . . . . . . . . . . . . . . . . . . . . 738

M4250-26G4F-PoE+ (SKU GSM4230P) . . . . . . . . . . . . . . . . . . . . . . . . . 739

M4250-26G4XF-PoE+ (SKU GSM4230PX) . . . . . . . . . . . . . . . . . . . . . . 740

M4250-26G4F-PoE++ (SKU GSM4230UP) . . . . . . . . . . . . . . . . . . . . . . 740

M4250-40G8F-PoE+ (SKU GSM4248P) . . . . . . . . . . . . . . . . . . . . . . . . . 741

M4250-40G8XF-PoE+ (SKU GSM4248PX) . . . . . . . . . . . . . . . . . . . . . . 741

M4250-40G8XF-PoE++ (SKU GSM4248UX) . . . . . . . . . . . . . . . . . . . . . 742

M4250-12M2XF (SKU MSM4214X) . . . . . . . . . . . . . . . . . . . . . . . . . . . . 742

M4250-16XF (SKU XSM4216F) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 743

General hardware technical specifications. . . . . . . . . . . . . . . . . . . . . . . . . .743

1Get Started with the Main UI

This user manual is for the AV Line of Fully Managed Switches M4250 Series and covers all

M4250 switch models.

This chapter provides an overview of how you can using your switch and access the main local

browser user interface (UI).

The chapter contains the following sections:

•Supported switches

•Available publications and online help

•Register your product

•Main local browser UI overview

•Log in to the main UI with a web browser

•Use the Device View in the Main UI

•Set up SNMP access

Note: For more information about the topics covered in this manual, visit the

support website at netgear.com/support.

Note: Firmware updates with new features and bug fixes are made available

from time to time at netgear.com/support/download/. Some

products can regularly check the site and download new firmware, or

you can check for and download new firmware manually. If the

features or behavior of your product does not match what is

described in this guide, you might need to update your firmware.

AV Line of Fully Managed Switches M4250 Series

Get Started with the Main UI User Manual18

Supported switches

This release and this main user manual are for the following M4250 switch models:

•8-port PoE+ and PoE++ models:

-M4250-10G2F-PoE+ (SKU GSM4212P): Eight PoE+ (802.3at) 1GBASE-T RJ-45

ports, two 1GBASE-T RJ-45 ports, and two 1G SFP fiber uplink ports. The total PoE

budget for the switch is 125W.

-M4250-10G2XF-PoE+ (SKU GSM4212PX): Eight PoE+ (802.3at) 1GBASE-T RJ-45

ports, two 1GBASE-T RJ-45 ports, and two 10G SFP+ fiber uplink ports. The total

PoE budget for the switch is 240W.

-M4250-10G2XF-PoE++ (SKU GSM4212UX): Eight PoE++ (802.3bt) 1GBASE-T

RJ-45 ports, two 1GBASE-T RJ-45 ports, and two 10G SFP+ fiber uplink ports. The

total PoE budget for the switch is 720W.

•24-port PoE+ and PoE++ models:

-M4250-26G4F-PoE+ (SKU GSM4230P): 24 PoE+ (802.3at) 1GBASE-T RJ-45 ports,

two 1GBASE-T RJ-45 ports, and four 1G SFP fiber uplink ports. The total PoE budget

for the switch is 300W.

-M4250-26G4XF-PoE+ (SKU GSM4230PX): 24 PoE+ (802.3at) 1GBASE-T RJ-45

ports, two 1GBASE-T RJ-45 ports, and four 10G SFP+ fiber uplink ports. The total

PoE budget for the switch is 480W.

-M4250-26G4F-PoE++ (SKU GSM4230UP): 24 PoE++ (802.3bt) 1GBASE-T RJ-45

ports, two 1GBASE-T RJ-45 ports, and four 10G SFP+ fiber uplink ports. The total

PoE budget for the switch is 1440W with both internal power supply units connected

•40-port PoE+ and PoE++ models:

-M4250-40G8F-PoE+ (SKU GSM4248P): 40 PoE+ (802.3at) 1GBASE-T RJ-45 ports

and eight 1G SFP fiber uplink ports. The total PoE budget for the switch is 480W.

-M4250-40G8XF-PoE+ (SKU GSM4248PX): 40 PoE+ (802.3at) 1GBASE-T RJ-45

ports and eight 10G SFP+ fiber uplink ports. The total PoE budget for the switch is

960W.

-M4250-40G8XF-PoE++ (SKU GSM4248UX): 40 PoE++ (802.3bt) 1GBASE-T RJ-45

ports and eight 10G SFP+ fiber uplink ports. The total PoE budget for the switch is

2880W with all three internal power supply units connected.

•Special models:

-M4250-12M2XF (SKU MSM4214X): LED tiles model with 2.5 Gbps ports. Twelve

2.5GBASE-T RJ-45 ports and two 10G SFP+ fiber uplink ports.

-M4250-16XF (SKU XSM4216F): Aggregation model with multiple 10G SFP+ fiber

ports. Sixteen 1G/10G SFP+ fiber ports.

AV Line of Fully Managed Switches M4250 Series

Get Started with the Main UI User Manual19

Available publications and online help

You can download the following publications for the AV Line of Fully Managed Switches

M4250 Series by visiting netgear.com/support/download/.

•Installation Guide

•Hardware Installation Guide

•Main User Manual (this manual)

•Audio Video User Manual

•Software Administration Manual

•CLI Command Reference Manual

You can also access this document online when you are logged in to the switch by selecting

Help > Online Help > User Guide.

When you log into the main local browser UI, online help is available. See Main UI online

help on page 23.

To qualify for product updates and product warranty, we encourage you to register your

product. The first time that you log in to the switch, you can register with NETGEAR by

clicking the Register now button.

Registration confirms that your email alerts work, lowers technical support resolution time,

and ensures that your shipping address accuracy. We would also like to incorporate your

feedback into future product development. We never sell or rent your email address and you

can opt out of communications.

To register your switch with NETGEAR:

1. Visit the NETGEAR website for registration at

https://my.netgear.com/registration/login.aspx.

2. Click the Login button, and follow the directions onscreen to register the switch with your

NETGEAR email address and password.

If you did not yet create a NETGEAR account, click the Create account link, follow the

directions onscreen to create an account, and then register the switch with your

NETGEAR email address and password.

AV Line of Fully Managed Switches M4250 Series

Get Started with the Main UI User Manual20

Main local browser UI overview

Your switch contains an embedded web server and management software for managing and

monitoring switch functions. The switch functions as a simple switch without the management

software. However, you can use the management software to configure more advanced

features that can improve switch efficiency and overall network performance.

The switch software includes a set of comprehensive management functions for configuring

and monitoring the system by using one of the following methods:

•Main local browser user interface (main UI), either over an Ethernet network port or

over the out-of-band (OOB) port (also referred to as the service port)

•Audio-video local browser user interface (AV UI), either over an Ethernet network port

or over the OOB port

•Simple Network Management Protocol (SNMP)

•Command-line interface (CLI)

Each of the standards-based management methods allows you to configure and monitor the

components of the switch. The method you use to manage the system depends on your

network size and requirements, and on your preference.

This manual describes how to use the main local browser user interface (UI) to manage and

monitor the switch. We abbreviate the main local browser UI as the main UI.

The main UI is a web-based management tool that lets you monitor, configure, and control

your switch remotely using a standard web browser. From your web browser, you can

monitor the performance of your switch and optimize its configuration for your network. You

can configure all available switch features, such as VLANs, QoS, and ACLs, by using the

main UI.

If this is the first time that you log in to the switch and you must use the default IP address of

the switch, see the information in the installation guide.

You can use a web browser to access the switch and log in. You must be able to ping the IP

address of the management interface or out-of-band (OOB) port from your computer for web

access to be available.

AV Line of Fully Managed Switches M4250 Series

Get Started with the Main UI User Manual21

Note: The first time that you log in as an admin user to the main UI, no

password is required (that is, the password is blank). After you log in

for the first time, you are required to specify a local device password

that you must use each subsequent time that you log in. (You can

change the password again.)

To use the switch default IP address to access the switch over the main UI:

1. Prepare your computer with a static IP address:

•For access over an Ethernet network port, use a static IP address in the 169.254.0.0

subnet with subnet mask 255.255.0.0.

For example, use 169.254.100.201 for your computer.

•For access over the OOB port, use a static IP address in the 192.168.0.0 subnet with

subnet mask 255.255.0.0.

For example, use 192.168.0.201 for your computer.

2. Connect an Ethernet cable from an Ethernet port on your computer to either an Ethernet

network port on the switch or to the OOB port on the switch.

3. Launch a web browser such as Google Chrome, Mozilla Firefox, or Microsoft Edge.

4. Enter the default IP address of the switch in the web browser address field:

•For access over an Ethernet network port, enter 169.254.100.100.

•For access over the OOB port, enter 192.168.0.239.

The login page displays.

5. Click the Main UI Login button.

The main UI login page displays in a new tab.

6. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

If you did not assign a static IP address to the switch but let a DHCP server in your network

assign an IP address to switch, determine the IP address by accessing the DHCP server or

by using an IP scanner utility.

The procedures in this manual assume that you know the IP address of your switch.

AV Line of Fully Managed Switches M4250 Series

Get Started with the Main UI User Manual22

To use a known IP address to access the switch over the main UI:

1. Launch a web browser such as Google Chrome, Mozilla Firefox, or Microsoft Edge.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

Main UI buttons and user-defined fields

The following table shows the command buttons that are used on the pages in the main UI:

Table 1. Main UI command buttons

Button Function

Add Clicking the Add button adds the new item configured in the heading row of a table.

Apply Clicking the Apply button sends the updated configuration to the switch. Configuration

changes take effect immediately.

Cancel Clicking the Cancel button cancels the configuration on the page and resets the data on the

page to the previous values of the switch.

Delete Clicking the Delete button removes the selected item.

Refresh Clicking the Refresh button refreshes the page with the latest information from the device.

Save Clicking the Save button saves your settings.

Logout Clicking the Logout button ends the session.

User-defined fields can contain 1 to 159 characters, unless otherwise noted on the

configuration web page. All characters can be used except for the following (unless

specifically noted in for that feature):

Table 2. Invalid characters for user-defined fields

Invalid characters for user-defined fields

\ | / < > * ?

AV Line of Fully Managed Switches M4250 Series

Get Started with the Main UI User Manual23

Interface naming conventions

The switch supports physical and logical interfaces. Interfaces are identified by their type and

the interface number. The physical ports are Gigabit Ethernet or multispeed 10G Ethernet

interfaces and are numbered on the front panel. You configure the logical interfaces.

The following table describes the naming convention for all interfaces available on the switch.

Table 3. Naming conventions for interfaces

Interface Description Example

Physical interfaces Depending on the model, the physical ports

are 1G, 2.5G,or 10G Ethernet interfaces or

1G or 10G fiber interfaces. The interface

number consists of the switch number

(always 0) followed by a forward slash and

the port number, which is a sequential

number starting from 1.

0/1, 0/2, 0/3, and so on

Link aggregation group (LAG) LAG interfaces are logical interfaces that

are used only for bridging functions.

LAG 1, LAG 2, LAG 3, and so on

CPU management interface This is the internal switch interface

responsible for the switch base MAC

address. This interface is not configurable

and is always listed in the MAC Address

Table.

5/1

Routing VLAN interfaces This is an interface used for routing

functionality.

VLAN 1, VLAN 2, VLAN 3, and so

Save your settings to the running configuration

When you click the Apply button, your changes are saved for the web management session

but are not retained when you restart the switch. To save your changes to the running

configuration (that is, permanently), click the Save icon at the top right of a page.

You can also first make multiple changes without clicking the Save icon after each change

(although you must click the Apply button after each change) and then save the

configuration to the running configuration. For more information, see Save the configuration

on page 657).

Main UI online help

When you log in to the switch, each page contains a link to the online help that contains

information to assist in configuring and managing the switch. The online help pop-up

windows are context sensitive. For example, if the IP Addressing page is open, the help topic

for that page displays if you click the Help button.

You can connect to the online support site at netgear.com/support when you are logged in

to the switch.

AV Line of Fully Managed Switches M4250 Series

Get Started with the Main UI User Manual24

To access the online support link:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Help > Online Help > Support.

6. To connect to the NETGEAR support site for the M4250 Series switches, click the Apply

button.

Use the Device View in the Main UI

The Device View is an HTML applet that displays the ports on the switch. This graphic

provides an alternate way to navigate to configuration and monitoring options. The graphic

also provides information about device ports, current configuration and status, tables, and

feature components.

To use the Device View:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Device View.

The Device View front view of the switch displays.

As an example, the following figure shows the front view of model M4250-10G2F-PoE+.

AV Line of Fully Managed Switches M4250 Series

Get Started with the Main UI User Manual25

6. To display the back view, click the B button.

The B button changes into the F button. (Clicking the F button displays the front view

again.)

As an example, the following figure shows the back view of model M4250-10G2F-PoE+.

The port coloring indicates the port status:

• Black. The port is not connected to a device or disabled.

• Green. The port is connected to a device or enabled.

• Red. An error occurred on the port.

The system LEDs indicate the system status:

7. To display the menus that let you configure ports, right-click a port.

As an example, the following figure shows the back view of model M4250-10G2F-PoE+

with a partial view of the menus that let you configure a port.

AV Line of Fully Managed Switches M4250 Series

Get Started with the Main UI User Manual26

8. To display the menus that let you configure global switch settings, right-click the back

view anywhere other than on a port.

As an example, the following figure shows the back view of model M4250-10G2F-PoE+

with menus that let you configure global switch settings.

Set up SNMP access

The switch software supports the configuration of SNMP groups and users that can manage

traps that the SNMP agent generates.

The switch uses both standard public MIBs for standard functionality and private MIBs that

support additional switch functionality. All private MIBs begin with a “-” prefix. The main object

for interface configuration is in -SWITCHING-MIB, which is a private MIB. Some interface

configurations also involve objects in the public MIB, IF-MIB.

AV Line of Fully Managed Switches M4250 Series

Get Started with the Main UI User Manual27

SNMP is enabled by default. The System Information page, which is the page that displays

when you log in, displays the information that you need to configure an SNMP manager to

access the switch.

Any user can connect to the switch using the SNMP v3 protocol, but for authentication and

encryption, the switch supports only one user, which is the admin user; therefore, only one

profile can be created or modified.

You cannot access the switch using SNMPv3 until you log in to the switch as an admin and

change the default password (see Log in to the main UI with a web browser on page 20).

After you do, SNMPv3 is automatically configured with the MD5 authentication protocol and

the new password for admin user.

For SNMPv3 switch access, the authentication protocol must be MD5 or SHA. You cannot

use the “none” option for the authentication protocol.

For more information about SNMP, see Simple Network Management Protocol on

page 132.

To configure authentication and encryption settings for the SNMPv3 admin profile:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP v3 > User Configuration.

The User Configuration page displays.

6. To enable authentication, select an Authentication Protocol option, which is either MD5 or

SHA.

7. To enable encryption, select the DES option in the Encryption Protocol list Then enter an

encryption code of eight or more alphanumeric characters in the Encryption Key field.

8. Click the Apply button.

Your settings are saved.

Note: To access configuration information for SNMP V1 or SNMP V2, select

System > SNMP > SNMPv1/v2 and select the page that contains the

information that you want to configure.

2Configure Switch System

Information

This chapter covers the following topics:

•Switch system information

•Loopback interface

•IPv4 management interfaces and VLANs

•IPv6 management interfaces and VLANs

•Time and SNTP settings

•Precision Time Protocol

•Domain Name System

•Switch database management template

•Green Ethernet settings

•Bonjour settings

•IPv4 DHCP server

•DHCP relay and relay statistics

•DHCP Layer 2 relay

•DHCPv6 server

•DHCPv6 relay interface

•Power over Ethernet

•Timer schedules

•Simple Network Management Protocol

•Link Layer Discovery Protocol

•Link Layer Discovery Protocol for Media Endpoint Devices

•Link dependency

•Industry Standard Discovery Protocol

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual29

Switch system information

You can view and configure the switch system information.

View and configure switch system information

When you log in, the System Information page displays. You can configure and view general

device information.

To view and define system information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > System Information.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual30

6. Define the following fields:

• System Name: Enter the name to identify this switch. You can use up to 255

alphanumeric characters. The factory default is blank.

• System Location: Enter the location of this switch. You can use up to 255

alphanumeric characters. The factory default is blank.

• System Contact: Enter the contact person for this switch. You can use up to 255

alphanumeric characters. The factory default is blank.

• Login Timeout: Specify how many minutes of inactivity can occur on a serial port

connection before the switch closes the connection. Enter a number between 0 and

160 minutes. The factory default is 5. Entering 0 disables the time-out.

• Management Source Interface: Select the management interface that is used as

source interface for SNMP trap, syslog, DNS, TACACS+, RADIUS, sflow, and SNTP

applications. Possible values are as follows:

- None

- Routing Interface

- Routing VLAN

- Routing Loopback Interface

- Service Port

- Different. For some applications from the list, the source interface is configured

separately. They display in the list only if this is the case.

By default VLAN 1 is used as the source interface.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

The following table describes the status information in the Application Information and

System Information sections on the page.

Table 4. Application Information and System Information

Field Description

Application Information

App Name The name of the application that functions as the Universal Plug and Play

(UPnP) agent.

App Status The status of the application.

Version The version of the application.

System Information

Product Name The product name of this switch.

IPv4 Management Address The IPv4 address and mask assigned to the management VLAN interface.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual31

View the fan status

This page shows the status of the fans in all units. These fans remove the heat generated by

the power, CP,U and other chipsets, and allow the chipsets work normally. Fan status can be

one of three possible values: OK, Failure, or Not Present.

To view the fan status:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Scroll down to the Fan Status section.

6. To refresh the page, click the Refresh button.

IPv6 Management Address The IPv6 address and mask assigned to the management VLAN interface.

IPv4 Management Interface The IPv4 management VLAN ID of the switch. Click the displayed

Management VLAN ID value to jump to the configuration page. See

Configure an IPv4 management VLAN on page 41.

IPv6 Management Interface The IPv6 management VLAN ID of the switch. Click the displayed

Management VLAN ID value to jump to the configuration page. See

Configure an IPv6 management VLAN on page 47.

IPv4 Loopback Interface The IPv4 address and mask assigned to the loopback interface.

IPv6 Loopback Interface The IPv6 prefix and prefix length assigned to the loopback interface.

System Date The current date.

System Up Time The time in days, hours, and minutes since the switch was restarted.

Current SNTP Sync Status The current SNTP sync status.

System SNMP OID The base object ID for the switch's enterprise MIB.

System Mac Address Universally assigned network address.

Current SNTP Synchronized Time The SNTP synchronized time.

Table 4. Application Information and System Information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual32

The following table describes the nonconfigurable Fan Status information.

Table 5. Fan Status

Field Description

FAN-1 The working status of the system fan 1.

FAN-2 The working status of the system fan 2.

View the temperature sensor information

You can view the current temperature of different system sensors using the Temperature

Status table.

To view temperature information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Scroll down to the Temperature Status section.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable Temperature Status information.

Table 6. Temperature Status information

Field Description

sensor-1 The current temperature in degrees Centigrade.

Max Operating Temperature The maximum supported operating temperature in degrees Centigrade.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual33

View the device status and firmware version

You can view the device status and firmware version.

To view the device status and firmware version:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Scroll down to the Temperature Status section.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable Device Status information.

Table 7. Device Status

Field Description

Firmware Version The release.version.maintenance number of the code currently running on

the switch. For example, if the release is 1, the version is2, and the

maintenance number is 4, the format is 1.2.4.

Boot Version The version of the boot code that is in the flash memory to load the firmware

into the memory.

CPLD Version The version of the software for CPLD.

Serial Number The serial number of this switch.

PS-1 Indicates the status of the power supply in the switch.The status can be any

of the following:

• Operational: The power supply is present and functioning properly.

• Failed: The power supply is present, but the power cable is not

plugged in or a bad cable is plugged in.

MAX PoE Indicates the PoE system status on the switch:

• ON: Less than 10W of PoE power is available for another PD.

• OFF: At least 10W of PoE power available for another PD.

• N/A: PoE is not supported by the switch.

System Up Time The time in days, hours, and minutes since the switch was restarted.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual34

View the system CPU status

To view the system CPU status:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > System CPU Status.

The System CPU Status page displays.

The CPU memory status includes the total memory of the switch in KBytes and the

available memory space for the switch in KBytes.

The CPU utilization shows the CPU utilization by the various processes on the switch.

Configure the CPU thresholds

You to configure CPU thresholds that, when crossed, trigger a notification. The notification

occurs through SNMP trap and syslog messages.

To configure the CPU thresholds:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > System CPU Status > CPU Threshold.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual35

The CPU Threshold page displays.

6. Configure the following CPU threshold settings:

• Rising Threshold: Configure the rising threshold value. A notification is generated

when the total CPU utilization exceeds this threshold value over the configured time

period. The range is a percentage from 1 to 100.

• Rising Interval: Configure the rising interval value. Configure this utilization

monitoring time period from 5 to 86400 seconds in multiples of 5 seconds.

• Falling Threshold: Configure the falling threshold. A notification is triggered when

the total CPU utilization falls below this level for a configured period of time.

•The falling utilization threshold must be equal to or less than the rising threshold

value. The falling utilization threshold notification is generated only if a rising

threshold notification was generated previously. Configuring the falling utilization

threshold and time period is optional. If the falling CPU utilization values aare not

configured, they take the same value as the rising CPU utilization values. The range

is a percentage from 1 to 100.

• Falling Interval: Configure the falling interval. YOu can configure the utilization

monitoring time period from 5 seconds to 86400 seconds in multiples of 5 seconds.

• Free Memory Threshold: Configure the CPU free memory threshold value in KB.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

View or clear switch statistics

To view or clear the switch statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Switch Statistics.

The Switch Statistics page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual36

6. To clear all the counters, resetting all switch summary and detailed statistics to default

values, click the Clear button.

The discarded packets count cannot be cleared.

7. To save the settings to the running configuration, click the Save icon.

The following table describes switch statistics information.

Table 8. Switch statistics information

Field Description

ifIndex The ifIndex of the interface table entry associated with the processor of

this switch.

Octets Received The total number of octets of data received by the processor (excluding

framing bits but including FCS octets).

Packets Received Without Errors The total number of packets (including broadcast packets and multicast

packets) received by the processor.

Unicast Packets Received The number of subnetwork-unicast packets delivered to a higher-layer

protocol.

Multicast Packets Received The total number of packets received that were directed to a multicast

address. This number does not include packets directed to the

broadcast address.

Broadcast Packets Received The total number of packets received that were directed to the

broadcast address. This does not include multicast packets.

Receive Packets Discarded The number of inbound packets that were discarded even though no

errors were detected to prevent their being deliverable to a higher-layer

protocol. A possible reason for discarding a packet could be to free up

buffer space.

Octets Transmitted The total number of octets transmitted out of the interface, including

framing characters.

Packets Transmitted Without Errors The total number of packets transmitted out of the interface.

Unicast Packets Transmitted The total number of packets that higher-level protocols requested that

are transmitted to a subnetwork-unicast address, including those that

were discarded or not sent.

Multicast Packets Transmitted The total number of packets that higher-level protocols requested that

are transmitted to a multicast address, including those that were

discarded or not sent.

Broadcast Packets Transmitted The total number of packets that higher-level protocols requested that

are transmitted to the broadcast address, including those that were

discarded or not sent.

Transmit Packets Discarded The number of outbound packets that were discarded even though no

errors were detected to prevent their being deliverable to a higher-layer

protocol. A possible reason for discarding a packet could be to free up

buffer space.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual37

View USB device information

To display the USB device information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > USB Device Information.

The USB Device Information page displays.

The Device Status field displays the current status of the device. The status is one of the

following:

• Active: The device is USB plugged in and recognized by the switch.

• Inactive: The device is not mounted.

Most Address Entries Ever Used The highest number of Forwarding Database Address Table entries

learned by this switch since the most recent reboot.

Address Entries in Use The number of learned and static entries in the Forwarding Database

Address Table for this switch.

Maximum VLAN Entries The maximum number of virtual LANs (VLANs) allowed on this switch.

Most VLAN Entries Ever Used The largest number of VLANs that were active on this switch since the

last reboot.

Static VLAN Entries The number of presently active VLAN entries on this switch that were

created statically.

Dynamic VLAN Entries The number of presently active VLAN entries on this switch that were

created by GVRP registration.

VLAN Deletes The number of VLANs on this switch that were created and then deleted

since the last reboot.

Time Since Counters Last Cleared The elapsed time, in days, hours, minutes, and seconds, since the

statistics for this switch were last cleared.

Table 8. Switch statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual38

• Invalid: The device is not present or an invalid device is plugged in.

6. To refresh the page, click the Refresh button.

The following table describes the information in the USB Memory Statistics section.

Table 9. USB Memory Statistics information

Field Description

Total Size The USB flash device storage size in bytes.

Bytes Used The size of memory used on the USB flash device.

Bytes Free The size of memory free on the USB flash device.

The following table describes the information in the USB Directory Details section.

Table 10. USB Directory Details information

Field Description

File Name The name of the file stored in the USB flash drive.

File Size The size of the file stored in the USB flash drive in bytes

Modification Time The last modification time of the file stored in the USB flash drive.

Loopback interface

You can create, configure, and remove loopback interfaces.

To configure a loopback interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Loopback Interface.

The Loopback Interface page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual39

6. From the Loopback Interface Type menu, select IPv4 or IPv6.

7. From the Loopback ID menu, select an interface.

8. Configure the following settings, depending on the type of loopback interface:

• IPv4: For an IPv4 interface, configure the following settings:

- Primary IP Address: Enter the primary IPv4 address for this interface in

dotted-decimal notation.

- Primary IP Subnet Mask: Enter the primary IPv4 subnet mask in dotted-decimal

notation.

• IPv6: For an IPv6 interface, configure the following settings:

- IPv6 mode: Select Enable to use the IPv6 address after you specify it. You can

select this option only before you specify the IPv6 address.

- IPv6 Prefix: Enter the IPv6 prefix.

- Prefix Length: Enter the length for the IPv6 prefix.

- EUI64: As an option, specify the 64-bit extended unique identifier (EUI-64).

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

IPv4 management interfaces and VLANs

The main UI provides separate options for IPv4 interface and port-based IP management.

If you configure port-based IP management, VLAN-based IP management is disabled.

Similarly, if you configure VLAN-based IP management, port-based IP management is

disabled.

By default, the source interface for applications is VLAN 1. If you change the IPv4

management VLAN and port to a non-default value, the source interface to the VLAN 1

default VLAN and port are also automatically changed.

You can access the switch over the main UI by one of the following methods:

• IPv4 service port: The service port is a dedicated Ethernet port for out-of-band (OOB)

management of the switch. Traffic on this port is segregated from operational network

traffic on the switch ports and cannot be switched or routed to the operational network.

• Management VLAN interface: The management VLAN is the logical interface used for

in-band connectivity with the switch over any of the switch's network interfaces. To

access the switch over a network you must first configure an IP address and subnet mask

for the switch.

• Optional single management interface: By default, you can use any of the switch's

network interfaces as the management interface. However, you can restrict IPv4

management to one specific network interface.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual40

Configure the IPv4 service port

You can configure network information on the IPv4 service port. The service port is a

dedicated Ethernet port for out-of-band management of the switch. Traffic on this port is

segregated from operational network traffic on the switch ports and cannot be switched or

routed to the operational network.

To configure the IPv4 service port:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Management Interfaces > IPv4 Service Port

Configuration.

The IPv4 Service Port Configuration page displays.

6. Select a Service Port Configuration Protocol radio button:

•Bootp: During the next boot cycle, the BootP client on the device broadcasts a BootP

request to acquire information from a BootP server on the network.

The IP Address, Subnet Mask, and Default Gateway field display the information is

dynamically acquired.

• DHCP: During the next boot cycle, the DHCP client on the device broadcasts a DHCP

request to acquire information from a DHCP server on the network.

The IP Address, Subnet Mask, and Default Gateway field display the information is

dynamically acquired.

• None: The device does not attempt to acquire network information dynamically. You

must configure the address settings manually:

- IP Address: Specify the IP address of the interface.

- Subnet Mask: Specify the IP subnet mask for the interface.

- Default Gateway: Specify the default gateway for the IP interface.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual41

The following table describes the nonconfigurable fields on the page.

Table 11. IPv4 service port configuration information

Field Description

Burned-in MAC Address The burned-in MAC address used for out-of-band connectivity.

Interface Status Indicates whether the link status is up or down.

DHCP Client Identifier If the selection is DHCP, the DHCP client ID.

Configure an IPv4 management VLAN

For you to manage the switch over the main UI, you must define the management IP

address. A management VLAN interface is created by default and it gets an IP address if a

DHCP server is present. If the management VLAN interface cannot get an IP address, the

automatically assigned fallback IPv4 address is 169.254.100.100 and the subnet mask is

255.255.0.0.

A management VLAN is used as the default source interface for the syslog, the message log,

an SNMP client, and so on. The network interface is disabled by default.

The management VLAN is the logical interface used for in-band connectivity with the switch

through any of the switch’s front panel ports. The configuration parameters associated with

the switch’s management VLAN do not affect the configuration of the front panel ports

through which traffic is switched or routed.

To access the switch over a network you must first configure an IP address and subnet mask

for the switch. You can configure the IP information using any of the following:

•DHCP

•Terminal interface through the EIA-232 port

After you establish in-band connectivity, you can change the IP information using any of the

following:

•Terminal interface through the EIA-232 port

•Terminal interface through Telnet

•SNMP-based management

•Web-based management

To configure an IPv4 management VLAN or reset the IPv4 management VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual42

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Management Interfaces > IPv4 Management VLAN

Configuration.

The IPv4 Management VLAN Configuration page displays.

6. In the Management VLAN ID field, specify the management VLAN ID of the switch.

The IPv4 management VLAN is used for management of the switch. You can configure

any value in the range of 1 to 4093.

7. Select the Enable or Disable Routing Mode radio button to enable or disable global routing

on the switch.

The default value is Enable.

8. Select the Configuration Method DHCP or Manual radio button to specify the switch startup

action:

• DHCP: The switch requests IP address information from a DHCP server.

• Manual: The switch loads the IP address information that you specify:

-IP Address: Specify the IP address of the interface.

The default value is 169.254.100.100.

- Subnet Mask: Specify the IP subnet mask for the interface. This is also referred

to as the subnet/network mask and defines the portion of the interface’s IP

address that is used to identify the attached network.

The default value is 255.255.0.0.

- Gateway: Specify the gateway for the management VLAN interface.

The default value is 0.0.0.0.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

Note: If you need to reset the IPv4 management VLAN, in the Reset IPv4

Management Interface section of the page, select the Set

Management Interface to Default check box and click the Apply

button. Doing so deletes the port-based IPv4 management interface

configuration and sets the IPv4 management interface back to the

default VLAN 1.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual43

The Current IPv4 Management Interface Status section displays the following

nonconfigurable fields.

Table 12. Nonconfigurable IPv4 management interface status information

Field Description

Management Interface Displays the current IPv4 management VLAN.

Link State Indicates whether the link status is up or down.

Routing Interface Status Indicates whether the link status is up or down for the management

interface.

MAC Address The MAC address assigned to the management interface.

IP Address Configuration Method Indicates whether the IP address configuration method is DHCP or manual.

IP Address The IP address of the management interface.

Subnet Mask The IP subnet mask for the management interface.

Gateway The specified default gateway for the management interface.

Configure an IPv4 management interface

You can restrict IPv4 management to one specific interface. By default, you can use any of

the interfaces as an IPv4 management interface.

To configure an IPv4 management interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Management Interfaces > IPv4 Management Interface

Configuration.

The IPv4 Management Interface Configuration page displays.

6. From the Interface menu, select the interface that must become the IPv4 management

interface.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual44

7. Select the Set Management Interface option check box so that you can configure the

interface IP address settings

8. Select a Configuration Method radio button:

• DHCP: The switch obtains the management interface IP address settings from a

DHCP server in the network.

•Manual: Configure the management interface IP address settings manually:

- IP Address: Specify the IP address for the management interface.

The default IP address is 169.254.100.100.

- Subnet Mask: Specify the subnet mask for the management interface.

The default subnet mask is 255.255.0.0.

- Gateway: Specify the IP address of the default gateway for the management

interface.

The default IP address is 0.0.0.0.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

Note: If you need to reset the IPv4 management interface, in the Reset IPv4

Management Interface section of the page, select the Set

Management Interface to Default check box and click the Apply

button. Doing so deletes the IPv4 management interface configuration

and sets the IPv4 management interface back to the default setting.

The Current IPv4 Management Interface section displays the following nonconfigurable

fields.

Table 13. Nonconfigurable IPv4 management interface status information

Field Description

Management Interface Displays the current IPv4 management interface

Link State Indicates whether the link status is up or down.

Routing Interface Status Indicates whether the link status is up or down for the management

interface.

MAC Address The MAC address assigned to the management interface.

IP Address Configuration Method Indicates whether the IP address configuration method is DHCP or manual.

IP Address The IP address of the management interface.

Subnet Mask The IP subnet mask for the management interface.

Gateway The specified default gateway for the management interface.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual45

IPv6 management interfaces and VLANs

The main UI provides separate options for IPv6 interface and port-based IP management.

If you configure port-based IP management, VLAN-based IP management is disabled.

Similarly, if you configure VLAN-based IP management, port-based IP management is

disabled.

By default, the source interface for applications is VLAN 1. If you change the IPv6

management VLAN and port to a non-default value, the source interface to the VLAN 1

default VLAN and port are also automatically changed.

You can access the switch over the main UI by one of the following methods:

• IPv6 service port: The service port is a dedicated Ethernet port for out-of-band

management of the switch. Traffic on this port is segregated from operational network

traffic on the switch ports and cannot be switched or routed to the operational network.

• Management VLAN interface: The management VLAN is the logical interface used for

in-band connectivity with the switch over any of the switch's network interfaces. To

access the switch over a network you must first configure an IP address and subnet mask

for the switch. To configure an IPv6 management VLAN, you can either use the same

VLAN that is used for IPv4 management or a different VLAN. The switch does not provide

a default IPv6 management VLAN. If you want to use one, you must create it manually.

• Optional single management interface: By default, you can use any of the switch's

network interfaces as the management interface. However, you can restrict IPv6

management to one specific network interface.

Configure an IPv6 service port

You can configure IPv6 network information on the service port. The service port is a

dedicated Ethernet port for out-of-band management of the switch Traffic on this port is

segregated from operational network traffic on the switch ports and cannot be switched or

routed to the operational network.

To configure the IPv6 service port:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual46

The System Information page displays.

5. Select System > Management > Management Interfaces > IPv6 Service Port

Configuration.

The IPv6 Service Port Configuration page displays.

6. Select the IPv6 mode Enable or Disable radio button.

This specifies the IPv6 administrative mode on the service port.

7. Select the Service Port Configuration Protocol None or DHCP radio button.

This specifies whether the device acquires network information from a DHCPv6 server.

Selecting None disables the DHCPv6 client on the service port.

If you select the DHCP radio button, the DHCPv6 Client DUID field displays the client

identifier used by the DHCPv6 client when sending messages to the DHCPv6 server.

8. Select the IPv6 Stateless Address AutoConfig mode Enable or Disable radio button:

• Enable: The service port can acquire an IPv6 address through IPv6 Neighbor

Discovery Protocol (NDP) and through the use of router advertisement messages.

• Disable: The service port does not use the native IPv6 address autoconfiguration

feature to acquire an IPv6 address.

This sets the IPv6 stateless address autoconfiguration mode on the service port.

9. To configure the IPv6 gateway, do the following:

a. select the Change IPv6 Gateway check box.

The IPv6 gateway is the default gateway for the IPv6 service port interface.

b. In the IPv6 Gateway field, specify the default gateway for the IPv6 service port

interface.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

Manage IPv6 addresses for the IPv6 service port

You can add a static IPv6 address that is specific to the IPv6 service port. You can also

remove an IPv6 address that you no longer need for the IPv6 service port.

To add or remove an IPv6 address for the IPv6 service port:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual47

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Management Interfaces > IPv6 Service Port

Configuration.

The IPv6 Service Port Configuration page displays.

The Add/Delete IPv6 Address table lists the static IPv6 addresses that you manually

added to the service port interface.

6. To add an IPv6 address, in the Add/Delete IPv6 Address section, do the following:

a. In the IPv6 Address field, specify the IPv6 address that you want to add.

b. From the EUI FLAG menu, select True to enable the Extended Universal Identifier (EUI)

flag for the IPv6 address, or select False to omit the flag.

c. Click the Add button.

The IPv6 address is added to the IPv6 service port.

7. To remove an IPv6 address, in the Add/Delete IPv6 Address section, do the following:

a. Select the check box for the IPv6 address that you want to remove.

b. Click the Delete button.

The IPv6 address is removed from the IPv6 service port.

8. To save the settings to the running configuration, click the Save icon.

Configure an IPv6 management VLAN

For you to manage the switch over the main UI, you must define the management IP

address. A management VLAN interface is created by default and it gets an IP address if a

DHCP server is present. If the management VLAN interface cannot get an IP address, the

automatically assigned fallback IPv4 address is 169.254.100.100 and the subnet mask is

255.255.0.0.

A management VLAN is used as the default source interface for the syslog, the message log,

an SNMP client, and so on. The network interface is disabled by default.

The management VLAN is the logical interface used for in-band connectivity with the switch

through any of the switch’s front panel ports. The configuration parameters associated with

the switch’s management VLAN do not affect the configuration of the front panel ports

through which traffic is switched or routed.

To access the switch over a network you must first configure an IP address and subnet mask

for the switch. You can configure the IP information using any of the following:

•DHCP

•Terminal interface through the EIA-232 port

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual48

After you establish in-band connectivity, you can change the IP information using any of the

following:

•Terminal interface through the EIA-232 port

•Terminal interface through Telnet

•SNMP-based management

•Web-based management

To configure an IPv6 management VLAN, you can either use the same VLAN that is used for

IPv4 management or a different VLAN. The switch does not provide a default IPv6

management VLAN. If you want to use one, you must create it manually.

To configure an IPv6 management VLAN or reset the IPv6 management VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Management Interfaces > IPv6 Management VLAN

Configuration.

The IPv6 Management VLAN Configuration page displays.

6. In the Management VLAN ID field, specify the management VLAN ID of the switch.

The IPv6 management VLAN is used for management of the switch. You can configure

any value in the range of 1 to 4093.

7. Select the IPv6 Enable Mode Enable or Disable radio button to specify he administration

mode for the IPv6 management VLAN.

8. Select the Address Autoconfigure Mode Enable or Disable radio button to specify the

address autoconfiguration mode.

If you enable this mode, the IPv6 network settings (IPv6 prefix and prefix length) are

automatically configured for the configured management VLAN interface. By default, for

VLAN 1, the mode is enabled so that the settings are automatically configured.

Note: The Address Autoconfigure mode option is available only if unicast

routing is globally disabled.

9. Select the Address DHCP Mode Enable or Disable radio button to specify if the IPv6

settings are obtained from a DHCP server.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual49

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

Note: If you need to reset the IPv6 management interface, in the Reset IPv6

Management Interface section of the page, select the Set Management

Interface to Default check box and click the Apply button. Doing so

deletes the IPv6 management interface configuration.

The Current IPv6 Management Interface Status section displays the following

nonconfigurable fields.

Table 14. Current IPv6 management interface status information

Field Description

Management Interface The IPv6 management interface. (By default, no IPv6 management

interface is configured).

Link State Indicates if the link status is up or down.

IPv6 Routing Interface

Status/Operational Mode

Indicates if the link status is up or down for the IPv6 management interface.

MAC Address The MAC address that is assigned to the IPv6 management interface.

IPv6 Enable Mode Indicates if IPv6 is enabled or disabled on the IPv6 management interface.

IPv6 Routing Mode Indicates if IPv6 routing is enabled or disabled on the IPv6 management

interface.

Stateless Address Autoconfig

Mode

Indicates if the IPv6 address autoconfiguration mode is enabled or disabled

on the IPv6 management interface.

DHCPv6 Client Mode Indicates if the DHCPv6 Client Mode is enabled or disabled on the IPv6

management interface.

IPv6 Default Gateway The IPv6 address of the default gateway of the switch.

IPv6 Next Hop Interface The IPv6 address of the next hop interface of the switch.

IPv6 Prefix/Prefix Length The IPv6 prefix and prefix length that is used for the IPv6 management

interface.

EU164 The EUI-64 flag of the IPv6 address on the IPv6 management interface.

Current State The current state of the IPv6 address on the IPv6 management interface.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual50

Manage IPv6 addresses for the IPv6 management VLAN

You can add a static IPv6 address that is specific to the IPv6 management VLAN. You can

also remove an IPv6 address that you no longer need for the IPv6 management VLAN.

To add or remove an IPv6 address for the IPv6 management VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Management Interfaces > IPv6 Management VLAN

Configuration.

The IPv6 Management VLAN Configuration page displays.

If the Address Autoconfigure Mode is enabled, the autoconfigured IPv6 prefix and prefix

length are displayed in the IPv6 VLAN Interface Configuration section.

6. To add an IPv6 address, in the IPv6 VLAN Interface Configuration section, do the following:

a. In the IPv6 Prefix/Prefix Length field, specify the IPv6 address and prefix length that you

want to add.

b. From the EUI64 menu, select True to enable the Extended Universal Identifier (EUI) flag

for the IPv6 address, or select False to omit the flag.

c. Click the Add button.

The IPv6 address is added to the IPv6 management VLAN.

7. To remove an IPv6 address, in the IPv6 VLAN Interface Configuration section, do the

following:

a. Select the check box for the IP address and prefix that you want to remove.

b. Click the Delete button.

The IPv6 address is removed from the IPv6 management VLAN.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual51

Manage the IPv6 default route addresses for the IPv6

management VLAN

You can add an IPv6 default route address that is specific to the IPv6 management VLAN.

You can also remove an IPv6 default route address that you no longer need for the IPv6

management VLAN.

To add or remove an IPv6 default route address for the IPv6 management VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Management Interfaces > IPv6 Management VLAN

Configuration.

The IPv6 Management VLAN Configuration page displays.

6. To add an IPv6 default route address, in the IPv6 Default Route Configuration section, do

the following:

a. Select the Change IPv6 Default Route check box.

b. In the IPv6 Default Route Address field, specify the IPv6 address and prefix length

that you want to add.

c. Click the Add button.

The IPv6 default route address is added to the IPv6 management VLAN.

7. To remove an IPv6 default route address, in the IPv6 Default Route Configuration section,

do the following:

a. Select the check box for the IPv6 default route address that you want to remove.

b. Click the Delete button.

The IPv6 default route address is removed from the IPv6 management VLAN.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual52

Configure an IPv6 management interface

You can restrict IPv6 management to one specific interface. By default, you can use any of

the interfaces as an IPv6 management interface.

To configure an IPv6 management interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

5. Click the Login button.

The System Information page displays.

6. Select System > Management > Management Interfaces > IPv6 Management Interface

Configuration.

The IPv6 Management Interface Configuration page displays.

7. From the Interface menu, select the interface that must become the IPv6 management

interface.

8. Select the Set Management Interface option check box so that you can configure the

interface settings.

9. Select the Routing Mode Enable or Disable radio button to enable or disable routing on the

IPv6 management interface.

10. Select the IPv6 Enable Mode Enable or Disable radio button to enable or disable IPv6 on

the IPv6 management interface.

11. Select the Stateless Address Autoconfigure Mode Enable or Disable radio button to enable

or disable the on the IPv6 management interface.

You can enable this mode only if unicast routing is globally disabled.

12. Select the DHCPv6 Client Mode Enable or Disable radio button to enable or disable the

DHCPv6 client mode on the IPv6 management interface.

13. Click the Apply button.

Your settings are saved.

14. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual53

Note: If you need to reset the IPv6 management interface, in the Reset IPv6

Management Interface section of the page, select the Set Management

Interface to Default check box and click the Apply button. Doing so

deletes the IPv6 management interface configuration.

The Current IPv6 Management Interface Status section displays the following

nonconfigurable fields.

Table 15. Current IPv6 management interface status information

Field Description

Management Interface The IPv6 management interface. (By default, no IPv6 management

interface is configured).

Link State Indicates if the link status is up or down.

IPv6 Routing Interface

Status/Operational Mode

Indicates if the link status is up or down for the IPv6 management interface.

MAC Address The MAC address that is assigned to the IPv6 management interface.

IPv6 Enable Mode Indicates if IPv6 is enabled or disabled on the IPv6 management interface.

IPv6 Routing Mode Indicates if IPv6 routing is enabled or disabled on the IPv6 management

interface.

Stateless Address Autoconfig

Mode

Indicates if the IPv6 address autoconfiguration mode is enabled or disabled

on the IPv6 management interface.

DHCPv6 Client Mode Indicates if the DHCPv6 Client Mode is enabled or disabled on the IPv6

management interface.

IPv6 Default Gateway The IPv6 address of the default gateway of the switch.

IPv6 Next Hop Interface The IPv6 address of the next hop interface of the switch.

IPv6 Prefix/Prefix Length The IPv6 prefix and prefix length that is used for the IPv6 management

interface.

EU164 The EUI-64 flag of the IPv6 address on the IPv6 management interface.

Current State The current state of the IPv6 address on the IPv6 management interface.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual54

Manage IPv6 addresses for the IPv6 management

interface

You can add a static IPv6 address that is specific to the IPv6 management interface. You can

also remove an IPv6 address that you no longer need for the IPv6 management interface.

To add or remove an IPv6 address for the IPv6 management interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Management Interfaces > IPv6 Management Interface

Configuration.

The IPv6 Management Interface Configuration page displays.

6. To add an IPv6 address, in the IPv6 Management Interface Configuration section, do the

following:

a. Select the Set Management Interface check box.

It is likely that you already did this when you started the configuration of the IPv6

management interface.

b. In the IPv6 Prefix field, specify the IPv6 address that you want to add.

c. In the Prefix Length field, specify the prefix length for the IPv6 address that you

want to add.

d. From the EUI64 menu, select Enable to enable the Extended Universal Identifier (EUI)

flag for the IPv6 address, or select Disable to omit the flag.

e. Click the Add button.

The IPv6 address is added to the IPv6 management interface.

7. To remove an IPv6 address, in the IPv6 Management Interface Configuration section, do

the following:

a. Select the check box for the IPv6 that you want to remove.

b. Click the Delete button.

The IPv6 address is removed from the IPv6 management interface.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual55

Manage the IPv6 default route addresses for the IPv6

management interface

You can add an IPv6 default route address that is specific to the IPv6 management interface.

You can also remove an IPv6 default route address that you no longer need for the IPv6

management interface.

To add or remove an IPv6 default route address for the IPv6 management interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Management Interfaces > IPv6 Management Interface

Configuration.

The IPv6 Management Interface Configuration page displays.

6. To add an IPv6 default route address, in the IPv6 Default Route Configuration section, do

the following:

a. Select the Change IPv6 Default Route check box.

b. In the IPv6 Default Route Address field, specify the IPv6 address and prefix length

that you want to add.

c. Click the Add button.

The IPv6 default route address is added to the IPv6 management interface.

7. To remove an IPv6 default route address, in the IPv6 Default Route Configuration section,

do the following:

a. Select the check box for the IPv6 default route address that you want to remove.

b. Click the Delete button.

The IPv6 default route address is removed from the IPv6 management interface.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual56

Time and SNTP settings

The switch supports the Simple Network Time Protocol (SNTP). As its name suggests, it is a

less complicated version of Network Time Protocol (NTP), which is a system for

synchronizing the clocks of networked computer systems, primarily when data transfer is

handled through the Internet. You can also set the system time manually.

Configure the time setting manually

To configure the time setting manually

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Time > Time Configuration.

The Time Configuration page displays.

6. Select the Clock Source Local radio button.

The default is SNTP.

7. In the Date field, specify the current date in months, days, and years.

8. In the Time field, specify the current time in hours, minutes, and seconds.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual57

Configure the time settings with SNTP and configure the

global SNTP settings

To configure the time by using SNTP and configure the global SNTP settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Time > Time Configuration.

The Time Configuration page displays.

6. Select the Clock Source SNTP radio button.

The default is SNTP.

In the SNTP Global Configuration section of the page, configure the following settings.

7. Select a Client mode radio button to specify the operation mode of the SNTP client: on the

switch:

•Disable: SNTP is not operational. No SNTP requests are sent from the client and no

received SNTP messages are processed.

• Unicast: SNTP operates in a point-to-point mode. A unicast client sends a request to

a designated server at its unicast address and expects a reply from which it can

determine the time and, optionally, the round-trip delay and local clock offset relative

to the server.

The default selection is Unicast. You can add the IP address or DNS name of one or

more SNTP servers for the switch to poll. For more information, see Configure SNTP

servers on page 60.

• Broadcast: SNTP operates uses a local broadcast address instead of a multicast

address. The broadcast address has a single subnet scope while a multicast address

has an Internet wide scope.

8. In the Port field, specify the local UDP port on which the SNTP client receives server

packets.

The port number is 123 or in a range from 1025 to 65535. The default is 123. When the

default value is configured, the actual client port value used in SNTP packets is assigned

by the operating system.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual58

9. From the Source Interface menu, select the interface that the SNTP client must use:

• None: The primary IP address of the originating (outbound) interface is used as the

source address.

•Routing interface: The primary IP address of a physical port is used as the source

address.

• Routing VLAN: The primary IP address of a VLAN routing interface is used as the

source address.

• Routing loopback interface: The primary IP address of a routing loopback interface

is used as the source address.

• Tunnel interface: The IPv6 tunnel interface.

•Service port: The management port source IP address is used as the source

address.

By default VLAN 1 is used as the source interface.

10. In the Unicast Poll Interval field, specify the number of seconds between unicast poll

requests expressed as a power of 2. to The range is from 6 to 10. The default is 6.

11. In the Broadcast Poll Interval field, specify the number of seconds between broadcast poll

requests expressed as a power of 2.

Broadcasts received prior to the expiry of this interval are discarded. The range is from 6

to 10. The default is 6.

12. In the Unicast Poll Timeout field, specify the number of seconds to wait for an SNTP

response to a unicast poll request.

The range is from 1 to 30. The default is 5.

13. In the Unicast Poll Retry field, specify the number of times to retry a unicast poll request to

an SNTP server after the first time-out before the switch attempts to use the next configured

server.

The range is from 0 to 10. The default is 1.

14. In the Time Zone Name field, specify a time zone.

In the Offset Hours and Offset Minutes fields, you can also specify the number of hours

and number of minutes that the time zone is different from the Coordinated Universal

Time (UTC). The time zone can affect the display of the current system time.

Note: When you use an SNTP or NTP time server, the time data that is

received from the server is based on the UTC, which is the same as

Greenwich Mean Time (GMT). This might not be the time zone in

which the switch is located.

15. In the Offset Hours field, specify the number of hours that the time zone is different from

UTC.

The range is from –12 to 14. The default is 0.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual59

16. In the Offset Minutes field, specify the number of minutes that the time zone is different

from UTC.

The range is from 0 to 59. The default is 0.

17. Click the Apply button.

Your settings are saved.

18. To save the settings to the running configuration, click the Save icon.

View the SNTP global status

When you select the SNTP option as the clock source, you can view the SNTP global status.

To view SNTP global status:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Time > Time Configuration.

The Time Configuration page displays.

The SNTP Global Status section displays the following nonconfigurable fields:

Table 16. SNTP global status information

Field Description

Version The SNTP version that the client supports.

Supported mode The SNTP modes that the client supports. Multiple modes can be supported by a

client.

Last Update Time The local date and time (UTC) that the SNTP client last updated the system clock.

Last Attempt Time The local date and time (UTC) of the last SNTP request or receipt of an unsolicited

message.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual60

Configure SNTP servers

SNTP assures accurate time synchronization for network device clock, up to the millisecond.

Time synchronization is performed by a network SNTP server. The switch operates as an

SNTP client only and does provide time services to other devices.

Time sources are established by stratums. Stratums define the accuracy of the reference

clock. The higher the stratum (zero is the highest), the more accurate the clock. The switch

receives time from stratum 1 or stratum 0 devices because the switch itself is a stratum 2

device.

Last Attempt Status The status of the last SNTP request or unsolicited message for both unicast and

broadcast modes. If no message was received from a server, a status of Other is

displayed. These values are appropriate for all operational modes.

• Other: None of the following enumeration values.

• Success: The SNTP operation was successful and the system time was

updated.

• Request Timed Out: A directed SNTP request timed out without receiving a

response from the SNTP server.

• Bad Date Encoded: The time provided by the SNTP server is not valid.

• Version Not Supported: The SNTP version supported by the server is not

compatible with the version supported by the client.

• Server Unsynchronized: The SNTP server is not synchronized with its

peers. This is indicated through the leap indicator field on the SNTP message.

• Server Kiss Of Death: The SNTP server indicated that no further queries

were to be sent to this server. This is indicated by a stratum field equal to 0 in

a message received from a server.

Server IP Address The IP address of the server for the last received valid packet. If no message was

received from any server, an empty string is shown.

Address Type The address type of the SNTP server address for the last received valid packet.

Server Stratum The claimed stratum of the server for the last received valid packet.

Reference Clock ID The reference clock identifier of the server for the last received valid packet.

Server mode The mode of the server for the last received valid packet.

Unicast Server Max Entries The maximum number of unicast server entries that can be configured on this

client.

Unicast Server Current

Entries

The number of current valid unicast server entries configured for this client.

Broadcast Count The number of unsolicited broadcast SNTP messages that were received and

processed by the SNTP client since the last reboot.

Table 16. SNTP global status information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual61

The following are examples of stratums:

• Stratum 0: A real-time clock is used as the time source, for example, a GPS system.

• Stratum 1: A server that is directly linked to a stratum 0 time source is used. Stratum 1

time servers provide primary network time standards.

• Stratum 2: The time source is distanced from the stratum 1 server over a network path.

For example, a stratum 2 server receives the time over a network link, through NTP, from

a stratum 1 server.

Information received from SNTP servers is evaluated based on the time level and server

type.

SNTP time definitions are assessed and determined by the following time levels:

•T1: Time that the original request was sent by the client.

•T2: Time that the original request was received by the server.

•T

3: Time that the server sent a reply.

•T

4: Time that the client received the server's reply.

The switch can poll unicast server types for the server time. The switch polls for unicast

information to detect a server for which the IP address is known. SNTP servers that you

configure on the switch are the only ones that are polled for synchronization information.

T1 through T4 are used to determine the server time. This is the preferred method for

synchronizing device time because it is the most secure method. If this method is selected,

SNTP information is accepted only from SNTP servers that are configured on the switch.

The switch retrieves synchronization information, either by actively requesting information or

at every poll interval.

Add an SNTP server

To add an SNTP server:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Time > SNTP Server Configuration.

The SNTP Server Configuration page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual62

6. From the Server Type menu, select the type of SNTP address to enter in the address field.

The address can be an IPv4 address, IPv6 address, or host name (DNS). The default is

DNS.

7. In the Address field, specify the IP address or the host name of the SNTP server.

This is a text string of up to 64 characters, containing the encoded unicast IP address or

host name of an SNTP server. Unicast SNTP requests are sent to this address. If this

address is a DNS host name, the host name is resolved into an IP address each time an

SNTP request is sent to it.

8. In the Port field, specify the port number.

This is the UDP port on the SNTP server to which SNTP requests are sent. The range is

from 1 to 65535. The default is 123.

9. In the Priority field, specify the priority order in which the switch must query the servers.

The SNTP client on the device continues sending SNTP requests to different servers until

a successful response is received, or all servers are exhausted. The priority indicates the

order in which to the switch must query the servers. The request is sent to an SNTP

server with a priority value of 1 first, then to a server with a priority value of 2, and so on.

If any servers are assigned the same priority, the SNTP client contacts the servers in the

order that they appear in the table. The range is from 1 to 3. The default is 1.

10. In the NTP Version field, specify the NRP version that is supported by the switch.

The range is from 1 to 4. The default is 4.

11. Click the Add button.

The SNTP server entry is added.

12. To add additional SNTP servers, repeat the previous steps.

You can configure up to three SNTP servers.

13. To save the settings to the running configuration, click the Save icon.

The SNTP Server Status table displays the following information,

Table 17. SNTP server status information

Field Description

Address All the existing server addresses. If no server configuration exists, a message

saying No SNTP server exists flashes on the page.

Last Update Time The local date and time (UTC) that the response from this server was used to

update the system clock.

Last Attempt Time The local date and time (UTC) that this SNTP server was last queried.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual63

Change the settings for an existing SNTP server

To change the settings for an existing SNTP server:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Time > SNTP Server Configuration.

The SNTP Server Configuration page displays.

6. Select the check box next to the configured server.

7. Change the settings as needed.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Last Attempt Status The status of the last S9 NTP request to this server. If no packet was received

from this server, a status of Other is displayed.

• Other: None of the following enumeration values.

• Success: The SNTP operation was successful and the system time was

updated.

• Request Timed Out: A directed SNTP request timed out without receiving a

response from the SNTP server.

• Bad Date Encoded: The time provided by the SNTP server is not valid.

• Version Not Supported: The SNTP version supported by the server is not

compatible with the version supported by the client.

• Server Unsynchronized: The SNTP server is not synchronized with its

peers. This is indicated through the leap indicator field on the SNTP

message.

• Server Kiss Of Death: The SNTP server indicated that no further queries

were to be sent to this server. This is indicated by a stratum field equal to 0 in

a message received from a server.

Requests The number of SNTP requests made to this server since last agent reboot.

Failed Requests The number of failed SNTP requests made to this server since last reboot.

Table 17. SNTP server status information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual64

Remove an SNTP server

To remove an SNTP server:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Time > SNTP Server Configuration.

The SNTP Server Configuration page displays.

6. Select the check box next to the configured server to remove.

7. Click the Delete button.

The server is removed.

8. To save the settings to the running configuration, click the Save icon.

Configure daylight saving time settings

You can configure settings for summer time, which is also known as daylight saving time.

Used in some countries around the world, summer time is the practice of temporarily

advancing clocks during the summer months. Typically clocks are adjusted forward one or

more hours near the start of spring and are adjusted backward in autumn.

To configure the daylight saving time settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual65

The System Information page displays.

5. Select System > Management > Time > Daylight Saving Configuration.

The Daylight Saving Configuration page displays.

6. Select one of the following Daylight Saving (DST) radio buttons:

• Disable: Disable daylight saving time.

• Recurring: Daylight saving time occurs at the same time every year. You must

manually configure the start and end times and dates for the time shift.

Configure the settings that are described in Step 7.

• Recurring EU: The system clock uses the standard recurring summer time settings

used in countries in the European Union. With this option, the rest of the applicable

fields on the page are automatically populated and you cannot change them.

Configure the settings that are described in Step 7.

• Recurring USA: The system clock uses the standard recurring daylight saving time

settings used in the United States. With this option, the rest of the applicable fields on

the page are automatically populated and you cannot change them.

Configure the settings that are described in Step 7.

• Non Recurring: Daylight saving time settings are in effect only between the start date

and end date of the specified year. With this option, the summer time settings do not

repeat on an annual basis.

Configure the settings that are described in Step 8.

7. If you select Recurring, Recurring EU, or Recurring USA radio button, configure the

fields that are shown in the following table.

Field Description

Begins At These fields are used to configure the start values of the day and time.

• Week: Configure the start week.

• Day: Configure the start day.

• Month: Configure the start month.

• Hours: Configure the start hours.

• Minutes: Configure the start minutes.

Ends At These fields are used to configure the end values of day and time.

• Week: Configure the end week.

• Day: Configure the end day.

• Month: Configure the end month.

• Hours: Configure the end hours.

• Minutes: Configure the end minutes.

Offset Configure recurring offset in minutes. The valid range is 1–1440 minutes.

Zone Configure the time zone.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual66

8. If you select the Non Recurring, configure the fields that are shown in the following table.

Field Description

Begins At These fields are used to configure the start values of the date and time.

• Month: Configure the start month.

• Date: Configure the start date.

• Year: Configure the start year.

• Hours: Configure the start hours.

• Minutes: Configure the start minutes.

Ends At These fields are used to configure the end values of date and time.

• Month: Configure the end start date.

• Date: Configure the end date.

• Year: Configure the end year.

• Hours: Configure the end hours.

• Minutes: Configure the end minutes.

Offset Configure the non-recurring offset in minutes. The valid range is 1–1440

minutes.

Zone Configure the time zone.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

View the daylight saving time status

You can display information about the summer time settings and whether the time shift for

summer time is currently in effect.

To view the daylight saving time status:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Time > Daylight Saving Configuration.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual67

The Daylight Saving Configuration page displays.

6. To refresh the page, click the Refresh button.

The following table displays the nonconfigurable daylight saving (DST) status information.

Table 18. Daylight saving status information

Field Description

Daylight Saving (DST) The Daylight Saving value, which is one of the following:

• Disable

• Recurring

• Recurring EU

• Recurring USA

• Non Recurring

Begins At Displays when the daylight saving time begins. This field is not displayed

when daylight saving time is disabled.

Ends At Displays when the daylight saving time ends. This field is not displayed when

daylight saving time is disabled.

Offset (in Minutes) The offset value in minutes.This field is not displayed when daylight saving

time is disabled.

Zone The zone acronym. This field is not displayed when daylight saving time is

disabled.

Daylight Saving (DST) in Effect Displays whether daylight saving time is in effect.

Precision Time Protocol

Precision Time Protocol (PTP, IEEE 1588) is a protocol that enables precise synchronization

of clocks with a sub-microsecond accuracy across a packet-based network. PTP lets network

devices of different precision and resolution synchronize to a grandmaster clock through an

exchange of packets across the network. The switch supports a PTP end-to-end transparent

clock, which is enabled by default, both globally and at the port level.

Note: The switch itself is not affected by PTP.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual68

Manage the global PTP settings

By default, PTP is enabled globally on the switch. You can disable PTP to globally, in which

case the switch does not support PTP pass-through.

To configure the PTP end-to-end transparent clock settings globally:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > PTP TC > Global Configuration.

The Global Configuration page displays.

6. Select the Admin Mode Enable or Disable radio button.

The default is Enable.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Manage the PTP interface settings

On a standalone switch, by default, PTP is enabled globally on all interfaces. In a switch

stack, by default, PTP is disabled for all interfaces. You can select individual interfaces on

which you can enable or disable PTP. If you disable PTP on an interface, the interface does

not support PTP pass-through.

To configure the PTP end-to-end transparent clock settings for one or more interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual69

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > PTP TC > Interface Configuration.

The Interface Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Configured Mode menu, select Enable or Disable.

The default is Enable.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

The Operational Mode field shows whether PTP is enabled or disabled for an interface.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual70

Domain Name System

You can configure information about Domain Name System (DNS) servers that the network

uses and how the switch operates as a DNS client.

Configure the global DNS settings and add a DNS server

You can configure the global DNS settings and DNS server information.

To configure the global DNS settings and add a DNS server:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > DNS > DNS Configuration.

The DNS Configuration page displays.

The DNS Server Configuration table includes a default DNS server with IP address

8.8.8.8.

6. Select the DNS Status Disable or Enable radio button:

• Enable: Allows the switch to send DNS queries to a DNS server to resolve a DNS

domain name. The default value is Enable.

• Disable: Prevents the switch from sending DNS queries.

7. In the DNS Default Name field, enter the name that must be includes in DNS queries.

When the switch looks up on an unqualified host name, this field provides the domain

name. For example, if the default domain name is netgear.com and you enter test, then

test is changed to test.netgear.com to resolve the name). The maximum length of the

name is 255 characters.

8. In the Retry Number field, specify the number of times that the switch must retry to send

DNS queries to the DNS server.

Enter a number from 0 to 100. The default is 2.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual71

9. In the Response Timeout (secs) field, specify the time in seconds that the switch must wait

for a response to a DNS query.

Enter a number from 0 to 3600. The default is 3.

10. From the Source Interface menu, select the interface that must be the source interface for

DNS:

• None: The primary IP address of the originating (outbound) interface is used as the

source address.

• Routing interface: The primary IP address of a physical port is used as the source

address.

•Routing VLAN: The primary IP address of a VLAN routing interface is used as the

source address.

•Routing loopback interface: The primary IP address of a routing loopback interface

is used as the source address.

• Tunnel interface: The IPv6 tunnel interface.

• Service port: The management port source IP address is used as the source

address.

By default, VLAN 1 is used as the source interface.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

13. To add a DNS server to which the switch sends DNS queries, do the following:

a. In the DNS Server Address field in the DNS Server Configuration table, enter an IP

address in standard IPv4 or IPv6 dot notation.

b. Click the Add button.

c. To save the settings to the running configuration, click the Save icon.

The server is added to the table. You can specify up to eight DNS servers. The

precedence is set in the order that you add the servers.

The following table displays non-configuration DNS server information.

Table 19. DNS server configuration information

Field Description

Serial No The sequence number of the DNS server.

Preference Shows the preference of the DNS server. The preference is determined

by the order in which they were entered.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual72

Remove a DNS server

You can remove a DNS server that you no longer need.

To remove a DNS server:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > DNS > DNS Configuration.

The DNS Configuration page displays.

6. In the DNS Server Configuration table, select the check box for the DNS server.

Note: If you do not select a DNS server, all the DNS servers are removed

after you click the Delete button.

7. Click the Delete button.

The DNS server is removed.

8. To save the settings to the running configuration, click the Save icon.

Configure and view host name-to-IP address information

You can manually map host names to IP addresses or view dynamic host mappings.

Add a static entry to the dynamic host mapping table

To add a static entry to the local dynamic host mapping table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual73

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > DNS > Host Configuration.

The Host Configuration page displays.

6. In the Host Name field, specify the static host name.

The maximum length of the name is 255 characters.

7. In the IP Address field, enter the IP address to associate with the host name.

8. Click the Add button.

The entry displays in the Dynamic Hoist Mapping table.

9. To save the settings to the running configuration, click the Save icon.

Remove an entry from the dynamic host mapping table

To remove an entry from the dynamic host mapping table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > DNS > Host Configuration.

The Host Configuration page displays.

6. Select the check box next to the entry that you want to remove.

7. Click the Delete button.

The entry is removed.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual74

Change the host name or IP address in an entry of the dynamic host mapping

table, view all entries, or clear all entries

To change the host name or IP address in an entry of the dynamic host mapping table,

view all entries, or clear all entries:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > DNS > Host Configuration.

The Host Configuration page displays.

6. Select the check box next to the entry to update.

7. Enter the new information in the appropriate field.

8. Click the Apply button.

Your settings are saved.

9. To clear all the dynamic host name entries from the list, click the Clear button.

10. To save the settings to the running configuration, click the Save icon.

The dynamic host mapping table shows host name-to-IP address entries that the switch

learned. The following table describes the dynamic host fields.

Table 20. Dynamic Host Mapping information

Field Description

Host Lists the host name that you assign to the specified IP address.

Total Time since the dynamic entry was first added to the table.

Elapsed Time since the dynamic entry was last updated.

Type The type of the dynamic entry.

Addresses Lists the IP address associated with the host name.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual75

Switch database management template

A switch database management (SDM) template determines the maximum resources the

switch can use for various features. SDM templates allow different combinations of scaling

factors and therefore allocations of resources, depending on how the switch is used. That is,

SDM templates let you reallocate switch resources to support a different combination of

features based on your network requirements.

The following table shows how the hardware resources are divided.

Table 21. SDM hardware resources

Template Name Models Supported Number of IPv4 Entries Number of IPv6 Entries

IPv4-Basic All models 90% of total available 10% of total available

IPv6-Basic All models 10% of total available 90% of total available

IPv4-Advanced M4250-16XF 90% of total available 10% of total available

IPv6-Advanced M4250-16XF 10% of total available 90% of total available

The main UI provides more information about the templates (see the steps in this task).

The default SMD is IP4v-Basic. You can change the SDM template for the switch.

To change the SDM template

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > SDM Template Preference.

The SDM Template Preference page displays.

6. From the SDM Next Template ID menu, select a template.

By default, the IPv4-Basic template is selected.

7. Click the Apply button.

Your settings are saved.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual76

8. To save the settings to the running configuration, click the Save icon.

9. To activate the new template, restart the switch.

The following table displays Summary information.

Table 22. SDM template summary information

Field Description

SDM Template Identifies the template.

ARP Entries The maximum number of entries in the Address Resolution Protocol (ARP) cache

for routing interfaces.

IPv4 Unicast Routes The maximum number of IPv4 unicast forwarding table entries.

IPv6 NDP Entries The maximum number of IPv6 Neighbor Discovery Protocol (NDP) cache entries.

IPv6 Unicast Routes The maximum number of IPv6 unicast forwarding table entries.

ECMP Next Hops The maximum number of next hops that can be installed in the IPv4 and IPv6

unicast forwarding tables.

IPv4 Multicast Routes The maximum number of IPv4 multicast forwarding table entries.

IPv6 Multicast Routes The maximum number of IPv6 multicast forwarding table entries.

Maximum VLAN Entries The maximum number of VLAN entries, which is 4093 for any SDM template.

Green Ethernet settings

You can configure the green Ethernet features to reduce power consumption.

To configure the green Ethernet settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Green Ethernet > Green Ethernet Configuration.

The Green Ethernet Configuration page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual77

6. Select the Auto Power Down Mode Disable or Enable radio button.

By default, this mode is disabled. When a port link is down, the underlying physical layer

goes down for a short period and then checks for port link pulses again so that

auto-negotiation remains possible. In this way, the switch saves power when no link

partner is present for the port.

7. Select the EEE Mode Disable or Enable radio button.

By default, this mode is disabled. Energy Efficient Ethernet (EEE) combines the MAC

with a family of physical layers that support operation in a low power mode. It is defined

by the IEEE 802.3az standard. Lower power mode enables both the send and receive

sides of the link to disable some functionality for power savings when lightly loaded.

Transition to low power mode does not change the link status. Frames in transit are not

dropped or corrupted in transition to and from low power mode. Transition time is

transparent to upper layer protocols and applications.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Configure green Ethernet interface settings

You can configure green Ethernet settings for individual interfaces.

To configure the green Ethernet interface settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Green Ethernet > Green Ethernet Interface

Configuration.

The Green Ethernet Interface Configuration page displays.

6. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual78

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

7. From the Auto Power Down mode menu, to enable or disable this option.

By default, this mode is disabled for the interface. When a port link is down, the

underlying physical layer goes down for a short period and then checks for port link

pulses again so that auto-negotiation remains possible. In this way, the switch saves

power when no link partner is present for the port.

8. From the EEE mode menu, select Enable or Disable.

By default, this mode is disabled for an interface. When a port link is down, the underlying

physical layer goes down for a short period and then checks for port link pulses again so

that auto-negotiation remains possible. In this way, the switch saves power when no link

partner is present for the port.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

Configure and display detailed green Ethernet settings

for an interface

You can select a single interface and configure and display detailed green Ethernet settings.

To configure and display detailed green Ethernet settings for a single interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Green Ethernet > Green Ethernet Details.

The Green Ethernet Details page displays.

6. From the Interface menu, select the interface.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual79

7. From the Energy Detect Admin Mode menu, select to enable or disable this mode.

By default, this mode is disabled for the interface. When a port link is down, the

underlying physical layer goes down for a short period and then checks for port link

pulses again so that auto-negotiation remains possible. In this way, the switch saves

power when no link partner is present for the port.

8. From the EEE Admin Mode menu, select to enable or disable this mode.

With Energy Efficient Ethernet (EEE) mode enabled, the port transitions to low power

mode during a link idle condition. The default value is Disabled.

9. In the EEE Transmit Idle Time field, enter the period that the interface must remain idle

(without receiving packets for transmission) before entering the low-power idle (LPI) state.

The range is from 600 to 4294967295 seconds. The default is 600 seconds.

10. In the EEE Transmit Wake Time field, enter the period that the interface must remain in the

LPI state before returning to the active state after it receives a packet for transmission.

The range is from 8 to 65535 seconds. The default is 17 seconds.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields.

Table 23. Green Ethernet local device information

Field Description

Cumulative Energy Saved on this

port due to Green mode(s) (Watts

* Hours)

The cumulative energy saved on the port because of the green modes that

are enabled on the port in watts * hours.

Energy Detect Operational Status The operational state (Active or Inactive) of the Energy Detect mode.

Reason The reason for the operational state that is displayed in the previous field.

Rx Low Power Idle Event Count The total number of times that the port entered the low-power idle (LPI)

state since the EEE counters were reset.

Rx Low Power Idle Duration

(uSec)

The total period (in 10 us increments) that the port remained in the LPI

state since the EEE counters were reset.

Tx Low Power Idle Event Count The total number of times that the link partner of the port entered the LPI

state since the EEE counters were reset.

Tx Low Power Idle Duration

(uSec)

The total period (in 10 us increments) that the link partner of the port

remained in the LPI state since the EEE counters were reset.

Tw_sys_tx (uSec) The value of ‘Tw_sys’ that the port can support.

Tw_sys_tx Echo (uSec) The link partner’s ‘transmit Tw_sys’ that the port uses to compute the

‘Tw_sys’ that it requests from its link partner.

Tw_sys_rx (uSec) The value of ‘Tw_sys’ that the port requested from its link partner.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual80

Display green Ethernet information for the link partner

of an interface

The switch can detect green Ethernet information for the link partner of an interface, that is

for the remote device.

To display the green Ethernet information for the link partner of an interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Green Ethernet > Green Ethernet Details.

The Green Ethernet Details page displays.

6. Scroll down to the Remote Device Information section.

Tw_sys_rx Echo (uSec) The link partner’s ‘receive Tw_sys’ that the port uses to compute the

‘Tw_sys’ that it can support.

Fallback Tw_sys (uSec) The value of the ‘fallback Tw_sys’ that the port requested from its link

partner.

Tx_dll_enabled The initialization status of the transmit EEE transmit Data Link Layer (DLL)

function on the port.

Tx_dll_ready The transmit DLL status, which indicates if the ‘tx system’ initialization is

complete and if port is ready to receive or update LLDPDUs that contain

EEE TLVs.

Rx_dll_enabled The status of the EEE capability negotiation on the port.

Rx_dll_ready The receive DLL status, which indicates if the ‘rx system’ initialization is

complete and if port is ready to receive or update LLDPDUs that contain

EEE TLVs.

Time Since Counters Last Cleared The time since the counters were reset.

Table 23. Green Ethernet local device information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual81

7. From the Interface menu, select the interface.

The following table describes the nonconfigurable fields.

Table 24. Green Ethernet remote device information

Field Description

Remote ID The identifier that is assigned to the link partner of the port.

Remote Tw_sys_tx (uSec) The value of ‘Tw_sys’ that the link partner can support.

Remote Tw_sys_tx Echo (uSec) The value of ‘transmit Tw_sys’ that the link partner returns to the port.

Remote Tw_sys_rx (uSec) The value of ‘Tw_sys’ that the link partner requests from the port.

Remote Tw_sys_rx Echo (uSec) The value of ‘receive Tw_sys’ that the link partner returns to the port.

Remote Fallback Tw_sys (uSec) The value of ‘fallback Tw_sys’ that the link partner returns to the port.

Display the green Ethernet statistics summary

The green Ethernet statistics summary displays information about both the switch and the

interfaces.

To display the green Ethernet statistics summary:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Green Ethernet > Green Ethernet Summary.

The Green Ethernet Summary page displays.

6. To refresh the page, click the Refresh button.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual82

The following table describes the nonconfigurable fields in the Green Ethernet Statistics

Summary section.

Table 25. Green Ethernet statistics summary information

Field Description

Current Power Consumption (mW) The power consumption by all ports on the switch in mWatts (mW).

Percentage Power Saving (%) The percentage of power saved on all ports on the switch when green

Ethernet mode is enabled.

Cumulative Energy Saving (W*H) The cumulative energy saved on the switch in (watts * hour) when all green

features are enabled.

The following table describes the nonconfigurable fields in the Green Ethernet Feature

Summary section.

Table 26. Green Ethernet feature summary information

Field Description

Unit The unit is always 1.

Green Features supported on this

unit

The green features that are supported on the switch:

• Energy-Detect

• EEE (Energy Efficient Ethernet)

• LPI-History (EEE low power idle history)

• LLDP-Cap-Exchg (EEE LLDP capability exchange)

• Pwr-Usg-Est (Power usage estimates).

The following table describes the nonconfigurable fields in the Green Ethernet Interface

Summary section.

Table 27. Green Ethernet interface summary information

Field Description

Interface The interface for which information is displayed.

Energy Detect Admin Mode Indicates the status of the mode (Enable or Disable).

If the mode is enabled and a port link is down, the underlying physical

layer goes down for a short period and then checks for port link pulses

again so that auto-negotiation remains possible. In this way, the switch

saves power when no link partner is present for the port.

Energy Detect Operational Status The operational state (Active or Inactive) of the Energy Detect mode.

EEE Admin mode Indicates the status of the mode (Enable or Disable).

If this mode is enabled, the port transitions to low power mode during a

link idle condition.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual83

Configure and display the green Ethernet EEE LPI history

for an interface

You can configure and display the green Ethernet EEE low-power idle (LPI) history for an

interface.

To configure and display the green Ethernet EEE LPI history for an interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Green Ethernet > Green Ethernet LPI History.

The Green Ethernet LPI History page displays.

6. From the Interface menu, select the interface.

7. In the Sampling Interval field, enter the interval at which EEE LPI data is collected.

The range is from 30 to 36000 seconds.The default is 3600 seconds.

8. In the Max Samples To Keep field, enter the maximum number of samples to keep.

The range is from 1 to 168.The default is 168.

The Percentage LPI time field displays the time that the interface was in LPI mode since

the EEE counters were reset.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

11. To refresh the page, click the Refresh button.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual84

The following table describes the nonconfigurable fields.

Table 28. Interface green mode EEE LPI history information

Field Description

Sample No. The sample index.

Time Since The Sample Was

Recorded

The period that past since the sample was recorded.

Percentage Time spent in LPI

mode since last sample

The percentage of time that the interface was in LPI mode since the last

sample was recorded.

Percentage Time spent in LPI

mode since last reset

The percentage of time that the interface was in LPI mode since the EEE

counters were reset.

Bonjour settings

A Mac that supports Bonjour can discover the switch in the network so that you can find the

switch IP address and log in to the main UI of the switch. Bonjour is enabled by default. You

can disable Bonjour for security reasons.

Enable or disable Bonjour

To enable or diable Bonjour:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Bonjour > Bonjour Configuration.

The Bonjour Configuration page displays.

6. Select one of the following radio buttons:

• Enable. Bonjour is enabled. This is the default setting.

• Disable. Bonjour is disabled.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual85

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Display Bonjour information

To display Bonjour information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Management > Bonjour > Bonjour Details.

The Bonjour Details page displays.

The Bonjour Administration Mode field displays whether Bonjour is enabled or disabled.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 29. Bonjour Published Services

Field Description

Service Name The Bonjour service names in the switch.

Type The Bonjour service type names in the switch.

Domain The Bonjour service domain in the switch.

Port The Bonjour service port number.

TXT Data The Bonjour service text.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual86

IPv4 DHCP server

You can configure settings for an IPv4 DHCP server, DHCP pools, and DHCP bindings. You

can also view DHCP statistics and, if they occur, DHCP conflicts.

Configure a DHCP server

To configure a DHCP server:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays

5. Select System > Services > DHCP Server > DHCP Server Configuration.

The DHCP Server Configuration page displays.

6. Select the Admin Mode Disable or Enable radio button.

This setting specifies whether the DHCP service is enabled or disabled.

The default is Disable.

7. In the Ping Packet Count field, specify the number of packets a server sends to a pool

address to check for duplication as part of a ping operation.

The value can be 0 or from 2 to 10. Setting the value to 0 disables the function. The

default is 2.

8. Select the Conflict Logging Mode Disable or Enable radio button.

This setting specifies whether conflict logging on a DHCP server is enabled or disabled.

The default is Enable.

9. Select the BootP Automatic Mode Disable or Enable radio button.

This setting specifies whether BootP for dynamic pools is enabled or disabled. The

default value is Disable.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual87

10. To exclude addresses, do the following:

a. In the IP Range From field, enter the lowest address in the range or a single address

to be excluded.

b. In the IP Range To field, to exclude a range, enter the highest address in the range.

To exclude a single address, enter the same IP address as specified in the IP

Range From field, or leave it as 0.0.0.0.

c. Click the Add button.

The addresses that must be excluded are added to the switch.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

Manage DHCP pools

You can set up and manage different types of pools of IP addresses that the DHCP server

can assign.

Create a DHCP pool

To create a DHCP pool:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP Server > DHCP Pool Configuration.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual88

6. From the Pool Name menu, select Create.

The Pool Name field displays.

7. In the Pool Name field, type a name for the new pool.

The name can be up to 31 characters in length.

8. Select the type of binding for the pool:

• Unallocated: No further configurations are required. Continue with the next step.

• Dynamic: Configure the following settings:

- Network Address. The subnet IP address for the dynamic DHCP pool.

- Network Mask: The network mask for the dynamic DHCP pool.

- Network Prefix Length: The subnet number for the dynamic DHCP pool. The

range is from 0 to 32.

Note: For a dynamic DHCP pool, you can configure either the network

mask or the prefix length.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual89

• Manual: Configure the following settings:

- Client Name: The DHCP client name.

-Hardware Address: The hardware MAC address of the DHCP client.

-Hardware Address Type: The protocol of the MAC address of the DHCP client.

The type can be Ethernet or IEEE802. The default is Ethernet.

- Client ID: The client ID of the DHCP client.

-Host Number: The IP address for the manual binding of the DHCP client.

-Host Mask: The subnet mask for the manual binding of the DHCP client.

-Host Prefix Length: The subnet mask for the manual binding of the DHCP client.

The range is from 0 to 32.

Note: For a manually added DHCP client, you can configure either the

network mask or the prefix length.

9. From the Lease Time menu, select how the binding is leased:

•Infinite: For a dynamic binding, infinite is a lease period of 60 days. For manually

added binding, the lease period is indefinite. No further configurations are required.

Continue with the next step.

• Specified Duration: Configure the following settings:

- Days: The number of days of the lease period. The range is from 0 to 59. The

default is 1.

-Hours: The number of hours of the lease period. The range is from 0 to 22.

- Minutes: The number of minutes of the lease period. The range is from 0 to

86399.

10. To configure default router addresses, click the Default Router Addresses link, and add up

to eight IP address for default routers, in order of preference.

11. To configure DNS server addresses, click the DNS Server Addresses link, and add up to

eight IP address for DNS server, in order of preference.

12. To configure NetBIOS name server addresses, click the NetBIOS name server addresses

link, and add up to eight IP address for NetBIOS name servers, in order of preference.

13. From the NetBIOS Node Type menu, select one of the following NetBIOS node types for

DHCP clients:

•b-node Broadcast

•p-node Peer-to-Peer

•m-node Mixed

•h-node Hybrid

14. In the Next Server Address field, enter the IP address of the next server in the boot

process for a DHCP client.

15. In the Domain Name field, enter the domain name in the boot process for a DHCP client.

The domain name can be up to 255 characters in length.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual90

16. In the Bootfile field, enter the name of the default boot image in the boot process for a

DHCP client.

The domain name can be up to 128 characters in length.

17. Click the Add button.

The pool configuration is added.

18. To save the settings to the running configuration, click the Save icon.

Change a DHCP pool

You can change an existing DHCP pool.

To change a DHCP pool:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP Server > DHCP Pool Configuration.

The DHCP Pool Configuration page displays.

6. From the Pool Name menu, select the pool.

7. Change the settings as needed.

For more information about the settings, see Create a DHCP pool on page 87.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Remove a DHCP pool

You can remove a DHCP pool that you no longer need.

To remove a DHCP pool:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual91

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP Server > DHCP Pool Configuration.

The DHCP Pool Configuration page displays.

6. From the Pool Name menu, select the pool.

7. Click the Delete button.

The pool is removed.

8. To save the settings to the running configuration, click the Save icon.

Configure DHCP pool options

You can specify information that is included in the “options” field of a DHCP message that the

switch sends.

To configure DHCP pool options:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP Server> DHCP Pool Options.

The DHCP Pool Options page displays.

6. From the Pool Name menu, select the pool name.

7. In the Option Code field, specify the option code configured for the pool.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual92

The range is from 1 to 254. For information about options and their format, see

information about RFC 2132 at https://tools.ietf.org/html/rfc2132.

8. Form the Option Type menu, select one of the following option types for the pool:

• ASCII: Enter the information in the Option Value field in ASCII format.

• Hex: Enter the information in the Option Value field in hexadecimal format. The

possible formats are xx:xx and xxxx.xxxx.

• IP Address: In the Option Value field, enter an IPv4 address.

9. In the Option Value field, specify the option value for the pool according to your selection in

the previous step.

10. Click the Add button.

The option code is added for the pool.

11. To save the settings to the running configuration, click the Save icon.

Display DHCP server statistics

To display the DHCP server statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP Server > DHCP Server Statistics.

The DHCP Server Statistics page displays.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 30. DHCP server statistics information

Field Description

Binding Details

Automatic Bindings The number of automatic bindings on the DHCP server.

Expired Bindings The number of expired bindings on the DHCP server.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual93

Display the DHCP bindings

To display the DHCP bindings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP Server > DHCP Bindings Information.

The DHCP Bindings Information page displays. The table displays information about all

bindings.

6. To search for a binding by IP address, enter the IP address in the Search Binding IP field

and click the Go button.

Information about the binding displays.

Malformed Messages The number of the malformed messages on the DHCP server.

Message Received

DHCPDISCOVER The number of DHCPDISCOVER messages received by the DHCP server.

DHCPREQUEST The number of DHCPREQUEST messages received by the DHCP server.

DHCPDECLINE The number of DHCPDECLINE messages received by the DHCP server.

DHCPRELEASE The number of DHCPRELEASE messages received by the DHCP server.

DHCPINFORM The number of DHCPINFORM messages received by the DHCP server.

Message Sent

DHCPOFFER The number of DHCPOFFER messages sent by the DHCP server.

DHCPACK The number of DHCPACK messages sent by the DHCP server.

DHCPNAK The number of DHCPNAK messages sent by the DHCP server.

Table 30. DHCP server statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual94

The following table describes the nonconfigurable fields on the page.

Table 31. DHCP bindings information

Field Description

IP Address The client's IP address.

Hardware Address The client's hardware address.

Lease Time Left The remaining lease time in days, hours and minutes (dd:hh:mm format).

Type The type of binding (Dynamic or Manual).

Delete one or all dynamic DHCP bindings

To delete one or all dynamic DHCP bindings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP Server > DHCP Bindings Information.

The DHCP Bindings Information page displays.

6. Select one of the following radio buttons:

• All Dynamic Bindings: All dynamic bindings must be cleared.

• Specific Dynamic Binding: In the field, specify the IP address of the dynamic binding

that must be cleared.

7. Click the Clear button.

The selected binding or bindings are deleted.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual95

View bindings with DHCP conflicts

You can view information about devices with IP address conflicts. A conflict might occur

when the same IP address is assigned to two or more devices in the network.

To view DHCP bindings with conflicts:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP Server > DHCP Conflicts Information.

The DHCP Conflicts Information page displays. The table displays information about all

bindings with conflicts.

6. To search for a binding with an IP address conflict, enter the IP address in the Search

Conflict IP Address field and click the Go button.

Information about the binding displays.

The following table describes the nonconfigurable fields on the page.

Table 32. DHCP conflicts information

Field Description

IP Address The IP address of the DHCP client.

Hardware Address The hardware address if the DHCP client.

Detection Method The method with which the IP address of the DHCP client was detected on

the DHCP server.

Detection Time The time when the conflict was detected in the

days;hours;minutes;seconds format since the switch was last restarted.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual96

Delete one or all DHCP bindings with conflicts

To delete one or all DHCP bindings with conflicts:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP Server > DHCP Conflicts Information.

The DHCP Conflicts Information page displays.

6. Select one of the following radio buttons:

•All Address Conflicts: All bindings with IP address conflicts must be cleared.

•Specific Address Conflict: In the field, specify the IP address of the binding with a

conflict that must be cleared.

7. Click the Clear button.

The selected binding or bindings are deleted.

8. To save the settings to the running configuration, click the Save icon.

DHCP relay and relay statistics

If the switch is functioning as a Layer 3 device, you can enable the Layer 3 DHCP relay agent

and let the switch relay DHCP messages between DHCP clients and DHCP servers that are

located in a different IP subnet.

To configure a DHCP relay and display relay statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual97

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP Relay.

The DHCP Relay page display.

6. in the Maximum Hop Count field, enter the maximum number of hops a client request can

take before being discarded.

The range is from 1 to 16. The default is 4.

7. Select the Admin mode Disable or Enable radio button to disable or enable the DHCP relay

on the switch.

8. In the Minimum Wait Time field, enter the minimum time in seconds that the DHCP relay

must wait before forwarding requests.

The time is compared to the time stamp in the client's DHCP request packets, which

represents the time since the client was powered up. Packets are forwarded only when

the time stamp exceeds the minimum wait time. The range is from 0 to 100.

9. Select one of the following Circuit ID Option Mode radio buttons:

• Enable: Relay agent options are added to requests before they are forwarded to the

server and removed from replies before they are forwarded to clients.

• Disable: R relay agent options are not added to requests before they are forwarded

to the server and not removed from replies before they are forwarded to clients.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

12. To refresh the information on the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 33. DHCP relay status information

Field Description

Requests Received The total number of DHCP requests received from all clients since the time the

switch was started.

Requests Relayed The total number of DHCP requests forwarded to the server since the time the

switch was started.

Packets Discarded The total number of DHCP packets discarded by the relay agent since the time the

switch was started.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual98

DHCP Layer 2 relay

If you enable and configure a DHCP relay agent on the switch, some Layer 2 (L2) devices do

not need to connect to a DHCP server on the physical network. A relay agent automatically

populates the gateway IP address (giaddr) field and adds the Relay Agent Information option

to DHCP messages. A DHCP server uses this option for IP addresses and other assignment

policies. A DHCP relay agent is usually an IP routing-aware device, which is also referred to

as a Layer 3 relay agent. In some network configurations, L2 devices must append the Relay

Agent Information option because they are closer to the end hosts.

An L2 device can operate as a bridge only for a network and might not include an IPv4

address on the network. If an L2 device lacks an IPv4 source address, the device cannot

relay packets directly to a DHCP server that is located on another network. In that situation,

the L2 device can append the Relay Agent Information option and broadcast the DHCP

message.

Configure the global DHCP L2 relay settings

To configure the global DHCP L2 relay settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP L2 Relay > DHCP L2 Relay Global Configuration.

The DHCP L2 Relay Global Configuration page displays.

6. Select the Admin mode Disable or Enable radio button to disable or enable the DHCP L2

relay on the switch.

The default is Disable.

7. In the DHCP L2 Relay VLAN Configuration section, configure the following settings:

•VLAN ID: The ID of the VLAN that is already configured on the switch.

You cannot use this page to add a VLAN. For information about adding VLANs, see

VLANs on page 167.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual99

• Admin mode: Enable or disable the DHCP L2 relay on the VLAN.

• Circuit ID mode: Enable or disable the circuit ID suboption of DHCP Option-82.

• Remote ID String: Specify the remote ID if the Remote ID option is enabled.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Configure a DHCP L2 relay interface

You can enable a DHCP L2 relay on an interface.

To configure DHCP L2 relay interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP L2 Relay > DHCP L2 Relay Interface Configuration.

The DHCP L2 Relay Interface Configuration displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Admin mode menu, select to enable or disable the DHCP L2 relay on the

interface.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual100

The default is Disable.

9. From the 82 Option Trust Mode menu, select to enable or disable the interface as a trusted

interface for Relay Agent Information option (Option 82).

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

Display DHCP L2 relay interface statistics

To display the DHCP L2 relay interface statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCP L2 Relay > DHCP L2 Relay Interface Statistics.

The DHCP L2 Relay Interface Statistics page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. To refresh the information on the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 34. DHCP L2 relay interface statistics information

Field Description

Interface The interface from which the DHCP message is received.

UntrustedServerMsgsWithOpt82 The number of DHCP messages with Option 82 received from an untrusted

server.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual101

UDP relay

You can enable the switch to function as a UDP relay, which enables the switch to forward

User Datagram Protocol (UDP) broadcast packets from a router to an IP address on a local

or non-local subnet.

Configure the global UDP relay settings and add a UDP

switch configuration

To configure the global UDP relay settings and add a UDP switch configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > UDP Relay > UDP Relay Global Configuration.

The UDP Relay Global Configuration page displays.

6. Select the Admin mode Disable or Enable radio button to disable or enable the UDP relay

on the switch.

The default is Disable.

7. In the UDP Relay Global Configuration section, configure the following settings:

•Server Address: Enter the IPv4 address of the UDP relay server.

UntrustedClientMsgsWithOpt82 The number of DHCP messages with Option 82 received from an untrusted

client.

TrustedServerMsgsWithoutOpt82 The number of DHCP messages without Option 82 received from a trusted

server.

TrustedClientMsgsWithoutOpt82 The number of DHCP messages without Option 82 received from a trusted

client.

Table 34. DHCP L2 relay interface statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual102

• UDP Port: Select one of the following types of UDP destination ports:

- Other: The UDP Port Other Value field becomes available so that you can enter

a custom UDP port number.

- dhcp: Relay DHCP (UDP port 67) packets.

- domain: Relay DNS (UDP port 53) packets.

- isakmp: Relay ISAKMP (UDP port 500) packets.

- mobile-ip: Relay Mobile IP (UDP port 434) packets

- nameserver: Relay IEN-116 Name Service (UDP port 42) packets

-netbios-dgm: Relay NetBIOS Datagram Server (UDP port 138) packets

- netbios-ns: Relay NetBIOS Name Server (UDP port 137) packets

- ntp: Relay network time protocol (UDP port 123) packets.

- pim-auto-rp: Relay PIM auto RP (UDP port 496) packets.

- rip: Relay Routing Image Protocol (RIP) (UDP port 520) packets

- tacacs: Relay TACACS (UDP port 49) packet

- tftp: Relay TFTP (UDP port 69) packets

-time: Relay time service (UDP port 37) packets

• UDP Port Other Value: If you select Other from the UDP Port menu, enter a custom

UDP port number in the range from 0 to 65535.

8. Click the Add button.

The UDP switch configuration is added.

The Hit Count field displays the number of UDP packets that are detected on the UDP

interface.

9. To save the settings to the running configuration, click the Save icon.

Change a UDP switch configuration

To change a UDP switch configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual103

5. Select System > Services > UDP Relay > UDP Relay Global Configuration.

The UDP Relay Global Configuration page displays.

6. In the UDP Relay Global Configuration section, select the check box for the UDP switch

configuration.

7. Change the settings as needed.

For more information about the settings, see Configure the global UDP relay settings

and add a UDP switch configuration on page 101.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Remove a UDP switch configuration

To remove a UDP switch configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > UDP Relay > UDP Relay Global Configuration.

The UDP Relay Global Configuration page displays.

6. In the UDP Relay Global Configuration section, select the check box for the UDP switch

configuration.

7. Click the Delete button.

The UDP switch configuration is removed.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual104

Add a UDP interface configuration

To add a UDP relay interface configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > UDP Relay > UDP Relay Interface Configuration.

The page UDP Relay Interface Configuration page displays.

6. From the Interface menu, select the interface or VLAN for which you are adding the UDP

configuration.

7. in the Server Address field, enter the IPv4 address of the UDP relay server.

8. From the UDP Port menu, select one of the following types of UDP destination ports:

• Other: The UDP Port Other Value field becomes available so that you can enter a

custom UDP port number.

• dhcp: Relay DHCP (UDP port 67) packets.

• domain: Relay DNS (UDP port 53) packets.

• isakmp: Relay ISAKMP (UDP port 500) packets.

• mobile-ip: Relay Mobile IP (UDP port 434) packets

• nameserver: Relay IEN-116 Name Service (UDP port 42) packets

•netbios-dgm: Relay NetBIOS Datagram Server (UDP port 138) packets

• netbios-ns: Relay NetBIOS Name Server (UDP port 137) packets

• ntp: Relay network time protocol (UDP port 123) packets.

• pim-auto-rp: Relay PIM auto RP (UDP port 496) packets.

• rip: Relay Routing Image Protocol (RIP) (UDP port 520) packets

• tacacs: Relay TACACS (UDP port 49) packet

• tftp: Relay TFTP (UDP port 69) packets

•time: Relay time service (UDP port 37) packets

9. If you select Other from the UDP Port menu, enter a custom UDP port number in the UDP

Port Other Value. field.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual105

The port number can be in the range from 0 to 65535.

10. From the Discard menu, select if packets that match the condition are dropped:

• Enable: The packets are dropped. This selection functions only is you enter 0.0.0.0

as the server IP address.

• Discard: The packets are not dropped. This selection functions if the server IP

address is not 0.0.0.0.

11. Click the Add button.

The UDP interface configuration is added.

The Hit Count field displays the number of UDP packets that are detected on the UDP

interface.

12. To save the settings to the running configuration, click the Save icon.

Change a UDP interface configuration

To change a UDP switch configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > UDP Relay > UDP Relay Interface Configuration.

The page UDP Relay Interface Configuration page displays.

6. From the Interface menu, select the interface or VLAN.

7. Change the settings as needed.

For more information about the settings, see Add a UDP interface configuration on

page 104.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual106

Remove a UDP switch configuration

To remove a UDP switch configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > UDP Relay > UDP Relay Interface Configuration.

The page UDP Relay Interface Configuration page displays.

6. From the Interface menu, select the interface or VLAN.

7. Click the Delete button.

The UDP switch configuration is removed.

8. To save the settings to the running configuration, click the Save icon.

DHCPv6 server

You can configure settings for a DHCPv6 server, DHCPv6 pools, DHCPv6 prefix delegation,

DHCPv6 interfaces. and DHCPv6 bindings. You can also view DHCPv6 statistics.

Enable the DHCPv6 server

By default, the DHCPv6 server is disabled. You can enable it so that the switch can assign

network configuration information to IPv6 clients.

To enable the DHCPv6 server on the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual107

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Server > DHCPv6 Server Configuration.

The DHCPv6 Server Configuration page displays.

6. Select the Admin mode Enable radio button.

The default value is Disable.

7. Click the Apply button.

Your settings are saved.

The DHCPv6 Server DUID field displays the DHCP Unique Identifier (DUID) of the DHCPv6

server.

8. To save the settings to the running configuration, click the Save icon.

Manage DHCPv6 pools

A DHCPv6 pool provides network configuration information that is available to DHCPv6

clients that request such information. You can add, change, and remove DHCPv6 pools.

Create a DHCPv6 pool

A DHCPv6 pool provides network configuration information that is available to DHCPv6

clients that request such information.

To create a DHCPv6 pool:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Server > DHCPv6 Pool Configuration.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual108

The DHCPv6 Pool Configuration page displays.

6. From the Pool Name menu, select Create.

7. In the Pool Name field, type a name that identifies the DHCPv6 server pool.

The name can be up to 31 characters in length.

8. Click the Default Router Addresses link and specify the list of default IPv6 router

addresses for the pool.

You can specify up to eight default router addresses in order of preference.

9. Click the Domain Name link and specify the list of IPv6 domain names for the pool.

A domain name can be up to 255 alphanumeric characters in length.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

Change a DHCPv6 pool

You can change an existing DHCPv6 pool.

To change a DHCPv6 pool:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Server > DHCPv6 Pool Configuration.

The DHCPv6 Pool Configuration page displays.

6. From the Pool Name menu, select the name for the pool.

You cannot change the pool name.

7. Click the Default Router Addresses link and change the list of default IPv6 router

addresses for the pool.

You can specify up to eight default router addresses in order of preference.

8. Click the Domain Name link and change the list of IPv6 domain names for the pool.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual109

A domain name can be up to 255 alphanumeric characters in length.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

Delete a DHCPv6 pool

You can delete a DHCPv6 pool that you no longer need.

To delete a DHCPv6 pool:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Server > DHCPv6 Pool Configuration.

The DHCPv6 Pool Configuration page displays.

6. From the Pool Name menu, select the name for the pool.

7. Click the Delete button.

The pool is deleted.

8. To save the settings to the running configuration, click the Save icon.

Manage DHCPv6 prefix delegation for pools

A prefix delegation configuration supplies an IPv6 prefix and prefix length to a DHCPv6 pool

that provide network configuration information to DHCPv6 clients that request such

information.

A DHCPv6 client can request multiple IPv6 prefixes and can also request specific IPv6

prefixes. If a DHCPv6 pool contains the specific prefix that a DHCPv6 client requests, the

prefix is delegated to the client. Otherwise, the first available IPv6 prefix in a pool is

delegated to the client.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual110

Create a DHCPv6 prefix delegation configuration for a pool

To create a DHCPv6 prefix delegation configuration for a pool:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Server > DHCPv6 Prefix Delegation

Configuration.

The DHCPv6 Prefix Delegation Configuration page displays.

6. From the Pool Names menu, select a pool.

7. In the Prefix field, specify the IPv6 prefix.

8. In the Prefix Length field, specify the length that is associated with the IPv6 prefix.

9. In the DUID field, specify the DHCP Unique Identifier (DUID) that is associated with the IPv6

prefix.

Note: The DUID and client name are used only if a device requests a prefix.

In this way, the device receives an IPv6 prefix instead of specific IPv6

address. If you assign a specific IPv6 address to the device, you can

leave the DUID and Client Name fields blank.

10. In the Client Name, field, enter a client name that is associated with the IPv6 prefix.

The name, which is useful for logging or tracing, can be up to 31 characters.

11. In the Valid Lifetime field, enter the time in seconds after which the IPv6 prefix times out.

Enter a value between 0 and 4294967295.

12. In the Prefer Lifetime field, enter the preferred time in seconds after which the IPv6 prefix

times out.

Enter a value between 0 and 4294967295.

13. Click the Add button.

The prefix delegation configuration is added for the selected pool.

14. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual111

Change a DHCPv6 prefix delegation configuration for a pool

You can change an existing DHCPv6 prefix delegation configuration.

To create a DHCPv6 prefix delegation configuration for a pool:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Server > DHCPv6 Prefix Delegation

Configuration.

The DHCPv6 Prefix Delegation Configuration page displays.

6. From the Pool Names menu, select the pool.

7. Change the settings as needed.

For more information about the settings, see Create a DHCPv6 prefix delegation

configuration for a pool on page 110.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Delete a DHCPv6 prefix delegation configuration for a pool

You can delete an existing DHCPv6 prefix delegation configuration that you no longer need.

To delete a DHCPv6 prefix delegation configuration for a pool:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual112

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Server > DHCPv6 Prefix Delegation

Configuration.

The DHCPv6 Prefix Delegation Configuration page displays.

6. From the Pool Names menu, select the pool.

7. Click the Delete button.

The prefix delegation configuration is deleted.

8. To save the settings to the running configuration, click the Save icon.

Configure the DHCPv6 settings for an interface

You can configure the DHCPv6 settings for an interface so that the interface can provide

DHCPv6 services to attached devices.

To configure the DHCPv6 settings for an interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Server > DHCPv6 Interface Configuration.

The DHCPv6 Interface Configuration page displays.

6. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual113

7. From the Admin mode menu, select to enable or disable the DHCPv6 server mode on the

interface.

Note: DHCPv6 server and DHCPv6 relay functions are mutually exclusive.

For information about configuring an interface as a DHCPv6 relay, see

DHCPv6 relay interface on page 117.

8. From the Pool Name field, select a DHCPv6 pool.

For more information, see Manage DHCPv6 pools on page 107.

9. From the Rapid Commit menu, select to enable or disable an abbreviated exchange

between the device that requests IPv6 information and the DHCPv6 server.

This setting is optional.

10. In the Preference field, specify the preference value that a device can use to determine the

preference of this interface in relation to other DHCPv6 servers.

You can enter a value from 0 to 4294967295. The default is 0.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

Display the DHCPv6 bindings

After a client acquires IPv6 configuration information from a DHCPv6 server, the server adds

an entry to the DHCPv6 bindings table.

To display DHCPv6 bindings information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Server > DHCPv6 Bindings Information.

The DHCPv6 Bindings Information page displays.

6. To search for a binding, enter the IPv6 address in the Search Binding IP field and click the

Go button.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual114

Information about the binding displays.

7. The following table describes the nonconfigurable fields on the page.

8. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 35. DHCPv6 binding Information

Field Description

Client Address The IPv6 address of the client associated with the binding.

Client Interface The interface number on which the client binding occurred.

Client DUID The DHCPv6 Unique Identifier (DUID) of the client. The DUID is a

combination of the client’s hardware address and client identifier.

Prefix The IPv6 address for the delegated prefix associated with this binding.

Prefix Length The IPv6 mask length for the delegated prefix associated with this binding.

Prefix Type The type of IPv6 prefix associated with this binding.

Expiry Time The number of seconds until the prefix associated with a binding expires.

Valid Lifetime The maximum amount of time in seconds that the client is allowed to use

the prefix.

Prefer Lifetime The preferred amount of time in seconds that the client is allowed to use the

prefix.

Display DHCPv6 server statistics

You can display the DHCPv6 server statistics, including information about the DHCPv6

messages, sent, received, and discarded globally and on each interface.

To display DHCPv6 server statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Server > DHCPv6 Server Statistics.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual115

The DHCPv6 Server Statistics page displays.

6. Do one of the following:

•Display statistics for one interface: From the Interface menu, select the interface.

• Display statistics for all interfaces: From the Interface menu, select All.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 36. DHCPv6 server statistics information

Field Description

Messages Received

Total DHCPv6 Packets Received The number of DHCPv6 messages received. The DHCPv6 messages

sent from a DHCP v6 client to a DHCP v6 server include solicit, request,

confirm, renew, rebind, release, decline, and information-request

messages. Additionally, a DHCP v6 relay agent can forward

relay-forward messages to a DHCP v6 server.

DHCPv6 Solicit Packets Received The number of DHCPv6 Solicit messages received. This type of

message is sent by a client to locate DHCPv6 servers.

DHCPv6 Request Packets Received The number of requests received.

DHCPv6 Confirm Packets Received The number of DHCPv6 Confirm messages received. This type of

message is sent by a client to all DHCPv6 servers to determine whether

its configuration is valid for the connected link.

DHCPv6 Renew Packets Received The number of DHCPv6 Renew messages received. This type of

message is sent by a client to extend and update the configuration

information provided by the DHCPv6 server.

DHCPv6 Rebind Packets Received The number of DHCPv6 Rebind messages received. This type of

message is sent by a client to any DHCPv6 server when it does not

receive a response to a Renew message.

DHCPv6 Release Packets Received The number of DHCPv6 Release messages received. This type of

message is sent by a client to indicate that it no longer needs the

assigned address.

DHCPv6 Decline Packets Received The number of DHCPv6 Decline messages received. This type of

message is sent by a client to the DHCPv6 server to indicate that an

assigned address is already in use on the link.

DHCPv6 Inform Packets Received The number of DHCP v6 information-request messages received. This

type of message is sent by a client to request configuration information

other than IP address assignment.

DHCPv6 Relay-forward Packets

Received

The number of DHCPv6 relay-forward messages received. This type of

message is sent by a relay agent to forward messages to servers.

DHCPv6 Relay-reply Packets

Received

The number of DHCP v6 relay-reply messages received. This type of

message is sent by a server to a DHCP v6 relay agent and contains the

message for the relay agent to deliver to the client.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual116

Delete DHCPv6 statistics for one or all interfaces

To delete DHCPv6 statistics for one or all interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

DHCPv6 Malformed Packets

Received

The number of DHCPv6 messages received but dropped because they

were malformed.

Received DHCPv6 Packets

Discarded

The number of packets discarded.

Messages Sent

Total DHCPv6 Packets Sent The number of DHCPv6 messages sent. The DHCPv6 messages sent

from a DHCPv6 server to a DHCPv6 client include Advertise, Reply,

Reconfigure, and Relay-Reply messages.

DHCPv6 Advertisement Packets

Transmitted

The number of DHCPv6 Advertise messages sent. This type of

message is sent by a server to a DHCPv6 client in response to a Solicit

message and indicates that it is available for service.

DHCPv6 Reply Packets Transmitted The number of DHCPv6 Reply messages sent to a DHCPv6 client in

response to a solicit, request, renew, rebind, information-request,

confirm, release, or decline message.

DHCPv6 Reconfig Packets

Transmitted

The number of DHCPv6 reconfigure messages sent. This type of

message is sent by a server to a DHCPv6 client to inform the client that

the server has new or updated information. The client then typically

initiates a renew/reply or Information-request/reply transaction with the

server to receive the updated information.

DHCPv6 Relay-forward Packets

Transmitted

The number of DHCPv6 Relay-Forward messages sent. This type of

message is sent by a relay agent to forward messages to servers.

DHCPv6 Relay-reply Packets

Transmitted

The number of DHCPv6 Relay-Reply messages sent. This type of

message is sent by a server to a DHCPv6 relay agent and contains the

message for the relay agent to deliver to the client.

Table 36. DHCPv6 server statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual117

5. Select System > Services > DHCPv6 Server > DHCPv6 Server Statistics.

The DHCPv6 Server Statistics page displays.

6. Do one of the following:

•Delete statistics for one interface: From the Interface menu, select the interface.

• Delete statistics for all interfaces: From the Interface menu, select All.

7. Click the Clear button.

The selected statistics are deleted.

8. To save the settings to the running configuration, click the Save icon.

DHCPv6 relay interface

A DHCPv6 relay agent allows sub-options to be attached to messages that are being relayed

by the switch to a DHCPv6 server. In turn, the DHCPv6 server can use this information in

determining an address to assign to a DHCPv6 client.

To configure an interface as a DHCPv6 relay:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Services > DHCPv6 Relay.

The DHCPv6 Relay page displays.

The DHCPv6 Interface Configuration page displays.

6. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual118

7. From the Admin mode menu, select to enable or disable the DHCPv6 relay mode on the

interface.

Note: DHCPv6 relay and DHCPv6 server functions are mutually exclusive.

For information about configuring an interface as a DHCPv6 server,

see Configure the DHCPv6 settings for an interface on page 112.

8. From the Relay Interface menu, select the interface, LAG, or VLAN that is connected to the

DHCPv6 relay server.

9. In the Destination IP Address field, specify the IPv6 address for the DHCPv6 relay server.

10. In the Remote ID field, specify the relay agent information option.

The remote ID is derived from the DHCPv6 server DUID and the relay interface number,

or you can specify is as a user-defined string.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

Power over Ethernet

You can configure the global Power over Ethernet (PoE) configuration settings and the PoE

settings for each port.

PoE concepts

The Power over Ethernet (PoE) models support eight PoE+ or PoE++ ports with the port

capacities and budgets that are described in the following table.

Table 37. PoE port capacities and budgets

Model PoE ports Port Capacity Switch PoE Budget

M4250-10G2F-PoE+ 8 PoE+ (802.3at) 30W 125W

M4250-10G2XF-PoE+ 8 PoE+ (802.3at) 30W 240W

M4250-10G2XF-PoE++ 8 PoE++ (802.3bt) 90W 720W

M4250-26G4F-PoE+ 8 PoE+ (802.3at) 30W 300W

M4250-26G4XF-PoE+ 8 PoE+ (802.3at) 30W 480W

M4250-26G4F-PoE++ 8 PoE++ (802.3bt) 90W 1440W with both internal

PSUs connected

M4250-40G8F-PoE+ 8 PoE+ (802.3at) 30W 480W

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual119

Supplied power is prioritized according to the port order, up to the total power budget of the

device. Port 1 receives the highest PoE priority, while port 8 is relegated to the lowest PoE

priority.

If the power requirements for attached powered devices (PDs) exceed the total power budget

of the switch, the PoE power to the device on the highest-numbered active PoE port is

disabled to make sure that the devices connected to the higher-priority, lower-numbered PoE

ports are supported first.

Although a device might be listed as an 802.3bt PoE++-powered or 802.3at PoE+-powered

device, it might not require the maximum power limit that is specified by its IEEE standard.

Many devices require less power, allowing all 8 PoE ports to be active simultaneously when

the devices correctly report their PoE class to the switch.

The following table shows the standard power ranges, calculated with the maximum cable

length of 328 feet (100 meters). If a device receives insufficient PoE power from the switch,

consider using a shorter cable.

Table 38. PoE classes and PoE power allocations

Device

Class

Compatible PoE

Standard

Class Description Maximum Power

Reserved for the PD

Power Delivered

to the PD

0 PoE, PoE+, and PoE++ Default power (full) 15.4W 0.44W–15.8W

1 PoE, PoE+, and PoE++ Very low power 4.0W 0.44W–3.84W

2 PoE, PoE+, and PoE++ Low power 7.0W 3.84W–7.2W

3 PoE, PoE+, and PoE++ Mid power 15.4W 6.49W–15.9W

4 PoE+ and PoE++ High power 30.0W 12.95W–30.8W

5 PoE++ Ultra high power 45.0W 25.5W–47.0W

6 PoE++ Ultra high power 90.0W 51.0W–64.4W

7 PoE++ Ultra high power 75.0W 62.0W–81.1W

8 PoE++ Ultra high power 90.0W 71.0W–96.5W

M4250-40G8XF-PoE+ 8 PoE+ (802.3at) 30W 960W

M4250-40G8XF-PoE++ 8 PoE++ (802.3bt) 90W 2880W with three internal

PSUs connected

Table 37. PoE port capacities and budgets (continued)

Model PoE ports Port Capacity Switch PoE Budget

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual120

Configure the global PoE settings

To configure the global PoE setting:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > PoE > Basic > PoE Configuration.

The PoE Configuration page displays.

6. In the System Usage Threshold field, enter a number from 1 to 99 to set the threshold level

at which a trap is sent if the consumed power exceeds the threshold power.

7. From the Power Management mode menu, select the power management algorithm that

the switch uses to deliver power to the requesting PDs:

• Static: Select Static to specify that the power allocated for each port depends on the

type of power threshold that is configured on the port.

• Dynamic: Select Dynamic to specify that the power consumption on each port is

measured and calculated in real time. This is the default setting.

8. To set the traps, in the PoE Trap Configuration section, select one of the following radio

buttons:

•Enable: Activates the PoE traps. This is the default setting.

• Disable: Deactivate the PoE traps.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 39. PoE information

Field Description

Firmware Version The firmware version of the PoE software.

Power Status The power status.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual121

Configure the PoE ports settings

To configure the PoE ports settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > PoE > Advanced > PoE Port Configuration.

The PoE Port Configuration page displays.

6. Select one or more ports by taking one of the following actions:

•To configure a single port, select the check box associated with the port, or type the

port number in the Go To Interface field and click the Go button.

•To configure multiple ports with the same settings, select the check box associated

with each port.

•To configure all ports with the same settings, select the check box in the heading row.

7. From the Port Power menu, select the administrative PoE mode of the port:

• Enable: The port’s capacity to deliver power is enabled. This is the default setting.

• Disable: The port’s capacity to deliver power is disabled.

8. From the Port Priority menu, select the priority for the port in relation to other ports if the

total power that the switch is capable of delivering exceeds the total power budget:

• Low: Low priority. This is the default setting.

Total Power Available (W) The maximum power in watts the switch can deliver to all ports.

Threshold Power (W) If the consumed power is below the threshold power, the switch can power up

another port. The consumed power can be between the nominal and threshold

power. The threshold power is displayed in watts.

Note: The threshold power value is determined by the value that you enter in the

System Usage Threshold field.

Consumed Power (W) Total power in watts that is being delivered to all ports.

Table 39. PoE information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual122

• Medium: Medium priority.

• High: High priority.

•Critical: Critical priority.

The port priority determines which ports can still deliver power after the total power

delivered by the switch exceeds the total power budget. (In such a situation, the switch

might not be able to deliver power to all connected devices.) If the same priority applies to

two ports, the lower-numbered port receives higher priority.

9. From the Power Mode menu, select the PoE mode that the port must function in:

• 802.3af: The port is powered in and limited to the IEEE 802.3af mode. A PD that

requires IEEE 802.3at does not receive power if the port functions in IEEE 802.3af

mode.

• Legacy: The port is powered using high-inrush current, which is used by legacy PDs

that require more than 15W to power up.

• Pre-802.3at: The port is initially powered in the IEEE 802.3af mode and, before

75 msec pass, is switched to the high power IEEE 802.3at mode. Select this mode if

the PD does not perform Layer 2 classification or if the switch performs

2-event Layer 1 classification.

• 802.3at: The port is powered in the IEEE 802.3at mode and is backward compatible

with IEEE 802.3af. The 802.3at mode is the default mode. In this mode, if the switch

detects that the attached PD requests more power than IEEE 802.3af but is not an

IEEE 802.3at Class 4 device, the PD does not receive power from the switch.

• Pre-802.3bt: The port supports Class 4 devices that use 4-pair PoE (4PPoE) to

receive power higher than 30W but that are not compliant with IEEE 802.3bt. The port

also supports the IEEE 802.3at and IEEE 802.3af modes.

• 802.3bt-Type3. The port supports the IEEE 802.3bt Type 3 mode, the IEEE 802.3at

mode, and the IEEE 802.3af mode.

• 802.3bt: The port is powered in the IEEE 802.3bt mode and is backward compatible

with IEEE 802.3at and IEEE 802.3af. In this mode, if the switch detects that the

attached PD requests more power than IEEE 802.3at but is not an IEEE 802.3bt

device, the PD does not receive power from the switch.

10. From the Power Limit Type menu, select how the port controls the maximum power that it

can deliver:

• None: For PoE+ (802.3at) ports, the port draws up to Class 0 maximum power in low

power mode. In high power mode, the following applies:

-PoE+ (802.3at) ports: The port draws up to Class 4 maximum power.

- PoE++ (802.3bt) ports: The port draws up to Class 8 maximum power.

• Class: The port power limit is equal to the class of the attached PD. This is the default

setting. The upper limit is the power that a port can deliver to a PD. The class is

detected based on the PD that is attached to the port, and the following applies:

- PoE+ (802.3at) ports: Possible values are from Class 0 to Class 4.

- PoE++ (802.3bt) ports: Possible values are from Class 0 to Class 8.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual123

• User: The port power limit is equal to the value that is specified in the Power Limit

(W) field.

Note: If a PD does not report its class correctly, use of these options can

preserve additional PoE power by preventing the switch from

delivering more power than the PD requires. However, depending on

which option you select, a PD that does not report its class correctly

might not power up at all.

11. In the Power Limit (W) field, enter the maximum power (in W) that the port can deliver.

The following applies:

• PoE+ (802.3at) ports: The range is from 3.0W to 30.0W.

• 802.3bt-Type3 ports (which is a selection from the Power Mode menu): The range

is from 3.0W to 60.0W.

• PoE++ (802.3bt) ports: The range is from 3.0W to 99.9W.

12. From the Detection Type menu, select how the port detects the attached PD:

• IEEE 802: The port performs a 4-point resistive detection. This is the default setting.

• 4pt 802.3af + Legacy: The port performs a 4-point resistive detection, and if required,

continues with legacy detection.

• Legacy: The port performs legacy detection.

13. From the Timer Schedule menu, select a timer schedule or select None, which is the

default selection.

For information about setting up and configuring PoE timer schedules, see Timer

schedules on page 126.

14. Click the Apply button.

Your settings are saved.

15. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 40. PoE port information

Field Description

High Power All ports supports high power mode.

Max Power (W) The maximum power in Watts that can be provided by the port.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual124

Class The class defines the range of power that a powered device (PD) is

drawing from the switch. The class definitions are as follows:

• 0: 0.44W–15.8W

• 1: 0.44W–3.84W

• 2: 3.84W–7.2W

• 3: 6.49W–15.9W

• 4: 12.95W–30.8W

• 5: 25.5W–47.0W

• 6: 51.0W–64.4W

• 7: 62.0W–81.1W

• 8: 71.0W–96.5W

• Unknown: The class cannot be detected, or no PD is attached to the

port.

Output Voltage (Volts) The voltage that is delivered to the PD in volts.

Output Current (mA) The current that is delivered to the PD in mA.

Output Power (W) The power that is delivered to the PD in watts.

Status The operational status of the port:

• Disabled: No power is delivered.

• Delivering Power. Power is being drawn by the PD.

• Requesting Power: The port is requesting power.

• Fault: A problem occurred with the power.

• Test: The port is in test mode.

• Other Fault: The port is idle because of an error condition.

• Searching: The port is not in one of the other states in this list.

Fault Status The error description when the PoE port is in a fault state:

• No Error: The port is not in any error state and can provide power.

• MPS Absent: The port detected the absence of the main power

supply, preventing the port from providing power.

• Short: The port detected a short circuit condition, preventing the port

from providing power.

• Overload: The PD that is connected to the port attempts to draw more

power than allowed by the port’s settings, preventing the port from

providing power at all.

• Power Denied: The port was denied power because of a shortage of

power or because of an administrative condition. In this condition,

Table 40. PoE port information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual125

Power-cycle one or more PoE ports

You can power-cycle one or more PoE ports. This might be useful if PoE ports function not as

expected.

To power-cycle one or more PoE ports:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > PoE > Advanced > PoE Port Configuration.

The PoE Port Configuration page displays.

6. Select one or more ports by taking one of the following actions:

•To power-cycle a single port, select the check box associated with the port, or type the

port number in the Go To Interface field and click the Go button.

•To power-cycle multiple ports with the same settings, select the check box associated

with each port.

•To power-cycle all ports with the same settings, select the check box in the heading

row.

7. Click the Power-Cycle Port(s) button.

The ports are power-cycled.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual126

Timer schedules

You can define multiple timer schedules (each with a unique name) that you can use for PoE

power delivery to attached PDs and for access control lists:

• Timers schedules for use with PoE:

After you create a timer schedule, you can associate it with one or more PoE ports (see

Configure the PoE ports settings on page 121). You can also use a separate timer

schedule for each PoE port.

After you associate a timer schedule with a PoE port, the start date and time force the

PoE port to stop delivering power and the stop date and time enable the PoE port to start

delivering power.

• Timers schedules for use with access control lists:

After you create a timer schedule, you can associate it with one or more access control

lists (see Access control lists on page 578). You can also use a separate timer schedule

for each access control list.

You can create absolute timer schedules, which apply to specific dates and times, and you

can create recurring timer schedules. For each timer schedule, you can add multiple entries

that apply to the selected timer schedule only.

Create a timer schedule

The maximum number of timer schedules that you can add is 100.

To create a timer schedule:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Timer Schedule > Basic > Global Configuration.

The Timer Schedule Name page displays.

6. In the Timer Schedule Name field, specify the name for a timer schedule.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual127

7. Click the Add button.

The timer schedule is added to the table on the Timer Schedule Name page and is

assigned an ID.

8. To save the settings to the running configuration, click the Save icon.

Specify the settings for an absolute timer schedule

An absolute timer schedule applies to specific dates and times. The schedule is executed

once only.

To specify the settings for a timer schedule that uses specific dates and times:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System> Timer Schedule > Advanced > Timer Schedule Configuration.

The Timer Schedule Configuration page displays.

6. In the Timer Schedule Selection section, make your selections from the following menus:

a. Timer Schedule Name. Select the name of the timer schedule that you want to

configure.

You can select only names of schedules that you created (see Create a timer

schedule on page 126).

b. Timer Schedule Type. Select Absolute.

The fields in the Timer Schedule Configuration section might adjust to let you configure

a timer schedule for specific dates and times.

c. Timer Schedule Entry. To add a new entry, select new.

Selecting an existing entry lets you make changes to that entry.

7. In the Timer Schedule Configuration section, specify the times and dates:

a. In the Time Start field, enter the time of day in the HH:MM format to specify when the

timer schedule must start.

b. In the Time End field, enter the time of day in the HH:MM format to specify when

the timer schedule must stop.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual128

c. Next to the Date Start field, click the calendar icon and use the menus in the pop-up

window to enter the date in the DD-Mon-YYY format to specify when the timer

schedule must start.

d. Next to the Date End field, click the calendar icon and use the menus in the pop-up

window to enter the date in the DD-Mon-YYY format to specify when the timer

schedule must stop.

8. Click the Add button.

The entry for the timer schedule is added.

9. To save the settings to the running configuration, click the Save icon.

Specify the settings for a recurring timer schedule

A recurring schedule allows you to set up a single schedule that starts at a particular date and

that recurs either with a specific end date or indefinitely.

For a single recurring timer schedule, you can add a daily, weekly, and monthly schedule

configuration. That is, these schedule configurations are not mutually exclusive but

complement each other.

To specify the settings for a timer schedule that uses a recurring pattern:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System> Timer Schedule > Advanced > Timer Schedule Configuration.

The Timer Schedule Configuration page displays.

6. In the Timer Schedule Selection section, make your selections from the following menus:

a. Timer Schedule Name: Select the name of the timer schedule that you want to

configure.

You can select only names of schedules that you created (see Create a timer

schedule on page 126).

b. Timer Schedule Type: Select Periodic.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual129

The fields in the Timer Schedule Configuration section might adjust to let you configure

a timer schedule with a recurrence pattern.

c. Timer Schedule Entry: To add a new entry, select new.

Selecting an existing entry lets you make changes to that entry.

7. In the Timer Schedule Configuration section, specify the recurrence pattern:

a. In the Time Start field, enter the time of day in the HH:MM format to specify when the

timer schedule must start.

b. In the Time End field, enter the time of day in the HH:MM format to specify when

the timer schedule must stop.

c. Next to the Date Start field, click the calendar icon and use the menus in the pop-up

window to enter the date in the DD-Mon-YYY format to specify when the timer

schedule must start.

d. Either select the No End Date radio button or select the End Date radio button, and

next to the End Date field, click the calendar icon and use the menus in the pop-up

window to enter the date in the DD-Mon-YYY format to specify when the timer

schedule must stop.

e. From the Recurrence Pattern menu, select the pattern:

• Daily: The timer schedule works with daily recurrence. The fields adjust.

Either select the Every Weekday radio button to let the schedule operate from

Monday through Friday or select the Every Day(s) radio button and enter a

number from 0 to 255 in the field.

In the latter case, the schedule is triggered every specified number of days. If the

number of days is not specified, or if you enter 0, then the schedule is triggered

only once.

• Weekly: The timer schedule works with weekly recurrence. The fields adjust.

In the Every Week(s) field, enter a number from 0 to 255 to specify that the

schedule must be triggered every specified number of weeks. If the number of

weeks is not specified, or if you enter 0, then the schedule is triggered only once.

Select a single Week Day check box, multiple check boxes, or all check boxes to

specify the day or days of the week that the schedule must operate.

• Monthly: The timer schedule works with monthly recurrence. The fields adjust.

In the Day field, enter a number from 1 to 31 to specify the day of the month when

the schedule must be triggered.

In the Every Month(s) field, enter a number from 0 to 99 to specify that the

schedule must be triggered every specified number of months. If the number of

months is not specified, or if you enter 0, then the schedule is triggered only once.

8. Click the Add button.

The entry for the timer schedule is added.

9. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual130

Change the settings for a recurring timer schedule entry

You can change the settings for an existing recurring timer schedule entry. (You cannot do

this for an existing absolute timer schedule.)

To change the settings for an existing recurring timer schedule entry:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Timer Schedule > Advanced > Timer Schedule Configuration.

The Timer Schedule Configuration page displays.

6. From the Timer Schedule Name menu, select the schedule name.

7. From the Timer Schedule Type menu, select the schedule type.

8. From the Timer Schedule Entry menu, select the schedule entry.

9. Make the changes to the schedule entry.

For more information, see Specify the settings for a recurring timer schedule on

page 128.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

Delete a timer schedule entry

You can delete a timer schedule entry that you no longer need.

To delete a timer schedule entry:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual131

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Timer Schedule > Advanced > Timer Schedule Configuration.

The Timer Schedule Configuration page displays.

6. From the Timer Schedule Name menu, select the schedule name.

7. From the Timer Schedule Type menu, select the schedule type.

8. From the Timer Schedule Entry menu, select the schedule entry.

9. Click the Delete button.

The entry is deleted.

10. To save the settings to the running configuration, click the Save icon.

Delete a timer schedule

You can delete a timer schedule that you no longer need. All entries that are part of the timer

schedule are also deleted.

To delete a timer schedule:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Timer Schedule > Basic > Global Configuration.

The Timer Schedule Name page displays.

6. Select the check box for the schedule that you want to delete.

7. Click the Delete button.

The schedule is deleted.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual132

Simple Network Management Protocol

You can configure SNMP settings for SNMPv1, SNMPv2, and SNMPv3. The switch supports

the configuration of SNMP groups and users that can manage traps that the SNMP agent

generates.

The switch uses both standard public MIBs for standard functionality and private MIBs that

support additional switch functionality.

Manage SNMPv1 and SNMPv2 communities

By default, no SNMP communities exist. The communities that you define can access to the

switch using the SNMPv1 and SNMPv2. Only those communities with read/write level access

can be used to change the configuration using SNMP.

Add an SNMPv1 and SNMPv2 community

You can add an SNMPv1 and SNMPv2 community, which allows both SNMPv1 and SNMPv2

access.

To add an SNMPv1 and SNMPv2 community:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V1/V2 > Community Configuration.

The Community Configuration page displays.

6. In the Community Name field, enter a name for a new community.

The name can be up to 16 characters.

7. Specify the client IP address and client IP mask:

• Client Address: Enter the IP address of the client.

• Client IP Mask: Enter the IP mask of the client.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual133

The client IP address and client IP mask together denote a range of IP addresses from

which SNMP clients can use the community to access the switch.

If either the client IP address or client IP mask is 0.0.0.0, access is allowed from any IP

address. Otherwise, every client’s IP address is ANDed with the mask, as is the client IP

address. If the values are equal, access is allowed.

For example, if the client IP address and client IP mask are 192.168.1.0/255.255.255.0,

any client with an IP address in the range from 192.168.1.0 to 192.168.1.255 (inclusive)

is allowed access. To allow access from only one station, use a management station IP

mask value of 255.255.255.255, and use that computer’s IP address as the client

address.

8. From the Access Mode menu, select the access level for this community, which is either

Read/Write or Read Only.

9. Click the Add button.

The community is added.

10. To save the settings to the running configuration, click the Save icon.

Change an existing SNMPv1 and SNMPv2 community

You can change an existing SNMPv1 and SNMPv2 community.

To modify an existing SNMPv1 and SNMPv2 community:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V1/V2 > Community Configuration.

The Community Configuration page displays.

6. Select the check box next to the community.

7. Change the settings as needed.

For more information about the settings, see Add an SNMPv1 and SNMPv2 community

on page 132.

8. Click the Apply button.

Your settings are saved.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual134

9. To save the settings to the running configuration, click the Save icon.

Delete an SNMPv1 and SNMPv2 community

You can delete an SNMPv1 and SNMPv2 community that you no longer need.

To delete an SNMPv1 and SNMPv2 community:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V1/V2 > Community Configuration.

The Community Configuration page displays.

6. Select the check box next to the community.

7. Click the Delete button.

The community is deleted.

8. To save the settings to the running configuration, click the Save icon.

Manage the SNMPv1 and SNMPv2 trap settings

For each SNMP community, you can specify the source interface that must be used on the

switch, the community name, the associated IP address, and other settings.

Add an SNMPv1 or SNMPv2 trap configuration for a host

You can add a trap configuration for a host, enabling the host to receive SNMPv1 or SNMPv2

traps.

To add an SNMPv1 or SNMPv2 trap configuration for a host:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual135

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V1/V2 > Trap Configuration.

The Trap Configuration page displays.

6. From the Source Interface menu, select the source interface that must be used for the

SNMP trap receiver:

• None: The primary IP address of the originating (outbound) interface is used as the

source address.

•Routing interface: The primary IP address of a physical port is used as the source

address.

• Routing VLAN: The primary IP address of a VLAN routing interface is used as the

source address.

• Routing loopback interface: The primary IP address of a routing loopback interface

is used as the source address.

• Tunnel interface: The IPv6 tunnel interface.

•Service port: The management port source IP address is used as the source

address.

By default, VLAN 1 is used as the source interface.

7. In the Community Name field, specify the name of the SNMP community that includes the

SNMP management host and the SNMP agent on the device.

This name can be up to 16 characters and is case-sensitive.

8. From the Version menu, select the SNMP version to be used by the receiver:

• SNMPv1: The switch uses SNMPv1 to send traps to the receiver. The default setting

is SNMPv1.

• SNMPv2: The switch uses SNMPv2 to send traps to the receiver.

9. From the Protocol menu, select the protocol to be used by the receiver:

Select IPv4 if the receiver's address is an IPv4 address or IPv6 if the receiver's address

is an IPv6 address. Or, you can select DNS and enter a domain name.

10. In the Address field, enter the IPv4 or IPv6 address or the domain name, depending on

your selection from the Protocol menu.

11. Click the Add button.

The trap configuration is added.

12. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual136

Change an SNMPv1 or SNMPv2 trap configuration for a host

You can change an existing SNMPv1 or SNMPv2 trap configuration for a host.

To change an SNMPv1 or and SNMPv2 trap configuration for a host:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V1/V2 > Trap Configuration.

The Trap Configuration page displays.

6. Select the check box next to the trap configuration.

7. Change the settings as needed.

For more information about the settings, see Add an SNMPv1 or SNMPv2 trap

configuration for a host on page 134.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Delete an SNMPv1 or SNMPv2 trap configuration for a host

You can delete an SNMPv1 or SNMPv2 trap configuration that you no longer need for a host.

To delete an SNMPv1 or SNMPv2 trap configuration for a host:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual137

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V1/V2 > Trap Configuration.

The Trap Configuration page displays.

6. Select the check box next to the trap configuration.

7. Click the Delete button.

The trap configuration is deleted.

8. To save the settings to the running configuration, click the Save icon.

Configure SNMPv1 and SNMPv2 trap flags

You can enable or disable specific traps. When the condition that is identified by an active

trap occurs on the switch, a trap message is sent to any enabled SNMP trap receivers, and a

message is written to the trap log.

To configure the trap flags:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V1/V2 > Trap Flags.

The Trap Flags page displays.

6. Select the Authentication Disable or Enable radio button.

This setting enables or disables activation of authentication failure traps. The default is

Enable.

When enabled, SNMP traps are sent when events involving authentication occur, such as

when a user attempts to access the switch main UI and does not provide a valid user

name and password.

7. Select the Link Up/Down Disable or Enable radio button

This setting enables or disables activation of link status traps. The default is Enable.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual138

When enabled, SNMP traps are sent when the administrative or operational state of a

physical or logical link changes

8. Select the Multiple Users Disable or Enable radio button

This setting enables or disables activation of multiple user traps. The default is Enable.

This trap is triggered when the same user ID is logged into the switch more than once at

the same time (either through Telnet or the serial port).

9. Select the Spanning Tree Disable or Enable radio button.

This setting enables or disables activation of spanning tree traps. The default is Enable.

10. Select the ACL Disable or Enable radio button.

This setting enables or disables activation of ACL traps. The default is Disable.

11. Select the Captive Portal Disable or Enable radio button.

This setting enables or disables activation of captive portal traps. The default is Disable.

12. Select the PIM Disable or Enable radio button.

This setting enables or disables activation of PIM traps. The default is Disable.

13. Select the PoE Disable or Enable radio button.

This setting enables or disables activation of PoE traps. The default is Enable.

14. Click the Apply button.

Your settings are saved.

15. To save the settings to the running configuration, click the Save icon.

Display the supported MIBs

To display the MIBs supported by the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V1/V2 > Supported MIBs.

The Supported MIBs page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual139

The Name field displays the RFC number, if applicable, and the name of the MIB.

The Description field displays the RFC title or MIB description.

Manage SNMPv3 users

You can manage SNMPv3 user accounts and set up authentication and encryption.

Add an SNMPv3 user account

You can add an SMPv3 user account.

To add an SNMPv3 user account:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V3 > User Configuration.

The User Configuration page displays.

6. In the User Name field, type a name for the user account.

The name can up be up to characters.

7. From the SNMP v3 Access Mode menu, select Read-Only or Read/Write to specify the

SNMPv3 access privileges for the user account.

The SNMPv3 access privileges for the admin account are Read/Write.

8. From the Authentication Protocol menu, select None, MD5, or SHA for the authentication:

• None: A user cannot access SNMPv3 information from an SNMP browser.

•MD5 or SHA: You must specify an authentication password for SNMPv3 access (see

the following step).

9. If you select MD5 or SHA from the Authentication Protocol menu, specify a password

(key) in the Authentication Key field.

The password can be up to 32 characters.

10. From the Encryption Protocol menu, select None, DES, or AES128 for the encryption:

• None: The information is not encrypted.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual140

• DES or AES128: You must specify an encryption password for SNMPv3 access (see

the following step).

11. If you select DES or AES128 from the Encryption Protocol menu, specify a password

(key) in the Encryption Key field.

The password can be up to 32 characters.

12. Click the Add button.

The SNMPv3 user account is added.

13. To save the settings to the running configuration, click the Save icon.

Change an SNMPv3 user account

You can change an existing SMPv3 user account.

To change an existing SNMPv3 user account:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V3 > User Configuration.

The User Configuration page displays.

6. Select the check box next to the SNMPv3 user account.

7. Change the settings as needed.

For more information about the settings, see Add an SNMPv3 user account on

page 139.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual141

Delete an SNMPv3 user account

You can delete an SMPv3 user account that you no longer need.

To delete an SNMPv3 user account:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > SNMP > SNMP V3 > User Configuration.

The User Configuration page displays.

6. Select the check box next to the SNMPv3 user account.

7. Click the Delete button.

The SNMPv3 user account is deleted.

8. To save the settings to the running configuration, click the Save icon.

Link Layer Discovery Protocol

Link Layer Discovery Protocol (LLDP), which is the defined in IEEE 802.1AB, lets devices on

a LAN advertise major capabilities and physical descriptions. You can view this information to

identify the system topology and detect problematic configurations in the LAN.

LLDP is a one-way protocol without request and response sequences. Information is

advertised by devices that are configured to transmit LLDP and is received and processed by

devices that are configured to receive LLDP. You can enable and disable the transmit and

receive functions separately per port. By default, both transmit and receive functions are

disabled on all ports.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual142

Configure the global LLDP settings

You can specify LLDP settings that are globally applied to the switch.

To configure the global LLDP settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > Global Configuration.

The Global Configuration page displays.

6. In the TLV Advertised Interval field, enter the interval in seconds to transmit LLDP frames.

The range is from 5 to 32768 secs. The default is 30 seconds.

7. In the Hold Multiplier field, enter the multiplier for the value that you enter in the TLV

Advertised Interval field, which determines the time-to-live (TTL) for LLDP notifications.

The range is from 2 to 10 secs. The default value is 4. As an example, if the value that you

enter in the TLV Advertised Interval field is 30 and the value that you enter in the Hold

Multiplier field is 4, the TTL for LLDP notifications is 120 seconds.

8. In the Reinitialization Delay field, enter the delay before reinitialization starts.

The range is from 1 to 10 secs. The default is 2 seconds.

9. In the Notification Interval field, enter the interval in seconds for the transmission of

notifications.

The range is from 5 to 3600 secs. The default is 5 seconds.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual143

Configure LLDP interface settings

You can specify LLDP settings that are applied to one or more interfaces.

To configure LLDP interface settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > Interface Configuration.

The Interface Configuration.page displays.

6. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

The Link Status fields shows whether the interface is up or down.

7. From the Transmit menu, select if the interface can transmit LLDP notifications.

The default is Enable.

8. From the Receive menu, select if the interface can receive LLDP notifications.

The default is Enable.

9. From the Notify menu, select if the interface can support LLDP notifications.

The default is Disable.

10. As an option, configure the following Type Length Value (TLV) information, all of which are

enabled by default:

• Port Description: Select if the interface can send a port description in an LLDP frame.

• System Name: Select if the interface can send the system name in an LLDP frame.

• System Description: Select if the interface can send the system description in an

LLDP frame.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual144

• System Capabilities: Select if the interface can send the system capabilities in an

LLDP frame.

11. From the Management Information menu, select if the management address is transmitted

in LLDP frames.

12. Click the Apply button.

Your settings are saved.

13. To save the settings to the running configuration, click the Save icon.

Display or clear LLDP statistics

To display or clear LLDP statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > Statistics.

The Statistics page displays.

6. To refresh the page, click the Refresh button.

7. To clear all LLDP statistics, click the Clear button.

All statistics are cleared.

8. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 41. LLDP statistics information

Field Description

LLDP Statistics (switch)

Last Update The time when an entry was created, modified or deleted in the tables

associated with the remote system.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual145

Total Inserts The number of times the complete set of information advertised by a

particular MAC Service Access Point (MSAP) was inserted into tables

associated with the remote systems.

Total Deletes The number of times the complete set of information advertised by a

particular MAC Service Access Point (MSAP) was deleted from tables

associated with the remote systems.

Total Drops The number of times the complete set of information advertised by a

particular MAC Service Access Point (MSAP) could not be entered into

tables associated with the remote systems because of insufficient

resources.

Total Ageouts The number of times the complete set of information advertised by a

particular MAC Service Access Point (MSAP) was deleted from tables

associated with the remote systems because the information timeliness

interval has expired.

Upper LLDP Statistics (interfaces)

Interface The interface.

Transmit Total The number of LLDP frames transmitted by the LLDP agent.

Receive Total The number of valid LLDP frames received by this LLDP agent.

Discards The number of LLDP TLVs discarded for any reason by the LLDP agent.

Errors The number of invalid LLDP frames received by the LLDP agent.

Ageouts The number of age-outs that occurred. An age-out is the number of times

the complete set of information advertised by a particular MAC Service

Access Point (MSAP) was deleted from tables associated with the remote

entries because information timeliness interval expired.

TLV Discards The number of LLDP TLVs discarded by the LLDP agent.

TLV Unknowns The number of LLDP TLVs received that were not recognized by the LLDP

agent.

TLV MED The total number of LLDP-MED TLVs received.

TLV 802.1 The total number of LLDP TLVs received that are of type 802.1.

TLV 802.3 The total number of LLDP TLVs received that are of type 802.3.

Table 41. LLDP statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual146

Display LLDP local device information

You can display LLDP local device information, which is information that the switch itself, or

an interface of the switch, advertises.

To display LLDP local device information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > Local Device Information.

The Local Device Information page displays.

6. From the Interface menu, select an interface on which the transmission of LLDP frames is

enabled.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 42. LLDP local device information

Field Description

Chassis ID Subtype The switch identifier is the MAC address of the switch (see the following field).

Chassis ID The MAC address of the switch.

Port ID Subtype The port identifier is the MAC address of the interface (see the following field).

Port ID The MAC address of the interface on the switch.

System Name The system name, if any, of the switch.

System Description The description of the switch.

Port Description The interface name, if any, of the interface on the switch.

System Capabilities Supported The system capabilities of the switch.

System Capabilities Enabled The system capabilities of the switch that are enabled.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual147

Display LLDP remote device information

You can display LLDP remote device information, which is information that the device that is

connected to an interface advertises.

To display LLDP remote device information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > Remote Device Information.

The Remote Device Information page displays.

6. From the Interface menu, select an interface on which the reception of LLDP frames is

enabled.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Management Address Type The type of the management IP address of the switch.

Management Address The advertised management IP address of the switch.

Table 43. LLDP remote device information

Field Description

Remote ID The ID of the remote device.

Switch ID The MAC address of the remote device.

Switch ID Subtype The switch identifier is the MAC address of the remote device (see the

previous field).

Port ID The identifier that is associated with the interface on the remote device.

Port ID Subtype The type of the port identifier on the remote device.

Table 42. LLDP local device information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual148

Display the LLDP remote device inventory

The LLDP inventory consists of the devices that LLDP detects.

To display the LLDP remote device inventory:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > LLDP > Remote Device Inventory.

The Remote Device Inventory page displays.

6. To search for an interface, enter the interface number in the format 0/x, in which x is the

interface number, in the Search Interface field and click the Go button.

Information about the interface displays.

7. To refresh the page, click the Refresh button.

System Name The system name, if any, of the remote device.

System Description The description of the remote device.

Port Description The interface name, if any, of the interface on the remote device.

System Capabilities Supported The system capabilities that are supported on the remote device.

System Capabilities Enabled The system capabilities that are enabled on the remote device.

Time to Live The time-to-live period in seconds of the received remote entry.

Management Address Type The type of the management IP address of the remote device.

Management Address The advertised management IP address of the remote device.

Table 43. LLDP remote device information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual149

The following table describes the nonconfigurable fields on the page.

Table 44. LLDP remote device inventory information

Field Description

Port The interface on the switch on which LLDP information is received.

Remote Device ID The remote device ID.

Management Address The advertised management address of the remote device.

MAC Address The MAC address of the remote device.

System Name The system name of the remote device.

Remote Port ID The interface number of the remote device.

Link Layer Discovery Protocol for Media

Endpoint Devices

Link Layer Discovery Protocol for Media Endpoint Discovery (LLDP-MED) is an

enhancement to LLDP with support for the following features:

•Auto-discovery of LAN policies (such as VLAN, Layer 2 priority, and DiffServ settings),

which allows for plug-and-play networking.

•Device location discovery, which allows for the creation of location databases.

•Extended and automated power management of Power over Ethernet endpoints.

•Inventory management, which lets you track your network devices and determine their

characteristics, such as manufacturer, software and hardware versions, and serial or

asset numbers.

Configure the global LLDP-MED settings

You can specify LLDP-MED settings that are globally applied to the switch.

To configure the global LLDP-MED settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual150

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > LLDP-MED > Global Configuration.

The Global Configuration page displays.

6. In the Fast Start Repeat Count field, enter the number of LLDP PDUs that are transmitted

when the protocol is enabled.

The range is from (1 to 10). Default value of fast repeat count is 3.

The Device Class field displays the switch MED classification. The switch is a Network

connectivity device.

The following four types of MED devices exist, of which the first three are endpoints:

• Class I: Generic devices, which include IP communication controllers.

• Class II: Media devices, which include conference bridges.

• Class III: Communication devices, which include IP telephones.

• Class IV: Network connectivity devices, which include LAN switches, routers,

IEEE 802.1 bridges, and IEEE 802.11 WiFi access points.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Configure LLDP-MED interface settings

You can specify LLDP-MED settings that are applied to one or more interfaces.

To configure LLDP-MED interface settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > LLDP-MED > Interface Configuration.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual151

The Interface Configuration page displays.

6. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

The following two fields are nonconfigurable on the page:

•The Link Status fields shows whether the interface is up or down.

•The Operational Status field shows whether LLDP-MED TLVs are transferred on this

interface.

7. From the MED Status menu, select if LLDP-MED mode is enabled or disabled on the

interface.

The default is Enable.

8. From the Receive menu, select if the interface can receive LLDP notifications.

The default is Enable.

9. From the Notification Status menu, select if the interface can support LLDP-MED

notifications.

The default is Disable.

10. Configure if the following transmit Type Length Value (TLV) information, all of which is

enabled by default, is transmitted for LLDP-MED in LLDP PDU frames:

• MED Capabilities. Select if the interface can send the MED capabilities in an LLDP

frame.

• Network Policy: Select if the interface can send the network policy in an LLDP

frame.

• Location Identification: Select if the interface can send location information in an

LLDP frame.

• Extended MDI-PSE: Select if the interface can send power sourcing equipment

(PSE) information in an LLDP frame.

• Inventory Information: Select if the interface can send inventory information in an

LLDP frame.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual152

Display LLDP-MED local device information

You can display LLDP-MED local device information, which is information that the switch

itself, or an interface of the switch, advertises.

To display LLDP-MED local device information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > LLDP-MED > Local Device Information.

The Local Device Information page displays.

6. From the Interface menu, select an interface on which the transmission of LLDP-MED

frames is enabled.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 45. LLDP-MED local device information

Field Description

Network Policy Information

Displays if a network policy TLV is present in LLDP-MED frames that are transmitted.

Media Application Type The application type, which can be one of the following:

• unknown

• voice signaling

• guest voice

• guest voice signaling

• soft phone voice

• videoconferencing

• streaming video

• video signaling

Each application type that is transmitted includes the VLAN ID, priority,

DSCP

, tagged bit status, and unknown bit status. An interface can receive

one or many such application types.

This information is displayed only if a network policy TLV is transmitted.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual153

VLAN ID The VLAN ID that is transmitted.

Priority The priority that is transmitted.

DSCP The DSCP that is transmitted.

Unknown Bit Status The unknown bit status that is transmitted.

Tagged Bit Status The tagged bit status that is transmitted.

Inventory

Displays if an inventory TLV is present in LLDP-MED frames that are transmitted.

Hardware Revision The hardware version that is transmitted.

Firmware Revision The firmware version that is transmitted.

Software Revision The software version that is transmitted.

Serial Number The serial number that is transmitted.

Manufacturer Name The manufacturers name that is transmitted.

Model Name The model name that is transmitted.

Asset ID The asset ID that is transmitted.

Location Information

Displays if a location TLV is present in LLDP-MED frames that are transmitted.

Sub Type The type of location information that is transmitted.

Location Information The location information that is transmitted.

Extended PoE

Displays if PoE device information is present in LLDP-MED frames that are transmitted.

Device Type The type of PoE device that is transmitted. The switch can supply PoE, so it

is a power sourcing equipment (PSE).

Power Source The type of power source that is transmitted.

Power Priority The type of power priority that is transmitted.

Power Value The power in watts that is transmitted, that is, the information is

transmitted, not the actual power.

Table 45. LLDP-MED local device information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual154

Display the LLDP-MED remote device information

You can display LLDP-MED remote device information, which is information that the device

that is connected to an interface advertises.

To display the LLDP-MED remote device information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > LLDP-MED > Remote Device Information.

The Remote Device Information page displays.

6. From the Interface menu, select an interface on which the reception of LLDP-MED frames

is enabled.

The Remote ID field displays the ID that is assigned to the remote device.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 46. LLDP-MED remote device information

Field Description

Capability Information

Displays the supported capabilities that are received in LLDP-MED frames.

Supported Capabilities The system capabilities that are supported on the remote device.

Enabled Capabilities The system capabilities that are enabled on the remote device.

Device Class The device class that is advertised by the remote device.

The device class can be Generic, Media, Communication, or Network

Connectivity.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual155

Network Policies Information

Displays the network policies information that is received in LLDP-MED frames.

Media Application Type The application type of the remote device, which can be one of the

following:

• unknown

• voice signaling

• guest voice

• guest voice signaling

• soft phone voice

• videoconferencing

• streaming video

• video signaling

Each application type that is received includes the VLAN ID, priority,

DSCP

, tagged bit status, and unknown bit status. An interface can receive

one or many such application types.

This information is displayed only if a network policy TLV is received.

VLAN ID The VLAN ID of the remote device.

Priority The priority of the remote device.

DSCP The DSCP of the remote device.

Unknown Bit Status The unknown bit status of the remote device.

Tagged Bit Status The tagged bit status of the remote device.

Inventory Information

Displays the inventory information that is received in LLDP-MED frames.

Hardware Revision The hardware version of the remote device.

Firmware Revision The firmware version of the remote device.

Software Revision The software version of the remote device.

Serial Number The serial number of the remote device.

Manufacturer Name The manufacturers name of the remote device.

Model Name The model name of the remote device.

Asset ID The asset ID of the remote device.

Location Information

Displays the location information that is received in LLDP-MED frames.

Sub Type The type of location information of the remote device.

Location Information The location information of the remote device.

Table 46. LLDP-MED remote device information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual156

Display the LLDP-MED remote device inventory

The LLDP inventory consists of the devices that LLDP detects and that support MED.

To display the LLDP-MED remote device inventory:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

Location Information

Displays if a location TLV is present in LLDP-MED frames that are transmitted.

Sub Type The type of location information of the remote device.

Location Information The location information of the remote device.

Extended PoE

Displays if extended PoE information is received in LLDP-MED frames.

Device Type The PoE device type of the remote device.

Extended PoE PSE:

Displays if extended PoE PSE information is received in LLDP-MED frames.

Device Type The type of PoE device that remote device is.

Power Source The type of power source of that the remote device.

Power Priority The type of power priority on the remote device.

Power Value The power in watts that the remote device transmits, that is, the

information is transmitted, not the actual power.

Extended PoE PD:

Displays if extended PoE PD information is received in LLDP-MED frames.

Device Type The type of PoE device that remote device is.

Power Source The type of power source of that the remote device.

Power Priority The type of power priority on the remote device.

Power Value The power in watts that the remote device transmits, that is, the

information is transmitted, not the actual power.

Table 46. LLDP-MED remote device information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual157

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > LLDP > LLDP-MED > Remote Device Inventory.

The Remote Device Inventory page displays.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 47. LLDP-MED remote device inventory information

Field Description

Port The interface on the switch on which LLDP-MED information is received.

Management Address The advertised management address of the remote device.

MAC Address The MAC address of the remote device.

System Name The system name of the remote device.

Remote Port ID The interface number of the remote device.

Link dependency

Link dependency lets you enable or disable one or more interfaces based on the link state of

one or more other interfaces. That is, if you enable link dependency on an interface, the link

state of that interface depends on the link state of another interface. For example, if port 0/2

depends on port 0/4 and the switch detects a link loss on port 0/4, the switch can

automatically bring down the link on port 0/2. When the link is restored on port 0/4, the switch

can automatically restore the link on port 0/2.

The other way around is also possible: If port 0/2 depends on port 0/4 and the switch detects

a link loss on port 0/4, the switch can automatically bring up the link on port 0/2. When the

link is restored on port 0/4, the switch can automatically bring down the link on port 0/2.

Configure a link dependency group

A link dependency group includes a list of upstream interfaces, a list of downstream

interfaces, and an action that is configured for the group. If all upstream interfaces in the list

go down, all downstream interfaces in the list are either brought down or brought up,

depending on the action that you configure for the link dependency group.

After you configure the link dependency group, configure the upstream and downstream

interfaces for the group (see Configure or display upstream and downstream interfaces for

a link dependency group on page 158).

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual158

To configure a link dependency group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Link Dependency > Link Dependency Group Configuration.

The Link Dependency Group Configuration page displays.

6. Select one or more check boxes for the group IDs.

The switch supports 16 group IDs.

Note: The group IDs are not associated with interface numbers.

7. From the Link Action menu, specify the following actions that must occur on the

downstream interfaces in the group when all upstream interfaces in the group are down:

• Link Down: When all upstream interfaces in the group are down, all downstream

interfaces in the group are brought down too. When any of the upstream interfaces in

the group are up, all downstream interfaces in the group are brought up too.

• Link Up: When all upstream interfaces in the group are down, all downstream

interfaces in the group are brought up. When any of the upstream interfaces in the

group are up, all downstream interfaces in the group are brought down.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Configure or display upstream and downstream interfaces

for a link dependency group

In a link dependency group, if you add downstream interfaces to the group, the interfaces are

brought down until you add one or more upstream interfaces to the group. Then, the link state

of the downstream interfaces is determined by the link state of the upstream interfaces and

the action that you configure for the group. We recommend that you first configure the

upstream interfaces and then configure the downstream interfaces.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual159

In one link dependency group, an interface can either be a member of the upstream list or the

downstream list, bot not both.

To configure or display upstream and downstream interfaces for a link dependency

group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Link Dependency > Link Dependency Interface Configuration.

The Link Dependency Interface Configuration page displays.

6. In the Link Dependency Group ID section, from the Group ID menu, select the group ID for

which you want to display or configure the settings.

The range for the group ID is from 1 to 16.

Note: The group IDs are not associated with interface numbers.

7. In the Link Dependency Interface Configuration section, select whether to display physical

interfaces, LAGs, or both by clicking one of the following links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

8. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

9. From the Upstream Interface menu, select if the interface is a member of the group’s

upstream list.

• False. The interface is not a member of the upstream list for the group. This is the

default setting.

•True: The interface is a member of the up stream list for the group.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual160

10. Click the Apply button.

Your settings are saved.

11. From the Downstream Interface menu, select if the interface is a member of the group’s

downstream list.

• False: The interface is not a member of the downstream list for the group. This is the

default setting.

•True: The interface is a member of the downstream list for the group.

12. Click the Apply button.

Your settings are saved.

The Link Status field shows whether the link for the corresponding interface or LAG is up

or down.

13. To save the settings to the running configuration, click the Save icon.

14. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields that are displayed in the Link

Dependency Group Statistic section.

Table 48. Link dependency group statistic information

Field Description

Group ID The group ID. The range is from 1 to 16.

Link Action The action to be performed on downstream interfaces when all the

interfaces in the upstream list go down.

Group State The current state of the group.

Group Transitions The number of group transitions.

Last Transition Time The time of the last group transition.

Clear all interfaces in a link dependency group

You can clear all interfaces in a link dependency group. After you do so, the upstream list and

downstream list for the group do not include any interfaces.

To clear all interfaces in a link dependency group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual161

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > Link Dependency > Link Dependency Interface Configuration.

The Link Dependency Interface Configuration page displays.

6. In the Link Dependency Group ID section, from the Group ID menu, select the group ID for

which you want to display or configure the settings.

The range for the group ID is from 1 to 16.

Note: The group IDs are not associated with interface numbers.

7. Click the Clear button.

The interfaces are removed from the group.

8. To save the settings to the running configuration, click the Save icon.

Industry Standard Discovery Protocol

Industry Standard Discovery Protocol (ISDP) is a protocol that enables devices to share

information in a network.

You can configure the global and interface settings for ISDP.

Configure the global ISDP settings

You can configure the ISDP settings that apply globally to the switch.

To configure the global ISDP settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual162

5. Select System > ISDP > Basic > Global Configuration.

The Global Configuration page displays.

6. Select the Admin mode Disable or Enable radio button to specify is the ISDP service is

disable or enabled.

The default is Enabled.

7. In the Timer field, specify the period in seconds between the transmission of ISDP packets.

The range is from 5 to 254 seconds. The default is 30 seconds.

8. In the Hold Time field, specify the hold time for ISDP packets that the switch transmits.

The hold time specifies how long a receiving device must store information sent in the

ISDP packet before discarding it. The range from 10 to 255 seconds. The default is

180 seconds.

9. Select the Version 2 Advertisements Disable or Enable radio button to specify if the switch

can send ISDPv2 packets.

The default is Enabled.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 49. ISDP global configuration information

Field Description

Neighbors table last time changed The time that the information in the neighbors table was changed.

Device ID The device ID of this switch.

Device ID Format Capability The device ID format capability.

Device ID Format The device ID format.

Configure ISDP settings for an interface

You can configure if an interface can communicate IDSP packets.

To configure ISDP settings for an interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual163

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > ISDP > Advanced > Interface Configuration.

The Interface Configuration page displays.

6. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

7. From the Admin mode menu, select Enable or Disable to specify if the interface can

communicate ISDP information.

The default is Enable.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Display or clear ISDP neighbor information

You can view or clear the information about ISDP neighbors.

To display or clear ISDP neighbor information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > ISDP > Advanced > Neighbor.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual164

The Neighbor page displays.

6. To search for a neighbor, from the Search menu, select Device ID or Interface, and in the

field, enter the device ID or interface number.

7. To refresh the page, click the Refresh button.

8. To clear the ISDP neighbor information, click the Clear button.

All information on the page is cleared.

9. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 50. ISDP neighbor information

Field Description

Device ID The device ID of the ISDP neighbor.

Interface The interface on which the neighbor is discovered.

Address The IP address of the neighbor.

Capability The capability of the neighbor, which can be one of the following:

• Router

• Trans Bridge

• Source Route

• Switch

• Host

• IGMP

• Repeater

Platform The model type of the neighbor.

Port ID The port ID on the neighbor.

Hold Time The hold time for ISDP packets that the neighbor transmits.

Advertisement Version The ISDP version sending from the neighbor.

Entry Last Changed Time The time since the last entry was changed.

Software Version The software version on the neighbor.

Display or clear ISDP statistics

You can display or clear the ISDP statistics.

To display or clear ISDP statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switch System Information User Manual165

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select System > ISDP > Advanced > Statistics.

The Statistics page displays.

6. To refresh the page, click the Refresh button.

7. To clear the ISDP statistics, click the Clear button.

The statistics are cleared.

8. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 51. ISDP statistics information

Field Description

ISDP Packets Received The ISDPv2 and ISDPv3 packets received on the switch.

ISDP Packets Transmitted The ISDPv2 and ISDPv3 packets transmitted on the switch.

ISDPv1 Packets Received The ISDPv1 packets received on the switch.

ISDPv1 Packets Transmitted The ISDPv1 packets transmitted on the switch.

ISDPv2 Packets Received The ISDPv2 packets received on the switch.

ISDPv2 Packets Transmitted The ISDPv2 packets transmitted on the switch.

ISDP Bad Header The ISDP packets with bad headers received on the switch.

ISDP Checksum Error The ISDP packets with checksum errors received on the switch.

ISDP Transmission Failure The number of ISDP packets that the switch failed to transmit.

ISDP Invalid Format The number of ISDP packets with an invalid format that the switch received.

ISDP Table Full The size of the ISDP table.

ISDP IP Address Table Full The size of the ISDP IP address table.

166

3Configure Switching Information

This chapter covers the following topics:

•VLANs

•Auto-VoIP

•Spanning Tree Protocol

•Multicast forwarding database

•Internet Group Management Protocol snooping

•Multicast Listener Discovery snooping

•Multicast VLAN registration

•MAC address table

•Port settings

•Link aggregation groups

•802.1AS timing and synchronization

•Multiple Registration Protocol settings

•Loop protection

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual167

VLANs

Adding virtual LAN (VLAN) support to a Layer 2 switch offers some of the benefits of both

bridging and routing. Like a bridge, a VLAN switch forwards traffic based on the Layer 2

header, which is fast, and like a router, it partitions the network into logical segments, which

provides better administration, security, and management of multicast traffic.

By default, all ports on the switch are in the same broadcast domain. VLANs electronically

separate ports on the same switch into separate broadcast domains so that broadcast

packets are not sent to all the ports on a single switch. When you use a VLAN, users can be

grouped by logical function instead of physical location.

Each VLAN in a network is assigned an associated VLAN ID, which appears in the IEEE

802.1Q tag in the Layer 2 header of packets transmitted on a VLAN. An end station can omit

the tag, or the VLAN portion of the tag, in which case the first switch port to receive the

packet can either reject it or insert a tag using its default VLAN ID. A port can handle traffic

for more than one VLAN, but it can support only one default VLAN ID.

You can define VLAN groups stored in the VLAN membership table. Each switch can support

up to 1024 VLANs. VLAN 1 is created by default and is the default VLAN of which all ports

are members.

Manage the VLAN configuration on the switch

You can add, change, and delete VLANs, or reset the entire VLAN configuration on the

switch to defaults.

Add a VLAN

An internal VLAN is reserved by a port-based routing interface and invisible to the end user.

After an internal VLANs is allocated by the port-based routing interface, the VLAN cannot be

assigned to a routing VLAN interface.

To add a VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual168

5. Select Switching> VLAN > Basic > VLAN Configuration.

The VLAN Configuration page displays.

6. In the VLAN Configuration section, specify the settings for the new VLAN:

•VLAN ID: Specify the identifier for the new VLAN.

The range of the VLAN ID can be from 1 to 4093.

• VLAN Name: Type a name for new VLAN.

The name can be up to 32 characters, including blanks.

Be default, the name for VLAN ID 1 is Default.

Note: When you add a VLAN manually (as in this procedure), the VLAN Type field

always shows Static. A VLAN that is created by GVRP registration initially

uses a type of dynamic but you can change it to static (see Change a VLAN

on page 168). The type of the default VLAN (VLAN ID 1) is always Default.

7. Click the Add button.

The VLAN is added.

8. To save the settings to the running configuration, click the Save icon.

Change a VLAN

You can change the name for a statically or dynamically added VLAN. For a dynamically

added VLAN (for example, a VLAN that is created by GVRP registration), you change the

VLAN type to static.

To change a VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Basic > VLAN Configuration.

The VLAN Configuration page displays.

6. In the VLAN Configuration section, select the check box for the VLAN ID.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual169

7. To change the VLAN name, in the VLAN Name field, type a name for new VLAN.

The name can be up to 32 characters, including blanks.

8. To change the VLAN type from dynamic to static, from the Make Static menu, select

Enable.

A VLAN that is created by GVRP registration initially uses a type of dynamic but you can

change it to static. You cannot change the type for a VLAN that you added manually. The

type of the default VLAN (VLAN ID 1) is always Default.

9. Click the Apply button.

You changes are saved.

10. To save the settings to the running configuration, click the Save icon.

Delete one or more VLANs

You can delete one or more VLANs that you no longer need. You cannot delete the default

VLAN (VLAN 1).

To delete one or more VLANs:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Basic > VLAN Configuration.

The VLAN Configuration page displays.

6. In the VLAN Configuration section, select the check boxes for the VLAN IDs.

7. Click the Delete button.

The VLANs are deleted.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual170

Reset the entire VLAN configuration to default setting

You can reset all VLAN configuration settings on the switch to factory default settings, with

the exception of the default VLAN (VLAN 1). The factory default values are as follows:

•All ports are assigned to the default VLAN of 1.

•All ports are configured with a PVID of 1.

•All ports are configured to an “Acceptable Frame Types value of Admit All Frames.”

•All ports are configured with ingress filtering disabled.

•All ports are configured to transmit only untagged frames.

•GVRP is disabled on all ports and all dynamic entries are cleared.

To reset the entire VLAN configuration to default settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > VLAN Configuration.

The VLAN Configuration page displays.

6. Select the Reset Configuration check box.

A confirmation windows displays.

WARNING:

If you select this button and confirm your selection, all VLAN

configuration settings on the switch are reset to their factory

default values.

7. Click the OK button.

All VLANs, except for the default VLAN, are deleted.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual171

Change the internal VLAN allocation settings

In most situations, you do not need to change the internal VLAN allocation settings.

To change the internal VLAN allocation settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Basic > VLAN Configuration.

The VLAN Configuration page displays.

6. In the Internal VLAN Allocation Base field, specify the VLAN allocation base for the routing

interface.

The default base range of the internal VLAN is from 1 to 4093.

7. Select the Internal VLAN Allocation Policy Ascending or Descending radio button to

specify the policy for the internal VLAN allocation:

• Ascending: VLANs are allocated in ascending order from 2 to 4093.

• Descending: VLANs are allocated in descending order from 4093 to 2.

VLAN 1 is the default VLAN.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Auto-Trunk overview

Auto-trunk is a feature that lets the switch automatically enable Trunk mode on capable

physical links and LAG interfaces between partner devices. A trunk can carry all active

VLANs. By default, the Auto-Trunk feature is enabled on the switch.

If the switch automatically configures a port as a trunk (that is, an Auto-Trunk), all VLANs on

the switch become part of the trunk, allowing automatic configuration of all VLANs on the

switch and on the partner device with which the trunk is established.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual172

Before the switch configures an Auto-Trunk, the switch first detects the physical links with the

partner device that also supports the Auto-Trunk feature, and then automatically configures

the ports that are connected and capable of forming a trunk at both ends.

A trunk carries multiple VLANs and accepts both tagged and untagged packets. Typically, a

connection between the switch and a partner device such as a router, access point, or

another switch functions as a trunk.

For the switch to form an Auto-Trunk with a partner device, the following are required:

•The Auto-Trunk feature must be supported and globally enabled on the switch and the

partner device. (On all M4250 switch models, the Auto-Trunk feature is enabled by

default.)

•The interconnected ports on both the switch and the partner device must be enabled. (On

all M4250 switch models, all ports are enabled by default.)

•LLDP must be enabled on the interconnected ports on both the switch and the partner

device. (On all M4250 switch models, LLDP is enabled by default on all ports.)

•The interconnected ports on the switch and the partner device must be in the default

switch port mode, which is the General mode. If the ports are in the Access mode or

already in the Trunk mode, an Auto-Trunk cannot be formed on an Auto-LAG.

For an Auto-Trunk, the PVID is automatically set to the management VLAN. If you want to

change the PVID for an Auto-Trunk, change the management VLAN.

The Auto-Trunk feature functions together with the Auto-LAG feature (see Auto-LAG

overview on page 268). After an Auto-LAG is formed, the switch automatically applies trunk

mode (that is, an Auto-Trunk) to the LAG at both ends. In other words, after an Auto-LAG is

formed, the mode for the ports that participate in an Auto-LAG is automatically changed from

the default switch port mode to the trunk port mode, and the Auto-LAG then becomes an

Auto-Trunk.

After a port or an Auto-LAG becomes an Auto-Trunk, all VLANs on the switch become part of

the trunk, and all VLANs on the switch and the partner device can be configured

automatically.

Enable or disable Auto-Trunks

By default, the Auto-Trunk feature is globally enabled but you can globally disable it.

To enable or disable Auto-Trunks:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual173

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > VLAN Trunking Configuration.

The VLAN Trunking Configuration page displays.

6. In the Global Auto-Trunk Mode section, select the Admin Mode Enable or Disable radio

button.

By default, the Auto-Trunk feature is globally enabled.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Configure the switch port mode settings for interfaces

You can configure switch port mode settings on interfaces. The switch port mode defines the

purpose of the port based on the type of device it connects to and constraints the VLAN

configuration of the port accordingly. Assigning the appropriate switch port mode helps

simplify VLAN configuration and minimize errors.

The switch supports the following types of switch ports:

• Access: This mode is for ports connected to end devices. Access ports participate in one

VLAN only. They accept both tagged and untagged packets, but always transmit

untagged packets.

• General: This mode enables a custom configuration of a port. You can configure the

general port VLAN attributes, such as membership (see Configure membership

interfaces for a VLAN on page 175) and PVID, tagging, ingress filter, and so on (see

Change the port VLAN ID settings on page 177). By default, all ports are initially

configured in the general mode.

• Trunk: This mode is for ports that are connected to other switches or to a router. A trunk

port can participate in multiple VLANs and accept both tagged and untagged packets.

In the following procedure, ports are referred to as interfaces.

To configure the switch port mode settings for interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual174

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > VLAN Trunking Configuration.

The VLAN Trunking Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Switch port Mode menu, select one of the following:

• Access: Select this mode if the interface is connected to end devices. Access

interfaces participate in one VLAN only. They accept both tagged and untagged

packets, but always transmit untagged packets.

• General: Select this mode so that you can configure the interface. You can configure

the general port VLAN attributes, such as membership (see Configure membership

interfaces for a VLAN on page 175) and PVID, tagging, ingress filter, and so on (see

Change the port VLAN ID settings on page 177). This is the default selection.

• Trunk: Select this mode if the interface is connected to another switch or to a router.

A trunk interface can participate in multiple VLANs and accept both tagged and

untagged packets.

9. Do one of the following, depending on your selection in the previous step:

• Access: If you selected Access from the Switch port Mode menu, from the Access

VLAN ID menu, select the access VLAN for the interface.

• Trunk: If you selected Trunk from the Switch port Mode menu, do the following:

a. From the Native VLAN ID menu, select the native VLAN for the interface.

b. In the Trunk Allowed VLANs field, enter the VLANs of which the interface can

be a member when the switch port mode for the interface Trunk

By default, the field includes all VLANs, even if they are not yet created. VLAN IDs

are in the range from 1 to 4093. Use a hyphen (-) to specify a VLAN range, or a

comma (,) to separate VLAN IDs in a list. Spaces are not permitted. A zero value

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual175

clears the allowed VLANs. If you enter All, all VLANs in the range from 1 to 4093

are included.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

The Native VLAN Tagging field displays one of the following:

• Disable: When VLAN tagging is enabled, if the trunk port receives untagged frames, it

forwards them on the native VLAN with no VLAN tag.

• Enable: When VLAN tagging is disabled, if the trunk port receives untagged frames, it

includes the native VLAN ID in the VLAN tag when it forwards frames.

Configure membership interfaces for a VLAN

To configure membership interfaces for a VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > VLAN Membership.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual176

The previous figure shows the page for a model with 12 ports.

6. From the VLAN ID menu, select the VLAN ID.

7. To add or remove all ports and LAGs simultaneously (you can also select them individually),

select one of the following options from the Group Operation menu:

• Untag All: All ports and LAGs are added as untagged members of the VLAN.

• Tag All: All ports and LAGs are added as untagged members of the VLAN.

• Remove All: All ports and LAGs are excluded from the VLAN

8. In the Ports table, click a port once, twice, or three times to configure one of the following

modes:

•T (tagged) member: The port is added as a tagged member of the VLAN.

• U (untagged) member: The port is added as an untagged member of the VLAN.

• Excluded member: By default, the selection is blank, which means that the port is

excluded from the VLAN. A port that is excluded can still be dynamically added to the

VLAN through GVRP.

9. In the LAG table, click a LAG once, twice, or three times to configure one of the following

modes:

• T (tagged) member: The LAG is added as a tagged member of the VLAN.

• U (untagged) member: The LAG is added as an untagged member of the VLAN.

• Excluded member: By default, the selection is blank, which means that the LAG is

excluded from the VLAN. A LAG that is excluded can still be dynamically added to the

VLAN through GVRP.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 52. Advanced VLAN Membership

Field Definition

VLAN Name The name for the VLAN.

VLAN Type The type of the VLAN you selected:

• Default (VLAN ID = 1): Always present.

• Static: A VLAN that you added manually.

• Dynamic: A VLAN that was created through GVRP registration and that you did not

convert to static, and that GVRP can therefore remove.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual177

View the VLAN status on the switch

You can view the status of all configured VLANs.

To view the VLAN status on the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > VLAN Status.

The VLAN Status page displays.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 53. VLAN Status

Field Definition

VLAN ID The VLAN identifier (VID) of the VLAN. The range of the VLAN ID is 1 to 4093.

VLAN Name The name of the VLAN. VLAN ID 1 is always named Default.

VLAN Type The type of the VLAN you selected:

• Default (VLAN ID = 1): Always present.

• Static: A VLAN that you added manually.

• Dynamic: A VLAN that was created through GVRP registration and that you did

not convert to static, and that GVRP can therefore remove.

Routing Interface The interface associated with the VLAN, if VLAN routing is configured for this VLAN.

Member Ports The interfaces and LAGs that are members of the VLAN.

Change the port VLAN ID settings

By default, each interface is assigned a port VLAN ID (PVID) of 1 because it is associated

with the default VLAN, VLAN ID 1.

If you want to change the PVID for an interface, the interface must be a member of at least

one other VLAN in addition to the default VLAN.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual178

In addition to the PVID, you can configure other PVID-related settings.

To configure the PVID and PVID-related settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > Port PVID Configuration.

The Port PVID Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. In the PVID field, specify the VLAN ID to assign to untagged or priority-tagged frames

received on this interface.

The default is 1.

9. In the VLAN Member field, specify the VLAN ID or list of VLANs of a member interface.

VLAN IDs range from 1 to 4093. The default is 1. Use a hyphen (-) to specify a range or a

comma (,) to separate VLAN IDs in a list. Spaces and zeros are not permitted.

10. In the VLAN Tag field, specify the VLAN ID or list of VLANs of a tagged interface.

VLAN IDs range from 1 to 4093. Use a hyphen (-) to specify a range or a comma (,) to

separate VLAN IDs in a list. Spaces and zeros are not permitted. To reset the VLAN tag

configuration to the defaults, use the None keyword. Port tagging for the VLAN can be

set only if the interface is a member of this VLAN.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual179

11. From the Acceptable Frame Types menu, select the types of frames that can be received

on the interface:

• VLAN only: Untagged frames and priority-tagged frames received on the interface

are discarded. VLAN-tagged frames are forwarded in accordance to the 802.1Q

VLAN specification.

• Admit All: Untagged frames and priority-tagged frames received on the interface are

accepted and assigned the value of the port VLAN ID for the interface. VLAN-tagged

frames are forwarded in accordance to the 802.1Q VLAN specification.

• Admit Untagged Only: Untagged frames received on the interface are accepted.

VLAN-tagged frames are forwarded in accordance to the 802.1Q VLAN specification.

12. From the Ingress Filtering menu, select one of the following options:

• Enabled: The frame is discarded if the interface is not a member of the VLAN with

which this frame is associated. In a tagged frame, the VLAN is identified by the VLAN

ID in the tag. In an untagged frame, the VLAN is the port VLAN ID of the interface that

receives this frame.

• Disabled: All frames are forwarded in accordance with the 802.1Q VLAN bridge

specification. The default is Disabled.

13. In the Port Priority field, specify the default 802.1p priority assigned to untagged packets

arriving at the port.

You can enter a number from 0 to 7.

14. Click the Apply button.

Your settings are saved.

15. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 54. PVID configuration information

Field Description

Current Ingress Filtering Indicates whether ingress filtering is enabled for the interface.

Untagged VLANs The number of untagged VLANs that the interface is a member of.

Tagged VLANs The number of tagged VLANs that the interface is a member of.

Forbidden VLANs The number of forbidden VLANs that the interface is a member of.

Dynamic VLANs The number of dynamically added VLANs that the interface is a member of.

Configure a MAC-based VLAN

A MAC-based VLAN allows incoming untagged packets to be assigned to a VLAN and

classify traffic based on the source MAC address of the packet.

You define a MAC-to-VLAN mapping by configuring an entry in the MAC-to-VLAN table. An

entry is defined by its source MAC address and a VLAN ID. MAC-to-VLAN configurations are

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual180

shared across all interfaces (that is, there is a system-wide table with

MAC-address-to-VLAN-ID mappings).

When untagged or priority-tagged packets arrive at the switch and entries exist in the

MAC-to-VLAN table, the switch attempts to find the source MAC address of the packet: If the

switch finds an entry, the corresponding VLAN ID is assigned to the packet. If the packet is

already priority-tagged, it maintains this value; otherwise, the priority is set to zero. The

assigned VLAN ID is verified against the VLAN table: If the VLAN is valid, ingress processing

on the packet continues; otherwise the packet is dropped. This implies that you can manually

configure a MAC-address-to-VLAN-ID mapping.

Add a MAC-based VLAN configuration

To add a MAC-based VLAN configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > MAC Based VLAN.

The MAC Based VLAN page displays.

6. In the MAC Address field, type a MAC address that must be bound to a VLAN ID.

7. In the VLAN ID field, specify the VLAN ID in the range of 1 to 4093.

8. Click the Add button.

The MAC-based VLAN configuration is added.

9. To save the settings to the running configuration, click the Save icon.

Delete a MAC-based VLAN configuration

To delete a MAC-based VLAN configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual181

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > MAC Based VLAN.

The MAC Based VLAN page displays.

6. Select the check box for the MAC-based VLAN configuration

7. Click the Delete button.

The MAC-based VLAN configuration is deleted.

8. To save the settings to the running configuration, click the Save icon.

Configure a protocol-based VLAN group

You can use a protocol-based VLAN to define filtering criteria for untagged packets. By

default, if you do not configure a port-based (IEEE 802.1Q) or protocol-based VLAN,

untagged packets are assigned to VLAN 1. You can override this behavior by defining either

port-based VLANs or protocol-based VLANs, or both. Tagged packets are always handled

according to the IEEE 802.1Q standard, and are not included in protocol-based VLANs.

If you assign an interface to a protocol-based VLAN for a specific protocol, untagged frames

received on the interface for that protocol are assigned the protocol-based VLAN ID.

Untagged frames received on the interface for other protocols are assigned the Port VLAN

ID, either the default PVID (1) or a PVID you specifically assigned to the interface (see

Change the port VLAN ID settings on page 177).

You define a protocol-based VLAN by creating a group. Each group has a one-to-one

relationship with a VLAN ID, can include one to three protocol definitions, and can include

multiple interfaces. When you create a group, you specify a name. A group ID is assigned

automatically.

Add a protocol-based VLAN group

You can add a protocol-based VLAN group.

To add a protocol-based VLAN group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual182

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > Protocol Based VLAN Group Configuration.

The Protocol Based VLAN Group Configuration page displays.

6. In the Group ID field, specify a numerical ID.

You can enter an ID in the range from 1 to 128.

7. In the Group Name field, specify a name for the new group.

You can enter up to 16 characters.

8. In the Protocol field, specify one or more of the following protocols to be associated with the

group:

•IP: IP is a network layer protocol that provides a connectionless service for the

delivery of data.

• ARP: Address Resolution Protocol (ARP) is a low-level protocol that dynamically

maps network layer addresses to physical medium access control (MAC) addresses.

• IPX: The internetwork packet exchange (IPX) is a connectionless datagram

network-layer protocol that forwards data over a network.

Separate protocols by a comma (,). For example, to specify all three protocols, enter the

following: ip,arp,ipx

You can also enter hexadecimal or decimal values in the range of 0x0600(1536) to

0xFFFF(65535).

9. In the VLAN ID field, specify the VLAN ID.

The ID must be a number in the range of 1 to 4093. An interface in the group assign this

VLAN ID to untagged packets that the interface receives for the protocols that you include

in this group.

10. Click the Add button.

The protocol-based VLAN group is added.

The Ports field displays the interfaces ports that belong to the group.

11. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual183

Change a protocol-based VLAN group

You can change an existing protocol-based VLAN group.

To change a protocol-based VLAN group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > Protocol Based VLAN Group Configuration.

The Protocol Based VLAN Group Configuration page displays.

6. Select the check box for the group ID.

7. Change the settings are needed.

For more information, see Add a protocol-based VLAN group on page 181.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Delete a protocol-based VLAN group

You can delete a protocol-based VLAN group that you no longer need.

To delete a protocol-based VLAN group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual184

The System Information page displays.

5. Select Switching> VLAN > Advanced > Protocol Based VLAN Group Configuration.

The Protocol Based VLAN Group Configuration page displays.

6. Select the check box for the group ID.

7. Click the Delete button.

The protocol-based VLAN group is deleted.

8. To save the settings to the running configuration, click the Save icon.

Configure membership interfaces for a protocol-based

VLAN group

For a protocol, an interface can belong to one protocol-based VLAN group only. If you

already added an interface to a group for IP, you cannot add the interface to another group

that also includes IP, but you can add it to a new group for IPX.

To configure membership interfaces for a protocol-based VLAN group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > Protocol Based VLAN Group Membership.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual185

The previous figure shows the page for a model with 12 ports.

6. From the Group ID menu, select the protocol-based VLAN group ID.

The Group Name field shows the name for the protocol-based VLAN that you selected.

7. To display the current members of the selected protocol-based VLAN group, click the

Current Members button.

A pop-up window displays the members.

8. To select physical interfaces for the VLAN, do one the following:

• Select all physical interfaces: Click the Ports icon above the Ports table.

• Select individual physical interfaces: In the Ports table, click one or more ports

individually.

9. To select LAGs for the VLAN, do one the following:

• Select all LAGs: Click the LAG icon above the LAG table.

• Select individual LAGs: In the LAG table, click one or more LAGs individually.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual186

Configure an IP subnet-based VLAN

You configure an IP subnet-to-VLAN mapping by specifying a source IP address, network

mask, and the VLAN ID. The IP subnet-to-VLAN configurations are shared across all

interfaces of the switch.

Add an IP subnet-based VLAN

You can add an IP subnet-based VLAN.

To add an IP subnet-based VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > IP Subnet Based VLAN.

The IP Subnet Based VLAN page displays.

6. In the IP Address field, specify an IP address.

Enter the IP address in dotted-decimal notation.

7. In the Subnet Mask field, specify a subnet mask that is associated with the IP address.

Enter the subnet mask in dotted-decimal notation.

8. In the VLAN ID field, specify the VLAN ID to which the IP configuration must be bound.

The VLAN ID can be in the range from 1 to 4093.

9. Click the Add button.

The IP subnet-based VLAN is added.

10. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual187

Delete an IP subnet-based VLAN

You can delete an IP subnet-based VLAN that you no longer need.

To delete an IP subnet-based VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > IP Subnet Based VLAN.

The IP Subnet Based VLAN page displays.

6. Select the check box for the IP subnet-based VLAN.

7. Click the Delete button.

The IP subnet-based VLAN is deleted.

8. To save the settings to the running configuration, click the Save icon.

Configure a double VLAN

A double VLAN (DVLAN) lets you configure an EtherType VLAN tag inside a VLAN tag. The

EtherType VLAN tag can be an 802.1Q tag, virtual metropolitan area network (vMAN) tag, or

custom tag.

To configure the global EtherType for the DVLAN and configure the DVLAN on one or

more interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual188

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > Port DVLAN Configuration.

The Port DVLAN Configuration page displays.

6. From the Global EtherType menu, select a tag type that determines the first 16 bits of the

DVLAN tag:

• 802.1Q Tag: The dot1q tag that represents 0x8100.

•vMAN Tag: The virtual metropolitan area network (vMAN) tag that represents

0x88A8.

• Custom Tag: A custom EtherType tag in the range from 0 to 65535. With this

selection the Custom Value field displays.

7. if you select Custom Tag from the Global EtherType menu, enter the custom EtherType

tag in the Custom Value field.

The tag can be in the range from 0 to 65535.

8. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

9. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

10. From the Admin Mode menu, select Enabled or Disabled to specify if the selected DVLAN

tag is added to frames that are processed on the interface.

The default is Disabled and the selected DVLAN tag is not added to frames.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual189

Configure a voice VLAN

You can configure a voice VLAN for use with voice traffic. For example, enable the voice

VLAN on an interface that is connected to IP phones. A voice VLAN can ensure that the

sound quality of IP phone traffic remains good when data traffic on the same interface is high.

To configure a voice VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > Voice VLAN Configuration.

The Voice VLAN Configuration page displays.

6. Select the Admin Mode Disable or Enable radio button to disable or enable the global voice

VLAN mode on the switch.

The default is Disable. If you want to use a voice VLAN, you must enable the global voice

VLAN mode.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Interface Mode menu, select the voice VLAN mode:

• Disable: This is the default value.

•None: Allows an IP phone to use its own configuration to send untagged voice traffic.

•VLAN ID: An IP phone must be configured to send tagged voice traffic.

• Dot1p: Configure voice VLAN 802.1p priority tagging for voice traffic.

If you select this mode, enter the dot1p value in the Value field.

• Untagged: An IP phone must be configured to send untagged voice traffic.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual190

9. From the CoS Override Mode menu, select one of the following:

• Enable: The interface ignores (that is, overrides) the 802.1p priority value in the

Ethernet frames it receives from connected devices. The DSCP field overrides the

CoS value.

• Disable: The interface trusts the priority value in the received frame. The default is

Disable.

10. From the Authentication Mode menu, select one of the following:

• Enable: Voice traffic is allowed on an unauthorized voice VLAN interface. The default

is Enable.

• Disable: Voice traffic is allowed only an authorized voice VLAN interface, for which

dot1x must be enabled (see Manage port authentication on individual ports on

page 494).

11. In the DSCP Value field, configure the DSCP value for the interface.

The range is from 0 to 64. The default is 0.

12. Click the Apply button.

Your settings are saved.

The Operational State field displays the operational status of the voice VLAN on the

interface.

13. To save the settings to the running configuration, click the Save icon.

Configure Generic Attribute Registration Protocol

Generic Attribute Registration Protocol (GARP) allows network devices to share information

such as VLAN IDs and multicast group membership across a bridged LAN. That is, GARP

participants can register and deregister attribute values within the LAN. When a GARP

participant declares or withdraws an attribute, the attribute value is recorded for that attribute

and for the interface from which the declaration or withdrawal was made.

The following applies to GARP:

•Registration occurs only on interfaces that receive a GARP PDU with a declaration or

withdrawal.

•Deregistration occurs only if all GARP participants that are connected to the same LAN

segment as the interface withdraw the declaration.

Configure GARP switch settings

You can globally enable GARP VLAN registration protocol (GVRP) and GARP multicast

registration protocol (GMRP) on the switch.

To configure GARP switch settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual191

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> VLAN > Advanced > GARP Switch Configuration.

The GARP Switch Configuration page displays.

6. Select the GVRP Mode Disable or Enable radio button to disable or enable GARP VLAN

registration protocol (GVRP) globally for the switch.

If GVRP is enabled, the switch can share VLAN IDs with devices in the network. the The

default is Disable.

7. Select the GMRP Mode Disable or Enable radio button to disable or enable GARP

multicast registration protocol (GMRP) globally for the switch.

If GVMP is enabled, the switch can share multicast information with devices in the

network. the The default is Disable.

8. Click the Apply button.

Your settings are saved.

It can take up to 10 seconds for GARP configuration changes to take effect.

9. To save the settings to the running configuration, click the Save icon.

Configure GARP settings for one or more interfaces

You can configure GARP settings for individual interfaces. These settings take effect only if

GVRP mode, GMRP mode, or both modes are enabled on the switch.

To configure GARP settings for one or more interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual192

The System Information page displays.

5. Select Switching> VLAN > Advanced > GARP Port Configuration. The

The GARP Port Configuration page display.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the GVRP Mode menu, select Enable or Disable to specify the GARP VLAN

registration protocol mode for the port.

If you select Disable, GVRP is not active and the join time, leave time, and leave all time

options are without any effect. The default is Disable.

9. From the GMRP Mode menu, select Enable or Disable to specify the GARP multicast

registration protocol mode for the port.

If you select Disable, GMRP is not active and the join time, leave time, and leave all time

options are without any effect. The default is Disable.

10. In the Join Timer field, specify the time in centiseconds between the transmission of GARP

PDUs registering membership for a VLAN or multicast group.

Enter a number between 10 and 100 (0.1 to 1.0 seconds). The default is 20 centiseconds

(0.2 seconds). An instance of this timer exists for each GARP participant for each port.

11. In the Leave Timer field, specify the time in centiseconds to wait after receiving an

unregister request for a VLAN or multicast group before deleting the associated entry.

This allows time for another station to assert registration for the same attribute to maintain

uninterrupted service. Enter a number between 20 and 600 (0.2 to 6.0 seconds). The

default is 60 centiseconds (0.6 seconds). An instance of this timer exists for each GARP

participant for each port.

12. In the Leave All Timer field, specify how frequently (in centiseconds) LeaveAll PDUs are

generated.

A LeaveAll PDU indicates that all registrations will be deregistered soon. To maintain

registration, participants must rejoin. The leave all period timer is set to a random value in

the range of LeaveAllTime to 1.5 * LeaveAllTime. The timer is specified in centiseconds.

Enter a number between 200 and 6000 (2 to 60 seconds). The default is 1000

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual193

centiseconds (10 seconds). An instance of this timer exists for each GARP participant for

each port.

13. Click the Apply button.

Your settings are saved.

It can take up to 10 seconds for GARP configuration changes to take effect.

14. To save the settings to the running configuration, click the Save icon.

Auto-VoIP

Voice over Internet Protocol (VoIP) enables telephone calls over a data network. Because

voice traffic is typically more time-sensitive than data traffic, Auto-VoIP provides classification

for voice packets so that they can be prioritized above data packets for better quality of

service (QoS). With Auto-VoIP, voice prioritization is based on call-control protocols such as

SIP, H.323, and SCCP on interfaces or organizationally unique Identifier (OUI) bits.

Configure Auto-VoIP protocol-based settings

To prioritize time-sensitive voice traffic over data traffic, protocol-based Auto-VoIP

determines if packets carry the following VoIP protocols:

•Session Initiation Protocol (SIP)

•H.323

•Signalling Connection Control Part (SCCP)

VoIP packets that come in on an interface on which Auto-VoIP is enabled are marked with

the specified CoS traffic class value.

To configure protocol-based settings for one or more interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Auto-VoIP > Protocol-based > Port Settings.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual194

The Port Settings page displays.

6. In the Protocol Based Global Settings section, specify the following global settings:

a. From the Prioritization Type menu, select Traffic Class or Remark.

This specifies the type of prioritization.

b. From the Class Value menu, specify the CoS class value to be reassigned for packets

that the voice VLAN receives.

You can select a value in the range from 0 to 7.

7. In the Protocol Based Global Settings section, specify the Auto VoIP settings for the

interfaces:

a. Select whether to display physical interfaces, LAGs, or both by clicking one of the

following links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

b. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the port, or

type the port number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the

heading row.

c. From the Auto VoIP Mode menu, select to enable or disable the Auto VoIP mode

for the interface.

Auto-VoIP is disabled by default.

8. Click the Apply button.

Your settings are saved.

The Operational Status field show if the interface is up or down.

9. To save the settings to the running configuration, click the Save icon.

Configure the Auto-VoIP OUI-based properties

With organizationally unique Identifier (OUI)–based Auto-VoIP, voice prioritization is provided

based on OUI bits.

To configure the Auto-VoIP OUI-based properties:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual195

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Auto-VoIP > OUI-based > Properties.

The Properties page displays.

6. In the Auto-VoIP VLAN ID field, enter the VoIP VLAN ID of the switch.

No default VLAN exists for Auto-VoIP, you must create a VLAN for Auto-VoIP.

7. From the OUI-based priority menu, select the OUI-based priority of the switch.

The default value is 7.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Configure the OUI-based interface settings

You can configure the OUI interface settings.

To configure the OUI-based interface settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Auto-VoIP > OUI-based > Port Settings.

The page Port Settings displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual196

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the port, or type

the port number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Auto VoIP Mode menu, select to enable or disable the Auto VoIP mode for the

interface.

Auto-VoIP is disabled by default.

9. Click the Apply button.

Your settings are saved.

The Operational Status field show if the interface is up or down.

10. To save the settings to the running configuration, click the Save icon.

Manage the OUI table

Device hardware manufacturers can include an OUI in a network adapter to help identify a

hardware device. The OUI is a unique 24-bit number assigned by the IEEE registration

authority. The switch comes preconfigured with the following OUIs that identify the IP phone

manufacturer:

•00:01:E3: SIEMENS

•00:03:6B: CISCO1

•00:12:43: CISCO2

•00:0F:E2: H3C

•00:60:B9: NITSUKO

•00:D0:1E: PINTEL

•00:E0:75: VERILINK

•00:E0:BB: 3COM

•00:04:0D: AVAYA1

•00:1B:4F: AVAYA2

•00:04:13: SNOM

•00:1D:C1: Dante

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual197

You can select an existing OUI or add a new OUI and description to identify the IP phones on

the network.

Add an OUI prefix

To add an OUI prefix:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Auto-VoIP > OUI-based > OUI Table.

The OUI Table page displays.

6. In the Telephony OUI(s) field, specify the new VoIP OUI prefix in the format AA:BB:CC.

The table can include up to 128 OUIs.

7. In the Description field, enter the description for the OUI.

The maximum length is 32 characters.

8. Click the Add button.

The telephony OUI entry is added.

9. To save the settings to the running configuration, click the Save icon.

Delete one or more OUI prefixes

To delete one or more OUI prefixes:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual198

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Auto-VoIP > OUI-based > OUI Table.

The OUI Table page displays.

6. Select the check box next to each OUI prefix to be removed.

7. Click the Delete button.

The telephony OUI entries are removed.

8. To save the settings to the running configuration, click the Save icon.

Display the Auto-VoIP status

To display the Auto-VoIP status:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Auto-VoIP > Auto-VoIP Status.

The Auto-VoIP Status page displays.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 55. Auto-VoIP status information

Field Description

Auto-VoIP VLAN ID The Auto-VoIP VLAN ID.

Maximum Number of Voice

Channels Supported

The maximum number of voice channels supported.

Number of Voice Channels

Detected

The number of VoIP channels prioritized successfully.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual199

Spanning Tree Protocol

The Spanning Tree Protocol (STP) provides a tree topology for any arrangement of network

devices. STP also provides one path between end stations on a network, eliminating loops.

STP (also referred to as “classic” STP) provides a single path between end stations, avoiding

and eliminating loops. For information about configuring the global STP settings for the

switch, see Configure the STP settings and display the STP status on page 200.

The switch support the following spanning tree versions:

• CST: Common STP. For information about configuring CST, see Configure the CST

settings and display the CST status on page 202 and Configure the CST interface

settings on page 204.

• MSTP: Multiple Spanning Tree Protocol (MSTP, also referred to as MST) supports

multiple instances of spanning tree to efficiently channel VLAN traffic over different

interfaces. For information about configuring MSTP, see Manage MST instances on

page 209 and Configure and display the interface settings for an MST instance on

page 212.

• RSTP: Rapid STP. Each instance of the spanning tree behaves in the manner specified in

IEEE 802.1w, Rapid Spanning Tree (RSTP), with slight modifications in the working but

not the end effect (the main effect is the rapid transitioning of the port to the forwarding

state).

The difference between the RSTP and the traditional STP (IEEE 802.1D) is the ability to

configure and recognize full-duplex connectivity and ports that are connected to end

stations, resulting in rapid transitioning of the port to the forwarding state and the

suppression of Topology Change Notification messages. These features are represented

by the ‘pointtopoint’ and ‘edgeport’ parameters. MSTP is compatible with both RSTP and

STP. It behaves in a way that is appropriate for STP and RSTP bridges. An MSTP bridge

can be configured to behave entirely as an RSTP bridge or an STP bridge.

• PVST: Per-VLAN Spanning Tree (PVST) provides a unique instance of spanning tree for

each VLAN. For information about configuring PVTP, see Configure the PVST/RPVST

VLAN settings on page 215 and Configure the PVST and RPVST interface settings on

page 218.

RPVST: Rapid Per-VLAN Spanning Tree (RPVST) provides a unique instance of

spanning tree for each VLAN with each instance behaving in the manner specified in

IEEE 802.1w, Rapid Spanning Tree (RSTP). Compared to PVST, RPVST provides a

faster spanning tree convergence in response to Layer 2 topology changes.

For information about configuring RPVTP, see Configure the PVST/RPVST VLAN settings

on page 215 and Configure the PVST and RPVST interface settings on page 218.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual200

Note: For two bridges to be in the same region, the force version must be

802.1s and their configuration names, digest keys, and revision levels

must match. For additional information about regions and their effect

on network topology, refer to the IEEE 802.1Q standard.

Configure the STP settings and display the STP status

You can configure the Spanning Tree Protocol (STP) settings and display the STP status on

the switch.

To configure the STP settings and display the STP status:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Basic > STP Configuration.

The STP Configuration page displays.

6. Select the Spanning Tree Admin Mode Disable or Enable radio button.

This specifies whether spanning tree operation is enabled on the switch.

7. Select one of the following Force Protocol Version radio buttons to specify the STP version

that the switch must use:

• IEEE 802.1d: Traditional (classic) Spanning Tree Protocol.

• IEEE 802.1w: Rapid Spanning Tree Protocol.

• PVST: Per-VLAN Spanning Tree Protocol.

• RPVST: Rapid Per-VLAN Spanning Tree Protocol.

8. In the Configuration Name field, specify an ID or name that lets you identify the

configuration.

The name can be up to 32 characters. The default is the MAC address of the switch.

9. In the Configuration Revision Level field, specify an ID that lets you identify the

configuration.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual201

For example, if you change the configuration, you can change the ID in the Configuration

Revision Level field so you can keep track of the different configurations. You can enter

an ID from 0 to 65535. The default is 0.

10. Select one of the following Forward BPDU while STP Disabled radio buttons:

• Disabled: Spanning tree BPDUs are not forwarded if spanning-tree is disabled on the

switch. The default is Disable.

• Enabled: Spanning tree BPDUs are forwarded if spanning-tree is disabled on the

switch.

11. Select one of the following BPDU Guard radio buttons:

• Disabled: The BPDU guard feature is disabled, which is the default setting.

• Enabled: The BPDU guard feature is enabled and enforces the STP domain borders

to keep the active topology consistent and predictable. Switches behind edge ports

on which STP BPDU guard is enabled do not affect the overall STP topology. At the

reception of BPDUs, the port on which BPDU guard is enabled transitions into

disabled state.

12. Select one of the following BPDU Filter radio buttons:

• Disabled: The BPDU Filter feature is disabled, which is the default setting.

• Enabled: The BPDU Filter feature is enabled and applies to all operational edge

ports. An edge port in an operational state connects to hosts that typically drop

BPDUs. If an operational edge port receives a BPDU, it loses its operational status. If

a port on which BPDU filtering is enabled receives BPDUs, the port drops the BPDUs

and remains operational.

13. If you selected the PVST radio button in Step 7, select one of the following Fast Backbone

radio buttons:

• Disabled: The Fast Backbone feature is disabled, which is the default setting.

• Enabled: The Fast Backbone feature is enabled. If an indirect link fails, the switch

can automatically select a new indirect link. With PVST, the switch does not ignore

inferior BPDUs (which occurs with STP), but lets the BPDUs time-out on the port

where they were received. Then, the switch sends root link queries on other

non-designated ports. If the switch receives a positive response, it selects a new

indirect link.

14. If you selected the PVST radio button in Step 7, select one of the following Fast Uplink

radio buttons:

• Disabled: The Fast Uplink feature is disabled, which is the default setting.

• Enabled: The Fast Uplink feature is enabled. If the primary root port goes down, the

recovery time in selecting a new root port is reduced.

15. If you enabled Fast Uplink in the previous step, in the Max Update Rate field, enter the

maximum update rate in packets per second.

You enter from 0 to 32000 packets per second. The default is 150.

16. Click the Apply button.

Your settings are saved.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual202

17. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 56. STP configuration and status information

Field Description

STP Configuration

Configuration Digest Key The identifier for the STP configuration.

Configuration Format Selector The version of the configuration format for the exchange of BPDUs.

STP Status

MST ID The multiple spanning tree (MST) or common spanning tree (CST) instance.

VID ID The VLAN ID (VID).

FID ID The filtering ID (FID).

Configure the CST settings and display the CST status

You can configure common spanning tree (CST) and display the CST status on the switch.

To configure the CST settings and display the CST status:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > CST Configuration.

The CST Configuration page displays.

6. In the Bridge Priority field, specify the bridge priority value for the common spanning tree

(CST) and common and internal spanning tree (CIST).

The range is from 0 to 61440. The bridge priority is a multiple of 4096. The default priority

is 32768.

When switches or bridges are running STP, each is assigned a priority. After exchanging

BPDUs, the switch with the lowest priority value becomes the root bridge. If you specify a

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual203

priority that is not a multiple of 4096, the priority is automatically set to the next lowest

priority that is a multiple of 4096. For example, if you set the priority to a value between 0

and 4095, it is automatically set to 0.

7. In the Bridge Max Age (secs) field, specify the period in seconds that a bridge waits before

implementing a topological change.

The range is from 6 to 40 seconds, and the value must be less than or equal to the

following:

(2 * Bridge Forward Delay) – 1 and greater than or equal to 2 * (Bridge Hello Time +1).

The default is 20 seconds.

Note: The Bridge Hello Time (secs) field shows the fixed period in seconds

that a root bridge waits between configuration messages. The fixed

period is 2 seconds.

8. In the Bridge Forward Delay (secs) field, specify the period in seconds that a bridge

remains in a listening and learning state before forwarding packets.

The period is form 4 to 30 seconds, and the value must be greater or equal to the

following:

(Bridge Max Age / 2) + 1.

The default is 15 seconds.

9. In the Spanning Tree Maximum Hops field, specify the maximum number of bridge hops

that the information for a particular CST instance can travel before being discarded.

The range is from 6 to 40 hops. The default is 20 hops.

10. In the Spanning Tree Tx Hold Count field, specify the maximum number of BPDUs that

the bridge can send within the hello time window.

The range is from 1 to 10. The default is 6.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 57. CST status information

Field Description

Bridge identifier The bridge identifier for the CST, which consist of the bridge priority and the

base MAC address of the bridge.

Time Since Topology Change The time in seconds since the topology of the CST changed.

Topology Change Count The number of times the topology changed for the CST.

Topology Change This field shows if a topology change is in progress on any port assigned to

the CST. (True or False.)

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual204

Configure the CST interface settings

You can configure a common spanning tree (CST) and internal spanning tree on a specific

interface on the switch.

An interface can become diagnostically disabled (D-Disable) when a severe error condition

occurs for DOT1S. The most common cause is when BPDU flooding occurs. The flooding

criteria are such that DOT1S receives more than 15 BPDUs in a 3-second interval. (Other

causes for a DOT1S D-Disable condition are very rare.)

To configure the CST interface settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > CST Port Configuration.

The CST Port Configuration page displays.

Designated Root The bridge identifier of the root bridge, which consist of he bridge priority

and the base MAC address of the bridge.

Root Path Cost The path cost to the designated root for the CST.

Root Port The port through which the designated root for the CST is accessed.

Max Age (secs) The period in seconds that passes before a bridge port saves its

configuration BPDU information.

Forward Delay (secs) The period in seconds that the root port bridge delays the forwarding

process. This period is a derived value.

Hold Time (secs) The minimum period between the transmission of configuration BPDUs.

CST Regional Root The priority and base MAC address of the CST regional root.

CST Path Cost The path cost to the CST regional root.

Port Triggered TC The port on which the topology change (TC) is triggered,

Table 57. CST status information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual205

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the port, or type

the port number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. In the Port Priority field, specify the priority for the port in the CST.

Specify the port priority in multiples of 16. For example, if you set the port priority to a

value between 0 and 15, it is automatically set to 0. if you set the port priority to a value

between 16 and (2*16-1), it is automatically set to 16, and so on. The default is 128.

9. From the Admin Edge Port menu, select Enable or Disable to specify if the port functions

as an edge port in the CIST.

The default is Disable.

10. In the Port Path Cost field, specify a path cost value for the port in the CIST

The value can be in the range from 1 to 200000000. The default is 0.

11. From the Auto Calculated Port Path Cost menu, select Enable or Disable to specify if

the external path cost is calculated automatically.

If the value in the Port Path Cost field is zero and the path cost is calculated automatically,

the value is based on the link speed of the port.

The default is Disable.

12. In the External Port Path Cost field, specify an external path cost value for the port in the

CIST.

The value can be in the range from 1 to 200000000. The default is 0.

13. From the Auto Calculated External Port Path Cost menu, select Enable or Disable to

specify if the external path cost is calculated automatically.

If the value in the External Port Path Cost field is zero and the external path cost is

calculated automatically, the value is based on the link speed of the port.

The default is Disable.

14. From the BPDU Filter menu, select Enable or Disable to specify if BPDU traffic is filtered

on the port when STP is enabled on the port.

The default value is Disable.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual206

15. From the BPDU Forwarding menu, select Enable or Disable to specify if BPDU traffic that

arrives on the port can be flooded if STP is disabled on the port.

The default value is Disable.

16. From the Auto Edge menu, select Enable or Disable to specify if the port can become an

edge port if the port does not receive BPDUs for a period.

The default is Enable.

17. From the Root Guard menu, select Enable or Disable to specify if the port can discard any

superior information that it receives and, in this way, protect the root of the device from

changing.

If you enable this option, the port is placed in the discarding state and does not forward

any packets. The default value is Disable.

18. From the Loop Guard menu, select Enable or Disable to specify if the port is protected

from Layer 2 forwarding loops.

If you enable this option, the port moves from the ‘listening/learning/forwarding’ state to

the ‘STP loop inconsistent blocking state.’ The default is Disable

19. From the TCN Guard menu, select Enable or Disable to specify if the port is restricted

from propagating any topology change information that it receives.

The default is Disable.

20. From the Port Mode menu, select Enable or Disable to specify if the STP is enabled or

disabled on the port.

The default value is Disable.

21. Click the Apply button.

Your settings are saved.

22. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page

Table 58. CST port configuration information

Field Description

Hello Timer The setting of the Hello Timer for the CST. By default, the setting is 2.

BPDU Guard Effect Indicates if an edge port that receives BPDU packets is enabled or disabled.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual207

Display the CST interface Status

You can display the Common Spanning Tree (CST) status information for interfaces on the

switch.

To display the CST interface status:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > CST Port Status.

The CST Port Status page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. To refresh the page, click the Refresh button.

Port Forwarding State Indicates the current STP state of the interface. If enabled, the port state

determines what forwarding action is taken on traffic. Possible port states are as

follows:

• Disabled: STP is currently disabled on the interface. The interface forwards

traffic while learning MAC addresses.

• Blocking: The interface is currently blocked and cannot be used to forward

traffic or learn MAC addresses.

• Listening: The interface is currently in the listening mode. The interface

cannot forward traffic nor can it learn MAC addresses.

• Learning: The interface is currently in the learning mode. The interface

cannot forward traffic. However, it can learn new MAC addresses.

• Forwarding: The interface is currently in the forwarding mode. The interface

can forward traffic and learn new MAC addresses

Table 58. CST port configuration information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual208

The following table describes the nonconfigurable fields on the page.

Table 59. CST interface status information

Field Description

Interface The physical interface or LAG that is associated with the CST.

Port ID The port identifier for port in the CST, which is created from the port priority

and the interface number.

Port Forwarding State Indicates the current STP state of the interface. If enabled, the port state

determines what forwarding action is taken on traffic. Possible port states

are as follows:

• Disabled: STP is currently disabled on the interface. The interface

forwards traffic while learning MAC addresses.

• Blocking: The interface is currently blocked and cannot be used to

forward traffic or learn MAC addresses.

• Listening: The interface is currently in the listening mode. The

interface cannot forward traffic nor can it learn MAC addresses.

• Learning. The interface is currently in the learning mode. The

interface cannot forward traffic. However, it can learn new MAC

addresses.

• Forwarding: The interface is currently in the forwarding mode. The

interface can forward traffic and learn new MAC addresses

Port Role Each MST bridge port that is enabled is assigned a port role for each

spanning tree. The port role is one of the following: Root, Designated,

Alternate, Backup, Master, or Disabled.

Designated Root The root bridge for the CST, which is created from the bridge priority and

the base MAC address of the bridge.

Designated Cost The path cost offered to the LAN by the designated port.

Designated Bridge The bridge identifier of the bridge with the designated port. This identifier is

created from the bridge priority and the base MAC address of the bridge.

Designated Port The port identifier on the designated bridge that offers the lowest cost to

the LAN. This identifier is created from the port priority and the interface

number of the port.

Topology Change Acknowledge Indicates if the topology change acknowledgement flag is set for the next

BPDU to be transmitted on the port. (True or False.)

Edge port Indicates if the port is enabled as an edge port.

Point-to-Point MAC The point-to-point status, which indicates is the port’s link is a point-to-point

link (True) or not or (False).

CST Regional Root The bridge identifier of the CST regional root. This identifier is created from

the bridge priority and the base MAC address of the bridge.

CST Path Cost The path cost to the CST regional root.

Port Up Time Since Counters Last

Cleared

The the time the counters were last cleared.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual209

Manage MST instances

You can add, change, or delete multiple spanning tree (MST) instances on the switch.

The MST instance consists of an ID, a priority value, and a VLAN ID.

Add an MST instance and display the MST status

You can add an MST instance and display the MST status.

To add an MST instance and display the MST status:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > MST Configuration.

The MST Configuration page display.

6. Configure the settings for the MST instance:

• MST ID: In the MST ID field, specify the ID of the MST. The ID can be in the range

from 1 to 4094.

• Priority: In the Priority field, specify the bridge priority value for the MST instance.

When switches or bridges are running STP, each is assigned a priority. After

exchanging BPDUs, the switch with the lowest priority value becomes the root bridge.

The bridge priority is a multiple of 4096. If you specify a priority that is not a multiple of

4096, the priority is automatically set to the next lowest priority that is a multiple of

Loop Inconsistent State Indicates if the interface is in a loop-inconsistent state. (False or True.)

Transitions Into Loop Inconsistent

State

The number of times the interface transitioned into the loop-inconsistent

state.

Transitions Out Of Loop

Inconsistent State

The number of times the interface transitioned out of the loop-inconsistent

state.

Table 59. CST interface status information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual210

4096. For example, if you set the priority to any value between 0 and 4095, the switch

automatically sets the value to 0. The range is from 0 to 61440. The default is 32768.

• VLAN ID: From the VLAN ID menu, select the VLAN that must be associated with the

MST instance.

7. Click the Add button

The MST is added.

8. To save the settings to the running configuration, click the Save icon.

9. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 60. MST configuration information

Field Description

Bridge Identifier The bridge identifier for the MST instance, which is created by using the bridge

priority and the base MAC address of the bridge.

Last TCN The time in seconds since the topology of the MST instance changed.

Topology Change Count The number of times the topology changed for the MST instance.

Topology Change This field shows if a topology change is in progress on an interface in the MST.

(True or False.)

Designated Root The bridge identifier of the root bridge, which is created by using the bridge priority

and the base MAC address of the bridge

Root Path Cost The path cost to the designated root for the MST instance.

Root Port The port through which the designated root for the MST instance can be accessed.

Change an MST instance

You can change an existing MST instance.

To change an existing MST instance:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual211

5. Select Switching > STP > Advanced > MST Configuration.

The MST Configuration page display.

6. Select the check box that is associated with the MST instance.

7. Change the settings as needed.

For more information, see Add an MST instance and display the MST status.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Delete an MST instance

You can delete an MST instance that you no longer need.

To delete an MST instance:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > MST Configuration.

The MST Configuration page display.

6. Select the check box that is associated with the MST instance.

7. Click the Delete button.

The MST instance is deleted.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual212

Configure and display the interface settings for an MST

instance

You can configure and display the Multiple Spanning Tree (MST) settings on a specific

interface on the switch.

An interface can become diagnostically disabled (D-Disable) when a severe error condition

occurs for DOT1S. The most common cause is when BPDU flooding occurs. The flooding

criteria are such that DOT1S receives more than 15 BPDUs in a 3-second interval. (Other

causes for a DOT1S D-Disable condition are very rare.)

To configure and display the port settings for an MST instance:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > MST Port Configuration.

The MST Port Configuration page displays.

6. From the Select MST menu, select an MST instance.

For information about adding MST instances, see Manage MST instances on page 209.

7. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

8. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the port, or type

the port number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual213

9. Configure the MST values for the selected interface or interfaces:

• Port Priority: In the Port Priority field, specify the priority for the interface in the MST

instance. The port priority is set in multiples of 16. If you specify a value that is not a

multiple of 16, the priority is automatically set to the next lowest priority that is a

multiple of 16. For example, if you set a value between 0 and 15, the priority is set to

0. If you specify a number between 16 and 31, the priority is set to 16. Specify a value

in the range from 0 to 240. The default is 128.

• Port Path Cost: In the Port Path Cost field, specify the path cost in the range from 0

to 200000000. The default is 0.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

12. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 61. MST interface configuration information

Field Description

Operational Port Path Cost The path cost that the interface uses.

Auto Calculated Port Path Cost Indicates if the path cost is automatically calculated (Enable) or not

(Disable). If enabled, the path cost is calculated based on the link speed of

the port if the configured value for Port Path Cost is zero.

Port ID The port identifier for the port in the MST instance, which is created by

using the port priority and the interface number.

Port Uptime Since Last Clear

Counters

The time since the counters were cleared.

Port Mode Indicates if STP is enabled for the interface.

Port Forwarding State Indicates the current STP state of the interface. If enabled, the port state

determines what forwarding action is taken on traffic. Possible port states

are as follows:

• Disabled: STP is currently disabled on the interface. The interface

forwards traffic while learning MAC addresses.

• Blocking: The interface is currently blocked and cannot be used to

forward traffic or learn MAC addresses.

• Listening: The interface is currently in the listening mode. The

interface cannot forward traffic nor can it learn MAC addresses.

• Learning: The interface is currently in the learning mode. The

interface cannot forward traffic. However, it can learn new MAC

addresses.

• Forwarding: The interface is currently in the forwarding mode. The

interface can forward traffic and learn new MAC addresses

Port Role Each MST bridge port that is enabled is assigned a port role for each

spanning tree. The port role is one of the following: Root, Designated,

Alternate, Backup, Master, or Disabled.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual214

Display the STP interface statistics

You can display information about the number and type of bridge protocol data units

(BPDUs) that are transmitted and received on each interface.

To display the STP interface statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > STP Statistics.

The STP Statistics page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

Designated Root The bridge identifier of the root bridge, which is created by using the bridge

priority and the base MAC address of the bridge

Designated Cost The path cost offered to the LAN by the designated port.

Designated Bridge The bridge identifier of the bridge with the designated port. This identifier is

created from the bridge priority and the base MAC address of the bridge.

Designated Port The port identifier on the designated bridge that offers the lowest cost to

the LAN. This identifier is created from the port priority and the interface

number of the port.

Loop Inconsistent State Indicates if the interface is in a loop-inconsistent state. (False or True.)

Transitions Into Loop Inconsistent

State

The number of times the interface transitioned into the loop-inconsistent

state.

Transitions Out Of Loop

Inconsistent State

The number of times the interface transitioned out of the loop-inconsistent

state.

Table 61. MST interface configuration information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual215

• All: Both physical interfaces and LAGs are displayed.

Your settings are saved.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 62. STP interface statistics information

Field Description

STP BPDUs Received The number of STP BPDUs received on the interface.

STP BPDUs Transmitted The number of STP BPDUs transmitted from the interface

RSTP BPDUs Received The number of RSTP BPDUs received on the interface.

RSTP BPDUs Transmitted The number of RSTP BPDUs transmitted from the interface.

MSTP BPDUs Received The number of MSTP BPDUs received on the interface.

MSTP BPDUs Transmitted The number of MSTP BPDUs transmitted from the interface.

Configure the PVST/RPVST VLAN settings

You can configure the Per-VLAN Spanning Tree Protocol (PVST) and Rapid PVST (RPVST)

settings for a VLAN.

PVST and RPVST must be enabled. For more information, see Configure the STP settings

and display the STP status.

To configure the PVST/RPVST VLAN settings for the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > PVST VLAN.

The PVST VLAN page displays.

6. In the VLAN ID field, specify a unique VLAN ID.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual216

You can specify only VLANs for which STP is enabled and for which PVST or RPVST is

enabled.

7. From the Root menu, select None, Primary, or Secondary.:

• None: The default is None. The switch does not function as a root bridge or a standby

bridge for the VLAN.

•Primary: The switch functions as a root bridge for the VLAN. The bridge priority is

changed from the default value of 32768 to a lower value to ensure a root bridge

configuration.

• Secondary: The switch functions as a standby bridge for the VLAN. The bridge

priority is changed from the default value of 32768 to a lower value to ensure a

standby bridge configuration.

8. In the Hello Time field, enter the spanning tree hello time interval for the VLANs.

The hello time is the interval between sending successive BPDUs. Enter a value in the

range from 1 to 10 seconds. The default is 2 seconds.

9. In the Forward Time field, enter the spanning tree forwarding delay interval for the VLAN.

This interval is the period during which the switch can detects state before transitioning

an interface port to the forwarding state.The range is from 4 to 30 seconds. The default is

15 seconds.

10. in the Max Age field, enter the spanning tree maximum age time for the VLAN.

This time is the period after which a bridge interface saves its configuration information.

The range is from 6 to 40 seconds. The default is 20 seconds.

11. In the Priority field, enter the priority for the VLAN.

The allowed values are between 0 and 61440. The valid values are listed in the following

table.

The default value is 32768. If the value that you enter is not among the specified values,

the value is automatically rounded off to the nearest valid value.

12. Click the Add button.

PVST/RPVST VLAN configuration is added.

13. To save the settings to the running configuration, click the Save icon.

0 4096 8192

12288 16384 20480

24576 28672 32768 (default)

36864 40960 45056

49152 53248 57344

61440

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual217

Change a PVST/RPVST VLAN configuration

You can change an existing PVST/RPVST VLAN configuration.

To change an existing PVST/RPVST VLAN configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > PVST VLAN.

The PVST VLAN page displays.

6. Select the check box that is associated with the PVST/RPVST VLAN configuration.

7. Change the settings as needed.

For more information, see Configure the PVST/RPVST VLAN settings.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Remove a PVST/RPVST VLAN configuration

You can delete a PVST/RPVST VLAN configuration that you no longer need.

To delete a PVST/RPVST VLAN configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual218

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > PVST VLAN.

The PVST VLAN page displays.

6. Select the check box that is associated with the PVST/RPVST VLAN configuration.

7. Click the Delete button.

The PVST/RPVST VLAN configuration is deleted.

8. To save the settings to the running configuration, click the Save icon.

Configure the PVST and RPVST interface settings

You can configure the Per-VLAN Spanning Tree Protocol (PVST) and Rapid PVST (RPVST)

settings for an interface.

PVST and RPVST must be enabled. For more information, see Configure the STP settings

and display the STP status.

To configure the PVST and RPVST interface settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > PVST Interface.

The PVST Interface page displays.

6. From the VLAN ID menu, select a VLANs for which STP and PVST or RPVST is already

enabled, or select Other to configure a by entering and a new VLAN ID.

7. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual219

8. In the Priority field, enter the priority for the interface.

Set this value to a lower number to let the interface forward frames. The priority s used

when the interface is configured as a point-to-point link. The value can be from 0 to 240.

The value must be a multiple of 16.

The default value is 128. If the value that you enter is not among the specified values, the

value is automatically rounded off to the nearest valid value.

9. In the Cost field, enter the path cost from the interface to the root bridge.

By default, the cost is not configured. Enter a value from 1 and 200,000,000. Enter 0 to

disable the setting. If the per-VLAN cost is not configured, the path cost value is set

based on the link speed.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 63. PVST/RPVST interface configuration information

Field Description

Role The role of the interface, which can be Disabled, Root, Designated, Alternate,

Backup, or Master.

Status The status of the interface, which can be Discarding, Learning, Forwarding, or

Disabled.

Display the PVST and RPVST statistics

You can display the Per-VLAN Spanning Tree Protocol (PVST) and Rapid PVST (RPVST)

statistics.

PVST and RPVST must be enabled. For more information, see Configure the STP settings

and display the STP status.

01632

48 64 80

96 112 128 (default)

144 160 176

192 208 224

240 – –

Note: For an interface which that is not member of the selected VLAN,

VLAN, the field is blank.

Note: For an interface which that is not member of the selected VLAN,

VLAN, the field is blank.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual220

To display the PVST and RPVST statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > STP > Advanced > PVST Statistics.

The PVST/RPVST Statistics page displays.

6. To refresh the page, click the Refresh button.

If PVST or RPVST is enabled, the page displays statistic information.

Multicast forwarding database

Multicast IP traffic is traffic that is destined to a host group. Host groups are identified by

class D IP addresses, which range from 224.0.0.0 to 239.255.255.255.

Display the entries in the multicast forwarding database

The multicast forwarding database (MFDB) holds the port membership information for all

active multicast address entries. The key for an entry consists of a combination of a VLAN ID

and a MAC address. Entries can contain data for more than one protocol.

To display the entries in the multicast forwarding database:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual221

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Multicast > MFDB > MFDB Table.

The MFDB Table page displays.

6. To search for an entry, in the Search by MAC Address, enter a MAC address, and click the

Go button.

If the address exists, that entry is displayed. An exact match is required.

The following table describes the nonconfigurable fields on the page.

Table 64. MFDB information

Field Description

MAC Address The multicast MAC address for which you requested data.

VLAN ID The VLAN ID to which the multicast MAC address is related.

Component The component that is responsible for this entry in the MFDB. The

component can be IGMP snooping, GMRP

, Static Filtering, or MLD

snooping.

Type The type of the entry. Static entries are those that you configure. Dynamic

entries are added to the table as a result of a learning process or protocol.

Description The description of this multicast table entry. The description can be

Management Configured, Network Configured, or Network Assisted.

Forwarding Interfaces The forwarding list that is derived from combining all the forwarding

interfaces and removing the interfaces that are listed as the static filtering

interfaces.

Remove the IGMP snooping entries from the multicast

forwarding database

You can remove the IGMP snooping entries from the multicast forwarding database.

To remove the IGMP snooping entries from the multicast forwarding database:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual222

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Multicast > MFDB > MFDB Table.

The MFDB Table page displays.

6. Click the Clear button.

Your settings are saved.

7. To save the settings to the running configuration, click the Save icon.

Remove all known multicast MAC entries from the

multicast forwarding database

You can remove all known multicast MAC entries from the multicast forwarding database.

To remove all known multicast MAC entries from the multicast forwarding database:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Multicast > MFDB > MFDB Table.

The MFDB Table page displays.

6. Select the Reset Known Multicast MAC Entries check box.

A confirmation pop-up window displays.

7. Select the OK button.

The pop-up window closes.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual223

Display the multicast forwarding database statistics

You can display the multicast forwarding database statistics

To display the multicast forwarding database statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Multicast > MFDB > MFDB Statistics.

The MFDB Statistics table displays.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 65. MFDB statistics information

Field Description

Max MFDB Table Entries The maximum number of entries that the multicast forwarding database

table can hold.

Most MFDB Entries Since Last

Reset

The largest number of entries that were present in the multicast forwarding

database table since the last reset. This value is also known as the MFDB

high-water mark.

Current Entries The current number of entries in the multicast forwarding database table.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual224

Internet Group Management Protocol

snooping

Internet Group Management Protocol (IGMP) snooping allows a switch to forward multicast

traffic intelligently. Multicast IP traffic is destined to a host group. Host groups are identified by

class D IP addresses, which range from 224.0.0.0 to 239.255.255.255. Based on the IGMP

query and report messages, the switch forwards traffic only to the ports that request the

multicast traffic. This prevents the switch from broadcasting the traffic to all ports and possibly

affecting network performance.

A traditional Ethernet network can be separated into different network segments to prevent

placing too many devices onto the same shared media. Bridges and switches connect these

segments. When a packet with a broadcast or multicast destination address is received, the

switch forwards a copy into each of the remaining network segments in accordance with the

IEEE MAC Bridge standard. Eventually, the packet is made accessible to all nodes

connected to the network.

This approach works well for broadcast packets that are intended to be seen or processed by

all connected nodes. In the case of multicast packets, however, this approach could lead to

less efficient use of network bandwidth, particularly when the packet is intended for only a

small number of nodes. Packets are flooded into network segments where no node is

receptive to the packet. While nodes rarely incur any processing overhead to filter packets

addressed to unrequested group addresses, they cannot transmit new packets onto the

shared media during the period that the multicast packet is flooded. The problem of wasting

bandwidth is even worse when the LAN segment is not shared, for example in full-duplex

links.

Allowing switches to snoop IGMP packets is a creative effort to solve this problem. The

switch uses the information in the IGMP packets as they are being forwarded throughout the

network to determine which segments receive packets directed to the group address.

Configure IGMP snooping automatically with IGMP Plus

mode

IGMP Plus mode lets you automatically configure IGMP snooping, which is used to build

forwarding lists for IPv4 multicast traffic.

You can also configure IGMP snooping manually (see Configure IGMP snooping manually

on page 226).

To configure IGMP snooping automatically:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual225

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > IGMP Snooping > Configuration.

The Configuration page displays.

6. Select the IGMP Plus Mode Enable or Disable radio button.

If enabled, the following IGMP snooping modes are automatically enabled:

•Admin mode

•Proxy Querier mode

•Report Flood Mode

•Exclude Mrouter Interface Mode

•Fast Leave Auto-assignment Mode

The default is Enable.

If disabled, these IGMP snooping modes are automatically disabled.

Note: For information about other settings on the page, see Configure IGMP

snooping manually on page 226.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

9. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 66. IGMP snooping configuration information

Field Description

Multicast Control Frame Count The number of multicast control frames that are processed by the switch.

Interfaces Enabled for IGMP

Snooping

The interfaces on which IGMP snooping is enabled.

Operational Mode Indicates if IGMP snooping is globally enabled or disabled on the switch.

VLAN IDs Enabled For IGMP

Snooping

The VLANs on which IGMP snooping is enabled.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual226

Configure IGMP snooping manually

You can manually configure the settings for IGMP snooping, which is used to build

forwarding lists for IPv4 multicast traffic.

You can also configure IGMP snooping automatically (see Configure IGMP snooping

automatically with IGMP Plus mode on page 224).

To configure the settings for IGMP snooping manually:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > IGMP Snooping > Configuration.

The Configuration page displays.

6. Select the Admin Mode Enable or Disable radio button.

This selection enables or disables the administrative mode for IGMP snooping for the

switch. The default is Disable.

7. Select the Validate IGMP IP header Enable or Disable radio button.

This selection enables or disables header validation for all IGMP versions on the switch. If

enabled, a packet IGMP IP header validates the Router Alert option, ToS and TTL. The

default is Enable.

8. Select the Proxy Querier Mode Enable or Disable radio button.

This selection enables or disables the IGMP proxy querier for the switch. If disabled, the

IGMP proxy query with source IP address 0.0.0.0 is not sent in response to an IGMP

leave packet. The default is Enable.

9. Select the Report Flood Mode Enable or Disable radio button.

This selection enables or disables the report flooding mode on the switch. If enabled,

IGMP Join/Leave PDUs that the switch receives from a host on a downstream port are

forwarded to all other ports in the associated VLAN. The default is Enable.

10. Select the Exclude Mrouter Interface Mode Enable or Disable radio button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual227

This selection specifies the type of information that is forwarded to the upstream multicast

router interface.

If enabled, the switch forwards IGMP Join/Leave PDUs that it receives on a downstream

port to an upstream mrouter interface. In addition, the switch forwards a multicast data

stream to an upstream mrouter interface only if that port already received an IGMPv1 or

IGMPv2 membership message. The switch drops unknown multicast streams. The

default is Enable.

If disabled, the switch forwards IGMP Join/Leave PDUs, known multicast streams, and

unknown multicast streams to the upstream mrouter interface.

11. Select the Fast Leave Auto-Assignment Mode Enable or Disable radio button.

This selection enables or disables the automatic assignment of fast-leave messages to

all ports and LAGs on the switch. The default is Enable.

Note: For information about IGMP Plus mode, see Configure IGMP

snooping automatically with IGMP Plus mode on page 224.

12. Click the Apply button.

Your settings are saved.

13. To save the settings to the running configuration, click the Save icon.

14. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 67. IGMP snooping configuration information

Field Description

Multicast Control Frame Count The number of multicast control frames that are processed by the switch.

Interfaces Enabled for IGMP

Snooping

The interfaces on which IGMP snooping is enabled.

Operational Mode Indicates if IGMP snooping is globally enabled or disabled on the switch.

VLAN IDs Enabled For IGMP

Snooping

The VLANs on which IGMP snooping is enabled.

Configure the IGMP snooping settings for interfaces

You can configure the IGMP snooping settings for interfaces.

To configure the IGMP snooping settings for interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual228

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > IGMP Snooping > Interface Configuration.

The Interface Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Admin Mode menu, select Disable or Enable.

This selection enables or disables the administrative mode for IGMP snooping for the

interface. The default is Disable.

9. In the Membership Interval field, specify the period that the switch waits for a group report

before it removes the interface as a member of the group.

Enter a value between 1 and 3600 seconds. The default is 600 seconds.

10. In the Max Response Time field, specify the period that the switch waits after it sent a query

on an interface because it did not receive a report from a group on that interface.

Enter a value that is 1 or greater but less than the value in the Membership Interval field.

The default is 120 seconds.

11. In the Expiration Time field, specify the period that the switch waits to receive a query on

the interface before it removes the interface from the list of interfaces with multicast routers

attached.

Enter a value from 0 to 3600 seconds. The default is 300 seconds. If you enter 0, you

configure an infinite time-out (no expiration).

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual229

12. From the Fast Leave menu, select to enable or disable the IGMP snooping fast leave

mode for the interface. This selection enables or disables the automatic assignment of

fast-leave messages for the interface. The default is Disable.

The Fast Leave Operational Mode field shows the status of the interface.

13. From the Proxy Querier menu, select to enable or disable the proxy querier for the

interface.

If disabled, the IGMP proxy query with source IP address 0.0.0.0 is not sent in response

to an IGMP leave packet. The default is Enable.

14. Click the Apply button.

Your settings are saved.

15. To save the settings to the running configuration, click the Save icon.

Configure IGMP snooping for VLANs automatically with

IGMP Plus mode

IGMP Plus mode lets you automatically configure IGMP snooping for VLANs, which is used

to build forwarding lists for multicast traffic.

You can also configure IGMP snooping for VLANs manually (see Configure IGMP snooping

manually on page 226).

To configure IGMP snooping for VLANs automatically:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > IGMP Snooping > IGMP VLAN Configuration.

The IGMP VLAN Configuration page displays.

6. Select the check box next to the VLAN ID.

7. From the IGMP Plus Mode menu at the right of the page, select to enable or disable the

IGMP Plus mode on the VLAN.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual230

If enabled, the following IGMP snooping modes are automatically enabled for the VLAN

and the following occurs:

•Admin mode

•Fast-Leave

•Proxy Querier

•Report Flood Mode

•Exclude Mrouter Interface Mode

•Installs reserved Multicast MAC addresses into the system.

If disabled, these IGMP snooping modes are automatically disabled for the VLAN.

Note: For information about other settings on the page, see Configure IGMP

snooping for VLANs manually on page 230.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Configure IGMP snooping for VLANs manually

You can manually configure the settings for IGMP snooping for VLANs, which is used to build

forwarding lists for multicast traffic.

You can also configure IGMP snooping for VLANS automatically (see Configure IGMP

snooping for VLANs automatically with IGMP Plus mode on page 229).

To configure the settings for IGMP snooping for a VLAN manually:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > IGMP Snooping > IGMP VLAN Configuration.

The IGMP VLAN Configuration page displays.

6. Select the check box next to the VLAN ID.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual231

7. From the Admin Mode menu, select to enable or disable IGMP snooping for the VLAN.

The default is Disable.

8. From the Fast Leave menu, select to enable or disable the IGMP snooping fast leave mode

for the VLAN.

This selection enables or disables the automatic assignment of fast-leave messages for

all members of the VLAN. The default is Enable.

9. In the Membership Interval field, enter the period for the group membership interval of

IGMP snooping for the VLAN.

The period must be the value in the Maximum Response Time field plus a value from 1 to

3600 seconds. The default is 600 seconds.

10. In the Maximum Response Time field, enter the period for the maximum response time of

IGMP snooping for the VLAN.

The range must be from 1 to the value in the Group Membership Interval field minus 1.

The value in the Maximum Response Time field must be greater than the value in the

Group Membership Interval field. The default is 120 seconds.

11. In the Multicast Router Expiry Time field, enter the period for the multicast router

expiration time of IGMP snooping for the VLAN.

The range must be from 0 to 3600 seconds. The default is 300 seconds.

12. From the Report Suppression menu, select to enable or disable the IGMP snooping report

suppression mode for the VLAN.

This mode allows for the suppression of IGMP reports that are sent by multicast hosts.

The switch does so by building a Layer 3 membership table and sending only the

essential reports to IGMP routers that must receive the multicast traffic. As a result, the

multicast report traffic that is sent to the IGMP routers is reduced. The default is Disable.

13. From the Proxy Querier menu, select to enable or disable the proxy querier for the VLAN.

If disabled, the IGMP proxy query with source IP address 0.0.0.0 is not sent in response

to an IGMP leave packet. The default is Enable.

14. From the Report Flood Mode menu, select to enable or disable the report flooding mode

on the VLAN.

If enabled, IGMP Join/Leave PDUs that the VLAN receives from a host on a downstream

port are forwarded to all other ports in the VLAN. The default is Enable.

15. From the Exclude Mrouter Interface Mode menu, select to enable or disable the Exclude

Mrouter Interface Mode.

This selection specifies the type of information that is forwarded to the upstream multicast

router interface:

• Enable. The VLAN forwards IGMP Join/Leave PDUs that it receives on a

downstream port to an upstream mrouter interface. In addition, the VLAN forwards a

multicast data stream to an upstream mrouter interface only if that port already

received an IGMPv1 or IGMPv2 membership message. The VLAN drops unknown

multicast streams. The default is Enable.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual232

• Disable: The VLAN forwards IGMP Join/Leave PDUs, known multicast streams, and

unknown multicast streams to the upstream mrouter interface.

Note: For information about IGMP Plus mode for VLANs, see Configure

IGMP snooping for VLANs automatically with IGMP Plus mode on

page 229.

16. Click the Apply button.

Your settings are saved.

17. To save the settings to the running configuration, click the Save icon.

Configure an IGMP multicast router interface

You can configure an interface as the designated interface to which a multicast router is

attached. All IGMP packets snooped by the switch are forwarded to the multicast router that

is reachable from this interface. We refer to this interface as the multicast router.

In most situations, this configuration is not required because the switch automatically detects

a multicast router and forwards IGMP packets accordingly. This configuration might be

required in a complex network if you want to make sure that the multicast router always

receives IGMP packets from the switch.

To configure a multicast router interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > IGMP Snooping > Multicast Router Configuration.

The Multicast Router Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual233

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Multicast Router menu, select to enable or disable the multicast router option.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

Configure an IGMP multicast router VLAN

You can configure a specific VLAN for a specific interface to forward snooped IGMP packets

to the multicast router that is connected to the interface.

In most situations, this configuration is not required because the switch automatically detects

a multicast router and forwards IGMP packets accordingly. This configuration might be

required in a complex network if you want to make sure that the multicast router always

receives IGMP packets from the switch.

To configure a multicast router VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > IGMP Snooping > Multicast Router VLAN

Configuration.

The Multicast Router VLAN Configuration page displays.

6. From the Interface menu, select the interface.

7. In the VLAN ID field, enter the VLAN ID.

8. From the Multicast Router menu, select Enable or Disable to specify if the VLAN is a

multicast router VLAN.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual234

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

IGMP snooping querier overview

IGMP snooping requires that one central switch or router periodically query all end-devices

on the network to announce their multicast memberships. This central device is the IGMP

querier. The IGMP query responses, known as IGMP reports, keep the switch updated with

the current multicast group membership on a port-by-port basis. If the switch does not

receive updated membership information in a timely fashion, it stops forwarding multicasts to

the port where the end device is located.

You can configure and display information for IGMP snooping queriers on the network and,

separately, on VLANs.

Configure the IGMP snooping querier global settings

You can configure the global settings for an IGMP snooping querier on the switch.

To configure the global settings for an IGMP snooping querier:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > IGMP Snooping > Querier Configuration.

The Querier Configuration page displays.

6. Select the Querier Admin Mode Enable or Disable radio button to specify if IGMP snooping

is enabled for the switch.

The default is Disable.

7. In the Snooping Querier IP Address field, specify the snooping querier IP address that

must be used as the source address in periodic IGMP queries.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual235

This address is used when no address is configured on the VLAN on which queries are

sent.

8. In the IGMP Version field, specify the IGMP protocol version used in periodic IGMP queries.

The version can be 1 to 2. The default is 2.

9. In the Query Interval (secs) field, specify the period in seconds between periodic queries

sent by the snooping querier.

The range is from 1 to 1800 seconds. The default is 60 seconds.

10. In the Querier Expiry Interval (secs) field, specify the period in seconds after which the last

querier information is removed.

The range is from 60 to 300 seconds. The default is 125 seconds.

11. Click the Apply button.

Your settings are saved.

The page displays the VLAN IDs enabled for IGMP snooping querier.

12. To save the settings to the running configuration, click the Save icon.

Configure an IGMP snooping querier for a VLAN

You can configure an IGMP querier for use with a VLAN on the network.

To configure an IGMP snooping querier for a VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > IGMP Snooping > Querier VLAN Configuration.

The Querier VLAN Configuration page displays.

6. Either specify a new VLAN or change an existing VLAN:

•Specify a new VLAN: In the VLAN ID field, enter the ID for a new VLAN.

• Change an existing VLAN: Select the check box for an existing VLAN.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual236

7. From the Querier Election Participate Mode menu, select to enable or disable the querier

election participate mode:

• Disabled. If the switch detects another querier of the same version in the VLAN, the

snooping querier moves to the non-querier state.

• Enabled: The snooping querier participates in querier election, in which the lowest

numbered IP address operates as the querier in that VLAN. The other querier moves

to non-querier state.

By default, the querier election participate mode is enabled for VLAN 1.

8. In the Snooping Querier VLAN Address field, specify the IP address to be used as the

source IP address in periodic IGMP queries that are sent on the VLAN.

9. Either add the new VLAN or save the settings for the existing VLAN:

• Add the new VLAN: Click the Add button.

The VLAN is added.

• Save the settings for the existing VLAN: Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 68. Querier VLAN configuration information

Field Description

Operational State The operational state of the IGMP snooping querier on a VLAN:

• Querier: The snooping switch is the querier in the VLAN. The

snooping switch sends out periodic queries with a time interval equal

to the configured querier query interval. If the snooping switch finds a

better querier in the VLAN, it moves to non-querier mode.

• Non-Querier: The snooping switch is innNon-querier mode in the

VLAN. If the querier expiry interval timer expires, the snooping switch

moves into querier mode.

• Disabled: The snooping querier is not operational on the VLAN. The

snooping querier moves to disabled mode when IGMP snooping is not

operational on the VLAN or when the querier address is not configured

or the network management address is also not configured.

Operational Version The operational IGMP protocol version of the querier.

Last Querier Address The IP address of the last querier from which a query was snooped on the

VLAN.

Last Querier Version The IGMP protocol version of the last querier from which a query was

snooped on the VLAN.

Operational Max Response Time The maximum response time to be used in the queries that are sent by the

snooping querier.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual237

Remove the IGMP snooping querier settings for a VLAN

You can remove the IGMP snooping querier settings for a VLAN.

To remove the IGMP snooping querier settings for a VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > IGMP Snooping > Querier VLAN Configuration.

The Querier VLAN Configuration page displays.

6. Select the VLAN for which you want to remove the IGMP snooping querier settings.

7. Click the Delete button.

Your settings are saved. (The VLAN itself is not deleted.)

8. To save the settings to the running configuration, click the Save icon.

Display the status of the IGMP snooping querier

You can display the status of the IGMP snooping querier for an interface or a VLAN.

To display the status of the IGMP snooping querier:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual238

5. Select Switching> Multicast > IGMP Snooping Querier > Querier VLAN Status.

The Querier VLAN Status page displays.

6. To display information for a specific VLAN or interface, do the following:

a. From the Search menu, select VLAN ID or interface.

b. In the field, enter the VLAN ID or interface number.

c. Click the GO button.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 69. Querier VLAN status information

Field Description

VLAN ID The ID of the VLAN on which the host sends IGMP member join requests.

Subscriber The IP address and MAC address of the host that sends IGMP member join requests.

MC Group The multicast IP address and MAC address that the subscriber is registered to.

Interface The interface on which the IGMP member join requests us detected.

Type The IGMP protocol version.

Timeout (secs) The time that the most recent update for this host expires.

Multicast Listener Discovery snooping

In IPv6 networks, Multicast Listener Discovery (MLD) snooping performs a similar function as

IGMP in IPv4 networks. With MLD snooping, IPv6 multicast data is selectively forwarded to

ports that are configured to receive the data, instead of being flooded to all ports in a VLAN.

The ports are determined by snooping IPv6 multicast control packets.

A multicast listener is a device that is configured to receive IPv6 multicast packets. MLD is

used by IPv6 multicast routers to discover the presence of multicast listeners on its

directly-attached links and to discover which multicast packets are of interest to neighboring

devices.

The MLD protocol is derived from IGMP. MLD version 1 (MLDv1) is equivalent to IGMPv2,

and MLD version 2 (MLDv2) is equivalent to IGMPv3. MLD is a subprotocol of Internet

Control Message Protocol version 6 (ICMPv6), and MLD messages are a subset of ICMPv6

messages, identified in IPv6 packets by a preceding Next Header value of 58.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual239

Configure MLD snooping automatically with MLD Plus

mode

MLD Plus mode lets you automatically configure MLD snooping, which is used to build

forwarding lists for IPv6 multicast traffic.

You can also configure MLD snooping manually (see Configure MLD snooping manually on

page 240).

To configure MLD snooping automatically:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > Configuration.

The Configuration page displays.

6. Select the MLD Plus Mode Enable or Disable radio button.

If enabled, the following MLD snooping modes are automatically enabled:

•MLD Snooping Admin mode

•Exclude Mrouter Interface Mode

The default is Enable.

If disabled, these MLD snooping modes are automatically disabled.

Note: For information about other settings on the page, see Configure MLD

snooping manually on page 240.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

9. To refresh the page, click the Refresh button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual240

The following table describes the nonconfigurable fields on the page.

Table 70. MLD snooping configuration information

Field Definition

Multicast Control Frame Count The number of multicast control frames that were processed.

Interfaces Enabled for MLD

Snooping

The interface on which MLD snooping is administratively enabled. MLD

snooping must be enabled globally and on an interface for the interface to

be able to snoop MLD packets to determine which segments should receive

multicast packets directed to the group address.

VLAN IDs Enabled For MLD

Snooping

The VLAN on which MLD snooping is administratively enabled.

Configure MLD snooping manually

You can manually configure the settings for MLD snooping, which is used to build forwarding

lists for IPv6 multicast traffic.

You can also configure MLD snooping automatically (see Configure MLD snooping

automatically with MLD Plus mode on page 239).

To configure the settings for MLD snooping manually:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > Configuration.

The Configuration page displays.

6. Select the MLD Snooping Admin Mode Enable or Disable radio button to specify the

administrative mode for MLD snooping for the switch. The default is Disable.

7. Select the Proxy Querier Mode Enable or Disable radio button.

This enables or disables an MLD proxy querier on the system. If it is disabled, then an

MLD proxy query with source IP 0::0 is not sent in response to an MLD leave packet. If it

is enabled, then MLD proxy queries are sent. The default is Enable.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual241

8. Select the Exclude Mrouter Interface Mode Enable or Disable radio button.

This selection specifies the type of information that is forwarded to the upstream multicast

router interface.

If enabled, the switch blocks all unknown multicast data through the mrouter port,

whether the port is configured dynamically or statically. Only MLD PDUs are allowed to

pass through the mrouter port to the upstream router interface.

The default is Enable. If disabled, the switch forwards both unknown multicast data and

MLD PDUs to the upstream multicast router interface.

Note: For information about MLD Plus mode, see Configure MLD snooping

automatically with MLD Plus mode on page 239.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

11. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 71. MLD snooping configuration information

Field Definition

Multicast Control Frame Count The number of multicast control frames that were processed.

Interfaces Enabled for MLD

Snooping

The interface on which MLD snooping is administratively enabled. MLD

snooping must be enabled globally and on an interface for the interface to

be able to snoop MLD packets to determine which segments should receive

multicast packets directed to the group address.

VLAN IDs Enabled For MLD

Snooping

The VLAN on which MLD snooping is administratively enabled.

Configure the MLD snooping settings for interfaces

You can configure the MLD snooping settings for interfaces.

To configure the MLD snooping settings for interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual242

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > Interface Configuration.

The Interface Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Admin Mode menu, select to enable or disable MLD snooping for the interface.

The default is Disable.

9. In the Membership Interval field, specify the time that the switch must wait for a report for a

particular group on a particular interface before it deletes that interface from the group.

The valid range is from 2 to 3600 seconds. The configured value must be greater than the

maximum response time. The default is 260 seconds.

10. In the Max Response Time field, specify the time that the switch must wait after sending a

query on an interface because it did not receive a report for a particular group on that

interface.

Enter a value greater than or equal to 1 and less than the group membership interval in

seconds. The default is 10 seconds. The configured value must be less than the group

membership interval.

11. In the Expiration Time field, specify the time that the switch must wait to receive a query on

an interface before removing the interface from the list of interfaces with multicast routers

attached.

Enter a value between 0 and 3600 seconds. The default is 0 seconds. A value of zero

indicates an infinite time-out, that is, no expiration.

12. From the Fast Leave menu, select to enable or disable Fast Leave on the interface.

If Fast Leave is enabled, the interface can immediately be removed from the Layer 2

forwarding table when the switch receives an MLD leave message for a multicast group

without first sending MAC-based general queries. The default is Disable.

13. From the Proxy Querier Mode menu, select Enable or Disable.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual243

If the mode is disabled, an MLD proxy query with source IP 0::0 is not sent in response to

an MLD leave packet. If the mode is enabled, MLD proxy queries are sent. The default

value is Enable.

14. Click the Apply button.

Your settings are saved.

15. To save the settings to the running configuration, click the Save icon.

Configure MLD snooping for VLANs automatically with

MLD Plus mode

MLD Plus mode lets you automatically configure MLD snooping for VLANs, which is used to

build forwarding lists for IPV6 multicast traffic.

You can also configure MLD snooping for VLANs manually (see Configure IGMP snooping

manually on page 226).

To configure MLD snooping for VLANs automatically:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > MLD VLAN Configuration.

The MLD VLAN Configuration page displays.

6. Select the check box for the VLAN ID for which MLD snooping must be enabled.

7. From the MLD Plus Mode menu, select to enable or disable the MLD Plus mode on the

VLAN.

If enabled, the following MLD snooping modes are automatically enabled for the VLAN:

•Admin mode

•Fast-Leave

•Exclude Mrouter Interface Mode

If disabled, these MLD snooping modes are automatically disabled for the VLAN.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual244

Note: For information about other settings on the page, see Configure MLD

snooping for VLANs manually on page 244.

8. Click Add to enable MLD Snooping on the specified VLAN.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

Configure MLD snooping for VLANs manually

You can manually configure the settings for MLD snooping for VLANs, which is used to build

forwarding lists for IPv6 multicast traffic.

You can also configure MLD snooping for VLANS automatically (see Configure MLD

snooping for VLANs automatically with MLD Plus mode on page 243).

To configure the settings for MLD snooping for a VLAN manually:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > MLD VLAN Configuration.

The MLD VLAN Configuration page displays.

6. Either specify a new VLAN or change an existing VLAN:

•Specify a new VLAN: In the VLAN ID field, enter the ID for a new VLAN.

• Change an existing VLAN: Select the check box for an existing VLAN.

7. From the Fast Leave menu, select to enable or disable the MLD snooping Fast Leave

mode.

8. In the Membership Interval field, specify the period for the group membership interval of

MLD snooping.

The range is from the period that you specify in the Maximum Response Time field

plus 1 to 3600 seconds. The default is 260 seconds.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual245

9. In the Maximum Response Time field, specify the period for the maximum response time

of MLD snooping.

The range is from 1 second to the period that you specify in the Group Membership

Interval minus 1. The default is 10 seconds.

10. In the Multicast Router Expiry Time field, specify the period for the multicast router

expiration time of MLD Snooping.

The range is from 0 to 3600 seconds. The default is 300 seconds.

11. From the Proxy Querier Mode menu, select to enable or disable the proxy querier mode.

If you select Disable, the MLD proxy query with source IP 0::0 is not sent in response to

an MLD leave packet. The default value is Enable.

12. From the Exclude Mrouter Interface Mode menu, select to enable or disable the mrouter

interface mode.

This selection specifies the type of information that is forwarded to the upstream multicast

router interface.

If enabled, the interface blocks all unknown multicast data through the mrouter port,

whether the port is configured dynamically or statically. Only MLD PDUs are allowed to

pass through the mrouter port to the upstream router interface.

The default is Enable. If disabled, the interface forwards both unknown multicast data and

MLD PDUs to the upstream multicast router interface.

Note: For information about MLD Plus mode for VLANs, see Configure MLD

snooping for VLANs automatically with MLD Plus mode on

page 243.

13. Either add the new VLAN or save the settings for the existing VLAN:

•Add the new VLAN: Click the Add button.

The VLAN is added.

• Save the settings for the existing VLAN: Click the Apply button.

Your settings are saved.

14. To save the settings to the running configuration, click the Save icon.

Remove the MLD snooping querier settings for a VLAN

You can remove the MLD snooping querier settings for a VLAN.

To remove the MLD snooping querier settings for a VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual246

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > Querier VLAN Configuration.

The Querier VLAN Configuration page displays.

6. Select the VLAN for which you want to remove the IGMP snooping querier settings.

7. Click the Delete button.

Your settings are saved. (The VLAN itself is not deleted.)

8. To save the settings to the running configuration, click the Save icon.

Configure an MLD multicast router interface

You can configure an interface as the designated interface to which a multicast router is

attached. All MLD packets snooped by the switch are forwarded to the multicast router that is

reachable from this interface. We refer to this interface as the multicast router.

In most situations, this configuration is not required because the switch automatically detects

a multicast router and forwards MLD packets accordingly. This configuration might be

required in a complex network if you want to make sure that the multicast router always

receives MLD packets from the switch.

To configure an MLD multicast router interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > Multicast Router Configuration.

The Multicast Router Configuration page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual247

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Multicast Router menu, select to enable or disable the multicast router option.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

Configure an MLD multicast router VLAN

You can configure a specific VLAN for a specific interface to forward snooped MLD packets

to the multicast router that is connected to the interface.

In most situations, this configuration is not required because the switch automatically detects

a multicast router and forwards MLD packets accordingly. This configuration might be

required in a complex network if you want to make sure that the multicast router always

receives MLD packets from the switch.

To configure a multicast router VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > Multicast Router VLAN Configuration.

The Multicast Router VLAN Configuration page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual248

6. From the Interface menu, select the interface.

7. In the VLAN ID field, enter the VLAN ID.

8. From the Multicast Router menu, select Enable or Disable to specify if the VLAN is a

multicast router VLAN.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

Configure the MLD snooping querier global settings

You can configure the global settings for an MLD snooping querier on the switch.

To configure the global settings for an MLD snooping querier:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > Querier Configuration.

The Querier Configuration page displays.

6. Select the Querier Admin Mode Enable or Disable radio button to specify if MLD snooping

is enabled for the switch.

The default is Disable.

7. In the Querier Address field, specify the snooping querier IP address that must be used

as the source address in periodic MLD queries.

This address is used when no address is configured on the VLAN on which query is being

sent. The supported IPv6 formats are x:x:x:x:x:x:x:x and x::x.

Note: The MLDP Version field always states MLD protocol version 1. This is

the version that is used in periodic MLD queries.

8. In the Query Interval (secs) field, specify the period in seconds between periodic queries

sent by the snooping querier.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual249

The range is from 1 to 1800 seconds. The default is 60 seconds.

9. In the Querier Expiry Interval (secs) field, specify the period in seconds after which the last

querier information is removed.

The range is from 60 to 300 seconds. The default is 60 seconds.

10. Click the Apply button.

Your settings are saved.

The page displays the VLAN IDs enabled for MLD snooping querier.

11. To save the settings to the running configuration, click the Save icon.

Configure an MLD snooping querier for a VLAN

You can configure an MLD querier for use with a VLAN on the network.

To configure an MLD snooping querier for a VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > Querier VLAN Configuration.

The Querier VLAN Configuration page displays.

6. Either specify a new VLAN or change an existing VLAN:

•Specify a new VLAN. In the VLAN ID field, enter the ID for a new VLAN.

• Change an existing VLAN. Select the check box for an existing VLAN.

7. From the Querier Election Participate Mode menu, select to enable or disable the querier

election participate mode:

• Disabled: If the switch detects another querier of the same version in the VLAN, the

snooping querier moves to the non-querier state.

• Enabled: The snooping querier participates in querier election, in which the lowest

numbered IPv6 address operates as the querier in that VLAN. The other querier

moves to non-querier state.

8. In the Querier VLAN Address field, specify the IPv6 address to be used as the source

address in periodic IGMP queries that are sent on the VLAN.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual250

9. Either add the new VLAN or save the settings for the existing VLAN:

• Add the new VLAN: Click the Add button.

The VLAN is added.

• Save the settings for the existing VLAN: Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 72. Querier VLAN configuration information

Field Description

Operational State The operational state of the MLD snooping querier on a VLAN:

• Querier: The snooping switch is the querier in the VLAN. The

snooping switch sends out periodic queries with a time interval equal

to the configured querier query interval. If the snooping switch finds a

better querier in the VLAN, it moves to non-querier mode.

• Non-Querier: The snooping switch is in non-querier mode in the

VLAN. If the querier expiry interval timer expires, the snooping switch

moves into querier mode.

• Disabled: The snooping querier is not operational on the VLAN. The

snooping querier moves to disabled mode when MLD snooping is not

operational on the VLAN or when the querier address is not configured

or the network management address is also not configured.

Operational Version The operational MLD protocol version of the querier.

Last Querier Address The IP address of the last querier from which a query was snooped on the

VLAN.

Last Querier Version The MLD protocol version of the last querier from which a query was

snooped on the VLAN.

Operational Max Response Time The maximum response time to be used in the queries that are sent by the

snooping querier.

Remove the MLD snooping querier settings for a VLAN

You can remove the MLD snooping querier settings for a VLAN.

To remove the MLD snooping querier settings for a VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual251

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> Multicast > MLD Snooping > Querier VLAN Configuration.

The Querier VLAN Configuration page displays.

6. Select the VLAN for which you want to remove the IGMP snooping querier settings.

7. Click the Delete button.

Your settings are saved. (The VLAN itself is not deleted.)

8. To save the settings to the running configuration, click the Save icon.

Multicast VLAN registration

IGMP and MLD snooping help to limit multicast traffic when member ports are in the same

VLAN. However, when ports belong to different VLANs, a copy of the multicast stream is sent

to each VLAN with member ports in the multicast group. Multicast VLAN registration (MVR)

eliminates the need to duplicate the multicast traffic when multicast group member ports

belong to different VLANs.

MVR uses a dedicated multicast VLAN to forward multicast traffic over the L2 network. You

can configure one multicast source VLAN (MVLAN) only on the switch. Such an MVLAN is

used only for certain multicast traffic, such as traffic from an IPTV application, to prevent

duplication of multicast streams for clients in different VLANs. Clients can dynamically join or

leave the MVLAN without interfering with their membership in other VLANs.

MVR, like IGMP and MLD snooping, allows a Layer 2 switch to listen to IGMP and MLD

messages to learn about multicast group membership.

You can configure global, group, interface, and group membership settings.

Configure the global MVR settings

You can configure the global MVR settings that apply to the switch.

To configure the global MVR settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual252

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MVR > Basic > MVR Configuration.

The MVR Configuration page displays.

6. From the MVR Running menu, select Enable or Disable to specify if MVR is globally

enabled or disabled on the switch

The default is Disable.

7. In the MVR Multicast VLAN field, specify the VLAN on which MVR multicast data is

received.

All source ports belong to this VLAN. The range is from 1 to 4093. The default 1.

8. In the MVR Global Query Response Time field, set the period that the switch must wait for

an IGMP group membership report from an interface before removing the interface as a

member from the multicast group.

This period applies only to the removal of the interface from the receiver port on the

switch. When an IGMP query is sent from a receiver port, the switch waits for the default

or configured MVR query time for an IGMP group membership report before removing the

interface as a member from the multicast group. The period is equal to a tenths of a

second. The range is from 1 to 100 tenths. The default is 5 tenths or one-half.

9. From the MVR Mode menu, select compatible or dynamic to specify the MVR mode of

operation.

Select compatible (the default mode) to block IGMP group membership reports on

source ports. Select dynamic to allow IGMP group membership reports on source ports.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

12. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 73. MVR configuration information

Field Definition

MVR Max Multicast Groups The maximum number of multicast groups that MVR supports.

MVR Current Multicast Groups The number of the MVR groups allocated.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual253

Configure an MVR group

You can configure an MVR group. After you configure interfaces for MVR, you can add them

as members to the MVR group.

To configure an MVR group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MVR > Advanced > MVR Group Configuration.

The MVR Group Configuration page displays.

6. In the MVR Group IP field, specify the IP address for the new MVR group.

7. In the Count field, specify the number of contiguous MVR groups.

This number helps you to create multiple MVR groups through a single click of the Add

button. If the field is empty, then clicking the button creates only one new group. The field

is displayed as empty for each particular group. The range is from 1 to 256.

8. Click the Add button.

The MVR group is added.

9. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 74. MVR group configuration information

Field Definition

Status The status of the specific MVR group.

Members The list of interfaces that participate in the MVR group.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual254

Remove an MVR group

You can remove an MVR group that you no longer need.

To remove an MVR group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MVR > Advanced > MVR Group Configuration.

The MVR Group Configuration page displays.

6. Select the check box for the MVR group.

7. Click the Delete button.

The MVR group is removed.

8. To save the settings to the running configuration, click the Save icon.

Configure an MVR interface

We recommend that you first configure and MVR interface before you add it as a member to

an MVR group.

To configure an MVR interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual255

The System Information page displays.

5. Select Switching > MVR > Advanced > MVR Interface Configuration.

The MVR Interface Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Admin Mode menu, specify whether MVR is enabled on the interface by selecting

Enable or Disable.

The default is Disable.

9. From the Type menu, specify whether the interface is an MVR receiver or an MVR source

by selecting receiver or source.

The default port type is none.

10. From the Immediate Leave menu, specify whether the Immediate Leave feature is enabled

by selecting Enable or Disable.

The default is Disable.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

13. To refresh the page, click the Refresh button.

The Status field shows the status for each interface.

Configure the interface members of an MVR group

You can add or remove interfaces as members of an MVR group.

To configure the interface members of an MVR group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual256

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MVR > Advanced > MVR Group Membership.

The MVR Group Membership page display.

6. From the Group IP menu, select the IP address of the MVR group.

7. In the Ports table, click each port that you want to make a member of the MVR group.

A selected port is shown by a check mark.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Display the MVR statistics

You can display MVR statistics for the switch. These statistics are associated with IGMP.

To display the MVR statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MVR > Advanced > MVR Statistics.

The MVR Statistics page displays.

6. To refresh the page, click the Refresh button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual257

The following table describes the nonconfigurable fields on the page.

Table 75. MVR statistics information

Field Definition

IGMP Query Received The number of received IGMP queries.

IGMP Report V1 Received The number of received IGMP V1 reports.

IGMP Report V2 Received The number of received IGMP V2 reports.

IGMP Leave Received The number of received IGMP leaves.

IGMP Query Transmitted The number of transmitted IGMP queries.

IGMP Report V1 Transmitted The number of transmitted IGMP V1 reports.

IGMP Report V2 Transmitted The number of transmitted IGMP V2 reports.

IGMP Leave Transmitted The number of transmitted IGMP leaves.

IGMP Packet Receive Failures The number of IGMP packet receive failures.

IGMP Packet Transmit Failures The number of IGMP packet transmit failures.

MAC address table

You can view or configure the MAC address table. This table contains information about

unicast entries for which the switch holds forwarding or filtering information. This information

lets the transparent bridging function determine how an incoming frame must be propagated.

View, search, or clear the MAC address table

If you clear the MAC address entries in the MAC address table, only the dynamic entries are

removed.

To view, search, or clear the MAC address table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual258

The System Information page displays.

5. Select Switching > Address Table > Basic > Address Table.

The Address Table page displays.

6. Use the Search menu and field to search for a MAC address, VLAN ID, or interface number:

• Search by MAC Address: From the Search menu, select MAC Address, and enter

the 6-byte hexadecimal MAC address in two-digit groups separated by colons, for

example, 01:23:45:67:89:AB. Then click the Go button.

If the address exists, that entry is displayed as the first entry followed by the

remaining (higher) MAC addresses. An exact match is required.

• Search VLAN ID: From the Search menu, select VLAN ID, and enter the VLAN ID, for

example, 100. Then click the Go button.

• Search Interface: From the Search menu, select Port, and enter the interface ID

using the respective interface naming convention (for example, 0/2). Then click the Go

button.

7. To remove the dynamic entries from the MAC address table, click the Clear button.

8. To save the settings to the running configuration, click the Save icon.

9. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 76. MAC address table information

Field Description

Total MAC Address The number of total MAC addresses learned or configured.

MAC Address The unicast MAC address for which the switch holds forwarding information, filtering

information, or both forwarding and filtering information. The format is a 6-byte MAC

address that is separated by colons, for example 01:23:45:67:89:AB.

VLAN ID The VLAN ID associated with the MAC address.

Port The interface on which the address was learned.

Status The status of this entry:

• Static: The value of the corresponding instance was added by the switch or a user

and cannot be relearned.

• Learned: The value of the corresponding instance was learned, and is being used.

• Management: The value of the corresponding instance is also the value of an

existing instance of dot1dStaticAddress.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual259

Set the dynamic address aging interval

You can set the address aging interval for the forwarding database. This is the time-out

period in seconds for aging out dynamically learned forwarding information.

To set the dynamic address aging interval:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Address Table > Advanced > Dynamic Addresses.

The Dynamic Addresses page displays.

6. In the Address Aging Timeout (seconds) field, specify the time-out period in seconds for

aging out dynamically learned forwarding information.

The period is from 10 to 1000000 seconds. The default is 3000 seconds.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Add a static MAC address to the MAC address table

Static MAC address entries are the ones that you manually add to the MAC address table for

a specific interface and VLAN.

To add a static MAC address to the MAC address table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual260

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Address Table > Advanced > Static MAC Address.

The Static MAC Address page displays.

6. From the Interface menu, select the interface or LAG.

7. In the Static MAC Address field, enter the MAC address.

8. From the VLAN ID menu, select the VLAN ID that must be associated with the MAC

address.

9. Click the Add button.

The static MAC address is added to the MAC address table.

10. To save the settings to the running configuration, click the Save icon.

Remove a static MAC address from the MAC address table

You can remove a static MAC address that you no longer need.

To remove a static MAC address from the MAC address table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Address Table > Advanced > Static MAC Address.

The Static MAC Address page displays.

6. From the Interface menu, select the interface or LAG.

7. Select the check box for the MAC address.

8. Click the Delete button.

The static MAC address is removed from the MAC address table.

9. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual261

Port settings

For the physical ports and LAGs on the switch, you can configure and display the settings,

including the administrative mode of a port or LAG (by default, enabled) and speed settings

of a port (by default, automatically detected), add port descriptions, display information about

optional port transceivers that you might have installed, and configure the port link flap

settings.

Configure and display the port settings

You can configure and display the information for the physical port on the switch. Some

settings that apply to physical ports do not apply to LAGs.

Note: If you change, the autonegotiation, speed, or duplex mode for a

physical port, the switch might be inaccessible for a number of

seconds while the new settings take effect.

To configure and display the port settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Ports > Port Configuration.

The Port Configuration page display.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual262

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the STP Mode menu, select to enable or disable the Spanning Tree Protocol

administrative mode for the port or LAG.

The default is Enable.

9. From the Admin Mode menu, select to enable or disable the administrative mode for the

port or LAG.

For the port or LAG to participate in the network, you must select Enable. The default is

Enable.

10. From the LACP Mode menu, select to enable or disable the Link Aggregation Control

Protocol administrative mode for the port.

The mode must be enabled for the port to participate in link aggregation. The default is

Enable.

11. From the Autonegotiation menu, select to enable or disable the speed autonegotiation

mode for the port.

The default is Enable.

12. To change the speed for the port, from the Speed menu, select one of the following speeds:

• Auto: The speed is set by the auto-negotiation process. This is the default setting.

• 100: The speed is limited to 100 Mbits/second.

The delimiter characters for setting different speed values are a comma (,), a period (.)

and a space ( ). For you to set the auto-negotiation speed, the auto-negotiation mode

selection must be Enable.

Note: You can set the speed for Ethernet ports. For SFP ports, the speed is

automatically detected and you cannot change it.

13. To change the duplex mode for the port, from the Duplex Mode menu, select one of the

following values are as follows:

• Auto: The duplex mode is set by the auto-negotiation process. This is the default setting.

• Full: Transmission between the devices occurs in both directions simultaneously.

•Half: Transmission between the devices occurs in only one direction at a time.

14. From the Link Trap menu, select to enable or disable the option to send a trap when the

port or LAG link status changes.

For ports, the default is Enable. For LAGs, the default is Disable.

15. In the Frame Size field, specify the maximum Ethernet frame size that the port or LAG

supports, including the Ethernet header, CRC, and payload.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual263

The range is from 1500 to 12270. The default is 1500.

16. In the Debounce Time field, specify the wait period for port or LAG debouncing.

Specify the period as a multiple of 100 milliseconds (msec) in the range from 100 to

5000. The default is 0 seconds, which means that debouncing is disabled.

17. From the Flow Control menu, select the configuration for IEEE 802.3x flow control for the

port:

• Disable: If the port buffers become full, the switch does not send pause frames, and

data loss could occur. This is the default setting.

• Symmetric: If the port buffers become full, the switch sends pause frames to stop

traffic.

Flow control helps to prevent data loss when the port cannot keep up with the number

of frames being switched. When you enable flow control, the switch can send a pause

frame to stop traffic on the port if the amount of memory used by the packets on the

port exceeds a preconfigured threshold and responds to pause requests from partner

devices. The paused port does not forward packets for the time that is specified in the

pause frame. When the pause frame time elapses, or the utilization returns to a

specified low threshold, the switch enables the port to again transmit frames. The

switch also honors incoming pause frames by temporarily halting transmission.

• Asymmetric: If the port buffers become full, the switch does not send pause frames,

and data loss could occur. However, the switch does honor incoming pause frames by

temporarily halting transmission.

18. In the Load Interval field, specify the load interval period for the port or LAG.

This is the period for which data is used to compute load statistics. Enter the period in

multiples of 30 seconds from 30 to 600. The default is 300 seconds. The smaller the load

interval is, the more accurate the instantaneous rate for load statistics is.

19. Click the Apply button.

Your settings are saved.

20. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 77. Port configuration information

Field Description

Media Type The media type that the port supports.

Port Type For normal ports this field is Normal. Otherwise the possible values are as

follows:

• Mirrored: The port is a mirrored port on which all the traffic is copied

to the probe port.

• Probe: Use this port to monitor a mirrored port.

• Trunk Member: The port is a member of a link aggregation trunk.

Look at the LAG pages for more information.

Physical Status The port speed and duplex mode.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual264

Add port, LAG, and VLAN descriptions

You can add a description for a port, LAG, and VLAN.

To add port, LAG, and VLAN descriptions:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Ports > Port Description.

The Port Description page displays.

6. Select whether to display physical interfaces, VLANs, LAGs, or all by clicking one of the

following links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• LAG: Only LAGs are displayed.

• All: Physical interfaces, VLANs, and LAGs are displayed.

7. Select one or more interfaces or VLANs by taking one of the following actions:

•To configure a single interface or VLAN, select the check box associated with the

interface or VLAN, or type the interface or VLAN number in the Go To Interface field

and click the Go button.

•To configure multiple interfaces or VLANs with the same settings, select the check

box associated with each interface or VLAN.

•To configure all interfaces, VLANs, or both interfaces and VLANs with the same

settings, select the check box in the heading row.

8. In the Description field, enter a description of up to 64 characters.

Link Status Indicates whether the port or LAG link is up or down.

ifIndex The ifIndex of the interface table entry associated with the port or LAG.

Table 77. Port configuration information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual265

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 78. Port description information

Field Description

MAC Address The MAC address of the interface or VLAN.

PortList Bit Offset The bit offset value that corresponds to the interface or VLAN when the MIB

object type PortList is used to manage in SNMP

ifIndex The interface index associated with the interface or VLAN.

Display transceiver module information

To enable high-speed fiber and Gigabit Ethernet, short- and long-distance connections on

the switch, SFP and SFP+ fiber ports can accommodate standard 1G SFP and 10G SFP+

transceiver modules. You can view the transceiver module information for all fiber ports on

the switch.

To view transceiver module information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Ports > Port Transceiver.

The Port Transceiver page displays.

6. To refresh the page, click the Refresh button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual266

The following table describes the nonconfigurable fields on the page.

Table 79. Port transceiver information

Field Description

Port The port in which the transceiver module is installed.

Vendor Name The vendor name of the transceiver module.

Link Length 50 μm [m] The link length supported for 50 μm fiber.

Link Length 62, 5 μm [m] The link length supported for 62, 5 μm fiber.

Serial Number The serial number of the transceiver module.

Part Number The part number of the transceiver module.

Nominal Bit Rate [Mpbs] The nominal signalling rate for the transceiver module.

Revision The vendor revision of the transceiver module.

Compliance The compliance of the transceiver module.

Supported Indicates if the inserted transceiver module is actually supported (Yes or No).

Possible Speed Detected The potential speed that the transceiver module can support.

Configure the port link flap settings

You can configure the port link flap settings, which determine when a port is automatically

placed in the disabled state. You can also configure the automatic recovery settings, which

allows a port to be automatically activated again.

To configure the port link flap settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > Ports > Link Flap Configuration.

The Link Flap Configuration page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual267

6. Select the Admin Mode Enable or Disable radio button to enable or disable the link flap

administrative mode.

For you to be able to configure the link flap settings, you must select Enable. The default

is Disable.

7. In the Max-Count field, enter the maximum number of flaps that are allowed before the port

is placed in the disabled state.

You can enter a number from 2 to 10. By default, the number is 5.

8. In the Duration field, enter the maximum period in seconds during which the number of link

flaps is counted.

If the number of link flaps on the port is greater than or equal to the number that you enter

in the Max-Count field, the port is placed in the disabled state. By default, the period is

10 seconds. You can enter a period from 3 to 200 seconds.

9. Select the Auto-Recovery Admin Mode Enable or Disable radio button to enable or disable

the auto-recovery administrative mode.

To enable auto-recovery, you must select Enable. If enabled, the port is automatically

removed from the disabled state after the interval is reached. The default is Disable.

10. In the Auto-Recovery Interval field, enter the period in seconds after which the port is

automatically removed from the disabled state.

You can enter a period from 30 to 8640 seconds. The default period is 300 seconds.

11. Click the Apply button.

Your settings are saved.

The D-Disabled Ports due to Link Flap section lists the ports that are in the disabled state.

12. To save the settings to the running configuration, click the Save icon.

Link aggregation groups

Link aggregation groups (LAGs), which are also known as port channels, allow you to

combine multiple full-duplex Ethernet links into a single logical link. Network devices treat the

aggregation as if it were a single link, which increases fault tolerance and provides load

sharing. You assign the LAG VLAN membership after you create a LAG. The LAG by default

becomes a member of the management VLAN.

A LAG interface can be either static or dynamic, but not both. All members of a LAG must

participate in the same protocols. A static port-channel interface does not require a partner

system to be able to aggregate its member ports.

The switch supports static LAGs. When a port is added as a static member to a LAG, the port

neither transmits nor receives LACPDUs.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual268

Auto-LAG overview

An Auto-LAG is a LAG that forms automatically between two devices that support the

Auto-LAG feature. An Auto-LAG is a dynamic Layer 2 LAG that is based on the Link

Aggregation Control Protocol (LACP).

Note: A LAG is also referred to as a port channel or an EtherChannel.

The switch can detect the physical links with a partner device and automatically configure a

LAG (that is, an Auto-LAG) on interconnected and capable ports at both ends. The switch

can form one Auto-LAG only with each partner device.

The Auto-LAG feature functions together with the Auto-Trunk feature, which must also be

supported and enabled on the partner device with which the LAG is formed. After an

Auto-LAG is formed, the switch automatically applies trunk mode (that is, an Auto-Trunk) to

the LAG at both ends. In other words, after an Auto-LAG is formed, the mode for the ports

that participate in an Auto-LAG changes from the default switch port mode to the trunk port

mode. For more information about the Auto-Trunk feature, see Auto-Trunk overview on

page 171.

For the switch to form an Auto-LAG with a partner device, the following are required:

•Both the Auto-LAG and Auto-Trunk features must be supported and globally enabled on

the switch and the partner device. (On all M4250 switch models, the Auto-LAG and

Auto-Trunk features are enabled by default.)

•At least two links must be established between the switch and the partner device, and

these links must support the same speed and duplex mode.

•The links cannot be members of a manually configured static or dynamic LAG.

•LLDP must be enabled on the interconnected ports on the switch and the partner device.

(On all M4250 switch models, LLDP is enabled by default on all ports.)

•The interconnected ports on the switch and the partner device must be in the default

switch port mode, which is the General mode. If the ports are in the Access mode or

already in the Trunk mode, an Auto-Trunk cannot be formed on the Auto-LAG.

An Auto-LAG can form with up to eight interfaces as members. Interfaces are automatically

selected for the Auto-LAG based on whether they are up and available and on the following

conditions:

•The interface is not already manually configured as a member of a LAG.

•The interface is not manually configured as a trunk port or an access port. That is, the

interface must be a general interface.

Note: The switch can support multiple static and dynamic LAGs, but with

each partner device, the switch can support a single Auto-LAG only.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual269

Enable or disable Auto-LAGs

By default, the Auto-LAG feature is globally enabled but you can globally disable it.

To enable or disable Auto-LAGs:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> LAG > LAG Configuration.

The LAG Configuration page displays.

6. In the LAG Global Configuration section, select the Auto-LAG Admin Mode Enable or

Disable radio button.

By default, the Auto-LAG feature is globally enabled.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Configure the hash mode for Auto-LAGs

By default, the Auto-LAG feature is enabled and uses a hash mode that auto-configures a

LAG based on the destination MAC address, VLAN, EtherType, and incoming port in the

packet (that is, the hash mode with the name 2 Dest MAC, VLAN, EType, incoming port).

You can change the hash mode (that is, the load balancing mode) for the Auto-LAG feature.

The switch balances traffic on a LAG by selecting one of the links in the channel over which

packets must be transmitted. The switch selects the link by creating a binary pattern from

selected fields in a packet and associating that pattern with a particular link. The hash mode

determines which fields in a packet the switch selects.

To change the hash mode for the Auto-LAGs:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual270

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> LAG > LAG Configuration.

The LAG Configuration page displays.

6. In the LAG Global Configuration section, from the Auto-LAG Global Hash Mode menu,

select the hash mode for the Auto-LAGs:

• 1 Src MAC, VLAN, EType, incoming port: Source MAC address, VLAN, EtherType,

and incoming port associated with the packet.

•2 Dest MAC, VLAN, EType, incoming port: Destination MAC address, VLAN,

EtherType, and incoming port associated with the packet. This is the default mode.

• 3 Src/Dest MAC, VLAN, EType, incoming port: Source and destination MAC

addresses, VLAN, EtherType, and incoming port associated with the packet.

• 4 Src IP and Src TCP/UDP Port fields: Source IP address and source TCP/UDP port

fields of the packet.

• 5 Dest IP and Dest TCP/UDP Port fields: Destination IP address and destination

TCP/UDP port fields of the packet.

• 6 Src/Dest IP and TCP/UDP Port fields: Source and destination IP addresses and

source and destination TCP/UDP port fields of the packet.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Configure the LAG settings

You can group one or more full-duplex Ethernet links to be aggregated together to form a link

aggregation group, which is also known as a port-channel. The switch treats the LAG as if it

were a single link.

To configure the LAG settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual271

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> LAG > LAG Configuration.

The LAG Configuration page displays.

6. To change the default name of the LAG, in the LAG Name field, enter the name to be

assigned to the LAG.

By default, the names are ch1, ch2, ch3, and so on. You can enter a name of up to

15 characters.

For information about adding a name in the Description field, see Add port, LAG, and

VLAN descriptions on page 264 or Configure a single LAG and its membership on

page 272.

7. From the Admin Mode menu, select to enable or disable the LAG.

When the LAG is disabled, no traffic flows and LACPDUs are dropped, but the links that

form the LAG are not released. The default is Enable.

8. From the Hash Mode menu, select the hash mode (that is, the load-balancing mode) for the

LAG:

• 1 Src MAC, VLAN, EType, incoming port: Source MAC address, VLAN, EtherType,

and incoming port associated with the packet.

•2 Dest MAC, VLAN, EType, incoming port: Destination MAC address, VLAN,

EtherType, and incoming port associated with the packet. This is the default mode.

• 3 Src/Dest MAC, VLAN, EType, incoming port: Source and destination MAC

addresses, VLAN, EtherType, and incoming port associated with the packet.

• 4 Src IP and Src TCP/UDP Port fields: Source IP address and source TCP/UDP port

fields of the packet.

• 5 Dest IP and Dest TCP/UDP Port fields: Destination IP address and destination

TCP/UDP port fields of the packet.

• 6 Src/Dest IP and TCP/UDP Port fields: Source and destination IP addresses and

source and destination TCP/UDP port fields of the packet.

Note: The switch balances traffic on a LAG by selecting one of the links in the

channel over which packets must be transmitted. The switch selects

the link by creating a binary pattern from selected fields in a packet and

associating that pattern with a particular link. The hash mode

determines which fields in a packet the switch selects.

9. From the STP Mode menu, select to enable or disable the Spanning Tree Protocol (STP)

administrative mode for the LAG.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual272

Enable is the default.

10. From the Static Mode menu, select to enable or disable the LAG as a static LAG.

When the static mode is enabled, the LAG does not transmit or process incoming

LACPDUs. That is, a LAG member port does not transmit LACPDUs, and LACPDUs that

it receives are dropped. The default is Disable.

11. From the Link Trap menu, select to enable or disable the transmission of a trap when the

LAG link status changes.

The default is Enable, which allows a trap to be sent.

12. Click the Apply button.

Your settings are saved.

13. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 80. LAG configuration information

Field Description

LAG Description The description that you might have added to the LAG (see Add port, LAG,

and VLAN descriptions on page 264 or Configure a single LAG and its

membership on page 272).

LAG ID The LAG ID.

Configured Ports The interfaces that are members of the LAG.

Down Ports The interfaces that are members of the LAG but that are down.

LAG State Indicates if the LAG link is up or down.

Configure a single LAG and its membership

You can configure a single LAG and add physical interfaces as members to the LAG.

The information about configuring the LAG is identical to the information in Configure the

LAG settings on page 270, but the information about adding members to the LAG is unique

in the following section.

To configure a single LAG and its membership:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual273

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> LAG > LAG Membership.

The LAG Membership page displays.

6. From the LAG ID to menu, select the LAG.

7. To change the default name of the LAG, in the LAG Name field, enter the name to be

assigned to the LAG.

By default, the names are ch1, ch2, ch3, and so on. You can enter a name of up to

15 characters.

8. To enter a description for the LAG, in the LAG Description field, enter a description of up to

64 characters.

9. From the Admin Mode menu, select to enable or disable the LAG.

When the LAG is disabled, no traffic flows and LACPDUs are dropped, but the links that

form the LAG are not released. The default is Enable.

10. From the Link Trap menu, select to enable or disable the transmission of a trap when the

LAG link status changes.

The default is Enable, which allows a trap to be sent.

11. From the STP Mode menu, select to enable or disable the Spanning Tree Protocol (STP)

administrative mode for the LAG.

Enable is the default.

12. From the Static Mode menu, select to enable or disable the LAG as a static LAG.

When the static mode is enabled, the LAG does not transmit or process incoming

LACPDUs. That is, a LAG member port does not transmit LACPDUs, and LACPDUs that

it receives are dropped. The default is Disable.

13. From the Hash Mode menu, select the load-balancing mode for the LAG:

• Src MAC, VLAN, EType, incoming port: Source MAC address, VLAN, EtherType,

and incoming port associated with the packet.

•Dest MAC, VLAN, EType, incoming port: Destination MAC address, VLAN,

EtherType, and incoming port associated with the packet. This is the default mode.

• Src/Dest MAC, VLAN, EType, incoming port: Source and destination MAC

addresses, VLAN, EtherType, and incoming port associated with the packet.

• Src IP and Src TCP/UDP Port fields: Source IP address and source TCP/UDP port

fields of the packet.

•Dest IP and Dest TCP/UDP Port fields: Destination IP address and destination

TCP/UDP port fields of the packet.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual274

• Src/Dest IP and TCP/UDP Port fields: Source and destination IP addresses and

source and destination TCP/UDP port fields of the packet.

Note: The switch balances traffic on a LAG by selecting one of the links in the

channel over which packets must be transmitted. The switch selects

the link by creating a binary pattern from selected fields in a packet and

associating that pattern with a particular link.

14. In the Ports table, click each port that you want to make a member of the LAG.

15. Click the Apply button.

Your settings are saved.

16. To save the settings to the running configuration, click the Save icon.

802.1AS timing and synchronization

802.1AS timing and synchronization is an audio video bridging (AVB) feature. The 802.1AS

feature requires a license. For information about purchasing a license, contact NETGEAR or

your local NETGEAR reseller.

The IEEE 802.1AS standard specifies the protocol and procedures used to ensure that the

QoS requirements are guaranteed for time-sensitive applications, such as audio and video.

The IEEE 1588 Precision Time Protocol (PTP) forms the basis of the IEEE 802.1AS

standard. PTP specifies a precise clock synchronization protocol that relies on time-stamped

packets. For information about configuring PTP, see Precision Time Protocol on page 67.

The PTP protocol is applicable to distributed systems that consist of one or more nodes

communicating over of communication media. The distribution of synchronous time

information occurs in a hierarchical manner with a grandmaster clock at the root of the

hierarchy. The grandmaster provides a common and precise time reference for one or more

directly-attached devices by periodically exchanging timing information. That is, all devices

synchronize their clocks with the grandmaster clock. The devices can, in-turn, act as master

devices for further hierarchical layers of other devices.

Configure and view the global 802.1AS settings

You can globally enable 802.1AS on the switch and configure local clock priorities. The

802.1AS feature calculates the time delay between devices on a link and maintains an

accurate view of a network clock.

To configure and view the global 802.1AS settings on the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual275

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > 802.1AS > Basic > 802.1AS Configuration.

The 802.1AS Configuration page displays.

6. To enable the feature, select the 802.1AS status Enable radio button.

7. In the Local Clock Priority1 field, specify the first priority value of the local clock.

The local clock is the clock for the switch as a time-aware bridge. Enter a number

between 0 and 255 seconds. The default is 255 seconds.

8. In the Local Clock Priority2 field, specify the second priority value of the local clock.

Enter a number between 0 and 255 seconds. The default is 248 seconds.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable information displayed on the page.

Table 81. 802.1AS configuration information

Field Description

GrandMaster Capable Identifies whether the grandmaster clock is active. The default is False.

Best Clock Identity The MAC address of the best clock that the switch detected.

Best Clock Priority1 The first priority value of the best clock that the switch detected.

Best Clock Priority2 The second priority value of the best clock that the switch detected.

Steps to Best Clock The number of links between the best clock and the switch. If the switch itself is

the best clock, the value is zero.

Local Clock Identity The MAC address of the local clock on the switch.

GM Change Count The number of times the grandmaster clock changed.

Last GM Change Timestamp The time when the most recent grandmaster clock change occurred.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual276

Configure the 802.1AS interface settings

You can configure 802.1AS settings for individual interfaces.

To configure the 802.1AS interface settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > 802.1AS > Advanced > 802.1AS Port Settings.

The 802.1AS Port Settings page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Admin Mode menu, select Enable or Disable.

For the 802.1AS settings to take effect on the interface, select Enable. The default is

Disable.

9. In the Pdelay Threshold field, specify the propagation delay threshold for the interface.

The threshold determines whether the port is capable of participating in the 802.1AS

protocol. If the propagation delay on the interface is above the threshold you configure,

the interface is not considered capable of participating in the 802.1AS protocol. The peer

delay must be less than the threshold value configured on the interface. The range is

from 0 to 1,000,000,000 nanoseconds (ns). The default is 2500 ns.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual277

10. In the Allowed Lost Responses field, specify the allowed loss response value.

If the interface does not receive valid responses to PDELAY_REQ messages above the

value of the allowed lost responses, a port is considered to not be exchanging peer delay

messages with its neighbor. The range is from 0 to 65,535. The default is 3.

11. In the Initial Sync Interval field, specify the transmission rate of SYNC messages.

This value is the logarithm to the base 2 of the mean-time interval between successive

SYNC messages sent on this interface. The configured initial interval becomes the

current interval only after the port is initialized or re-initialized for 802.1AS operation. The

range is from –5 to 5. The default is –3.

12. In the Initial Pdelay Interval field, specify the transmission rate of PDELAY_REQ

messages.

This value is the logarithm to the base 2 of the mean time interval between successive

PDELAY_REQ messages sent on this interface. The configured initial interval becomes

the current interval only after the port is initialized or re-initialized for 802.1AS operation.

The range is from –5 to 5. The default is –3.

13. In the Initial Announce Interval field, specify the transmission rate of ANNOUNCE

messages.

This value is the logarithm to the base 2 of the mean time interval between successive

ANNOUNCE messages sent on this interface. The configured initial interval becomes the

current interval only after the port is initialized or re-initialized for 802.1AS operation. The

range is from –5 to 5. The default is –3.

14. In the SyncRx Timeout field, specify the number of SYNC intervals.

This value sets the number of SYNC intervals that must pass without receipt of SYNC

information before the switch detects that the master clock is no longer transmitting.

15. n the AnnounceRx Timeout field, specify the number of ANNOUNCE intervals.

This value sets the number of ANNOUNCE intervals that must to pass without receipt of

ANNOUNCE PDU before the switch detects that the master clock is no longer

transmitting.

16. Click the Apply button.

Your settings are saved.

17. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual278

The following table describes the nonconfigurable information displayed on the page.

Table 82. 802.1AS interface information

Field Description

Port Role The 802.1AS role of the interface. The possible roles are as follows:

• Disabled (default)

• Master

• Slave

• Passive

Propagation Delay The mean propagation delay on the interface.

Measuring Pdelay Indicates whether the interface is receiving PDELAY response messages from

the other end of the link.

802.1AS Capable Indicates whether the interface is 802.1AS capable. By default, the interface is

not 802.1AS capable.

Neighbor Rate Ratio An estimated ratio of the frequency of the local clock entity of the time-aware

device at the other end of the link of the interface in relation to the frequency of

the local clock entity of the switch.

Current Sync Interval The current mean time interval between successive SYNC messages sent over

the link, in logarithm to base 2 format.

Current Pdelay Interval The current mean time interval between successive PDELAY_REQ messages

sent over the link, in logarithm to base 2 format.

Current Announce Interval The current mean time interval between successive ANNOUNCE messages

sent over the link, in logarithm to base 2 format.

View the 802.1AS statistics

You can view the 802.1AS statistics for the interfaces.

To view the 802.1AS statistics for the interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual279

5. Select Switching > 802.1AS > Advanced > 802.1AS Statistics.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

The following table describes the nonconfigurable information displayed on the page.

Table 83. 802.1AS statistics information

Field Description

Interface The interface for which information is displayed.

Sync Tx The total number of SYNC packets transmitted without errors.

Sync Rx The total number of SYNC packets received without errors.

Followup Tx The total number of FOLLOWUP packets transmitted without errors.

Followup Rx The total number of FOLLOWUP packets received without errors.

Announce Tx The total number of ANNOUNCE packets transmitted without errors.

Announce Rx The total number of ANNOUNCE packets received without errors.

Pdelay Req Tx The total number of PDELAY_REQ packets transmitted without errors.

Pdelay Req Rx The total number of PDELAY_REQ packets received without errors.

Pdelay Resp Tx The total number of PDELAY_RESP packets transmitted without errors.

Pdelay Resp Rx The total number of PDELAY_RESP packets received without errors.

Pdelay Resp Followup Tx The total number of PDELAY_RESP_FOLLOWUP packets transmitted without

errors.

Pdelay Resp Followup Rx The total number of PDELAY_RESP_FOLLOWUP packets received without

errors.

Signaling Tx The total number of SIGNALING packets transmitted without errors.

Signaling Rx The total number of SIGNALING packets received without errors.

Sync Timeouts The total number of SYNC receipt time-outs that occurred.

Sync Discards The total number of SYNC packets that were discarded.

Announce Timeouts The total number of ANNOUNCE receipt time-outs that occurred.

Announce Discards The total number of ANNOUNCE packets that were discarded.

Pdelay Timeouts The total number of PDELAY receipt time-outs that occurred.

Pdelay Discards The total number of PDELAY packets discarded.

Bad Headers The total number of packets received with a bad header.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual280

Multiple Registration Protocol settings

Multiple Registration Protocol (MRP) is an audio video bridging (AVB) feature. MVR is a base

registration protocol that enables devices running an MRP application to register attributes to

other devices in a network. MRP provides an application to register attributes such as

bandwidth for an audio-video (AV) stream and MAC address information. This feature is used

by various applications to propagate the registration.

Note: MRP framework must be available and enabled on all intermediate

devices to ensure that the propagation of the attributes occurs

throughout the network.

The switch supports the following MRP applications:

• Multiple MAC Registration Protocol (MMRP): MMRP allows for the propagation MAC

address information in the network, and allows for the registration and deregistration of

both individual MAC address information and group MAC address membership. End

stations can request to join or leave a multicast group, or to register an individual MAC

address with a specific VLAN. MAC address entries can be dynamically registered and

deregistered if MMRP is administratively enabled on the switch.

• Multiple VLAN Registration Protocol (MVRP): MVRP registers VLANs in the network,

enabling automatic VLAN configuration on the switch. In a typical network, VLAN tagging

is common. Many nodes require ingress traffic to be tagged with a specific VLAN ID, and

other nodes require egress traffic to be transmitted with a specific VLAN ID. With the use

of MVRP on both ingress and egress, no manual VLAN configuration is required to pass

tagged traffic through the network.

• Multiple Stream Reservation Protocol (MSRP): MSRP reserves resources in the

network to facilitate time-sensitive traffic to flow end to end. A typical network includes

multiple talkers (devices that transmit streams) and multiple listeners (devices that

receive streams from one or many talkers). Each flow has specific bandwidth, frame rate,

and time sync requirements. MSRP guarantees these resources through all intermediate

devices between any talker and listener.

With MRP, network attributes are declared, registered, withdrawn, and removed dynamically

without user intervention. This dynamic nature is especially useful in networks where the

following is true:

•Network attributes are likely to change frequently, requiring reconfiguration of the

intermediate devices.

•Recipients of these attributes frequently increase or decrease in number.

•Each of these changes without a dynamic self-adjusting framework would require

constant attention from a network administrator.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual281

Configure the global MRP settings

You can configure global MRP settings for the switch.

To configure the global MRP settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MRP > Basic > MRP Configuration.

The MRP Configuration page displays.

6. Select the MVRP Mode Enable or Disable radio button to specify the global administrative

mode of MVRP on the switch.

Enabling this mode lets MVRP register VLANs in the network, enabling automatic VLAN

configuration on the device. The default is Disable.

7. Select the MMRP Enable or Disable radio button to specify the global administrative mode

of MMRP on the switch.

Enabling this mode allows for the propagation of MAC address information in the

network. In turn, this allows for the registration and deregistration of both individual MAC

address information and group MAC address membership. The default is Disable.

8. Select the MSRP Enable or Disable radio button to specify the global administrative mode

of MSRP on the switch.

Enabling this mode allows the switch to reserve resources in the network to facilitate

time-sensitive traffic to flow end to end. The default is Disable.

9. Select the Periodic State Machine (MVRP Mode) Enable or Disable radio button.

Enabling this mode can limit the effect of MVRP topology changes and reduce the

number of protocol data units (PDUs) transmitted between devices. The default is

Disable.

10. Select the Periodic State Machine (MMRP) Enable or Disable radio button.

Enabling this mode can limit the effect of MMRP topology changes and reduce the

number of protocol data units (PDUs) transmitted between devices. The default is

Disable.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual282

11. In the MSRP Max Fan In Ports field, specify the maximum number of interfaces on which

MSRP registrations are allowed.

The range is from 0 to 12. The default is 0, which means that no limit is imposed on the

number of interfaces.

12. Select the MSRP Boundary Propagation Enable or Disable radio button.

When you enable MSRP boundary propagation, depending on the configuration, a

stream reservation can be allowed to cross a boundary port.

The default is Disable.

13. Click the Apply button.

Your settings are saved.

14. To save the settings to the running configuration, click the Save icon.

Configure 802.1Qav mapping

You can set the global QoS priorities for class A and class B traffic Ethernet audio video

(EAV) streams. Class A streams receive higher priority than class B streams.

To change the 802.1Qav mapping priorities:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MRP > Basic > MRP Configuration.

The MRP Configuration page displays.

6. Scroll to the 802.1qav Mapping section.

By default, the EAV priority for class A traffic is 3, with a remap priority of 1.

By default, the EAV priority for class B traffic is 2, with a remap priority of 1.

7. In the EAV Stream column, select the check box for the class.

8. In the EAV Priority field, specify a priority from 0 to 7.

9. In the EAV Remap Priority field, specify a priority from 0 to 7.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual283

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

Configure the MRP interface settings

You can configure the MRP mode and timer settings for one or more interfaces. The timers

control when and how often various messages are transmitted on each interface.

To configure MRP interface settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> MRP > Advanced > MRP Port Settings.

The MRP Port Settings page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the MVRP Mode menu, select Enable or Disable to specify the administrative mode

of MVRP on the interface.

Enabling this mode lets MVRP register VLANs in the network, enabling automatic VLAN

configuration on the interface. The default is Disable.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual284

9. From the MMRP Mode menu, select Enable or Disable to specify the administrative mode

of MMRP on the interface.

Enabling this mode allows for the propagation of MAC address information on the

interface. In turn, this allows for the registration and deregistration of both individual MAC

address information and group MAC address membership. The default is Disable.

10. From the MSRP Mode menu, select Enable or Disable to specify the administrative mode

of MSRP on the interface.

Enabling this mode allows the interface to reserve resources in the network to facilitate

time-sensitive traffic to flow end to end. The default is Disable.

11. In the Join Timer field, specify the time that the interface must wait for JoinIn messages

from other MRV participants after the interface sends a Join message.

If the time that you specify passes before the interface receives a JoinIn message, the

interface resends the Join message. The range is from 10 to 100 centiseconds. The

default is 20.

12. In the Leave Timer field, specify the time that the interface must wait before it deregisters

attributes from other MRV participants.

If the interface receives Join messages from other participants before the time that you

specify expires, the attributes are not deregistered. The range is from 20 to 600

centiseconds. The default is 300.

13. In the Leave All Timer field, specify the time that the interface must wait after it starts the

MRP registration process, before the participants refresh and reregister their attributes.

The range is 200 to 6000 centiseconds. The default value is 2000.

14. In the MSRP SR class PVID field, specify the default VLAN ID that the interface must use

for MSRP stream traffic.

15. Click the Apply button.

Your settings are saved.

16. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable information displayed on the page.

Table 84. MRP interface settings information

Field Description

MSRP Class A Boundary Port Indicates whether the interface is a boundary port for class A traffic.

MSRP Class B Boundary Port Indicates whether the interface is a boundary port for class B traffic.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual285

View or clear MMRP statistics

You can view and clear information regarding the MMRP frames transmitted and received by

the switch and by each interface.

To view and clear MMRP statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MRP > Advanced > MMRP Statistics.

The MMRP Statistics page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. To refresh the page, click the Refresh button.

8. To clear the statistics, do the following:

a. Select the check box next to the interface or interfaces, or, to clear the statistics for all

interfaces, select the check box in the table heading.

b. Click the Clear button.

The statistics are cleared.

9. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 85. MMRP statistics information

Field Description

MMRP Global Statistics

Frames Received The number of MMRP frames that were received on the switch.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual286

View or clear MVRP statistics

You can view and clear information about the MVRP frames transmitted and received by the

switch and by each interface.

To view and clear MVRP statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MRP > Advanced > MVRP Statistics.

The MVRP Statistics page displays.

Bad Header The number of MMRP frames with bad headers that were received on the

switch.

Bad Format The number of MMRP frames with bad PDUs body formats that were received

on the switch.

Frames Transmitted The number of MMRP frames which that were transmitted on the switch.

Transmission Failures The number of MMRP frames that the switch did not transmit.

MMRP Statistics

Interface The interface for which information is displayed.

Frames Received The number of MMRP frames that were received on the interface.

Bad Header The number of MMRP frames with bad headers that were received on the

interface.

Bad Format The number of MMRP frames with bad PDUs body formats that were received

on the interface.

Frames Transmitted The number of MMRP frames that were transmitted on the interface.

Transmission Failures The number of MMRP frames that the interface failed to transmit.

Table 85. MMRP statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual287

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. To refresh the page, click the Refresh button.

8. To clear the statistics, do the following:

a. Select the check box next to the interface or interfaces, or, to clear the statistics for all

interfaces, select the check box in the table heading.

b. Click the Clear button.

The statistics are cleared.

9. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 86. MVRP statistics information

Field Description

MVRP Global Statistics

Frames Received The number of MMRP frames that were received on the switch.

Bad Header The number of MMRP frames with bad headers that were received on the

switch.

Bad Format The number of MMRP frames with bad PDUs body formats that were received

on the switch.

Frames Transmitted The number of MMRP frames which that were transmitted on the switch.

Transmission Failures The number of MMRP frames that the switch did not transmit.

Message Queue Failures The number of MMRP messages that were not added to the queue.

MVRP Statistics

Interface The interface for which information is displayed.

Frames Received The number of MVRP frames that were received on the interface.

Bad Header The number of MVRP frames with bad headers that were received on the

interface.

Bad Format The number of MVRP frames with bad PDUs body formats that were received

on the interface.

Frames Transmitted The number of MVRP frames that were transmitted on the interface.

Transmission Failures The number of MVRP frames that the interface failed to transmit.

Registration Failures The number of MVRP frames that failed to register on a device or particular

interface.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual288

View or clear MSRP statistics

You can view and clear information about the MSRP frames transmitted and received by the

switch and by each interface.

To view and clear MSRP statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MRP > Advanced > MSRP Statistics.

The MSRP Statistics page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. To refresh the page, click the Refresh button.

8. To clear the statistics, do the following:

a. Select the check box next to the interface or interfaces, or, to clear the statistics for all

interfaces, select the check box in the table heading.

b. Click the Clear button.

The statistics are cleared.

9. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 87. MSRP statistics information

Field Description

MSRP Global Statistics

Frames Received The number of MSRP frames that were received on the switch.

Bad Header The number of MSRP frames with bad headers that were received on the switch.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual289

View the MSRP reservation settings

You can view information about the talker, listener, and intermediate device status for the

devices involved in each MSRP stream that flows through the switch.

To view the MSRP reservation settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MRP > Advanced > MSRP Reservation Parameters.

Bad Format The number of MSRP frames with bad PDUs body formats that were received on

the switch.

Frames Transmitted The number of MSRP frames which that were transmitted on the switch.

Transmission Failures The number of MSRP frames that the switch did not transmit.

Message Failures The number of MSRP messages that were not added to the queue.

MSRP Statistics

Interface The interface for which information is displayed.

Frames Received The number of MSRP frames that were received the interface.

Bad Header The number of MSRP frames with bad header that were received on the

interface.

Bad Format The number of MSRP frames with bad PDUs body format that were received on

the interface.

Frames Transmitted The number of MSRP frames which that transmitted on the interface.

Transmission Failures The number of MSRP frames that the interface failed to transmit.

Registration Failures The number of MSRP frames that failed to register on a device or particular

interface.

Table 87. MSRP statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual290

The MSRP Reservation Parameters page displays.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 88. MSRP reservation parameters information

Field Description

Interface The interface for which information is displayed.

Stream ID A 16-bit unsigned integer value, which is a unique ID used to distinguish the

stream among multiple streams from the same device.

Listener Declaration Status The MSRP declaration status of the listener attribute.

Listener Declaration Type The MSRP declaration type of the listener attribute.

Talker Declaration Status The MSRP declaration status of the talker attribute.

Talker Declaration Type The MSRP declaration type of the talker attribute.

Accumulated Latency The latency, in nanoseconds, that occurred for the stream on its path from the

talker to a listener. The latency starts with zero and is increased by one for

each device that the stream propagates through in the network.

Failure Bridge Interface If a failure occurred, the interface on the device on which the failure occurred.

Failure Bridge MAC If a failure occurred, the MAC address of the device on which the failure

occurred.

Failure Code If a failure occurred, the number that represents the reason for the failure. The

switch supports the following codes:

• 1: Insufficient bandwidth

• 3: Insufficient bandwidth for the traffic class

• 5: Stream destination address is already in use

• 7: Reported latency changed

• 8: Egress port is not capable of audio video bridging (AVB)

• 9: Use a different destination address (for example, if the MAC DA hash

table is full)

• 12: Cannot store destination address (for example, if the device ran out of

MAC DA resources)

• 13: Requested priority is not an SR class priority

• 14: MaxFrameSize is too large for media

• 15: msrpMaxFanInPorts limit was reached

• 16: Changes in FirstValue for a registered StreamID

• 17: VLAN is blocked on this egress port (Registration Forbidden)

Stream Age The time, in seconds, since the stream destination address was added to the

Dynamic Reservations Entries table. A value of zero indicates the destination

address was not added to the table.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual291

Configure and view the Qav settings for interfaces

You can configure and view the IEEE 802.1Qav settings for interfaces. The IEEE 802.1Qav

standard supports time-sensitive traffic streams by pacing all switch traffic, including legacy

asynchronous Ethernet traffic, through queuing and forwarding. When a talker declares a

stream, 802.1Qav identifies whether the stream is class A or class B and specifies the

stream’s bandwidth requirements. Class a traffic receives a higher transmission priority than

class B traffic.

You can configure and view the selected bandwidth allocations for class A and class B traffic.

To configure view the Qav settings for interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MRP > Advanced > Qav Parameters.

The Qav Parameters page displays.

6. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

7. In the Class A MSRP Delta Bandwidth field, specify the additional bandwidth represented

as a percentage of the interface transmit rate that is reserved for class A and class B traffic

Class A traffic receives a higher priority than class B traffic. The range is from 0 to 100.

The default is 75.

8. In the Class B MSRP Delta Bandwidth field, specify the additional bandwidth represented

as a percentage of the interface transmit rate that is reserved for class B traffic

The range is from 0 to 100. The default is 0.

9. Click the Apply button.

Your settings are saved.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual292

10. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable information displayed on the page.

Table 89. Qav settings information

Field Description

Class A Bandwidth Allocated The current rate (in Bps) of class A traffic on interface

Class A Remaining

Bandwidth

The maximum rate (in Bps) of class A that is supported by the interface.

Class B Bandwidth Allocated The current rate (in Bps) of class B traffic on interface

CLass B Remaining

Bandwidth

The maximum rate (in Bps) of class B that is supported by the interface.

Total Bandwidth Allocated The sum of the allocated class A and class B traffic rates (in Bps) on interface.

Total Remaining Bandwidth 75 percent of the interface speed minus that total allocated bandwidth (in

Bps/sec).

View MSRP streams information

You can view information about MSRP streams that are flowing through each interface.

To view MSRP streams information:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching > MRP > Advanced > MSRP Streams Information.

The MSRP Streams Information page displays.

6. To refresh the page, click the Refresh button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual293

The following table describes the nonconfigurable fields on the page.

Table 90. MSRP streams information

Field Description

Stream ID A 16-bit unsigned integer value, which is a unique ID used to distinguish the

stream among multiple streams from the same device.

Stream Source MAC Address The MAC address of the traffic stream’s source.

Received Accumulated

Latency

The 32-bit unsigned accumulated latency value that is used to determine the

worst-case latency that a stream can suffer in its path from the talker to a

listener. The latency starts with zero and is increased by one for each device

that the stream propagates through in the network.

Traffic Class Shows whether the stream is class A or class B. Class A traffic receives higher

priority than class B traffic.

Rank The 5-bit unsigned rank value that is used by devices to determine which

streams can still be served when the MSRP registrations exceed the capacity of

an interface to carry the corresponding data streams.

If a device becomes oversubscribed (for example, a network reconfiguration or

802.11 bandwidth reduction occurs), the rank value is also used to determine

which stream are dropped. A lower numeric value is more important than a

higher numeric value.

TSpec Max Frame Size The 32-bit unsigned bandwidth value that is used to allocate resources and

adjust queue selection settings to supply the quality of service that is requested

by an MSRP talker. The value represents the maximum rate, in units of 1024

octets per second, at which frames in the stream referenced by the talker can

be transmitted.

TSpec Max Interval Frames The 32-bit unsigned frame rate value that is used to allocate resources and

adjust queue selection settings to supply the quality of service that is requested

by an MSRP talker. The value represents the maximum number of frames that

the talker can transmit in one second.

Stream VLAN The VLAN ID of the traffic stream.

Destination MAC The MAC address of the traffic stream’s destination.

Received Failure Information

Bridge Interface

If a failure occurred, the interface of the device on which the failure occurred.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual294

Loop protection

Loop protection can detect physical and logical loops between Ethernet ports on a device.

About loop protection

Loops inside a network are costly because they consume resources and reduce the

performance of the network. Detecting loops manually can be cumbersome.

The switch can automatically identify loops in the network. You can enable loop protection

per port or globally.

If loop protection is enabled, the switch sends predefined protocol data unit (PDU) packets to

a Layer 2 multicast destination address (09:00:09:09:13:A6) on all ports for which the feature

is enabled. You can selectively disable PDU packet transmission for loop protection on

specific ports even while port loop protection is enabled. If the switch receives a packet with

the previously mentioned multicast destination address, the source MAC address in the

packet is compared with the MAC address of the switch. If the MAC address does not match,

the packet is forwarded to all ports that are members of the same VLAN, just like any other

multicast packet. The packet is not forwarded to the port from which it was received.

Received Failure Information

Failure Code

If a failure occurred, the number that represents the reason for the failure. The

switch supports the following codes:

• 1: Insufficient bandwidth

• 3: Insufficient bandwidth for the traffic class

• 5: Stream destination address is already in use

• 7: Reported latency changed

• 8: Egress port is not capable of audio video bridging (AVB)

• 9: Use a different destination address (for example, if the MAC DA hash

table is full)

• 12: Cannot store destination address (for example, if the device ran out of

MAC DA resources)

• 13: Requested priority is not an SR class priority

• 14: MaxFrameSize is too large for media

• 15: msrpMaxFanInPorts limit was reached

• 16: Changes in FirstValue for a registered StreamID

• 17: VLAN is blocked on this egress port (Registration Forbidden)

Received Failure Information

Bridge MAC

If a failure occurred, the MAC address of the device on which the failure

occurred.

Talker Interface The interface on which the talker is present.

Listeners The interface on which listeners are present.

Table 90. MSRP streams information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual295

If the source MAC address matches the MAC address of the switch, the switch can perform

one of the following actions, depending on how you configure the action:

•The port is shut down.

•A log message is generated. (If a syslog server is configured, the log message can be

sent to the syslog server.)

•The port is shut down and a log message is generated.

If loop protection is disabled, the multicast packet is silently dropped.

Loop protection is not intended for ports that serve as uplinks between spanning tree–aware

switches. Loop protection is designed for unmanaged switches that drop spanning tree

bridge protocol data units (BPDUs).

You need to enable the feature globally before you can enable it at the port level so that the

system policy filter can be installed.

Loop protection treats PDU packets transmission and spanning tree protocol in the following

ways:

• Loop protection and PDU packet transmission: Loop protection sends loop protocol

packets from all ports on which it is enabled. You can configure the interval (1 to 5

seconds) between two successive loop protection PDU packets. The default interval is 5

seconds. If the switch receives a loop protocol packet on a port for which the action is set

to shut down the port, the port can no longer receive and send frames.

Loop protection operates at a port level, regardless of VLAN assignment and

membership, detecting loops across VLANs.

• Loop protection and Spanning tree protocol: Loop protection does not impact end

nodes and is not intended for ports that serve as uplinks between spanning tree–aware

switches. Loop protection can coexist with Spanning Tree Protocol (STP). You can

enable both loop protection and STP on a port because these features function

independently of each other. STP does not bring a port down when a loop is detected but

keeps the port in blocking state. Because PDUs are allowed in a blocking state, loop

protection packets are received and loop protection brings down the port that is involved

in the loop (if the configured action is to shut down the port).

Configure the global loop protection settings

Before you can configure loop protection for individual ports (see Configure the loop

protection settings for interfaces and display the loop protection state on page 296), you

must globally enable and configure loop protection.

To globally enable and configure loop protection:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual296

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> L2 Loop Protection > L2 Loop Protection Configuration.

The L2 Loop Protection Configuration page displays.

6. In the Global L2 Loop Protection Configuration section, configure the following settings:

•Next to Admin Mode, select the Enable or Disable radio button to specify the

administrative mode of loop protection on the switch.

By default, loop protection is globally disabled.

•From the Transmit Interval menu, select the interval between the transmissions of

loop packets on a port.

The range is from 1 to 5 seconds. The default setting is 5 seconds. The selected

interval applies to all ports for which you enable loop protection.

•From the Max PDU Receive menu, select the maximum number of packets that a

port can receive before an action is taken.

The default setting is 1 packet. The selected number of packets applies to all ports for

which you enable loop protection.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Configure the loop protection settings for interfaces and

display the loop protection state

Before you can configure loop protection for individual ports, you must globally enable loop

protection (see Configure the global loop protection settings on page 295).

To enable and configure loop protection for an interface and display the loop

protection state on the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual297

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Switching> L2 Loop Protection > L2 Loop Protection Configuration.

The L2 Loop Protection Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Keep Alive menu, select Enable to specify that loop protection must be enabled

on the port.

By default, loop protection is disabled for a port.

9. From the RX Action menu, select the action that the switch takes when a loop is detected

on the port:

• Log: Log the message when a loop is detected on the port.

• Disable: Disable the port when a loop is detected. This is the default setting.

• Both: Log and disable the port when a loop is detected.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

12. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 91. Loop protection interface configuration information

Field Description

Loop Detected Indicates (Yes or No) whether a loop is detected on the interface.

Loop Count The number of packets that were received on the interface after the loop was

detected.

AV Line of Fully Managed Switches M4250 Series

Configure Switching Information User Manual298

Time Since Last Loop The time since the loop was detected.

Port Status The status of the interface (Enabled or Disabled).

Errdisable Reason The reason that the interface was disabled. In addition to being disabled because of

loop protection, the interface can be disabled because of Unidirectional Link

Detection (UDLD), a broadcast storm, a unicast storm, and so on.

Auto Recovery Time Left

(sec)

The time that is left before the interface is reenabled through the autorecovery

process. The time is in the range from 30 to 604800 seconds.

Table 91. Loop protection interface configuration information (continued)

Field Description

299

4Manage Routing

This chapter covers the following topics:

•Routing concepts

•Routing table, routes and route preferences

•IPv4 routing

•IPv6 routing

•Routing VLANs

•Address Resolution Protocol

•Routing Information Protocol

•Router discovery and router advertisements

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual300

Routing concepts

The switch supports IP routing. When a packet enters the switch, the switch checks the

destination MAC address to determine if it matches any of the configured routing interfaces. If

it does, the switch searches the host table for a matching destination IP address. If a

matching entry is found, the packet is routed to the host. If no matching entry is found, the

switch performs a longest prefix match on the destination IP address. If a matching entry is

found, the packet is routed to the next hop. If no matching entry is found, the packet is routed

to the next hop that is specified in the default route. If no default route exists, the packet is

dropped.

Routing table, routes and route preferences

The routing table collects routes from multiple sources and list all routes: static routes, local

routes, dynamically added routes, and so on. Static routes are routes that you manually add.

The routing table can learn multiple routes to the same destination from multiple sources, for

example dynamically added routes through routing protocols.

Configure a route and display learned routes

You can add or change a route in the routing table and display the automatically learned

routes in the routing table.

To add or change a route and display learned routes:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Routing Table > Basic > Route Configuration.

The Route Configuration page displays.

6. If you are changing an existing route, select the check box for the route.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual301

7. From the Route Type menu, select one of the following route types:

• Default: Specify the next hop address and preference.

• Static: Specify the network address, subnet mask, next hop address, and preference.

• Static Reject: Specify the network address, subnet mask, and preference.

8. In the Network Address field, enter the IP route prefix for the destination.

9. In the Subnet Mask field, enter the portion of the IP interface address that identifies the

attached network.

This is also referred to as the subnet/network mask.

10. In the Next Hop IP Address, enter the IP address of the outgoing router that must be used

when traffic is forwarded to the next router (if any) in the path toward the destination.

The next router is always one of the adjacent neighbors or the IP address of the local

interface for a directly attached network.

11. In the Preference field, enter a value from 1 to 255.

You can specify the preference value (sometimes called administrative distance) of an

individual static route. Among routes to the same destination, the route with the lowest

preference value is the route entered into the forwarding database. By specifying the

preference of a static route, you can control if a static route is more preferred or less

preferred than routes from dynamic routing protocols. The preference also controls if a

static route is more preferred or less preferred than other static routes to the same

destination.

12. In the Description field, enter the description of this route that identifies the route.

The description must consist of alphanumeric, hyphen, or underscore characters and can

be up to 31 characters in length.

13. Do one of the following:

•If you are adding a new route, click the Add button.

Your settings are saved. The route is added to the routing table.

•If you are changing an existing route, click the Apply button.

Your settings are saved.

14. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 92. Learned routes information

Field Description

Network Address The IP route prefix for the destination.

Subnet Mask The subnet/network mask, which indicates the portion of the IP interface

address that identifies the attached network.

Protocol The protocol that created the route: Local or Static.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual302

Delete a route

You can delete a route that you no longer need.

To delete a route:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Routing Table > Basic > Route Configuration.

The Route Configuration page displays.

6. Select the check box for the route.

7. Click the Delete button.

Your settings are saved. The route is removed.

8. To save the settings to the running configuration, click the Save icon.

Route Type The type of route, depending on the protocol: Connected, Static, or

Dynamic.

Next Hop Interface The interface of the outgoing router interface that must be used when traffic

is forwarded to the destination.

Next Hop Address The IP address of the outgoing router interface that must be used when

traffic is forwarded to the next router (if any) in the path toward the

destination.

Preference The preference, which is a value from 0 to 255.

Metric The administrative cost of the path to the destination. The default is 1. The

range is from 0 to 255.

Table 92. Learned routes information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual303

Specify route preferences

You can configure the default preference for each protocol, for example, 60 for static routes

or 120 for RIP. These values are arbitrary values in the range from 1 to 255 and are

independent of route metrics. Most routing protocols use a route metric to determine the

shortest path known to the protocol, independent of any other protocol.

The best route to a destination is chosen by selecting the route with the lowest preference

value. If multiple routes exist to a destination, the preference values are used to determine

the preferred route. If there is still a tie, the route with the best route metric is chosen. To

avoid problems with mismatched metrics such as protocols that are not directly comparable,

you must configure different preference values for each of the protocols.

To specify route preferences

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Routing Table > Advanced > Route Preferences.

The Route Preferences page displays.

6. In the Static field, specify the static route preference value in the router.

The default value is 1. The range is from 1 to 255.

7. In the RIP field, specify the route preference value in the router.

The default value is from 120. The range is from 1 to 255.

8. Click the Apply button.

Your settings are saved.

The Local field displays the local route preference value.

9. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual304

IPv4 routing

You can enable or disable the IPv4 routing mode, configure the global IPv4 routing settings,

configure IPv4 routing interfaces, add a secondary IP address to an IPv4 routing interface,

and view IPv4 routing statistics.

Manage the global IPv4 routing settings

You can configure the IPv4 routing settings for the switch, as opposed to the IPv4 routing

settings for an interface.

To configure the global IPv4 routing settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IP > Basic > IP Configuration.

The IP Configuration page displays.

6. Select the Routing Mode Enable or Disable radio button.

This selection enables or disables the administrative mode for IPv4 routing for the switch.

The default is Enable.

7. Select the ICMP Echo Replies Enable or Disable radio button.

The default is Enable, which means that the switch sends ICMP echo replies to ICMP

echo requests.

8. Select the ICMP Redirects Enable or Disable radio button.

The default is Disable. If you enable ICMP Redirects, the switch can forward ICMP

Redirects.

9. In the ICMP Rate Limit Interval field, specify the number of ICMP error packets that are

allowed per burst interval.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual305

By default, the burst interval is 1000 msec (the rate limit is 100 packets/sec). The interval

is from 0 to 2147483647 msec. Enter 0 to let the switch ignore the number of ICMP error

packets that are allowed per burst interval.

10. In the ICMP Rate Limit Burst Size field, specify the number of ICMP error packets that are

allowed for the burst size.

By default, the burst size is 100 packets. The burst size range is from 1 to 200. Enter 0 to

let the switch ignore the number of ICMP error packets that are allowed for the burst size.

11. To configure a global default gateway, select the Select to configure Global Default

Gateway check box. Then, in the Global Default Gateway field, enter the IP address.

The default gateway that you specify receives a higher preference than a default gateway

that is learned from a DHCP server. You configure one default gateway only, but you can

change the default gateway.

12. Click the Apply button.

Your settings are saved.

13. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 93. IPv4 routing configuration information

Field Description

Default Time to Live The default value inserted into the Time-To-Live field of the IP header of

datagrams originated by the switch, if a TTL value is not supplied by the

transport layer protocol.

Maximum Next Hops The maximum number of hops supported by the switch.

Maximum Routes The maximum number of routes supported by the switch.

Maximum Static Routes The maximum number of static routes supported by the switch.

Display the IPv4 statistics

You can display the IPv4 routing statics for the switch.

To display the IPv4 routing statistics for the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual306

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IP > Basic > Statistics.

The Statistics page displays.

The following table describes the nonconfigurable fields on the page.

Table 94. IP statistics information

Field Description

IpInReceives The total number of input datagrams received from interfaces, including

those received in error.

IpInHdrErrors The number of input datagrams discarded due to errors in their IP headers,

including bad checksums, version number mismatch, other format errors,

time-to-live exceeded, errors discovered in processing their IP options, and

so on.

IpInAddrErrors The number of input datagrams discarded because the IP address in their

IP header's destination field was not a valid address to be received at this

entity. This count includes invalid addresses (for example, 0.0.0.0) and

addresses of unsupported classes (Class E). For entities that are not IP

gateways and therefore do not forward datagrams, this counter includes

datagrams discarded because the destination address was not a local

address.

IpForwDatagrams The number of input datagrams for which this entity was not their final IP

destination, as a result of which an attempt was made to find a route to

forward them to that final destination. In entities that do not act as IP

gateways, this counter includes only those packets that were source-routed

through this entity, and the source-route option processing was successful.

IpInUnknownProtos The number of locally addressed datagrams received successfully but

discarded because of an unknown or unsupported protocol.

IpInDiscards The number of input IP datagrams for which no problems were

encountered to prevent their continued processing, but that were discarded

(for lack of buffer space). This counter does not include any datagrams

discarded while awaiting re-assembly.

IpInDelivers The total number of input datagrams successfully delivered to IP user

protocols (including ICMP).

IpOutRequests The total number of IP datagrams that local IP user protocols (including

ICMP) supplied to IP in requests for transmission. This counter does not

include any datagrams counted in ipForwDatagrams.

IpOutDiscards The number of output IP datagrams for which no problem was encountered

to prevent their transmission to their destination, but that were discarded for

reasons such as lack of buffer space. This counter would include

datagrams counted in ipForwDatagrams if any such packets met this

(discretionary) discard criterion.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual307

IpOutNoRoutes The number of IP datagrams discarded because no route could be found to

transmit them to their destination. This counter includes any packets

counted in ipForwDatagrams that meet this no-route criterion. This includes

any datagrams that a host cannot route because all of its default gateways

are down.

IpReasmTimeout The maximum number of seconds for which received fragments are held

while they are awaiting reassembly at this entity.

IpReasmReqds The number of IP fragments received that were reassembled at this entity.

IpReasmOKs The number of IP datagrams successfully re-assembled.

IpReasmFails The number of failures detected by the IP re-assembly algorithm (for

whatever reason: timed out, errors, and so on). This is not necessarily a

count of discarded IP fragments since some algorithms can lose track of

the number of fragments by combining them as they are received.

IpFragOKs The number of IP datagrams that were fragmented at this entity.

IpFragFails The number of IP datagrams that were discarded because they needed to

be fragmented at this entity but could not be, for reasons such as their

Don't Fragment flag was set.

IpFragCreates The number of IP datagram fragments that were generated as a result of

fragmentation at this entity.

IpRoutingDiscards The number of routing entries that were discarded even though they were

valid. One possible reason for discarding such an entry could be to free up

buffer space for other routing entries.

IcmpInMsgs The total number of ICMP messages that the entity received. This counter

includes all those counted by icmpInErrors.

IcmpInErrors The number of ICMP messages that the entity received but determined as

having ICMP-specific errors (bad ICMP checksums, bad length, and so

on).

IcmpInDestUnreachs The number of ICMP destination unreachable messages received.

IcmpInTimeExcds The number of ICMP time exceeded messages received.

IcmpInParmProbs The number of ICMP parameter problem messages received.

IcmpInSrcQuenchs The number of ICMP source quench messages received.

IcmpInRedirects The number of ICMP redirect messages received.

IcmpInEchos The number of ICMP echo (request) messages received.

IcmpInEchoReps The number of ICMP echo reply messages received.

IcmpInTimestamps The number of ICMP timestamp (request) messages received.

IcmpInTimestampReps The number of ICMP rimestamp reply messages received.

Table 94. IP statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual308

Configure IPv4 routing interfaces

You can configure one or more IPv4 routing interfaces.

To configure one or more IPv4 routing interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

IcmpInAddrMasks The number of ICMP address mask request messages received.

IcmpInAddrMaskReps The number of ICMP address mask reply messages received.

IcmpOutMsgs The total number of ICMP messages that this entity attempted to send.

This counter includes all those counted by icmpOutErrors.

IcmpOutErrors The number of ICMP messages that this entity did not send due to

problems discovered within ICMP such as a lack of buffers. This value does

not include errors discovered outside the ICMP layer such as the inability of

IP to route the resultant datagram. In some implementations there might be

no types of error that contribute to this counter's value.

IcmpOutDestUnreachs The number of ICMP destination unreachable messages sent.

IcmpOutTimeExcds The number of ICMP time exceeded messages sent.

IcmpOutParmProbs The number of ICMP parameter problem messages sent.

IcmpOutSrcQuenchs The number of ICMP source quench messages sent.

IcmpOutRedirects The number of ICMP redirect messages sent. For a host, this is always

zero, since hosts do not send redirects.

IcmpOutEchos The number of ICMP echo (request) messages sent.

IcmpOutEchoReps The number of ICMP echo reply messages sent.

IcmpOutTimestamps The number of ICMP timestamp (request) messages.

IcmpOutTimestampReps The number of ICMP timestamp reply messages sent.

IcmpOutAddrMasks The number of ICMP address mask request messages sent.

Table 94. IP statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual309

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IP > Advanced > IP Interface Configuration.

The IP Interface Configuration page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. In the Description field, enter a description for the interface.

9. From the IP Address Configuration Method menu, select the method by which an IP

address is configured on the interface: None, Manual, or DHCP.

By default, the method is None. Use the None method to reset the DHCP method.

Note: When you change the configuration method from DHCP to None, a

minor delay occurs before the page refreshes.

10. If you select None from the IP Address Configuration Method menu, do the following:

a. In the IP Address field, enter the IP address for the interface.

b. In the Subnet Mask, enter the subnet mask for the interface.

This is also referred to as the subnet/network mask, and defines the portion of the

interface’s IP address that is used to identify the attached network.

11. From the Routing Mode menu, select Enable or Disable to enable or disable the routing

mode for the interface.

The default is Enable.

12. From the Administrative Mode menu, select Enable or Disable to enable or disable the

administrative mode of the interface.

The default is Enable.

13. From the Forward Net Directed Broadcasts menu, select Enable or Disable to enable or

disable the forwarding of network-directed broadcast packets.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual310

The default is Disable, which means that network-directed broadcast packets are not

forwarded but dropped.

14. From the Encapsulation Type menu, select the link layer encapsulation type for packets

transmitted from the specified interface.

You can select Ethernet or SNAP, which is Subnetwork Access Protocol. The default is

Ethernet.

15. From the Proxy Arp menu, select Enable or Disable to enable or disable the proxy ARP for

the interface.

The default is Enable.

16. From the Local Proxy Arp menu, select Enable or Disable to enable or disable the local

proxy ARP for the interface.

The default is Disable.

17. In the Bandwidth (kbps) field, specify the bandwidth for the interface.

This information in this field determines the speed of the interface to higher level

protocols. Some protocols use bandwidth to compute the link cost. The range is from 1 to

10000000.

18. Form the ICMP Destination Unreachables menu, select Enable or Disable to enable or

disable the interface from sending ICMP destination unreachables messages.

The default is Enable.

19. From the ICMP Redirects menu, select Enable or Disable to enable or disable the ICMP

redirecting mode.

The interface sends an ICMP redirect message only if this function is enabled both

globally and on the interface. The default is Enable.

20. In the IP MTU field, specify the maximum size of IP packets that are sent on the interface.

The IP MTU is the maximum frame size minus the length of the Layer 2 header. The

range is from 68 bytes to the MTU size that is supported by the interface link. The default

is 1500. A value of 0 indicates that the IP MTU is not configured, in which case the

interface uses the MTU size that is supported by the interface link.

21. Click the Apply button.

Your settings are saved.

22. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 95. IP Interface Configuration

Field Description

VLAN ID The VLAN ID for the interface.

Link Speed Data Rate The physical link data rate of the interface.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual311

Delete the routing IP address from an IPv4 routing

interface

You can delete the routing IP address from one or more IPv4 routing interfaces.

To delete the routing IP address from one or more IPv4 routing interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IP > Advanced > IP Interface Configuration.

The IP Interface Configuration page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To delete the IP address for a single interface, select the check box associated with

the interface, or type the interface number in the Go To Interface field and click the

Go button.

•To delete the IP address for multiple interfaces, select the check box associated with

each interface.

Active State The active or inactive state of the interface (Active or Inactive).

MAC Address The MAC address that is associated with the interface.

Link State The link-up or link-down state of the interface. (Link UP or Link Down.) An

interface is considered active if it the link is up and the interface is in the

forwarding state.

Routing Interface Status The link status of the routing interface (Up or Down).

Table 95. IP Interface Configuration (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual312

8. Click the Delete button.

Your settings are saved. The IP routing address is removed from the IPv4 routing

interface.

9. To save the settings to the running configuration, click the Save icon.

Configure a secondary IP address for an IPv4 routing

interface

You can configure a secondary IP address for an IPv4 routing interface.

To configure the secondary IP address:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IP > Advanced > Secondary IP.

The Secondary IP page displays.

6. From the Routing Interface menu, select the interface.

7. In the Secondary IP Address field, add a secondary IPv4 address to the interface.

8. In the Secondary IP Subnet Mask field, enter the subnet mask associated with the

secondary IP address.

9. Click the Add button.

The secondary IP address is added.

10. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 96. Secondary IP address information

Field Description

VLAN ID The VLAN ID associated with the selected interface.

Primary IP Address The primary IP address for the interface.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual313

Delete the secondary IP address from an IPv4 routing

interface

You can delete the secondary IP address from an IPv4 routing interface.

To delete the secondary IP address from an IPv4 routing interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IP > Advanced > Secondary IP.

The Secondary IP page displays.

6. From the Routing Interface menu, select the interface.

7. In the Secondary IP Address table, select the check box for the IP address.

8. Click the Delete button.

Your settings are saved. The secondary IP routing address is removed from the IPv4

routing interface.

9. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual314

IPv6 routing

You can enable or disable the IPv6 routing mode, configure the global IPv6 routing settings,

configure IPv6 routing interfaces, add IPv6 prefixes, add IPv6 static routes and route

preferences, add IPv6 tunnels, and view IPv6 routing statistics, routes, and neighbors.

Manage the global IPv6 routing settings

You can configure the IPv6 routing settings for the switch, as opposed to the IPv6 routing

settings for an interface.

To configure the global IPv6 routing settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Basic > Global Configuration.

The Global Configuration page displays.

6. Select the IPv6 Unicast Routing Enable or Disable radio button.

This selection enables or disables the administrative mode for IPv6 routing for the switch.

The default is Disable.

7. In the Hop Limit field, enter a value for the unicast hop count that is used for IPv6 packets

that originate from the switch.

The hop count is also included in router advertisements, and ranges from 1 to 255,

inclusive. The default is 64.

8. In the ICMPv6 Rate Limit Error Interval field, specify the number of ICMP error packets

that are allowed per burst interval.

By default, the burst interval is 1000 msec (the rate limit is 100 packets/sec). The interval

is from 0 to 2147483647 msec. Enter 0 to let the switch ignore the number of ICMPv6 error

packets that are allowed per burst interval.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual315

9. In the ICMPv6 Rate Limit Burst Size field, specify the number of ICMP error packets that

are allowed for the burst size.

By default, the burst size is 100 packets. The burst size range is from 1 to 200. Enter 0 to

let the switch ignore the number of ICMPv6 error packets that are allowed for the burst size.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

Display the IPv6 route table

The IPv6 route table includes all routes, including the best routes and the configured

routes.You can select which routes to display.

To display the IPv6 route table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Basic > Route Table.

The Route Table page displays.

6. From the Routes Displayed menu, select which routes are must be displayed in the table:

• All Routes: All active IPv6 routes.

•Best Routes Only: The best active routes only,

• Configured Routes Only: The configured routes only.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 97. IPv6 route table information

Field Description

Number of Routes The total number of active routes in the route table.

IPv6 Prefix The network prefix for the active route.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual316

Configure IPv6 routing interfaces

You can configure one or more IPv6 routing interfaces.

To configure one or more IPv6 routing interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Advanced > Interface Configuration.

The Interface Configuration page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

Prefix Length The prefix length for the active route.

Protocol The type of protocol for the active route.

Next Hop Interface The interface over which the route is active. For a reject route, the next

hop is a null (Null0) interface.

Next Hop IP Address The next hop IPv6 address for the active route.

Preference The route preference of the configured route.

Table 97. IPv6 route table information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual317

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the IPv6 Mode menu, select Enable or Disable to enable or disable the IPv6 routing

mode for the interface.

When the IPv6 routing mode is enabled, the interface is capable of IPv6 operation without

a global address. In this case, an EUI-64 based link-local address is used. The default is

Disable.

9. From the DHCPv6 Client Mode menu, select Enable or Disable to enable or disable

DHCPv6 client mode on the interface.

Only one interface can function as a DHCPv6 client. The default is Disable.

10. From the Stateless Address AutoConfig Mode menu, select Enable or Disable to enable

or disable the stateless address automatic configuration mode on the interface.

The default value is Disable.

11. From the Routing Mode menu, select Enable or Disable to enable or disable the routing

mode for the interface.

The default is Disable.

12. From the Admin Mode list, select Enable or Disable to enable or disable the administrative

mode of the interface.

The default is Enable.

13. In the MTU field, specify the maximum transmit unit for the interface.

The range is from 1280 to 1500. The default is 1500. If you enter is 0, you disable routing

on the interface.

14. In the Duplicate Address Detection Transmits field, specify the number of duplicate

address detection (DAD) transmits for the interface.

The DAD transmits value must be in the range from 0 to 600. The default is 1.

15. In the Life Time Interval field, specify the lifetime interval that the interface transmits in

router advertisements.

This is the information about the period during which IPv6 neighbors can use the

interface as a default router.

The range is from 0 to 9000. The default is 1800. The value must be greater than or equal

to the maximum advertisement interval. If you enter 0, the interface cannot be used as

the default routing interface.

16. In the Adv NS Interval field, specify the retransmission interval information that the

interface transmits in router advertisements.

This is the information about the interval between neighbor solicitation retransmissions.

The range is from 1000 to 4294967295.

17. In the Adv Reachable Interval field, specify the reachable interval information that the

interface transmits in router advertisements.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual318

This is the information about the period during which a remote IPv6 device is considered

reachable after receipt of a neighbor discovery confirmation message.

The range is from 0 to 3600000. The default is 0.

18. In the Adv Interval field, specify the period between router advertisements from the

interface.

The range is from 4 to 1800. The default is 600.

19. From the Adv Management Config Flag menu, select Enable or Disable to enable or

disable the router advertisement “managed address configuration flag” for the interface.

When enabled, end nodes use DHCPV6. When disabled, end nodes automatically

configure addresses. The default is Disable.

20. From the Adv Other Config Flag menu, select Enable or Disable to enable or disable the

router advertisement “other stateful configuration flag” for the interface.

The default is Disable.

21. From the Router Preference menu, select the router preference advertisements for the

interface.

You can select High, Medium, or Low. The default is Medium.

22. In the Adv Suppress Flag list, select Enable or Disable to enable or disable the router

advertisement suppression for the interface.

The default is Disable.

23. From the Destination Unreachables menu, select Enable or Disable to enable or disable

the transmission of ICMPv6 destination unreachables message on the interface.

The default is Enable.

24. Click the Apply button.

Your settings are saved.

25. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 98. IPv6 interface configuration information

Field Description

Operational Mode The operational state of an interface. The default is Disable.

Link State Indicates if the link is up or down (Link Up or Link Down).

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual319

Configure prefix settings for an IPv6 routing interface

You can add or change one or more prefixes and associated settings for an IPv6 routing

interface.

To add or change prefix settings for an IPv6 routing interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Advanced > Prefix Configuration.

The Prefix Configuration page displays.

6. From the Interface menu, select the interface.

7. If you are changing en existing prefix for the interface, select the check box for the prefix.

8. If you are adding a new prefix, in the IPv6 Prefix field, specify the IPv6 prefix for the

interface.

9. If you are adding a new prefix, in the Prefix Length field, specify the IPv6 prefix length for

the interface.

10. From the EUI64 menu, select Enable or Disable to enable or disable the 64-bit unicast

prefix.

11. In the Valid Life Time field, specify the valid period for prefix router advertisements for the

interface.

This is the period during which the prefix is valid for the purpose of on-link determination.

The range is from 0 to 4294967295.

12. In the Preferred Life Time field, specify preferred period for prefix router advertisements

for the interface.

This is the period during which the prefix is preferred for the purpose of on-link

determination. An autoconfigured address generated from the prefix is a preferred

address. The range from 0 to 4294967295.

13. From the Onlink Flag menu, select Enable or Disable to enable or disable the prefix from

being used for autonomous address configuration.

If enabled, the prefix can be used for on-link determination.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual320

14. From the Autonomous Flag menu, to enable or disable the prefix from being used for

on-link determination.

If enabled, the prefix can be used for autonomous address configuration.

15. Do one of the following:

•If you are adding a new prefix, click the Add button.

Your settings are saved. The prefix is added for the interface.

•If you are changing an existing prefix, click the Apply button.

Your settings are saved.

The Current State field displays the state of the IPV6 address. The state is TENT if

routing is disabled or DAD fails. The state is Active if the interface is active and DAD is

successful.

16. To save the settings to the running configuration, click the Save icon.

Delete a prefix setting from an IPv6 routing interface

You can delete a prefix and associated settings that you no longer need for an IPv6 routing

interface.

To a delete prefix settings from an IPv6 routing interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Advanced > Prefix Configuration.

The Prefix Configuration page displays.

6. From the Interface menu, select the interface.

7. Select the check box for the prefix.

8. Click the Delete button.

Your settings are saved. The prefix is removed.

9. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual321

Display the IPv6 and ICMPv6 statistics for an IPv6 routing

interface

You can display the IPv6 and ICMPv6 statics for an IPv6 routing interface.

To display the IPv6 and ICMPv6 statistics for an IPv6 routing interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Advanced > Statistics.

The Statistics page displays.

6. From the Interface menu, select the IPv6 routing interface.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 99. IPv6 interface statistics information

Field Description

Total Datagrams Received The total number of input datagrams received by the interface, including

those received in error.

Received Datagrams Locally

Delivered

The total number of datagrams successfully delivered to IPv6

user-protocols (including ICMP). This counter is incremented at the

interface to which these datagrams were addressed, which might not be

the input interface for some of the datagrams.

Received Datagrams Discarded

Due To Header Errors

The number of input datagrams discarded due to errors in their IPv6

headers, including version number mismatch, other format errors, hop

count exceeded, errors discovered in processing their IPv6 options, and

so on

Received Datagrams Discarded

Due To MTU

The number of input datagrams that could not be forwarded because their

size exceeded the link MTU of outgoing interface.

Received Datagrams Discarded

Due To No Route

The number of input datagrams discarded because no route could be

found to transmit them to their destination

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual322

Received Datagrams With Unknown

Protocol

The number of locally-addressed datagrams received successfully but

discarded because of an unknown or unsupported protocol. This counter

is incremented at the interface to which these datagrams were addressed,

which might not be the input interface for some of the datagrams.

Received Datagrams Discarded

Due To Invalid Address

The number of input datagrams discarded because the IPv6 address in

their IPv6 header's destination field was not a valid address to be received

at this entity. This count includes invalid addresses (for example, ::0) and

unsupported addresses (such as addresses with unallocated prefixes).For

entities that are not IPv6 routers and therefore do not forward datagrams,

this counter includes datagrams discarded because the destination

address was not a local address.

Received Datagrams Discarded Dut

To Truncated Data

The number of input datagrams discarded because datagram frame didn't

carry enough data.

Received Datagrams Discarded

Other

The number of input IPv6 datagrams for which no problems were

encountered to prevent their continued processing, but that were

discarded for reasons such as lack of buffer space. This counter does not

include any datagrams discarded while awaiting re-assembly.

Received Datagrams Reassembly

Required

The number of IPv6 fragments received that needed to be reassembled at

this interface. This counter is incremented at the interface to which these

fragments were addressed, which might not be the input interface for

some of the fragments.

Datagrams Reassembled The number of IPv6 datagrams successfully reassembled. This counter is

incremented at the interface to which these datagrams were addressed,

which might not be necessarily the input interface for some of the

fragments.

Datagrams Failed To Reassemble The number of failures detected by the IPv6 reassembly algorithm (for

whatever reason: timed out, errors, and so on). This is not necessarily a

count of discarded IPv6 fragments since some algorithms (notably the

algorithm in RFC 815) can lose track of the number of fragments by

combining them as they are received. This counter is incremented at the

interface to which these fragments were addressed, which might not be

the input interface for some of the fragments.

Datagrams Forwarded The number of output datagrams that this entity received and forwarded to

their final destinations. In entities that do not act as IPv6 routers, this

counter includes only those packets that were source-routed through this

entity, and the source-route processing was successful. For a successfully

forwarded datagram the counter of the outgoing interface is incremented.

Datagrams Locally Transmitted The number of datagrams that this entity successfully transmitted from

this output interface.

Datagrams Transmit Failed The number of datagrams that this entity failed to transmit successfully.

Datagrams Fragmented The number of IPv6 datagrams that were fragmented at this output

interface.

Table 99. IPv6 interface statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual323

The following table describes the nonconfigurable information that is displayed.

Datagrams Failed To Fragment The number of output datagrams that could not be fragmented at this

interface.

Datagrams Fragments Created The number of output datagram fragments that were generated as a result

of fragmentation at this output interface.

Multicast Datagrams Received The number of multicast packets received by the interface.

Multicast Datagrams Transmitted The number of multicast packets transmitted by the interface.

Table 100. ICMPv6 interface statistics information

Field Description

Total ICMPv6 Messages Received The total number of ICMP messages received by the interface, which

includes all those counted by IPv6IfIcmpInErrors. This interface is the

interface to which the ICMP messages were addressed, which might not

be the input interface for the messages.

ICMPv6 Messages With Errors

Received

The number of ICMP messages that the interface received but determined

as having ICMP-specific errors (bad ICMP checksums, bad length, and so

on).

ICMPv6 Destination Unreachable

Messages Received

The number of ICMP Destination Unreachable messages received by the

interface.

ICMPv6 Messages Prohibited

Administratively Received

The number of ICMP destination unreachable/communication

administratively prohibited messages received by the interface.

ICMPv6 Time Exceeded Messages

Received

The number of ICMP Time Exceeded messages received by the interface.

ICMPv6 Parameter Problem

Messages Received

The number of ICMP Parameter Problem messages received by the

interface.

ICMPv6 Packet Too Big Messages

Received

The number of ICMP Packet Too Big messages received by the interface.

ICMPv6 Echo Request Messages

Received

The number of ICMP Echo (request) messages received by the interface.

ICMPv6 Echo Reply Messages

Received

The number of ICMP Echo Reply messages received by the interface.

ICMPv6 Router Solicit Messages

Received

The number of ICMP Router Solicit messages received by the interface.

ICMPv6 Router Advertisement

Messages Received

The number of ICMP Router Advertisement messages received by the

interface.

ICMPv6 Neighbor Solicit Messages

Received

The number of ICMP Neighbor Solicit messages received by the interface.

Table 99. IPv6 interface statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual324

ICMPv6 Neighbor Advertisement

Messages Received

The number of ICMP Neighbor Advertisement messages received by the

interface.

ICMPv6 Redirect Messages

Received

The number of ICMPv6 Redirect messaged received by the interface.

ICMPv6 Group Membership Query

Messages Received

The number of ICMPv6 Group Membership Query messages received by

the interface.

ICMPv6 Group Membership

Response Messages Received

The number of ICMPv6 Group Membership Response messages received

by the interface.

ICMPv6 Group Membership

Reduction Messages Received

The number of ICMPv6 Group Membership Reduction messages received

by the interface.

Total ICMPv6 Messages

Transmitted

The total number of ICMP messages that this interface attempted to send.

This counter includes all those counted by icmpOutErrors.

ICMPv6 Messages Not Transmitted

Due To Error

The number of ICMP messages that this interface did not send due to

problems discovered within ICMP such as a lack of buffers. This value

does not include errors discovered outside the ICMP layer such as the

inability of IPv6 to route the resultant datagram. In some implementations

there might be no types of error that contribute to this counter's value.

ICMPv6 Destination Unreachable

Messages Transmitted

The number of ICMP Destination Unreachable messages sent by the

interface.

ICMPv6 Messages Prohibited

Administratively Transmitted

Number of ICMP Destination Unreachable/Communication

Administratively Prohibited messages sent.

ICMPv6 Time Exceeded Messages

Transmitted

The number of ICMP Time Exceeded messages sent by the interface.

ICMPv6 Parameter Problem

Messages Transmitted

The number of ICMP Parameter Problem messages sent by the interface.

ICMPv6 Packet Too Big Messages

Transmitted

The number of ICMP Packet Too Big messages sent by the interface.

ICMPv6 Echo Request Messages

Transmitted

The number of ICMP Echo (request) messages sent by the interface.

ICMPv6 Echo Reply Messages

Transmitted

The number of ICMP Echo Reply messages sent by the interface.

ICMPv6 Router Solicit Messages

Transmitted

The number of ICMP Neighbor Solicitation messages sent by the

interface.

ICMPv6 Router Advertisement

Messages Transmitted

The number of ICMP Router Advertisement messages sent by the

interface.

ICMPv6 Neighbor Solicit Messages

Transmitted

The number of ICMP Neighbor Solicitation messages sent by the

interface.

Table 100. ICMPv6 interface statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual325

Display the IPv6 neighbor table or clear IPv6 neighbor

entries

You can display the IPv6 neighbor devices that the switch detects or clear IPv6 neighbor

entries from the neighbor table.

To display the IPv6 neighbor table or clear IPv6 neighbor entries:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Advanced > Neighbor Table.

The Neighbor Table page displays.

6. From the Search By menu, select one of the following methods to search for IPv6

neighbors:

• IPv6 Address: Enter the 128-byte hexadecimal IPv6 address in four-digit groups

separated by colons, for example, 2001:231F:::1. Then click the Go button. If the

address exists, that entry is displayed. An exact match is required.

ICMPv6 Neighbor Advertisement

Messages Transmitted

The number of ICMP Neighbor Advertisement messages sent by the

interface.

ICMPv6 Redirect Messages

Transmitted

The number of Redirect messages sent.

ICMPv6 Group Membership Query

Messages Transmitted

The number of ICMPv6 Group Membership Query messages sent.

ICMPv6 Group Membership

Response Messages Transmitted

The number of ICMPv6 Group Membership Response messages sent.

ICMPv6 Group Membership

Reduction Messages Transmitted

The number of ICMPv6 Group Membership Reduction messages sent.

ICMPv6 Duplicate Address Detects The number of duplicate addresses detected by the interface.

Table 100. ICMPv6 interface statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual326

• Interface: Enter the interface ID in unit/port format, for example, 0/4. Then click the

Go button. If the address exists, that entry is displayed.

7. To clear the IPv6 neighbors that display, click the Clear button.

8. To save the settings to the running configuration, click the Save icon.

9. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 101. IPv6 Advanced Neighbor Table

Field Description

Interface The interface for which settings are displayed.

IPv6 Address The IPv6 address of the neighbor or interface.

MAC Address The MAC address associated with an interface.

isRtr Displays if the neighbor is a router. If the neighbor is a router, the field displays True. If

the neighbor is not a router, the field displays False.

Neighbor State The state of the neighbor cache entry. Following are the states for dynamic entries in

the IPv6 neighbor discovery cache:

• Incmp: Address resolution is being performed on the entry. A neighbor

solicitation message was sent to the solicited-node multicast address of the

target, but the corresponding neighbor advertisement message was not yet

received.

• Reach: Positive confirmation was received within the last “ReachableTime”

milliseconds that the forward path to the neighbor was functioning properly. While

in REACH state, the device takes no special action as packets are sent.

• Stale: More than the “ReachableTime” milliseconds elapsed since the last

positive confirmation was received that the forward path was functioning properly.

While in STALE state, the device takes no action until a packet is sent.

• Delay: More than “ReachableTime” milliseconds elapsed since the last positive

confirmation was received that the forward path was functioning properly. A

packet was sent within the last DELAY_FIRST_PROBE_TIME seconds. If no

reachability confirmation is received within DELAY_FIRST_PROBE_TIME

seconds of entering the DELAY state, send a neighbor solicitation message and

change the state to PROBE.

• Probe: A reachability confirmation is actively sought by resending neighbor

solicitation messages every “RetransTimer” milliseconds until a reachability

confirmation is received.

Last Updated The time since the address was confirmed to be reachable.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual327

Configure IPv6 static routes

You can add or change a static IPv6 route.

To add or change a static IPv6 route:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Advanced > Static Route Configuration.

The Static Route Configuration page displays.

6. If you are changing en existing route, select the check box for the route.

The only field you can change is the preference for the route.

7. If you are adding a new route, in the IPv6 Prefix field, specify the IPv6 prefix for the route.

8. If you are adding a new route, in the Prefix Length field, specify the IPv6 prefix length for

the route.

9. If you are adding a new route, from the Next Hop IPv6 Address Type menu, select one of

the following options:

• Global: Create a global IPv6 route by specifying the interface for the route.

• Link-Local: Create a link-local IPv6 address by specifying the interface and the next

hop address for the route.

• Static-Reject: Create a static-reject route for a destination prefix. You cannot specify

an interface or a next hop address for the route.

10. If you are adding a new route and selected Global or Link-Local from the Next Hop IPv6

Address Type menu, specify the IPv6 address for the next hop in the Next Hop IPv6

Address field.

11. If you are adding a new route and selected Link-Local from the Next Hop IPv6 Address

Type menu, specify the interface for the route.

12. In the Preference field, specify the preference for the route.

The range is from 1 to 255. You can add the preference for a new route or change the

preference for an existing route.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual328

13. Do one of the following:

•If you are adding a new route, click the Add button.

Your settings are saved. The route is added.

•If you are changing an existing route, click the Apply button.

Your settings are saved.

14. To save the settings to the running configuration, click the Save icon.

Delete an IPv6 static route

You can delete an IPv6 static route that you no longer need.

To delete an IPv6 static route:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Advanced > Static Route Configuration.

The Static Route Configuration page displays.

6. Select the check box for the route.

7. Click the Delete button.

Your settings are saved. The route is removed.

8. To save the settings to the running configuration, click the Save icon.

Configure the IPv6 route preference for the switch

You can configure the default preference for the switch, which is a value in the range from 1

to 255 and is independent of route metrics. Most routing protocols use a route metric to

determine the shortest path known to the protocol, independent of any other protocol. The

best route to a destination is automatically selected by determining the route with the lowest

preference value. If multiple routes to a destination exist, the preference value is used to

determine the preferred route. If a tie occurs, the route with the best route metric is selected.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual329

Configure the IPv6 route preference for the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Advanced > Route Preference.

The Route Preference page displays.

6. In the Static field, specify the static route preference value for the switch

The range is 1 to 255. The default value is 1.

7. Click the Apply button.

Your settings are saved.

The Local field displays the local preference.

8. To save the settings to the running configuration, click the Save icon.

Configure IPv6 tunnels

You can add a new IPv6 tunnel or change an existing IPv6 tunnel.

To add a new IPv6 tunnel or change an existing IPv6 tunnel:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual330

5. Select Routing> IPv6 > Advanced > Tunnel Configuration.

The Tunnel Configuration page displays.

6. If you are changing en existing tunnel, select the check box for the route.

7. From the Tunnel ID menu, select a tunnel ID.

8. From the Mode menu, select one of the following modes:

• 6-in-4-configured: This mode encapsulates IPv6 packets on an IPv4 interface.

•6-to-4: This mode encapsulates IPv6 packets and derives the endpoint IPv4 address

from the IPv6 addresses in the IPv6 packet.

9. From the IPv6 Mode menu, select Enable or Disable to enable or disable the IPv6 routing

mode for the interface.

When the IPv6 routing mode is enabled, the interface is capable of IPv6 operation without

a global address. In this case, an EUI-64 based link-local address is used. The default is

Disable.

10. From the IPv6 Unreachables menu, select Enable or Disable to enable or disable the

transmission of ICMPv6 Destination Unreachable messages.

If you select Enable, ICMPv6 destination unreachable messages can be sent.

11. In the IPv6 Address/Prefix Length field, specify an IPv6 address and prefix length.

Specify the address in the format prefix/length.

12. From the EUI64 menu, select Enable or Disable to enable or disable the 64-bit unicast

prefix.

For 6to4 tunnels, configure the IPv6 address with first 48-bits in the format

2002:tunnel-source-IPv4-address::/48.

13. In the Source Address field, specify the IPv4 source address for the tunnel.

Enter the address in dotted-decimal notation.

14. From the Source Interface menu, select the interface for the tunnel.

The IPv6 address that is associated with the selected interface is used as the source

address.

15. In the Destination Address field, enter the IPv4 destination address for the tunnel.

Enter the address in dotted-decimal notation.

16. Do one of the following:

•If you are adding a new tunnel, click the Add button.

Your settings are saved. The route is added.

•If you are changing an existing tunnel, click the Apply button.

Your settings are saved.

The Interface Link Status field indicates whether the tunnel interface is up or down.

17. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual331

Delete an IPv6 tunnel

You can delete an IPv6 tunnel that you no longer need.

To delete an IPv6 tunnel:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 > Advanced > Tunnel Configuration.

The Tunnel Configuration page displays.

6. Select the check box for the tunnel.

7. Click the Delete button.

Your settings are saved. The tunnel is removed.

8. To save the settings to the running configuration, click the Save icon.

Routing VLANs

You can configure some interfaces to support VLANs and other interfaces to support routing.

You can also configure a VLAN to function as if it were a routing interface.

When an interface is enabled for bridging (the default setting) rather than routing, all normal

bridge processing is performed for an inbound packet, which is then associated with a VLAN.

Its MAC destination address (MAC DA) and VLAN ID are used to search the MAC address

table. If routing is enabled for the VLAN, and the MAC DA of an inbound unicast packet is

that of the internal bridge-router interface, the packet is routed. An inbound multicast packet

is forwarded to all ports in the VLAN, plus the internal bridge-router interface, if it was

received on a routed VLAN.

Because an interface can belong to more than one VLAN, VLAN routing might be enabled for

all of the VLANs on the interface, or for a subset. VLAN routing can be used to allow more

than one physical port to reside on the same subnet. It could also be used when a VLAN

spans multiple physical networks, or when additional segmentation or security is required.

An interface can be either a VLAN interface or a routing interface, but not both. However, a

VLAN interface can be part of a VLAN that functions as a routing interface.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual332

Create a routing VLAN with the VLAN static routing wizard

The VLAN static routing wizard lets you create a VLAN and add interfaces to the VLAN. The

VLAN static routing wizard also lets you add selected interfaces as a link aggregation group

(LAG). With the wizard, you can do the following:

•Create a VLAN and generate a unique name for VLAN.

•Add selected interfaces to the newly created VLAN or remove selected interfaces from

the default VLAN.

•Add selected interfaces to a LAG and add the LAG to a newly created VLAN.

•Enable tagging on selected interfaces if the interface is a member of another VLAN. Or,

disable tagging if the selected interface is not a member of another VLAN.

•Exclude ports from the VLAN.

•Enable routing on the VLAN and specify an IP address and subnet mask for routing.

To create a routing VLAN with the VLAN static routing wizard:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> VLAN > VLAN Static Routing Wizard.

The VLAN Static Routing Wizard page displays.

6. In the VLAN ID field, specify the VLAN identifier (VID) that must be associated with the

VLAN.

The range is from 1 to 4093.

7. In the IP Address field, specify the IPv4 address for the VLAN routing interface.

8. In the Network Mask field, specify the subnet mask for the VLAN routing interface.

9. In the Ports table, click a port once, twice, or three times to configure one of the following

modes:

•T (tagged) member: The port is added as a tagged member of the VLAN.

•U (untagged) member: The port is added as an untagged member of the VLAN.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual333

• Excluded member: By default, the selection is blank, which means that the port is

excluded from the VLAN. A port that is excluded can still be dynamically added to the

VLAN through GVRP.

10. In the LAG table, click a LAG once, twice, or three times to configure one of the following

modes:

•T (tagged) member: The LAG is added as a tagged member of the VLAN.

•U (untagged) member: The LAG is added as an untagged member of the VLAN.

•Excluded member: By default, the selection is blank, which means that the LAG is

excluded from the VLAN. A LAG that is excluded can still be dynamically added to the

VLAN through GVRP.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

Configure routing for an existing VLAN

For an existing VLAN, you can add or change an IPv4 address and subnet mask and

configure routing for the VLAN.

To add or change routing for an existing VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> VLAN > VLAN Routing.

The VLAN Routing page displays.

6. If you are changing an existing routing VLAN, select the check box for the VLAN.

7. If you are adding a new routing VLAN, from the VLAN ID menu, select the VLAN ID.

This menu displays the IDs of all VLANs that are configured on this switch.

8. In the IP Address field, specify the IP address for the routing VLAN.

9. In the Subnet Mask field, specify the subnet mask for the routing VLAN.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual334

10. Do one of the following:

•If you are adding a new routing VLAN, click the Add button.

Your settings are saved. The routing VLAN is added.

•If you are changing an existing routing VLAN, click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 102. VLAN routing configuration information

Field Description

Port The interface for the routing VLAN.

MAC Address The MAC address of the interface for the routing VLAN.

Remove the routing function from a VLAN

You can remove the routing function from a VLAN. That is, you can remove the routing IP

address and subnet mask from the VLAN. The VLAN itself is not removed.

To a remove the routing function from a VLAN:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> VLAN > VLAN Routing.

The VLAN Routing page displays.

6. Select the check box for the VLAN.

7. Click the Delete button.

Your settings are saved. The routing function is removed but the VLAN itself is not

removed.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual335

Address Resolution Protocol

The Address Resolution Protocol (ARP) associates a Layer 2 MAC address with a Layer 3

IPv4 address. The switch support both a dynamic and manual ARP configuration. With

manual ARP configuration, you can statically add entries into the ARP table.

ARP is a required part of the Internet Protocol (IP) and is used to translate an IP address to a

media (MAC) address, defined by a LAN such as an Ethernet LAN. A device that sends IP

packets must learn the MAC address of the IP destination, or of the next hop router, if the

destination is not on the same subnet. This is achieved by broadcasting an ARP request

packet, to which the intended recipient responds by unicasting an ARP reply that contains its

MAC address. Once learned, the MAC address is used in the destination address field of the

Layer 2 header prepended to the IP packet.

The ARP cache is a table maintained locally on each device on a network. ARP cache

entries are learned by examining the source information in the ARP packet payload fields,

regardless of whether it is an ARP request or response. Thus, when an ARP request is

broadcast to all devices on a LAN or VLAN, each recipient can store the sender’s IP and

MAC address in its respective ARP cache. The ARP response (which is unicast message), is

normally detected only by the requestor, who stores the sender information in its ARP cache.

The most recent information always replaces existing content in the ARP cache.

The number of supported ARP entries depends on a device.

A device can be moved in a network, which means that the device’s IP address that was

associated with one MAC address is now associated with another MAC address. A device

can also disappear from the network altogether (for example, it was reconfigured,

disconnected, or powered off). These situations cause stale information in the ARP cache.

Therefore, entries are updated or periodically refreshed to determine if an address still exists.

If an entry was identified as a sender of an ARP packet, the entry can be removed from the

ARP cache. You can configure an age-out interval that determines how long an entry that is

not updated remains in the ARP cache.

Display the ARP entries in the ARP cache

You can view ARP entries in the ARP cache. The ARP cache is a table that lists the remote

connections that were recently detected by the switch

To display the ARP entries in the ARP cache:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual336

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> ARP > Basic > ARP Cache.

The ARP Cache page displays.

The page displays the following information:

• IP Address: Displays the IP address associated with the system’s MAC address. This

address must be the IP address of a device on a subnet attached to one of the

switch's existing routing interfaces.

• Port: Displays the associated unit/slot/port of the connection.

• MAC Address: Displays the unicast MAC address of the device. The address is six

2-digit hexadecimal numbers separated by colons, for example, 00:06:29:32:81:40.

The ARP cache be large. The pagination navigation menu functions as follows:

-Rows per page: Select how many table entries are displayed per page. Possible

values are 20, 50, 100, 200, and All. If you select All, the browser might be slow to

display the information.

-<. Display the previous page of the table data entries.

->. Display the next page of the table data entries.

6. To refresh the page, click the Refresh button.

Add or change a static entry in the ARP table

You can add a new static entry to the ARP table or change an existing entry that you

manually added.

To add a new static entry or change an existing entry in the ARP table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual337

5. Select Routing> ARP > Advanced > ARP Create.

The ARP Create page displays.

6. If you are changing an existing ARP entry, select the check box for the entry.

7. In the IP Address field, specify the IP address to add.

The address must be the IP address of a device on a subnet attached to one of the

switch's existing routing interfaces.

8. In the MAC Address field, specify the unicast MAC address of the device.

Enter the address as six 2-digit hexadecimal numbers separated by colons, for example,

00:06:29:32:81:40.

9. Do one of the following:

•If you are adding a new ARP entry, click the Add button.

Your settings are saved. The ARP entry is added.

•If you are changing an existing ARP entry, click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

The ARP table can be large. The pagination navigation menu functions as follows:

-Rows per page: Select how many table entries are displayed per page. Possible

values are 20, 50, 100, 200, and All. If you select All, the browser might be slow to

display the information.

-<. Display the previous page of the table data entries.

->. Display the next page of the table data entries.

The following table describes the nonconfigurable fields on the page.

Table 103. ARP cache information

Field Description

IP Address The IP address of the device.

Port The associated interface (in the unit/port format) for the device connection.

MAC Address The unicast MAC address of the device.

Type The type of ARP entry. Possible values are as follows:

• Local: An ARP entry associated with one of the switch’s routing

interface’s MAC addresses.

• Gateway: A dynamic ARP entry for which the IP address is that of a

router.

• Static: An ARP entry that you added.

• Dynamic: An ARP entry that was learned by the switch.

Age The time (in seconds) since the entry was last refreshed in the ARP table.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual338

Delete a static ARP entry

You can delete a static ARP entry that you no longer need.

To delete a static ARP entry:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> ARP > Advanced > ARP Create.

The ARP Create page displays.

6. Select the check box for the entry.

7. Click the Delete button.

Your settings are saved. The entry is removed.

8. To save the settings to the running configuration, click the Save icon.

Configure the ARP table settings or remove entries from

the table

You can change the configuration settings for the ARP table. You can also remove entries

from the table, for example, all dynamic entries.

To configure the ARP table settings or remove entries from the table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual339

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> ARP > Advanced > Global ARP Configuration.

The Global ARP Configuration page displays.

6. In the Age Time field, specify the period in seconds that a dynamic ARP entry remains in

the ARP table before aging out.

The range is from 15 to 21600 seconds. The default is 1200 seconds.

7. In the Response Time field, specify the period in seconds that the switch waits for an ARP

response to an ARP request that it sends.

The range is from 1 to 10 seconds. The default is 1 second.

8. In the Retries field, specify the maximum number of times an ARP request is retried after

the switch does not receive an ARP response.

This number includes the initial ARP request. The range is from 0 to 10. The default is 4.

9. In the Cache Size field, specify the maximum number of entries allowed in the ARP table.

This number includes all static and dynamic ARP entries.The range is from 384 to 4096.

The default is 4096.

10. Select the Dynamic Renew Enable or Disable radio button to enable or disable dynamic

ARP entries to attempt to be automatically renewed after aging out.

The default is Enable.

11. To remove certain entries from the ARP table, select one of the following options from the

Remove From Table menu:

• All Dynamic Entries: All dynamic entries will be removed.

•All Dynamic and Gateway Entries: All dynamic and gateway entries will be

removed.

•Specific Dynamic/Gateway Entry: You must specify the IP address of the specific

dynamic entry or specific gateway entry in the Remove IP Address field.

• Specific Static Entry: You must specify the IP address of the specific static entry in

the Remove IP Address field.

12. Click the Apply button.

Your settings are saved.

13. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual340

The following table describes the nonconfigurable fields on the page.

Table 104. ARP Table Configuration

Field Description

Total Entry Count The total number of entries in the ARP table.

Peak Total Entries The highest value reached in the Total Entry Count field. This counter is

restarted when you change the size of the ARP table cache.

Active Static Entries The total number of active static entries in the ARP table.

Configured Static Entries The total number of configured static entries in the ARP table.

Maximum Static Entries The maximum number of static entries that can be defined.

Routing Information Protocol

Routing Information Protocol (RIP) is a protocol that switches and routers can use to

exchange network topology information. RIP is characterized as an interior gateway protocol,

and is typically used in small to medium-sized networks. A device that runs RIP sends the

contents of its routing table to each of its adjacent devices. When a route is removed from the

routing table, it is flagged as unusable by the other devices and, after a certain period,

removed from their routing.

Two versions of RIP exist:

•RIPv1 (defined in RFC 1058):

-Routes are specified by IP destination network and hop count.

-The routing table is broadcast to all devices on the attached network.

•RIPv2 (defined in RFC 1723):

-The route specification also includes the subnet mask and gateway.

-The routing table is sent to a multicast address, reducing network traffic.

-Authentication is used for security.

You can configure an interface to do the following:

•Receive packets in either or both formats.

•Send packets formatted for RIPv1 or RIPv2, or send RIPv2 packets to the RIPv1

broadcast address.

•Prevent any RIP packets from being received.

•Prevent any RIP packets from being sent.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual341

Enable or disable RIP on the switch

By default, RIP is enabled on the switch.

To enable or disable RIP on the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > RIP > Basic > RIP Configuration.

The RIP Configuration page displays.

6. Select the RIP Admin Mode Enable or Disable radio button to enable or disable RIP on the

switch.

The default is Enable.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Configure the global RIP settings for the switch

You can configure the global RIP settings for the switch, as opposed to the RIP settings for

individual interfaces.

To configure global RIP settings for the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual342

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > RIP > Advanced > RIP Configuration.

The RIP Configuration page displays.

6. Select the RIP Admin Mode Enable or Disable radio button to enable or disable RIP on the

switch.

The default is Enable.

7. Select one of the following Split Horizon Mode radio buttons:

•None: No special processing is enabled.

• Simple: A route is not included in updates that are sent to the device from which it

was learned. The default is Simple.

• Poison Reverse: A route is included in updates sent to the device from which it was

learned, but the metric is set to infinity.

Split horizon is a technique for preventing problems that might be caused by including

routes in updates sent to a device from which the route was originally learned.

8. Select the Auto Summary Mode Enable or Disable radio button to enable or disable groups

of adjacent routes from being summarized in single entries.

If you select the Enable radio button, adjacent routes are summarized in single entries to

reduce the total number of entries. The default is Disable.

9. Select the Host Routes Accept Mode Enable or Disable radio button to enable or disable

the switch from accepting host routes.

If you select the Enable radio button, the switch accepts host routes. The default is Enable.

10. Select the Default Information Originate Enable or Disable radio button to enable or disable

default route advertisements.

The default is Disable.

11. In the Default Metric field, specify a metric value for redistributed routes.

The range is from 1 to 15. The default is 0.

12. Click the Apply button.

Your settings are saved.

13. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual343

The following table describes the nonconfigurable fields on the page.

Table 105. RIP configuration information

Field Description

Global Route Changes The number of route changes made to the IP route database by RIP. This

does not include the refreshing of a route after it aged out.

Global Queries The number of responses sent to RIP queries from other devices.

Configure RIP interface settings

You can configure RIP settings that apply to individual interfaces.

To configure RIP interface settings:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > RIP > Advanced > Interface Configuration.

The Interface Configuration page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual344

8. From the Send Version menu, select the version of RIP control packets that the interface

sends:

• None. No RIP control packets are sent.

• RIP-1: Sends RIP version 1–formatted packets through broadcast.

• RIP-1c: Send packets in RIP version 1–compatibility mode and sends RIP version

2–formatted packets through broadcast.

• RIP-2: Send RIP version 2 packets using multicast. The default is RIP-2.

9. From the Receive Version menu, select the version of RIP control packets the interface

accepts:

• RIP-1: Accept RIP version 1–formatted packets only.

•RIP-2: Accept RIP version 2–formatted packets only.

•Both: Accept packets in either RIP version 1 or RIP version 2 format. The default is

Both.

•None: No RIP control packets are accepted.

10. From the RIP Mode menu, select Enable or Disable to enable or disable the RIP mode for

the interface.

Before you enable RIP version 1 or version 1c on an interface, you must first enable the

network-directed broadcast mode (that is, the RIP mode) on the interface. The default is

Disable.

11. From the Authentication Type menu, select the type of authentication:

• None: No authentication protocols is configured. This is the default setting.

• Simple: You are prompted to enter an authentication key. This key is included (in

non-encrypted format) in the RIP header of all packets that are sent on the network.

All devices on the network must be configured with the same key.

• Encrypt: You are prompted to enter both an authentication key and an authentication

ID. Encryption uses the MD5 Message-Digest algorithm. All devices on the network

must be configured with the same key and ID.

12. If you select Simple or Encrypt from he Authentication Type menu, in the Authentication

Key field, enter the RIP authentication key for the interface.

The key can be up to 16 octets long.

13. Click the Apply button.

Your settings are saved.

14. To refresh the page, click the Refresh button.

15. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual345

The following table describes the nonconfigurable fields on the page.

Table 106. RIP interface configuration information

Field Description

Bad Packets Received The number of RIP response packets received by the RIP process that

were subsequently discarded for any reason.

Bad Routes Received The number of routes in valid RIP packets that were ignored for any reason

(for example, unknown address family, or invalid metric).

Updates Sent The number of triggered RIP updates sent on the interface. This explicitly

does not include full updates sent containing new information.

IP Address The IP address of the router interface.

Link State Indicates if the RIP router interface is up or down.

Configure the RIP route redistribution settings and display

the route redistribution summary

You can configure the RIP route redistribution settings and display the route redistribution

summary.

To configure RIP route redistribution settings and display the route redistribution

summary:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > RIP > Advanced > Route Redistribution.

The Route Redistribution page displays.

The options that you can select from the Source menu consist of only those source

routes that are already configured for redistribution by RIP. This allows you to configure

another source route among the available source routes.

6. From the Source menu, select one of the following types of source routes:

• Connected: Lets you configure the settings for the connected routes.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual346

• Static: Lets you configure the settings for the static routes.

7. From the Redistribute Mode menu, select Enable or Disable to enable or disable the RIP

redistribute mode for the selected type of source route.

The default is Disable.

8. In the Metric field, specify the metric value for the redistributed routes for the selected type

of source route.

The range is from 0 to 15. The default is 0, which means that no metric value is in effect.

9. In the Distribute List field, specify the access list that must filter the routes to be

redistributed by the destination protocol.

Only permitted routes are redistributed. If this field refers to a non-existent access list, all

routes are permitted. The range for access list IDs is from 0 to 199. (For more

information, see Access control lists on page 578.) The default is 0, which means that no

access list is in effect.

When you use an access list for route filtering, only the following fields in the access list

are used:

•Source IP address and netmask

•Destination IP address and netmask

•Action (permit or deny)

All other fields (such as source and destination Port, precedence, ToS, and so on) are

ignored.

The source IP address is compared to the destination IP address of the route. The source

IP netmask in the access list rule is treated as a wildcard mask, indicating which bits in

the source IP address must match the destination address of the route.

Note: 1 in the mask indicates a do not care in the corresponding address bit.

When an access list rule includes a destination IP address and netmask (an extended

access list), the destination IP address is compared to the network mask of the

destination of the route. The destination netmask in the access list serves as a wildcard

mask, indicating which bits in the route's destination mask are significant for the filtering

operation.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual347

The following table describes the nonconfigurable fields on the page.

Table 107. RIP route redistribution summary information

Field Description

Source Protocol The source route to be redistributed by RIP. The valid values are as follows:

• Connected

• Static

Redistribute Mode The route redistribution mode for a source protocol. By default this is

disabled.

Metric The metric of redistributed routes for the given source route. The field

displays 0 when the metric is not configured.

Distribute List The access list that filters the routes to be redistributed by the destination

protocol. The field displays 0 if not configured.

Router discovery and router advertisements

By default, a routing interface does not send router advertisements.You can enable the

router advertisements for a routing interface and configure the setting for the router

advertisements.

To configure router discovery for a routing interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Router Discovery > Router Discovery Configuration.

The Router Discovery Configuration page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

AV Line of Fully Managed Switches M4250 Series

Manage Routing User Manual348

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Advertise Mode menu, select Enable or Disable to enable or disable the

transmission of router advertisements on the interface.

The default is Disable.

9. In the Advertise Address field, specify the IPv4 address that the interface must use for

router advertisements

10. In the Maximum Advertise Interval field, specify the maximum period in seconds that is

allowed between router advertisements that are sent from the interface.

The period must be in the range from 4 to 1800. Default value is 600.

11. In the Minimum Advertise Interval field, specify the minimum period in seconds that is

allowed between router advertisements that are sent from the interface.

The period must be in the range from 3 to 1800. The default is 450.

12. In the Advertise Lifetime field, specify the maximum period in seconds that the address

that is advertised by the interface is considered a valid router address by hosts.

The period must be in the range from 4 to 9000. Default is 1800.

13. In the Preference Level field, specify the preference level of the router interface as a default

router relative to other routers on the same subnet.

A higher number means that the advertized address receives a higher preference. The

default is 0.

14. Click the Apply button.

Your settings are saved.

15. To save the settings to the running configuration, click the Save icon.

349

5Configure Multicast Routing

This chapter covers the following topics:

•IPv4 multicast routing and the IPv4 multicast route table

•IGMP for IPv4 multicast routing

•PIM for IPv4 multicast routing

•Static multicast routes for IPv4 addresses

•Multicast admin boundaries for IPv4 addresses

•IPv6 multicast routing and the IPv6 multicast route table

•PIM for IPv6 multicast routing

•MLD for IPv6 multicast routing

•Static multicast routes for IPv6 addresses

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual350

IPv4 multicast routing and the IPv4 multicast

route table

Multicast is best suited for video and audio traffic requiring multicast packet control for

optimal operation. Multicast for IPv4 includes support for IGMPv1, IGMPv2, and IGMPv3.

Communication from point to multipoint is called multicasting. The source host (point)

transmits a message to a group of zero or more hosts (multipoint) that are identified by a

single IPv4 destination address. Although the task can be accomplished by sending unicast

(point-to-point) messages to each of the destination hosts, multicasting is the preferred

method for this type of transmission. A multicast message is delivered to all members of its

destination host group with the same best-efforts reliability as regular unicast IPv4 messages.

The message is not guaranteed to arrive intact at all members of the destination group or in

the same order relative to other messages.

Display the IPv4 multicast route table

The multicast routing (Mroute) table includes information about the source IPv4 address,

group destination IPv4 addresses, the incoming and outgoing interfaces, next hops to which

IPv4 packet must be forwarded, and supported protocols.

To display the IPv4 Mroute table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > Multicast > Mroute Table.

The Mroute Table page displays.

6. To refresh the page, click the Refresh button.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual351

The following table describes the nonconfigurable fields on the page.

Table 108. Multicast IPv4 Mroute table information

Field Description

Group IP The destination group IPv4 address.

Source IP The IPv4 address of the multicast packet source to be combined with the group

IPv4 to fully identify a single route.

Incoming Interface The incoming interface on which multicast packets for this source/group arrive.

Outgoing Interfaces The list of outgoing interfaces on which multicast packets for this source/group are

forwarded.

Up Time (hh:mm:ss) The time in seconds since the entry was created.

Expiry Time (hh:mm:ss) The time in seconds before this entry ages out and is removed from the table.

RPF Neighbor The IPv4 address of the reverse path forwarding (RPF) neighbor.

Protocol The multicast routing protocol which dynamically created this entry. The possible

values are as follows:

• PIM-DM

• PIM-SM

Flags The value displayed in this field is valid if the multicast routing protocol is PIM-SM.

The possible values are RPT and SPT. For other protocols a “------” is displayed.

Add static multicast entries to the IPv4 Mroute table

You can add a static multicast entry to the IPv4 Mroute table.

To add a static multicast entry to the IPv4 Mroute table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > Multicast > Mroute Static-Multicast Configuration.

The Mroute Static-Multicast Configuration page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual352

6. In the Group IP field, specify the multicast group IP address.

7. In the Egress VLAN List field, specify the VLAN or VLANs to which the multicast group IP

address belongs.

8. Click the Add button.

Your settings are saved. The multicast entry is added.

9. To refresh the page, click the Refresh button.

10. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page

Table 109. Mroute static-multicast configuration information

Field Description

Maximum Multicast Static Address

Count

The maximum number of static multicast addresses that the Mroute table

can contain.

Current Multicast Static Address

Count

The number of static multicast addresses that you added to the Mroute

table.

Delete a static multicast entry from the IPv4 Mroute table

You can delete a static multicast entry that you no longer need from the IPv4 route table.

To delete a static multicast entry from the IPv4 Mroute table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > Multicast > Mroute Static-Multicast Configuration.

The Mroute Static-Multicast Configuration page displays.

6. Select the check box for the multicast entry.

7. Click the Delete button.

Your settings are saved. The multicast entry is removed.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual353

Configure global multicast settings for the switch

You can configure the global multicast settings for the switch, as opposed to the multicast

settings for an interface.

To configure global multicast settings for the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > Multicast > Global Configuration.

The Global Configuration page displays.

6. Select the Admin Mode Enable or Disable radio button to enable or disable the

administrative status of multicast forwarding on the switch.

The default is Disable.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 110. Multicast global configuration information

Field Description

Protocol State The operational state of multicast forwarding.

Table Maximum Entry Count The maximum number of entries in the Mroute table.

Protocol The multicast routing protocol that is active on the switch, if any

protocol is active.

Table Entry Count The number of multicast route entries present in the Mroute table.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual354

Configure a multicast interface

You can configure one or more multicast interfaces.

To configure a multicast interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > Multicast > Interface Configuration.

The Interface Configuration page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. In the TTL Threshold field, specify the threshold below which a multicast data packet is not

forwarded from the interface.

Enter a number between 0 and 255. The default is 1. If you enter 0, all multicast packets

for the interface are forwarded. You must configure at least one router interface before

this field is available.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual355

IGMP for IPv4 multicast routing

You can configure the Internet Group Management Protocol (IGMP) settings and view the

IGMP statistics.

IGMP snooping lets the switch to forward multicast traffic intelligently. Based on the IGMP

query and report messages, the switch forwards traffic only to the ports that request the

multicast traffic rather than to all ports.

IGMP snooping helps to optimize multicast performance and is especially useful for

bandwidth-intensive IP multicast applications such as online media streaming.

Configure the global IGMP settings for the switch

You can configure the global IGMP settings for the switch, as opposed to the IGMP settings

for an interface.

To configure global IGMP settings for the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > IGMP > Global Configuration.

The Global Configuration page displays.

6. Select the Admin Mode Enable or Disable radio button to enable or disable IGMP on the

switch.

The default is Disable.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual356

Configure an IGMP routing interface

You can configure one or more IGMP routing interfaces.

To configure an IGMP routing interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select the Routing> Multicast > IGMP > Routing Interface Configuration.

The Routing Interface Configuration page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Admin Mode menu, select Enable or Disable to enable or disable IGMP for the

interface.

The default is Disable.

9. In the Version field, specify the version of IGMP for the interface.

The version can be 1, 2, or 3. The default is 3. This field is configurable only when IGMP

Interface mode is enabled.

10. In the Robustness field, enter the robustness value for the interface.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual357

This robustness value allows tuning for the expected packet loss on a subnet. If you

expect the subnet to be lossy, enter a higher number. IGMP is robust to (robustness

variable –1) packet losses. The value is from 1 to 255. The default is 2.

11. In the Query Interval field, enter the frequency in seconds at which IGMP host-query

packets are to be transmitted on the interface.

The value is from 1 to 3600. The default is 125.

12. In the Query Max Response Time field, enter the maximum query response time, in tenths

of a second, to be advertised in IGMPv2 queries on the interface.

The value is from 0 to 255. The default is 100.

13. In the Startup Query Interval field, enter the number of seconds between the transmission

of startup queries on the interface.

The value is from 1 to 300. The default is 31.

14. In the Startup Query Count field, enter the number of queries to be sent on startup,

separated by the startup query interval.

The value is from 1 to 20. The default is 2.

15. In the Last Member Query Interval field, enter the last member query interval in tenths of a

second.

This value is the maximum response time to be inserted into group-specific queries sent

in response to leave group messages, and is also the period between group-specific

query messages. The value is from 0 to 255. The default is 10. This value is not used for

IGMP version 1.

16. In the Last Member Query Count field, enter the number of queries to be sent on receiving

a leave group report.

The value is from 1 to 20. The default is 2.

17. Click the Apply button.

Your settings are saved.

18. To save the settings to the running configuration, click the Save icon.

Display the statistics for the IGMP routing interfaces

You can display the statics for the IGMP routing interfaces.

To display the statistics for the IGMP routing interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual358

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > IGMP > Routing Interface Statistics.

The Routing Interface Statistic page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

•VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 111. IGMP routing interface statistics information

Field Description

Interface The interface on which IGMP is enabled.

IP Address The IP address of the interface.

Subnet Mask The subnet mask for the IP address of the interface.

Protocol State The operational state of IGMP on the interface (Operational or

Non-Operational).

Querier IP The address of the IGMP querier on the IP subnet to which the interface is

attached.

Querier Status Indicates if the interface is in querier or non-querier mode.

Querier Up Time The period in seconds since the IGMP interface querier was last changed.

Querier Expiry Time The period in seconds remaining before the other querier present timer

expires. If the switch is the querier, this is zero.

Wrong Version Queries Received The number of queries that were received on the interface with an IGMP

version that does not match the IGMP version configured for the interface,

over the lifetime of the entry. IGMP requires that all routers or routing

interfaces on a LAN are configured to run the same version of IGMP

Therefore, a configuration error is indicated if any queries are received with

the wrong version number.

Number of Joins Received The number of times a group membership was added on the interface; that

is, the number of times an entry for the interface was added to the cache

table. This gives an indication of the amount of IGMP activity on the

interface.

Number of Groups The current number of entries for the interface in the cache table.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual359

Display the IGMP groups and search the IGMP group

database

You can display the IGMP group information and search the IGMP group database by

interface or by group.

To display the IGMP groups and search the IGMP group database:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > IGMP > IGMP Groups.

The IGMP Groups page displays.

6. To search for IGMP group entries by interface or group, select one of the following options

from the Search menu:

• Interface: Select Interface from the menu, specify the interface in unit/port format (for

example 0/8), and click the Go button.

If the entry exists, the entry is displayed as the first entry, followed by the remaining

entries.

• Group: Select Group from the menu, specify the multicast group IPv4 address, and

click the Go button.

If the entry exists, that entry with the matching group IPv4 address is displayed as the

first entry, followed by the remaining entries. An exact match is required.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 112. IGMP group information

Field Description

Interface The interface on which IGMP is enabled.

Multicast Group IP The IP multicast group address.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual360

Display the IGMP membership information and search the

IGMP membership database

You can display the IGMP membership information and search the IGMP membership

database by interface or by group.

To display the IGMP membership information and search the IGMP membership

database:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

Last Reporter The IP address of the source of the last membership report that was received for

the IP multicast group address on the interface.

Up Time The period elapsed since this entry was created.

Expiry Time The period remaining before this entry is aged out.

Version 1 Host Timer The period remaining until the switch determines that no IGMP version 1 members

are on the IP subnet attached to the interface. When an IGMPv1 membership

report is received, this timer is reset to the group membership timer. Unless this

timer reaches zero, the switch ignores any IGMPv2 leave messages for this group

that it receives on the interface.

This field displays only if the interface is configured for IGMP version 1.

Version 2 Host Timer The time remaining until the switch determines that no IGMP version 2 members

are on the IP subnet attached to the interface. When an IGMPv2 membership

report is received, this timer is reset to the group membership timer. Unless this

timer reaches zero, the switch ignores any IGMPv1 and IGMPv3 leave messages

for this group that it receives on the selected interface.

This field displays only if the interface is configured for IGMP version 2.

Compatibility The group compatibility mode (v1, v2, or v3) for the group on the interface.

Filter Mode The source filter mode (Include, Exclude, or NA) for the group on the interface. If

the mode is NA, the field is blank.

Table 112. IGMP group information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual361

5. Select Routing> Multicast > IGMP > IGMP Membership.

The IGMP Membership page displays.

6. To search for IGMP membership by interface or group, select one of the following options

from the Search menu:

•Interface: Select Interface from the menu, specify the interface in unit/port format (for

example 0/8), and click the Go button.

If the entry exists, the entry is displayed as the first entry, followed by the remaining

entries.

• Group: Select Group from the menu, specify the multicast group IP address, and

click the Go button.

If the entry exists, that entry with the matching group IP address is displayed as the

first entry, followed by the remaining entries. An exact match is required.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 113. IGMP membership information

Field Description

Interface The interface on which multicast packets are forwarded.

Group IP The IP multicast group address.

Compatibility Mode The group compatibility mode (v1, v2, or v3) for the group on the interface.

Source Filter Mode The source filter mode (Include, Exclude, or NA) for the group on the interface. If

the mode is NA, the field is blank.

Source Hosts The source IP addresses that are members of the multicast address.

Expiry Time The expiration time that applies to each source IP address that is a member of the

multicast group. This is the period after which the source entry ages out.

Configure an IGMP proxy interface

You can configure an IGMP proxy interface. The following requirements apply:

•Routing, IGMP, and multicast must be globally enabled on the switch.

•You must configure at least one routing interface.

•The IGMP proxy interface cannot be the same interface as an IGMP routing interface.

To configure an IGMP proxy interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual362

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > IGMP > Proxy Interface Configuration.

The Proxy Interface Configuration page displays.

6. From the Interface menu, select the interface that must function as the IGMP proxy

interface.

7. From the Admin Mode menu, select Enable or Disable to enable or disable the IGMP

proxy capability on the interface.

The default is Disable.

8. In the Unsolicited Report Interval field, specify the period in seconds between repetitions

of a host's initial report of membership in a group.

The range is from 1 to 260. The default is 1.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 114. IGMP proxy interface configuration information

Field Description

IP Address The IP address of the IGMP proxy interface.

Subnet Mask The subnet mask for the IP address of the IGMP proxy interface.

Operational Mode The operational state of IGMP proxy interface (Disable or Enable).

Querier Address on Proxy

Interface

The querier address on the proxy interface.

Number of Groups The number of multicast group entries for the IGMP proxy interface in the

cache table.

Version The version of IGMP that is configured on the IGMP routing interface that

you changed into the IGMP proxy interface. For more information, see

Configure an IGMP routing interface on page 356.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual363

Display the statistics for the IGMP proxy interface

You can display the statistics for the IGMP proxy interface.

To display the statistics for the IGMP proxy interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > IGMP > Proxy Interface Statistics.

The Proxy Interface Statistics page displays.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Version 1 Querier Timeout The IGMPv1 querier time-out period in seconds.

If a host receives an IGMPv1 query, the host temporarily sets its IGMPv1

querier present timer to the IGMPv1 querier Interval. After the host reads

the IGMPv1 query, the IGMPv1 querier time-out indicates the period after

which the host transitions back to IGMPv3

Version 2 Querier Timeout The IGMPv2 querier time-out period in seconds.

If a host receives an IGMPv2 query, the host temporarily sets its IGMPv2

querier present timer to the IGMPv2 querier Interval. After the host reads

the IGMPv2 query, the IGMPv2 querier time-out indicates the period after

which the host transitions back to IGMPv3

Proxy Start Frequency The number of times the proxy was started.

Table 115. IGMP proxy interface statistics information

Field Description

Proxy Interface The interface on which IGMP packets are received.

Version The version of IGMP packets received.

Table 114. IGMP proxy interface configuration information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual364

Display the IGMP proxy membership and search the

IGMP proxy membership database

You can display the IGMP proxy membership information and search the IGMP proxy

membership database by group.

To display the IGMP proxy membership information and search the IGMP proxy

membership database:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > IGMP > Proxy Membership.

The Proxy Membership page displays.

6. To search for IGMP proxy membership by group, specify the multicast group IPv4 address,

and click the Go button.

If the entry exists, that entry with the matching group IPv4 address is displayed as the first

entry, followed by the remaining entries. An exact match is required.

7. To refresh the page, click the Refresh button.

Queries Received The number of IGMP queries received.

Report Received The number of IGMP reports received.

Reports Sent The number of IGMP reports sent.

Leaves Received The number of IGMP leave messages received.

Leaves Sent The number of IGMP leave messages sent.

Table 115. IGMP proxy interface statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual365

The following table describes the nonconfigurable fields on the page.

Table 116. IGMP proxy membership information

Field Description

Proxy Interface The interface on which the IGMP proxy is enabled.

Group IP The multicast group IPv4 address.

Source Hosts The source addresses that are members of the multicast group.

Last Reporter The source IPv4 address that sent the last membership report for the

multicast group on the IGMP proxy interface.

Up Time The time elapsed since the entry was created.

Expiry Time The expiration interval for each source address that is a member of the

multicast group. This is the period after which the source entry ages out.

State The state of the host entry:

• Non-member state: The host does not belong to the group on the

interface.

• Delaying member state: The host belongs to the group on the

interface and its report timer is active. (The report timer is used to send

reports.)

• Idle member state: The host belongs to the group on the interface but

its report timer is inactive.

Filter Mode The group filter mode (Include, Exclude, or None) for the group on the

IGMP proxy interface.

Number of Sources The number of source hosts in the multicast group.

PIM for IPv4 multicast routing

Protocol-Independent Multicast (PIM) is a standard multicast routing protocol that provides

scalable interdomain multicast routing across the Internet, independent any particular unicast

routing protocol.

You can configure the various PIM settings for IPv4 multicast routing and display the PIM

statistics.

Configure the global PIM IPv4 settings on the switch

Depending on your IPv4 network needs, you can globally enable PIM Sparse Mode

(PIM-SM) or PIM Dense Mode (PIM-DM) on the switch.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual366

To configure the global PIM IPv4 settings on the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > PIM > Global Configuration.

The Global Configuration page displays.

6. Select one of the following Admin Mode radio buttons:

•Disable: PIM is disabled on the switch. This is the default setting.

•PIM-SM: PIM Sparse Mode is enabled on the switch.

• PIM-DM: PIM Dense Mode is enabled on the switch.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Add IPv4 PIM-SSM groups

While PIM employs a specially configured rendezvous point (RP) router that serves as a

meeting junction for multicast senders and listeners, PIM Single-Source Multicast (PIM-SSM)

does not use a rendezvous point (RP). PIM-SSM supports source route delivery trees only. It

is used between routers (including switch router interfaces) so that they can track which

multicast packets to forward to each other and to their directly connected LANs. You can

implement PIM-SSM with a strict subset of the PIM protocol mechanisms. Both regular IPv4

multicast and SSM can coexist on a single router, and both can be implemented using the

PIM protocol. A range of multicast addresses, 232.0.0.0/8 for IPv4, is reserved for SSM.

To add an IPv4 PIM-SSM group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual367

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > PIM > SSM Configuration.

The SSM Configuration page displays.

6. In the SSM Group Address field, specify the source-specific multicast group IPv4 address.

7. In the SSM Group Mask field, specify the mask for the source-specific multicast group

IPv4 address.

8. Click the Add button.

Your settings are saved. The group is added.

9. To save the settings to the running configuration, click the Save icon.

Delete an IPv4 PIM-SSM group

You can delete an IPv4 PIM-SSM group that you no longer need.

To delete an IPv4 PIM-SSM group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > Multicast > Mroute Static-Multicast Configuration.

The Mroute Static-Multicast Configuration page displays.

6. Select the check box for the PIM-SSM group.

7. Click the Delete button.

Your settings are saved. The PIM-SSM group is removed.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual368

Configure an IPv4 PIM interface

You can configure an IPv4 interface for PIM.

To configure an IPv4 PIM interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > PIM > Interface Configuration.

The Interface Configuration page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Admin Mode menu, select Enable or Disable to enable or disable PIM for the

interface.

The default is Disable.

9. n the Hello Interval field, specify the period in seconds between the transmission of PIM

hello messages on the interface.

The range is from 0 to 18000. The default is 30.

10. In the Join/Prune Interval field, specify period in seconds at which PIM Join/Prune

messages are transmitted on the interface.

The range is from 0 to 18000. The default is 60.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual369

11. From the BSR Border menu, select Enable or Disable to enable or disable the bootstrap

router (BSR) border on the interface.

The default is Disable.

12. In the DR Priority field, specify the designated router (DR) priority for the interface.

The range is from 0 to 2147483647. The default is 1.

13. Click the Apply button.

Your settings are saved.

14. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable field on the page.

Table 117. IPv4 PIM interface configuration information

Field Description

Protocol State The state of PIM on the interface (Operational or Non-Operational).

IP Address The IPv4 address of the PIM interface.

Designated Router The IPv4 address of the designated router on the PIM interface.

Neighbor Count The number of PIM neighbors on the PIM interface.

Display IPv4 PIM neighbors and search the PIM neighbor

database

You can display the IPv4 PIM neighbor information and search the PIM neighbors database

by interface or by neighbor IP address.

To display IPv4 PIM neighbors and search the PIM neighbors database:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > PIM > PIM Neighbor

The PIM Neighbor page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual370

6. To search for IGMP group entries by interface or group, select one of the following options

from the Search menu:

• Interface: Select Interface from the menu, specify the interface in unit/port format (for

example 0/8), and click the Go button.

If the entry exists, the entry is displayed as the first entry, followed by the remaining

entries.

• Neighbor IP: Select Neighbor IP from the menu, specify the neighbor IPv4 address,

and click the Go button.

If the entry exists, that entry with the matching neighbor IPv4 address is displayed as

the first entry, followed by the remaining entries. An exact match is required.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 118. IPv4 PIM neighbor information

Field Description

Interface The interface on which the PIM neighbor is connected.

Neighbor IP The IPv4 address of the PIM neighbor.

Up Time (hh:mm:ss) The time that passed since the PIM device became a neighbor of the

interface.

Expiry Time (hh:mm:ss) The time remaining before the PIM neighbor ages out.

DR Priority The designated router (DR) priority of the PIM neighbor.

Add an IPv4 PIM candidate rendezvous point

configuration

You can add an IPv4 PIM candidate rendezvous point (RP) configuration on an interface.

To add an IPv4 PIM candidate RP configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual371

The System Information page displays.

5. Select Routing> Multicast > PIM > Candidate RP Configuration.

The Candidate RP Configuration page displays.

6. From the Interface menu, select the interface.

7. In the Group Address field, specify the group IPv4 address that is transmitted in

candidate-RP-advertisements.

8. In the Group Mask field, enter the group address mask that is transmitted in

candidate-RP-advertisements.

9. In the C-RP Advertisement Interval field, specify the period in seconds at which

candidate-RP-advertisements are sent as unicast traffic to the bootstrap router (BSR).

The range is from 1 to 16383 seconds.

10. Click the Add button.

Your settings are saved. The PIM candidate RP is added.

11. To save the settings to the running configuration, click the Save icon.

Delete an IPv4 PIM candidate rendezvous point

configuration

You can delete an IPv4 PIM candidate rendezvous point (RP) configuration that you no

longer need.

To delete an IPv4 PIM candidate RP configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > PIM > Candidate RP Configuration.

The Candidate RP Configuration page displays.

6. From the Interface menu, select the interface.

7. Select the check box for the PIM candidate RP.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual372

8. Click the Delete button.

Your settings are saved. The PIM candidate RP entry is removed.

Configure an interface as an IPv4 PIM bootstrap router

candidate

You can configure an interface as an IPv4 PIM bootstrap router (BSR) candidate.

To configure an interface as an IPv4 PIM BSR candidate:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > PIM > BSR Candidate Configuration.

The BSR Candidate Configuration page displays.

6. From the Interface menu, select an interface.

7. In the Hash Mask Length field, specify the hash mask length to be advertised in bootstrap

messages.

The hash mask length is used in the hash algorithm for selecting the RP for a particular

group. The range is from 0 to 32. The default is 30.

8. In the Priority field, specify the priority for the BSR candidate.

The range is from 0 to 255. The default is 0.

9. In the Advertisement Interval field, specify the period in seconds between advertisements.

The range is from 1 to 16383. The default is 60.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

12. To refresh the page, click the Refresh button.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual373

The following table describes the nonconfigurable fields on the page.

Table 119. IPv4 PIM BSR candidate configuration information

Field Description

BSR Expiry Time (hh:mm:ss) The time (in hours, minutes and seconds) after which the learned elected

BSR expires.

IP Address The IPv4 address of the elected BSR.

Next bootstrap Message

(hh:mm:ss)

The time (in hours, minutes, and seconds) after which the next bootstrap

message is due from the BSR.

Next Candidate RP Advertisement

(hh:mm:ss)

The time (in hours, minutes, and seconds) after which the next candidate

RP advertisement is sent.

Delete an IPv4 PIM bootstrap router candidate

configuration

You can delete an IPv4 PIM bootstrap router (BSR) candidate configuration from an

interface.

To delete an IPv4 PIM BSR candidate configuration from an interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > PIM > BSR Candidate Configuration.

The BSR Candidate Configuration page displays.

6. From the Interface menu, select the interface.

7. Click the Delete button.

Your settings are saved. The PIM BSR candidate configuration is deleted from the

interface.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual374

Configure a static IPv4 PIM rendezvous point for a group

You can add a new or change an existing static IPv4 PIM rendezvous point (RP) for a group.

To add or change a static IPv4 PIM RP for a group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > PIM > Static RP Configuration.

The Static RP Configuration page displays.

6. If you are changing an existing static RP, select the check box for the static RP.

7. In the RP Address field, specify the IPv4 address for the static RP.

8. In the Group Address field, specify the IPv4 address for the group to which the static RP

applies.

9. In the Group Mask field, specify the mask for the group to which the static RP applies.

10. From the Override menu, select Enable or Disable to enable or disable the override

capacity of a static RP over an RP that is learned from a BSR.

If you select Enable and conflict occurs, a static RP overrides an RP that is learned from a

BSR.

11. Do one of the following:

•If you are adding a new static RP, click the Add button.

Your settings are saved. The static RP is added.

•If you are changing an existing static RP, click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual375

Delete a static IPv4 PIM rendezvous point configuration

You can delete a static IPv4 PIM rendezvous point (RP) configuration that you no longer

need for a group.

To delete a static IPv4 PIM RP configuration for a group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > PIM > Static RP Configuration.

The Static RP Configuration page displays.

6. Select the check box for the static RP.

7. Click the Delete button.

Your settings are saved. The static RP configuration is deleted for the group.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual376

Static multicast routes for IPv4 addresses

If a multicast routing protocol such as PIM-SM or PIM-DM is enabled and configured,

multicast routes are built dynamically. However, you can also configure one or more static

IPv4 multicast routes. A static route can facilitate the processing of multicast traffic when a

neighboring reverse-path forwarding (RPF) router is located between the switch and the

multicast source.

Configure static multicast routes for IPv4 addresses

You can add a new or change an existing static IPv4 multicast route.

To add or change a static IPv4 multicast route:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > Static Routes Configuration.

The Static Routes Configuration page displays.

6. If you are changing an existing static multicast route, select the check box for the route.

For an existing static route, you can change the metric only.

7. In the Source IP field, specify the IPv4 address of the multicast packet source.

8. In the Source Mask field, specify the subnet mask of the multicast packet source.

9. In RPF Neighbor field, specify the IPv4 address of the neighbor RPF router that is

located between the switch and the multicast source.

10. In the Metric field, specify the link state cost of the path from the multicast source to the

switch.

The range is from 0 to 255.

11. Do one of the following:

•If you are adding a new static multicast route, click the Add button.

Your settings are saved. The static multicast route is added.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual377

•If you are changing an existing static multicast route, click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

Delete a static multicast route for an IPv4 address

You can delete a static IPV4 multicast route that you no longer need.

To delete a static IPv4 multicast route:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > Static Routes Configuration.

The Static Routes Configuration page displays.

6. Select the check box for the static route.

7. Click the Delete button.

Your settings are saved. The static route is deleted.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual378

Multicast admin boundaries for IPv4

addresses

A multicast administrative (admin) boundary can stop ingress and egress multicast traffic for

a range of multicast addresses on routing interface. Using admin boundaries, you can set the

borders for a multicast region, beyond which multicast traffic is not supposed to cross.

Configure an interface as a multicast admin boundary

You can configure an interface as a multicast admin boundary.

To configure an interface as a multicast admin boundary:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > Admin Boundary Configuration.

The Admin Boundary Configuration page displays.

6. From the Interface menu, select the router interface.

7. In the Group IP field, specify the multicast group address for the start of the range of

addresses that must be excluded.

The address must be in the range from 239.0.0.0 through 239.255.255.255.

8. In the Group Mask field, enter the mask for the multicast group address.

The combination of the mask and the group IP defines the range of the multicast admin

boundary.

9. Click the Add button.

Your settings are saved. The multicast admin boundary is added.

10. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual379

Delete a multicast admin boundary configuration for an

interface.

You can delete a multicast admin boundary configuration that you no longer need for an

interface.

To delete a multicast admin boundary configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> Multicast > Admin Boundary Configuration.

The Admin Boundary Configuration page displays.

6. Select the check box for the interface.

7. Click the Delete button.

Your settings are saved. The static route is deleted fro the interface.

8. To save the settings to the running configuration, click the Save icon.

IPv6 multicast routing and the IPv6 multicast

route table

Multicast is best suited for video and audio traffic requiring multicast packet control for

optimal operation. Multicast for IPv6 includes support for Multicast Listener Discovery (MLD).

Communication from point to multipoint is called multicasting. The source host (point)

transmits a message to a group of zero or more hosts (multipoint) that are identified by a

single IPv6 destination address. Although the task can be accomplished by sending unicast

(point-to-point) messages to each of the destination hosts, multicasting is the preferred

method for this type of transmission. A multicast message is delivered to all members of its

destination host group with the same best-efforts reliability as regular unicast IPv6

messages. The message is not guaranteed to arrive intact at all members of the destination

group or in the same order relative to other messages.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual380

Display the IPv6 multicast route table

The multicast routing (Mroute) table includes information about the source IPv6 address,

group destination IPv6 addresses, the incoming and outgoing interfaces, next hops to which

IPv6 packet must be forwarded, and supported protocols.

To display the IPv6 Mroute table:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing > IPv6 Multicast > Mroute Table.

The Mroute Table page displays.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 120. Multicast IPv6 Mroute table information

Field Description

Group IP The destination group IPv6 address.

Source IP The IPv6 address of the multicast packet source to be combined with the group

IPv6 to fully identify the single route.

Incoming Interface The incoming interface on which multicast packets for this source/group arrive.

Outgoing Interfaces The list of outgoing interfaces on which multicast packets for this source/group are

forwarded.

Up Time (hh:mm:ss) The time in seconds since the entry was created.

Expiry Time (hh:mm:ss) The time in seconds before this entry ages out and is removed from the table.

RPF Neighbor The IPv6 address of the reverse path forwarding (RPF) neighbor.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual381

PIM for IPv6 multicast routing

Protocol-Independent Multicast (PIM) is a standard multicast routing protocol that provides

scalable interdomain multicast routing across the Internet, independent any particular unicast

routing protocol.

You can configure the various PIM settings for IPv6 multicast routing and display the PIM

statistics.

Configure the global PIM IPv4 settings on the switch

Depending on your IPv6 network needs, you can globally enable PIM Sparse Mode

(PIM-SM) or PIM Dense Mode (PIM-DM) on the switch.

To configure the global PIM IPv6 settings on the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > IPv6 PIM > Global Configuration.

The Global Configuration page displays.

6. Select one of the following Admin Mode radio buttons:

•Disable: PIM is disabled on the switch. This is the default setting.

Protocol The multicast routing protocol which dynamically created this entry. The possible

values are as follows:

• PIM-DM

• PIM-SM

Flags The value displayed in this field is valid if the multicast routing protocol is PIM-SM.

The possible values are RPT and SPT. For other protocols a “------” is displayed.

Table 120. Multicast IPv6 Mroute table information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual382

• PIM-SM: PIM Sparse Mode is enabled on the switch.

• PIM-DM: PIM Dense Mode is enabled on the switch.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Add IPv6 PIM-SSM groups

While PIM employs a specially configured rendezvous point (RP) router that serves as a

meeting junction for multicast senders and listeners, PIM Single-Source Multicast (PIM-SSM)

does not use a rendezvous point (RP). PIM-SSM supports source route delivery trees only. It

is used between routers (including switch router interfaces) so that they can track which

multicast packets to forward to each other and to their directly connected LANs. You can

implement PIM-SSM with a strict subset of the PIM protocol mechanisms. Both regular IPv6

multicast and SSM can coexist on a single router, and both can be implemented using the

PIM protocol. A range of multicast addresses, FF3x::/32 for IPv6, is reserved for SSM.

To add an IPv6 PIM-SSM group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > IPv6 PIM > SSM Configuration.

The SSM Configuration page displays.

6. In the SSM Group Address field, enter the source-specific multicast group IPv6 address.

7. In the SSM Group Mask field, enter the source-specific multicast group IPv6 address

prefix.

8. Click the Add button.

Your settings are saved. The group is added.

9. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual383

Delete an IPv6 PIM-SSM group

You can delete an IPv6 PIM-SSM group that you no longer need.

To delete an IPv6 PIM-SSM group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > IPv6 PIM > SSM Configuration.

The SSM Configuration page displays.

6. Select the check box for the PIM-SSM group.

7. Click the Delete button.

Your settings are saved. The PIM-SSM group is removed.

8. To save the settings to the running configuration, click the Save icon.

Configure an IPv6 PIM interface

You can configure an IPv6 interface for PIM.

To configure an IPv6 PIM interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual384

5. Select Routing> IPv6 Multicast > IPv6 PIM > Interface Configuration.

The Interface Configuration page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Admin Mode menu, select Enable or Disable to enable or disable PIM for the

interface.

The default is Disable.

9. n the Hello Interval field, specify the period in seconds between the transmission of PIM

hello messages on the interface.

The range is from 0 to 18000. The default is 30.

10. In the Join/Prune Interval field, specify period in seconds at which PIM Join/Prune

messages are transmitted on the interface.

The range is from 0 to 18000. The default is 60.

11. From the BSR Border menu, select Enable or Disable to enable or disable the bootstrap

router (BSR) border on the interface.

The default is Disable.

12. In the DR Priority field, specify the designated router (DR) priority for the interface.

The range is from 0 to 2147483647. The default is 1.

13. Click the Apply button.

Your settings are saved.

14. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable field on the page.

Table 121. IPv6 PIM interface configuration information

Field Description

Protocol State The state of PIM on the interface (Operational or Non-Operational).

IPv6 Prefix/Length The IPv6 address and prefix length of the PIM interface.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual385

Display IPv6 PIM neighbors and search the PIM neighbor

database

You can display the IPv6 PIM neighbor information and search the PIM neighbors database

by interface or by neighbor IP address.

To display IPv6 PIM neighbors and search the PIM neighbors database:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > IPv6 PIM > PIM Neighbor.

The PIM Neighbor page displays.

6. To search for IGMP group entries by interface or group, select one of the following options

from the Search menu:

• Interface: Select Interface from the menu, specify the interface in unit/port format (for

example 0/8), and click the Go button.

If the entry exists, the entry is displayed as the first entry, followed by the remaining

entries.

• Neighbor IP: Select Neighbor IP from the menu, specify the neighbor IPv6 address,

and click the Go button.

If the entry exists, that entry with the matching neighbor IPv6 address is displayed as

the first entry, followed by the remaining entries. An exact match is required.

7. To refresh the page, click the Refresh button.

Designated Router The IPv6 address of the designated router on the PIM interface.

Neighbor Count The number of PIM neighbors on the PIM interface.

Table 121. IPv6 PIM interface configuration information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual386

The following table describes the nonconfigurable fields on the page.

Table 122. IPv6 PIM neighbor information

Field Description

Interface The interface on which the PIM neighbor is connected.

Neighbor IP The IPv6 address of the PIM neighbor.

Up Time (hh:mm:ss) The time that passed since the PIM device became a neighbor of the

interface.

Expiry Time (hh:mm:ss) The time remaining before the PIM neighbor ages out.

DR Priority The designated router (DR) priority of the PIM neighbor.

Add an IPv6 PIM candidate rendezvous point

configuration

You can add an IPv6 PIM candidate rendezvous point (RP) configuration on an interface.

To add an IPv6 PIM candidate RP configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > IPv6 PIM > Candidate RP Configuration.

The Candidate RP Configuration page displays.

6. From the Interface menu, select the interface.

7. In the Group Address field, specify the group IPv6 address that is transmitted in

candidate-RP-advertisements.

8. In the Prefix Length field, enter the group IPv6 prefix length that is transmitted in

candidate-RP-advertisements.

9. In the C-RP Advertisement Interval field, specify the period in seconds at which

candidate-RP-advertisements are sent as unicast traffic to the bootstrap router (BSR).

The range is from 1 to 16383 seconds.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual387

10. Click the Add button.

Your settings are saved. The PIM candidate RP is added.

11. To save the settings to the running configuration, click the Save icon.

Delete an IPv6 PIM candidate rendezvous point

configuration

You can delete an IPv6 PIM candidate rendezvous point (RP) configuration that you no

longer need.

To delete an IPv6 PIM candidate RP configuration:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > IPv6 PIM > Candidate RP Configuration.

The Candidate RP Configuration page displays.

6. From the Interface menu, select the interface.

7. Select the check box for the PIM candidate RP.

8. Click the Delete button.

Your settings are saved. The PIM candidate RP entry is removed.

Configure an interface as an IPv6 PIM bootstrap router

candidate

You can configure an interface as an IPv6 PIM bootstrap router (BSR) candidate.

To configure an interface as an IPv6 PIM BSR candidate:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual388

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > IPv6 PIM > BSR Candidate Configuration.

The BSR Candidate Configuration page displays.

6. From the Interface menu, select an interface.

7. In the Hash Mask Length field, specify the hash mask length to be advertised in bootstrap

messages.

The hash mask length is used in the hash algorithm for selecting the RP for a particular

group. The range is from 0 to 128. The default is 126.

8. In the Priority field, specify the priority for the BSR candidate.

The range is from 0 to 255. The default is 0.

9. In the Advertisement Interval field, specify the period in seconds between advertisements.

The range is from 1 to 16383. The default is 60.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

12. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 123. IPv6 PIM BSR candidate configuration information

Field Description

BSR Expiry Time (hh:mm:ss) The time (in hours, minutes and seconds) after which the learned elected

BSR expires.

IP Address The IPv6 address of the elected BSR.

Next bootstrap Message

(hh:mm:ss)

The time (in hours, minutes, and seconds) after which the next bootstrap

message is due from the BSR.

Next Candidate RP Advertisement

(hh:mm:ss)

The time (in hours, minutes, and seconds) after which the next candidate

RP advertisement is sent.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual389

Delete an IPv6 PIM bootstrap router candidate

configuration

You can delete an IPv6 PIM bootstrap router (BSR) candidate configuration from an

interface.

To delete an IPv6 PIM BSR candidate configuration from an interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > IPv6 PIM > BSR Candidate Configuration.

The BSR Candidate Configuration page displays.

6. From the Interface menu, select the interface.

7. Click the Delete button.

Your settings are saved. The PIM BSR candidate configuration is deleted from the

interface.

8. To save the settings to the running configuration, click the Save icon.

Configure a static IPv6 PIM rendezvous point for a group

You can add a new or change an existing static IPv6 PIM rendezvous point (RP) for a group.

To add or change a static IPv6 PIM RP for a group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual390

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > IPv6 PIM > Static RP Configuration.

The Static RP Configuration page displays.

6. If you are changing an existing static RP, select the check box for the static RP.

7. In the RP Address field, specify the IPv6 address for the static RP.

8. In the Group Address field, specify the IPv6 address for the group to which the static RP

applies.

9. In the Prefix Length field, specify the IPv6 prefix length for the group to which the static RP

applies.

10. From the Override menu, select Enable or Disable to enable or disable the override

capacity of a static RP over an RP that is learned from a BSR.

If you select Enable and conflict occurs, a static RP overrides an RP that is learned from a

BSR.

11. Do one of the following:

•If you are adding a new static RP, click the Add button.

Your settings are saved. The static RP is added.

•If you are changing an existing static RP, click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

Delete a static IPv6 PIM rendezvous point configuration

You can delete a static IPv6 PIM rendezvous point (RP) configuration that you no longer

need for a group.

To delete a static IPv6 PIM RP configuration for a group:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual391

The System Information page displays.

5. Select Routing> IPv6 Multicast > IPv6 PIM > Static RP Configuration.

The Static RP Configuration page displays.

6. Select the check box for the static RP.

7. Click the Delete button.

Your settings are saved. The static RP configuration is deleted for the group.

8. To save the settings to the running configuration, click the Save icon.

MLD for IPv6 multicast routing

You can configure the Multicast Listener Discovery (MLD) settings and view the MLD

statistics.

MLD is a protocol used by IPv6 multicast routers to discover the presence of multicast

listeners (nodes configured to receive IPv6 multicast packets) on its directly attached links

and to discover which multicast packets are of interest to neighboring nodes. MLD is derived

from IGMP; MLD version 1 (MLDv1) is equivalent to IGMPv2, and MLD version 2 (MLDv2) is

equivalent to IGMPv3. MLD is a subprotocol of Internet Control Message Protocol version 6

(ICMPv6), and MLD messages are a subset of ICMPv6 messages, identified in IPv6 packets

by a preceding Next Header value of 58.

The switch can snoop on both MLDv1 and MLDv2 protocol packets and bridge IPv6 multicast

data based on destination IPv6 multicast MAC addresses. The switch can support MLD

snooping and IGMP snooping simultaneously.

Configure the global MLP settings for the switch

You can configure the global MLDP settings for the switch, as opposed to the MLD settings

for an interface.

To configure the global MLP settings for the switch:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual392

The System Information page displays.

5. Select Routing> IPv6 Multicast > MLD > Global Configuration.

The Global Configuration page displays.

6. Select the Admin Mode Enable or Disable radio button to enable or disable MLD on the

switch.

The default is Disable.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Configure an MLD routing interface

You can configure one or more MLD routing interfaces.

To configure an MLD routing interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > MLD > Routing Interface Configuration.

The Routing Interface Configuration page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the interface, or

type the interface number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual393

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Admin Mode menu, select Enable or Disable to enable or disable MLD for the

interface.

The default is Disable.

9. In the Version field, specify the version of MLD for the interface.

The version can be 1 or 2. The default is 2.

10. In the Query Interval field, enter the frequency in seconds at which MLD host-query

packets are to be transmitted on the interface.

The value is from 1 to 3600. The default is 125.

11. In the Query Max Response Time field, enter the maximum query response time, in

milliseconds, to be advertised in MLDv2 queries on the interface.

The value is from 0 to 65535. The default is 10000 milliseconds.

12. In the Startup Query Interval field, enter the number of seconds between the transmission

of startup queries on the interface.

The value is from 1 to 300. The default is 31.

13. In the Startup Query Count field, enter the number of queries to be sent on startup,

separated by the startup query interval.

The value is from 1 to 20. The default is 2.

14. In the Last Member Query Interval field, enter the last member query interval in

milliseconds.

This value is the maximum response time to be inserted into group-specific queries sent

in response to leave group messages, and is also the period between group-specific

query messages. The value is from 0 to 655355. The default is 1000 milliseconds.

15. In the Last Member Query Count field, enter the number of queries to be sent on receiving

a leave group report.

The value is from 1 to 20. The default is 2.

16. Click the Apply button.

Your settings are saved.

17. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable information that is displayed.

Table 124. MLD Routing Interface Configuration

Field Description

Operational Mode The operational status of MLD on the Interface.

Robustness The robustness setting for the interface. The default value is 2.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual394

Display the statistics for the MLD routing interfaces

You can display the statics for the MLD routing interfaces.

To display the statistics for the MLD routing interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > MLD > Routing Interface Statistics.

The Routing Interface Statistics page displays.

6. Select whether to display physical interfaces, VLANs, or both by clicking one of the following

links above the table heading:

•1: Only physical interfaces are displayed. This is the default setting.

• VLANS: Only VLANs are displayed.

• All: Both physical interfaces and VLANs are displayed.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 125. MLD routing interface statistics information

Field Description

Interface The interface on which MLD is enabled.

Querier Status Indicates if the interface is an MLD querier or non-querier on the IPv6

subnet it is associated with.

Querier IP The IPv6 address of the MLD querier on the IPv6 subnet to which the

interface is attached.

Querier Up Time The period in seconds since the MLD interface querier was last changed.

Querier Expiry Time The period in seconds remaining before the other querier present timer

expires. If the switch is the querier, this is zero.

Wrong Version Queries Received The number of queries that were received on the interface with an MLD

version that does not match the MLD version configured for the interface

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual395

Display the MLD groups and search the MLD group

database

You can display the MLD group information and search the MLD group database by interface

or by group.

To display the MLD groups and search the MLD group database:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > MLD > MLD Groups.

The MLD Groups page displays.

6. To search for IGMP group entries by interface or group, select one of the following options

from the Search menu:

• Interface: Select Interface from the menu, specify the interface in unit/port format (for

example 0/8), and click the Go button.

If the entry exists, the entry is displayed as the first entry, followed by the remaining

entries.

• Group: Select Group from the menu, specify the multicast group IPv6 address, and

click the Go button.

If the entry exists, that entry with the matching group IPv6 address is displayed as the

first entry, followed by the remaining entries. An exact match is required.

7. To refresh the page, click the Refresh button.

Number of Joins Received The number of times a group membership was added on the interface; that

is, the number of times an entry for the interface was added to the cache

table.

Number of Groups The current number of entries for the interface in the cache table.

Table 125. MLD routing interface statistics information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual396

The following table describes the nonconfigurable fields on the page.

Table 126. MLD groups information

Field Description

Interface The interface on which MLD is enabled.

Group IP The IP multicast group address.

Last Reporter The IP address of the source of the last membership report that was

received for the IP multicast group address on the interface.

Up Time The period elapsed since this entry was created.

Expiry Time The period remaining before this entry is aged out.

Filter Mode The source filter mode (Include, Exclude, or NA) for the group on the

interface. If the mode is NA, the field is blank.

Version 1 Host Timer The period remaining until the switch determines that no MLD version 1

members are attached to the interface.

Group Compat Mode The compatibility mode (MLDv1 or MLDv2) of the multicast group on the

interface.

Source Hosts The source addresses that are members of the multicast address.

Source Address (Expiry Time) The expiration time after which each source address that is a member of

the multicast group ages out.

Display or clear MLD traffic statistics

You can view the MLD traffic statistics and clear these statistics.

To view or clear IPv6 MLD traffic statistics:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > MLD > MLD Traffic.

The MLD Traffic page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual397

6. To refresh the page, click the Refresh button.

7. To reset (clear) all MLD traffic statics, click the Clear button.

8. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 127. MLD traffic statistics information

Field Description

Valid MLD Packets Received The number of valid MLD packets received by the switch.

Valid MLD Packets Sent The number of valid MLD packets sent by the switch.

Queries Received The number of valid MLD queries received by the switch.

Queries Sent The number of valid MLD queries sent by the switch.

Reports Received The number of valid MLD reports received by the switch.

Reports Sent The number of valid MLD reports sent by the switch.

Leaves Received The number of valid MLD leave messages received by the switch.

Leaves Sent The number of valid MLD leave messages sent by the switch.

Configure an MLD proxy interface

You can configure an MLD proxy interface. The following requirements apply:

•Routing, MLD, and multicast must be globally enabled on the switch.

•You must configure at least one routing interface.

•The MLD proxy interface cannot be the same interface as an MLD routing interface.

To configure an MLD proxy interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > MLD > Proxy Interface Configuration.

The Proxy Interface Configuration page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual398

6. From the Interface menu, select the interface that must function as the IGMP proxy

interface.

7. From the Admin Mode menu, select Enable or Disable to enable or disable the IGMP

proxy capability on the interface.

The default is Disable.

8. In the Unsolicited Report Interval field, specify the period in seconds between repetitions

of a host's initial report of membership in a group.

The range is from 1 to 260. The default is 1.

9. Click the Apply button.

Your settings are saved.

10. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 128. MLD proxy interface configuration information

Field Description

IPv6 Prefix The IPv6 address of the MLD proxy interface.

Prefix Length The prefix length for the IPv6 address of the MLD proxy interface.

Operational Mode The operational state of IGMP proxy interface (Disable or Enable).

Querier Address on Proxy

Interface

The querier address on the proxy interface.

Number of Groups The number of multicast group entries for the MLD proxy interface in the

cache table.

Version The version of MLD that is configured on the MLD routing interface that you

changed into the MLD proxy interface. For more information, see Configure

an MLD routing interface on page 392.

Version 1 Querier Timeout The MLDv1 querier time-out period in seconds.

If a host receives an MLDv1 query, the host temporarily sets its MLDv1

querier present timer to the MLDv1 querier Interval. After the host reads the

MLDv1 query, the MLDv1 querier time-out indicates the period after which

the host transitions back to MLDv2.

Proxy Start Frequency The number of times the proxy was started.

Display the statistics for the MLD proxy interface

You can display the statistics for the MLD proxy interface.

To display the statistics for the MLD proxy interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual399

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > MLD > Proxy Interface Statistics.

The Proxy Interface Statistics page displays.

6. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 129. MLD proxy interface statistics information

Field Description

Proxy Interface The interface on which MLD proxy packets are received.

Version The version of MLD proxy packets received.

Queries Received The number of MLD proxy queries received.

Reports Received The number of MLD proxy reports received.

Reports Sent The number of MLD proxy reports sent.

Leaves Received The number of MLD proxy leave messages received.

Leaves Sent The number of MLD proxy leave messages sent.

Display the MLD proxy membership and search the

MLD proxy membership database

You can display the MLD proxy membership information and search the MLD proxy

membership database by group.

To display the MLD proxy membership information and search the MLD proxy

membership database:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual400

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > MLD > Proxy Membership.

The Proxy Membership page displays.

6. To search for MLD proxy membership by group, specify the multicast group IPv6 address,

and click the Go button.

If the entry exists, that entry with the matching group IPv6 address is displayed as the first

entry, followed by the remaining entries. An exact match is required.

7. To refresh the page, click the Refresh button.

The following table describes the nonconfigurable fields on the page.

Table 130. MLD proxy membership information

Field Description

Proxy Interface The interface on which the MLD proxy is enabled.

Group IP The IPv6 multicast group address.

Source Hosts The source addresses that are members of the multicast group.

Last Reporter The source IPv6 address that sent the last membership report for the

multicast group on the MLD proxy interface.

Up Time The time elapsed since this entry was created.

Expiry Time The expiration interval for each source address that is a member of the

multicast group. This is the period after which the source entry ages out.

State The state of the host entry:

• Non-member state: The host does not belong to the group on the

interface.

• Delaying member state: The host belongs to the group on the

interface and its report timer is active. (The report timer is used to send

reports.)

• Idle member state: The host belongs to the group on the interface but

its report timer is inactive.

Filter Mode The group filter mode (Include, Exclude, or None) for the group on the MLD

proxy interface.

Number of Sources The number of source hosts in the multicast group.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual401

Static multicast routes for IPv6 addresses

If a multicast routing protocol such as PIM-SM or PIM-DM is enabled and configured,

multicast routes are built dynamically. However, you can also configure one or more static

IPv6 multicast routes. A static route can facilitate the processing of multicast traffic when a

neighboring reverse-path forwarding (RPF) router is located between the switch and the

multicast source.

Configure static multicast routes for IPv6 addresses

You can add a new or change an existing static IPv6 multicast route.

To add or change a static IPv6 multicast route:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > Static Routes Configuration.

The Static Routes Configuration page displays.

6. If you are changing an existing static multicast route, select the check box for the route.

For an existing static route, you can change the metric only.

7. In the Source IP field, specify the IPv6 address of the multicast packet source.

8. In the Prefix Length field, specify the IPv6 prefix length of the multicast packet source.

9. In RPF Neighbor field, specify the IPv6 address of the neighbor RPF router that is

located between the switch and the multicast source.

10. In the Metric field, specify the link state cost of the path from the multicast source to the

switch.

The range is from 0 to 255.

11. From the RPF Interface menu, select the interface that is connected to the RPF neighbor.

12. Do one of the following:

•If you are adding a new static multicast route, click the Add button.

AV Line of Fully Managed Switches M4250 Series

Configure Multicast Routing User Manual402

Your settings are saved. The static multicast route is added.

•If you are changing an existing static multicast route, click the Apply button.

Your settings are saved.

13. To save the settings to the running configuration, click the Save icon.

Delete a static multicast route for an IPv6 address

You can delete a static IPv6 multicast route that you no longer need.

To delete a static multicast route:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select Routing> IPv6 Multicast > Static Routes Configuration.

The Static Routes Configuration page displays.

6. Select the check box for the static route.

7. Click the Delete button.

Your settings are saved. The static route is deleted.

8. To save the settings to the running configuration, click the Save icon.

403

6Configure Quality of Service

This chapter covers the following topics:

•Quality of Service concepts

•Class of Service

•Differentiated Services

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual404

Quality of Service concepts

In a switch, each physical port consists of one or more queues for transmitting packets on the

attached network. Multiple queues per port are often provided to give preference to certain

packets over others based on user-defined criteria. When a packet is queued for

transmission in a port, the rate at which it is serviced depends on how the queue is

configured and possibly the amount of traffic present in the other queues of the port. If a

delay is necessary, packets are held in the queue until the scheduler authorizes the queue for

transmission. As queues become full, packets can no longer be held for transmission and are

dropped by the switch.

Quality of Service (QoS) is a means of providing consistent, predictable data delivery by

distinguishing packets with strict timing requirements from those that are more tolerant of

delay. Packets with strict timing requirements are given special treatment in a QoS-capable

network. With this in mind, all elements of the network must be QoS capable. The presence

of at least one node that is not QoS capable creates a deficiency in the network path, and the

performance of the entire packet flow is compromised.

Class of Service

The Class of Service (CoS) queueing feature lets you directly configure certain aspects of

switch queueing. This provides the desired QoS behavior for different types of network traffic

when the complexities of DiffServ are not required. The priority of a packet arriving at an

interface can be used to steer the packet to the appropriate outbound CoS queue through a

mapping table. CoS queue characteristics that affect queue mapping, such as minimum

guaranteed bandwidth or transmission rate shaping, are user-configurable at the queue (or

port) level.

Eight queues per port are supported.

CoS configuration concepts

You can set the Class of Service trust mode for an interface. Each port on the switch can be

configured to trust one of the packet fields (802.1p or IP DSCP), or to not trust any packet’s

priority designation (untrusted mode). If the port is set to a trusted mode, it uses a mapping

table appropriate for the trusted field being used. This mapping table indicates the CoS

queue to which the packet must be forwarded on the appropriate egress port. Of course, the

trusted field must exist in the packet for the mapping table to be of any use. If this is not the

case, default actions are performed. These actions involve directing the packet to a specific

CoS level configured for the ingress port as a whole, based on the existing port default

priority as mapped to a traffic class by the current 802.1p mapping table.

Alternatively, when a port is configured as untrusted, it does not trust any incoming packet

priority designation and uses the port default priority value instead. All packets arriving at the

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual405

ingress of an untrusted port are directed to a specific CoS queue on the appropriate egress

ports, in accordance with the configured default priority of the ingress port. This process is

also used for cases where a trusted port mapping cannot be honored, such as when a non-IP

packet arrives at a port configured to trust the IP DSCP value.

Configure the CoS trust mode settings globally or for a

specific interface

A global CoS trust mode configuration setting is applied to all interfaces on the switch.

A CoS trust mode configuration setting for an interface is applied to the selected interface

only. To configure the CoS trust mode for more than one interface, repeat the task for each

selected interface.

To configure the CoS trust mode settings on all interfaces or on a specific interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS> CoS > Basic > CoS Configuration.

The CoS Configuration page displays.

6. Either configure the same CoS trust mode settings for all CoS-configurable interfaces or

configure CoS settings per interface.

By default, the Global radio button is selected.

•To configure the same CoS trust mode settings for all CoS configurable interfaces, do

the following:

a. Select the Global radio button.

b. From the Global Trust Mode menu, select one of the following trust mode

options for ingress traffic on the switch:

- untrusted: Do not trust any CoS packet marking at ingress.

- trust dot1p: The eight priority tags that are specified in IEEE 802.1p are p0 to

p7. The QoS setting lets you map each of the eight priority levels to one of

eight internal hardware priority queues.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual406

- trust IP-DSCP: The six most significant bits of the DiffServ field are called the

Differentiated Services Code Point (DSCP) bits. The default mode is IP-DSCP.

•To configure CoS settings for an interface, do the following:

a. Select the Interface radio button.

b. From the menu, select the interface.

The configured settings apply to the selected interface only.

c. From the Interface Trust Mode menu, select one of the following trust mode

options:

- untrusted: Do not trust any CoS packet marking at ingress.

- trust dot1p: The eight priority tags that are specified in IEEE 802.1p are p0 to

p7. The QoS setting lets you map each of the eight priority levels to one of

seven internal hardware priority queues.

- trust IP-DSCP: The six most significant bits of the DiffServ field are called the

Differentiated Services Code Point (DSCP) bits. The default mode is IP-DSCP.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Map 802.1p priorities to queues

You can view or change which internal traffic classes are mapped to the 802.1p priority class

values in Ethernet frames that the device receives. The priority-to-traffic class mappings can

be applied globally (to all interfaces) or to each individual interface. The mapping allows the

switch to group various traffic types (for example, data or voice) based on their latency

requirements and give preference to time-sensitive traffic.

To map 802.1p priorities to queues for all interfaces or individual interfaces

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > CoS > Advanced > 802.1p to Queue Mapping.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual407

The 802.1p to Queue Mapping page displays.

6. From the Interface menu, either select All to apply the mapping to all interfaces or select

and individual interface.

7. In the 802.1p to Queue Mapping table, map each of the eight 802.1p priorities to a queue

(internal traffic class) from 0 to 7.

The 802.1p Priority row contains traffic class selectors for each of the eight 802.1p

priorities to be mapped. The priority goes from low (0) to high (7). For example, traffic with

a priority of 0 is for most data traffic and is sent using best effort. Traffic with a higher

priority, such as 7, might be time-sensitive traffic, such as voice or video.

Table 131. Default values for 802.1p to queue mapping

802.1p priority 0 1 2 3 4 5 6 7

Default queue 1 0 0 1 2 2 3 3

The values in the menu under each priority represent the traffic class. The traffic class is

the hardware queue for a port. Higher traffic class values indicate a higher queue

position. Before traffic in a lower queue is sent, it must wait for traffic in higher queues to

be sent.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Map DSCP values to queues

You can map an internal traffic class to a DSCP value.

To map DSCP values to queues:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > CoS > Advanced > IP DSCP to Queue Mapping.

The IP DSCP to Queue Mapping page displays.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual408

The IP DSCP field displays an IP DSCP value from 0 to 63.

6. For each DSCP value, specify which internal traffic class to map the corresponding IP DSCP

value.

The queue number depends on specific hardware.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

Configure the CoS interface settings for an interface

You can configure the trust mode for one or more interfaces and apply an interface shaping

rate to all interfaces or to a specific interface.

To configure CoS settings for an interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > CoS> Advanced > CoS Interface Configuration.

The CoS Interface Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1 (the unit ID of the switch): Only physical interfaces are displayed. This is the default

setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the port, or type

the port number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual409

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Interface Trust Mode menu, select one of the following trust mode options for

ingress traffic on the selected interfaces:

• Untrusted: Do not trust any CoS packet marking at ingress.

• 802.1p: The eight priority tags that are specified in IEEE 802.1p are p0 to p7. The

QoS setting lets you map each of the eight priority levels to one of seven internal

hardware priority queues. The default value is 802.1p.

• IP-DSCP: The six most significant bits of the DiffServ field are called the

Differentiated Services Code Point (DSCP) bits.

9. In the Interface Shaping Rate field, specify the maximum outbound transmission rate

bandwidth in kbps.

This setting is used to shape the outbound transmission rate in increments of 1 percent in

a range of 0–100. This value is controlled independently of any per-queue maximum

bandwidth configuration. It is effectively a second-level shaping mechanism. The default

value is 0. The value 0 means that the maximum is unlimited.

The expected shaping at egress interface is calculated as follows:

frameSize × shaping/(frameSize + IFG), where IFG (Inter frame gap) is 20 bytes,

frameSize is configured frame size, and shaping is configured traffic shaping.

For example, if 64 bytes frame size and 64 kbps shaping are configured, the expected

shaping is approximately 48 kbps.

10. Click the Apply button.

Your settings are saved.

11. To save the settings to the running configuration, click the Save icon.

Configure CoS queue settings for an interface

You can define what a particular queue does by configuring switch egress queues. You can

control how much bandwidth is used by the queue, the queue depth during times of

congestion, and the scheduling of packet transmission from all queues on a port. Each port

contains its own CoS queue-related configuration.

For information about configuring CoS queue settings globally, see Configure the CoS trust

mode settings globally or for a specific interface on page 405.

To configure the CoS queue settings for an interface:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual410

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > CoS > Advanced > Interface Queue Configuration.

The Interface Queue Configuration page displays.

6. Select whether to display physical interfaces, LAGs, or both by clicking one of the following

links above the table heading:

•1 (the unit ID of the switch): Only physical interfaces are displayed. This is the default

setting.

•LAG: Only LAGs are displayed.

• All: Both physical interfaces and LAGs are displayed.

7. Select one or more interfaces by taking one of the following actions:

•To configure a single interface, select the check box associated with the port, or type

the port number in the Go To Interface field and click the Go button.

•To configure multiple interfaces with the same settings, select the check box

associated with each interface.

•To configure all interfaces with the same settings, select the check box in the heading

row.

8. From the Queue ID menu, select the queue.

You can select a queue from 0 to 7.

9. In the Minimum Bandwidth field, specify the minimum guaranteed bandwidth allotted to the

queue on the interface.

Setting this value higher than its corresponding maximum bandwidth automatically

increases the maximum to the same value. The default value is 0. The range is from 0 to

100 in increments of 1. The value 0 means that no guaranteed minimum bandwidth is

applied. The sum of the individual minimum bandwidth values for all queues on the

selected interface cannot exceed the maximum (100).

The setting applies only to the queue that you select from the Queue ID menu.

10. From the Scheduler Type menu, select the type of scheduling that is used for the queue on

the interface:

• Strict: The interface services traffic with the highest priority on a queue first.

•Weighted: The interface uses weighted round robin to associate a weight to each

queue. This is the default setting.

The setting applies only to the queue that you select from the Queue ID menu.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual411

11. From the Queue Management Type menu, select the queue depth management method

that is used for the queue on the interface:

• TailDrop: The Taildrop method causes packets to be dropped if the queue is full.

When space becomes available in the queue, packets are once again accepted. This

is the default method.

• WRED: The Weighted Random Early Detection (WRED) method allows you to refine

queue management so that packets are dropped selectively (see Configure the CoS

WRED precedence settings for dropping packets on page 411).

The setting applies only to the queue that you select from the Queue ID menu.

12. Click the Apply button.

Your settings are saved.

13. To save the settings to the running configuration, click the Save icon.

Configure the CoS WRED precedence settings for

dropping packets

If you use the Weighted Random Early Detection (WRED) method as the queue depth

management method (see Configure CoS queue settings for an interface on page 409), you

can configure the precedence settings for dropping packets if a queue is full. These settings

apply to a selected interface and a selected queue. You can configure different setting for

each queue and for each precedence level on one interface.

To configure CoS WRED precedence settings for dropping packets:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > CoS> Advanced > CoS Queue Drop Precedence Configuration.

The CoS Queue Drop Precedence Configuration page displays.

6. From the Interface menu, select an interface.

7. From the Queue ID menu, select a queue from 0 to 7.

8. From the Drop Precedence Level menu, select the drop precedence levels from 1 to 4.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual412

Packets to which level 1 applies are the most likely to be dropped. Packets to which

level 4 applies are the least likely to be dropped.

The following table shows the default values for each drop precedence level. You can

modify these settings.

Table 132. Default values for drop precedence levels

Drop precedence

level

WRED Minimum

Threshold

WRED Maximum

Threshold

WRED Drop

Probability Scale

1 40 100 10

2 30 90 10

3 20 80 10

4 99 100 10

9. In the WRED Minimum Threshold field, specify the WRED minimum queue threshold

below which no packets are dropped for the selected drop precedence level.

The range is from 0 to 100.

10. In the WRED Maximum Threshold field, specify the weighted RED maximum queue

threshold above which all packets are dropped for the current drop precedence level.

The range is from 0 to 100.

11. Use WRED Drop Probability Scale field, specify the packet drop probability for the current

drop precedence level.

The range is from 0 to 100.

12. Click the Apply button.

Your settings are saved.

13. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 133. CoS Interface Queue Drop Precedence Status

Field Description

Interface The CoS interface.

Queue ID The queue ID.

Drop Precedence Level The drop precedence level.

WRED Minimum Threshold The weighted RED minimum queue threshold value.

WRED Maximum Threshold The weighted RED maximum queue threshold value.

WRED Drop Probability Scale The packet drop probability value.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual413

Differentiated Services

The QoS feature contains Differentiated Services (DiffServ) support that allows traffic to be

classified into streams and given certain QoS treatment in accordance with defined per-hop

behaviors.

Standard IP-based networks provide best-effort data delivery service. Best-effort service

implies that the network delivers the data in a timely fashion, although there is no guarantee.

If congestion occurs, packets might be delayed, sent sporadically, or dropped. For typical

Internet applications, such as email and file transfers, a slight degradation in service is

acceptable and in many cases unnoticeable. However, any degradation of service can

negatively affect applications with strict timing requirements, such as voice and multimedia.

Defining DiffServ

To use DiffServ for QoS, you must first define the following categories and their criteria:

1. Class: Create classes and define class criteria.

2. Policy: Create policies, associate classes with policies, and define policy statements.

3. Service: Add a policy to an inbound interface.

Packets are classified and processed based on defined criteria. The classification criteria are

defined by a class. The processing is defined by a policy’s attributes. Policy attributes can be

defined on a per-class instance basis, and it is these attributes that are applied when a match

occurs. A policy can contain multiples classes. When the policy is active, the actions taken

depend on which class matches the packet.

Note the following about the DiffServ process:

•Packets are filtered and processed based on defined criteria. The filtering criteria is

defined by a class. The processing is defined by a policy's attributes. Policy attributes can

be defined on a per-class instance basis, and it is these attributes that are applied when a

match occurs.

•The configuration process begins with defining one or more match criteria for a class.

Then one or more classes are added to a policy. Policies are then added to interfaces.

Packet processing begins by testing the match criteria for a packet. The All class type option

specifies that each match criteria within a class must evaluate to true for a packet to match

that class. The Any class type option specifies that at least one match criteria must evaluate

to true for a packet to match that class. Classes are tested in the order in which they were

added to the policy. A policy is applied to a packet when a class match within that policy is

found.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual414

DiffServ wizard overview

The DiffServ wizard enables DiffServ on the switch by creating a traffic class, adding the

traffic class to a policy, and then adding the policy to the ports that you select. The DiffServ

wizard does the following:

•Creates a DiffServ class and defines match criteria used as a filter to determine if

incoming traffic meets the requirements to be a member of the class.

•Sets the DiffServ class match criteria based on traffic type selection as follows:

• VOIP: Sets the match criteria to UDP protocol.

• HTTP: Sets the match criteria to HTTP destination port.

• FTP: Sets match criteria to FTP destination port.

• Telnet: Sets the match criteria to Telnet destination port.

• Every: Sets the match criteria for all traffic.

•Create a Diffserv policy and add it to the DiffServ class created.

•Marks traffic as follows:

-Policing enabled: If policing is enabled, the DiffServ policy style is set to simple.

Traffic that conforms to the class match criteria is processed according to the

outbound priority selection. The outbound priority configures the handling of

conforming traffic as follows:

• High: Sets the policing action to markdscp ef.

• Medium: Sets the policing action to markdscp af31.

• Low: Sets the policing action to send.

• Policing disabled: If policing is disabled, all traffic is marked as follows:

•High: Sets the policy mark to ipdscp ef.

• Medium: Sets the policy mark to ipdscp af31.

• Low: Sets the policy mark to ipdscp be.

•Adds each selected port and LAG to the policy.

Use the DiffServ wizard to create a traffic class and policy

for one or more interfaces

To use the DiffServ wizard to create a traffic class and policy for one or more

interfaces:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual415

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS> DiffServ > DiffServ Wizard.

The DiffServ Wizard page displays.

6. From the Traffic Type menu, define the DiffServ class by selecting VOIP, HTTP, FTP,

Telnet, or Every.

7. In the Committed Rate (Kbps) field, specify the rate in Kbps that applies to the traffic in the

class.

The range is from 1 to the maximum supported bandwidth on the interface. The default is

1 Kbps.

The committed rate is applied if policing is enabled (which it is by default):

• Policing enabled: The committed rate is applied to the policy and the policing action

is set to conform.

• Policing disabled: The committed rate is not applied and the policy is set to

markdscp.

8. To disable policing, clear the Policing check box.

By default, policing is enabled.

9. From the Outbound Priority menu, select the priority for outbound traffic:

• High: The way this setting is applied depends on whether policing is enabled:

-Policing enabled: High sets the action to mark dscp ef.

- Policing disabled: High sets the action to mark ipdscp ef.

• Medium: The way this setting is applied depends on whether policing is enabled:

- Policing enabled: Medium sets the action to mark dscp af31

- Policing disabled: Medium sets the action to mark ipdscp af31

• Low: The way this setting is applied depends on whether policing is enabled:

-Policing enabled: Low sets the action to send.

- Policing disabled: Low sets the action to mark ipdscp be.

10. In the Ports table, click each port to which you want to add the DiffServ policy.

11. In the LAG table, click each LAG to which you want to add the DiffServ policy.

12. Click the Apply button.

Your settings are saved.

13. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual416

Configure the DiffServ mode and display the entries in the

DiffServ private MIB tables

You can enable or disable DiffServ and display the current and maximum number of rows in

each of the main DiffServ private MIB tables.

To configure the DiffServ mode and display the entries in the DiffServ private MIB

tables:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS> DiffServ > Basic > DiffServ Configuration.

The DiffServ Configuration page displays.

6. Select the administrative mode for DiffServ:

•Enable: Differentiated services are active. This is the default setting.

• Disable: Differentiated services is inactive. An existing DiffServ configuration is

retained and can be changed but is not active.

7. Click the Apply button.

Your settings are saved.

8. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable fields on the page.

Table 134. DiffServ Status information

Field Description

Class table The number of configured DiffServ classes out of the total allowed on the switch.

Class Rule table The number of configured class rules out of the total allowed on the switch.

Policy table The number of configured policies out of the total allowed on the switch.

Policy Instance table The number of configured policy class instances out of the total allowed on the switch.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual417

Configure a DiffServ class

You can add a new DiffServ class name or rename or delete an existing class. You can also

define the criteria to associate with a DiffServ class. As packets are received, these DiffServ

classes are used to prioritize packets. You can use multiple match criteria in a class. The

logic is a Boolean logical-AND for this criteria.

Add and configure a DiffServ class

To add and configure a DiffServ class:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > DiffServ > Advanced > Class Configuration.

The Class Configuration page displays.

6. In the Class Name field, enter a class name.

The Class Name field also lists all existing DiffServ class names, from which you can

select one for modification or deletion. The class name can be 1 to 31 alphanumeric

characters in length.

7. From the Class Type menu, select one of the following options:

• All: All match criteria that you define for the class must be satisfied for a packet

match. All signifies the logical AND of all the match criteria.

For example, if the class includes one criterion for an IP address and another criterion

for a MAC address, the traffic must match both criteria.

Policy Attributes table The number of configured policy attributes (attached to the policy class instances) out

of the total allowed on the switch.

Service table The number of configured services (attached to the policies on specified interfaces)

out of the total allowed on the switch.

Table 134. DiffServ Status information (continued)

Field Description

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual418

• Any: Any match criterion that you define for the class must be satisfied for a packet

match.

For example, if the class includes one criterion for an IP address and another criterion

for a MAC address, the traffic must match either one of the criteria but does not need

to match both criteria.

You can select the class type only when you are creating a new class. After the class is

created, you cannot modify the type of class.

8. Click the Add button.

The new class is added.

9. After creating the class, click the class name.

The class name is a hyperlink to the page on which you can define the class configuration

(see the following figure).

10. Define the criteria that must be associated with the DiffServ class by selecting one of the

following radio buttons:

• Match Every: Select this radio button to add a match condition that considers all

packets to belong to the class. The only selection from the Match Every menu is Any.

• Reference Class: Select this radio button to reference another class for criteria. The

match criteria defined in the reference class function as match criteria in addition to

the match criteria that you define for the selected class. After you select the radio

button, the classes that can be referenced are displayed. Select the class to

reference. A class can reference only one other class of the same type.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual419

• Class of Service: Select this radio button to require the Class of Service (CoS) value

in an Ethernet frame header to match the specified CoS value. This option lists all the

values for the Class of Service match criterion in the range 0 to 7 from which you can

select one.

• VLAN: Select this radio button to require a packet’s VLAN ID to match a VLAN ID.

The VLAN value is in the range from 1 to 4093.

• Secondary Class of Service: Select this radio button to require the secondary Class

of Service (CoS) value in an Ethernet frame header to match the specified secondary

CoS value.

• Secondary VLAN: Select this radio button to require a packet’s VLAN ID to match a

secondary VLAN ID. The VLAN value is in the range from 1 to 4093.

• Ethernet Type: Select this radio button to require the EtherType value in the Ethernet

frame header to match the specified EtherType value. After you select the radio

button, select the EtherType keyword from the menu of common protocols that are

mapped to their Ethertype value. You can also select User Value from the menu and

enter a value in the hexadecimal range from 600 to ffff.

• Source MAC: Select this radio button to require a packet’s source MAC address to

match the specified MAC address. After you select this radio button, use the following

fields to configure the source MAC address match criteria:

- Address: The source MAC address to match. The source MAC address is

specified as six two-digit hexadecimal numbers separated by colons.

- Mask: The MAC mask, which specifies the bits in the source MAC address to

compare against the Ethernet frame. Use Fs and zeros to configure the MAC

mask. An F means that the bit is checked, and a zero in a bit position means that

the data is not significant. For example, if the MAC address is aa:bb:cc:dd:ee:ff,

and the mask is ff:ff:00:00:00:00, all MAC addresses with aa:bb:xx:xx:xx:xx result

in a match (where x is any hexadecimal number). Note that this is not a wildcard

mask, which ACLs use.

• Destination MAC: Select this radio button to require a packet’s destination MAC

address to match the specified MAC address. After you select the radio button, use

the following fields to configure the destination MAC address match criteria:

- Address: The destination MAC address to match. The destination MAC address

is specified as six two-digit hexadecimal numbers separated by colons.

- Mask: The MAC mask, which specifies the bits in the destination MAC address to

compare against an Ethernet frame. Use Fs and zeros to configure the MAC

mask. An F means that the bit is checked, and a zero in a bit position means that

the data is not significant. For example, if the MAC address is aa:bb:cc:dd:ee:ff,

and the mask is ff:ff:00:00:00:00, all MAC addresses with aa:bb:xx:xx:xx:xx result

in a match (where x is any hexadecimal number). Note that this is not a wildcard

mask, which ACLs use.

• Protocol Type: Select this radio button to require a packet’s Layer 4 protocol to match

the specified protocol, which you must select from the menu. You can also select

Other from the menu and enter a protocol number from 0 to 255.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual420

• Source IP: Select this radio button to require a packet’s source IP address to match

the specified IP address. After you select the radio button, use the following fields to

configure the source IP address match criteria:

- Address: The source IP address format to match in dotted-decimal.

-Mask: The bit mask in IP dotted-decimal format indicating which parts of the

source IP address to use for matching against packet content.

•Source L4 Port: Select this radio button to require a packet’s TCP/UDP source port to

match the specified protocol, which you must select from the menu. You can also

select Other from the menu and enter a port number from 0 to 65535.

• Destination IP: Select this radio button to require a packet’s destination IP address to

match the specified IP address. After you select the radio button, use the following

fields to configure the destination IP address match criteria:

- Address: The destination IP address format to match in dotted-decimal.

-Mask: The bit mask in IP dotted-decimal format indicating which parts of the

destination IP address to use for matching against packet content.

• Destination L4 Port: Select this radio button to require a packet’s TCP/UDP

destination port to match the specified protocol. You can also select Other from the

menu and enter a port number from 0 to 65535.

• IP DSCP: Select this radio button to require the packet’s IP DiffServ Code Point

(DSCP) value to match the specified IP DSCP keyword code, which you must select

from the menu. You can also select Other from the menu and enter an IP DSCP

value from 0 to 63. The DSCP value is defined as the high-order 6 bits of the Service

Type octet in the IP header.

• Precedence Value: Select this radio button to require the packet’s IP precedence

value to match the specified number from 0 to 7, which you must select from the

menu. The IP Precedence field in a packet is defined as the high-order 3 bits of the

Service Type octet in the IP header.

• IP ToS: Select this radio button to require the packet’s Type of Service (ToS) bits in

the IP header to match the specified value. The IP ToS field in a packet is defined as

all 8 bits of the service type octet in the IP header. After you select the radio button,

use the following fields to configure the ToS match criteria:

- Bit Value: Enter a two-digit hexadecimal number octet value in the range from 00

to ff to match the bits in a packet’s ToS field.

• Bit Mask: Specify the bit positions that are used for comparison against the IP

ToS field in a packet.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual421

The following table describes the nonconfigurable fields in the Class Summary section.

Table 135. DiffServ Class Configuration, Class Summary information

Field Description

Match Criteria The configured match criteria for the specified class.

Values The values of the configured match criteria.

Rename an existing DiffServ class

To rename an existing DiffServ class:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > DiffServ > Advanced > Class Configuration.

The Class Configuration page displays.

6. Select the check box next to the class name.

7. In the Class Name field, specify the new name.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Change the criteria for an existing DiffServ class

To change the criteria for an existing DiffServ class:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual422

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > DiffServ > Advanced > Class Configuration.

The Class Configuration page displays.

6. Click the class name, which is a hyperlink.

The page on which you can change the class configuration displays.

7. Change the class configuration as needed.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Delete a DiffServ class

To delete a DiffServ class:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > DiffServ > Advanced > Class Configuration.

The Class Configuration page displays.

6. Select the check box next to the class name.

7. Click the Delete button.

The class is removed.

8. To save the settings to the running configuration, click the Save icon.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual423

Configure an IPv6 DiffServ class

The switch supports QoS ACL and DiffServ functionality for IPv6 by providing support for

IPv6 packet classification. An IPv6 ACL serves the same purpose as an IPv4 ACL.

An Ethernet IPv6 packet is distinguished from an IPv4 packet by its unique Ethertype value,

so all IPv6 classifiers include the Ethertype field, even though you cannot configure its value

for an IPv6 class on the switch.

The destination and source IPv6 addresses use a prefix length value instead of an individual

mask to qualify them as a subnet addresses or a host addresses. Packets that match an IPv6

classifier can be marked with the IP DSCP field in the traffic class octet.

You can also assign an IPv6 ACL with a DiffServ assignment to LAG interfaces.

You can add a new DiffServ class name or rename or delete an existing class. As packets

are received, these DiffServ classes are used to prioritize packets. You can use multiple

match criteria in a class. The logic is a Boolean logical-AND for this criteria.

Add and configure an IPv6 DiffServ class

To configure an IPv6 DiffServ class:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > DiffServ > Advanced > IPv6 Class Configuration.

The Class Configuration page displays.

6. In the Class Name field, enter a class name.

The Class Name field also lists all existing DiffServ class names, from which you can

select one for modification or deletion. The class name can be 1 to 31 alphanumeric

characters in length.

7. From the Class Type menu, select one of the following options:

• All: All match criteria that you define for the class must be satisfied for a packet

match. All signifies the logical AND of all the match criteria.

For example, if the class includes one criterion for an IP address and another criterion

for a MAC address, the traffic must match both criteria.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual424

• Any: Any match criterion that you define for the class must be satisfied for a packet

match.

For example, if the class includes one criterion for an IP address and another criterion

for a MAC address, the traffic must match either one of the criteria but does not need

to match both criteria.

You can select the class type only when you are creating a new class. After the class is

created, you cannot modify the type of class.

8. Click the Add button.

The new class is added.

9. After creating the class, click the class name.

The class name is a hyperlink to the page on which you can define the class configuration

(see the following figure).

10. Define the criteria to associate with a DiffServ class:

• Match Every: Select this radio button to add a match condition that considers all

packets to belong to the class. The only selection from the Match Every menu is Any.

• Reference Class: Select this radio button to reference another class for criteria. The

match criteria defined in the reference class function as match criteria in addition to

the match criteria that you define for the selected class. After selecting this option, the

classes that can be referenced are displayed. Select the class to reference. A class

can reference one other class of the same type.

• Protocol Type: Select this radio button to require a packet’s Layer 4 protocol to match

the specified protocol, which you must select from the menu. The menu includes

Other as a selection, which lets you enter a protocol number from 0 to 255.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual425

• Source Prefix/Length: Select this radio button to require a packet’s source prefix and

prefix length to match the specified source IPv6 prefix and prefix length. Prefix must

always be specified with the prefix length. The prefix can be in the hexadecimal range

from 0 to FFFF:FFFF:FFFF:FFFF:FFFF:FFFF:FFFF:FFFF and the prefix length can

be in the range from 0 to 128.

• Source L4 Port: Select this radio button to require a packet’s TCP/UDP source port to

match the specified protocol, which you must select from the menu. The range is 0 to

65535. The menu includes Other as an option for unnamed ports.

• Destination Prefix/Length: Select this radio button to require a packet’s destination

prefix and prefix length to match the specified source IPv6 prefix and prefix length.

Prefix must always be specified with the prefix length. The prefix can be in the

hexadecimal range from 0 to FFFF:FFFF:FFFF:FFFF:FFFF:FFFF:FFFF:FFFF and

the prefix length can be in the range from 0 to 128.

• Destination L4 Port: Select this radio button to require a packet’s TCP/UDP

destination port to match the specified protocol, which you must select from the

menu. The range is 0 to 65535. The menu includes Other as an option for unnamed

ports.

• Flow Label: Select this radio button to require a packet’s flow label to match the

specified flow label. The flow label is a 20-bit number that is unique to an IPv6 packet

and that is used by end stations to signify QoS handling in routers. The flow label can

be specified in the range from 0 to 1048575.

• IP DSCP: Select this radio button to require the packet’s IP DiffServ Code Point

(DSCP) value to match the specified IP DSCP keyword code, which you must select

from the menu. The menu includes Other as a selection, which lets you enter an IP

DSCP value from 0 to 63. The DSCP value is defined as the high-order 6 bits of the

Service Type octet in the IP header.

11. Click the Apply button.

Your settings are saved.

12. To save the settings to the running configuration, click the Save icon.

The following table describes the nonconfigurable information displayed in the Class

Summary section.

Table 136. IPv6 DiffServ class configuration class summary

Field Description

Match Criteria The configured match criteria for the specified class.

Values The values of the configured match criteria.

Rename an existing IPv6 DiffServ class

To rename an existing IPv6 DiffServ class:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual426

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > DiffServ > Advanced > IPv6 Class Configuration.

The Class Configuration page displays.

6. Select the check box next to the class name.

7. In the Class Name field, specify the new name.

8. Click the Apply button.

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Change the criteria for an existing IPv6 DiffServ class

To change the criteria for an existing IPv6 DiffServ class:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > DiffServ > Advanced > IPv6 Class Configuration.

The Class Configuration page displays.

6. Click the class name, which is a hyperlink.

The page on which you can change the class configuration displays.

7. Change the class configuration as needed.

8. Click the Apply button.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual427

Your settings are saved.

9. To save the settings to the running configuration, click the Save icon.

Delete an IPv6 DiffServ class

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

The System Information page displays.

5. Select QoS > DiffServ > Advanced > IPv6 Class Configuration.

The Class Configuration page displays.

6. Select the check box next to the class name.

7. Click the Delete button.

The class is removed.

8. To save the settings to the running configuration, click the Save icon.

Configure a DiffServ policy

You can associate a collection of classes with one or more policies.

Create and configure a DiffServ policy

To create and configure a DiffServ policy:

1. Launch a web browser.

2. In the address field of your web browser, enter the IP address of the switch.

The login page displays.

3. Click the Main UI Login button.

The main UI login page displays in a new tab.

4. Enter admin as the user name, enter your local device password, and click the Login

button.

The first time that you log in, no password is required. However, you then must specify a

local device password to use each subsequent time that you log in.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual428

The System Information page displays.

5. Select QoS > DiffServ > Advanced > Policy Configuration.

The Policy Configuration page displays.

6. In the Policy Name field, enter a policy name.

The policy class name can be 1 to 31 alphanumeric characters in length.

7. From the Policy Type menu, select the traffic flow direction to which the policy must be

applied:

•In: The policy is applied to inbound traffic.

• Out: The policy is applied to outbound traffic.

8. From the Member Class menu, select an existing class that you want to associate with the

new policy.

9. Click the Add button.

The new policy is added.

10. After creating the policy, click the policy name.

The policy name is a hyperlink to the page on which you can define the policy attributes

(see the following figure, which does not show the Two Rate section of the page).

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual429

11. Configure the policy attributes by selecting one of the following radio buttons:

• Assign Queue: Select this radio button to specify that traffic must be assigned to a

queue, which you must select from the menu. The queue is expressed as a value in

the range from 0 to 7.

• Drop: Select this radio button to require each packet to be dropped.

• Mark VLAN CoS: Select this radio button to specify the VLAN priority, which you must

select from the menu. The VLAN priority is expressed as a value in the range from 0

to 7.

• Mark IP Precedence: Select this radio button to require packets to be marked with an

IP precedence value before being forwarded. You must select an IP precedence

value from 0 to 7 from the menu.

• Mirror: Select this radio button to require packets to be mirrored to an interface or

LAG, one of which you must select from the menu.

• Redirect: Select this radio button to require packets to be redirected to an interface or

LAG, one of which you must select from the menu.

• Mark IP DSCP: Select this radio button to require packet to be marked with an IP

DSCP keyword code, which you must select from the menu. The DSCP value is

defined as the high-order 6 bits of the Service Type octet in the IP header.

• Simple Policy: Select this radio button to define the simple traffic policing style for the

class. By default, the simple policy is color blind, and color classes do not apply. You

can make the simple policy color aware and select a color class.

A simple policy supports a single data rate and results in and action for packets that

conform to the policy and an action for packets that violate the policy.

a. Specify the color class for the simple policy:

- Color Blind: This is the default selection. Color classes do not apply.

- Color Aware: Select this radio button to require a color class that is valid for

use with this policy instance. After you select Color Aware from the Color

Mode menu, the Color Conform Class menu displays. From this menu,

select another class (one that you already created, see Configure a DiffServ

class on page 417 or Configure an IPv6 DiffServ class on page 423). In the

context of this policy, we refer to this selected class as the color class.

A valid color class contains a single, non-excluding match criterion, provided

that the criterion does not conflict with the classifier of the policy instance

itself:

b. Specify the traffic rate and bust size for packets that conform to the simple

policy.

- Committed Rate. Specify the committed rate that is applied to conforming

packets by entering a value in the range from 1 to 4294967295

kilobits-per-second (Kbps). The committed rate is used to limit the arrival rate

of conforming traffic.

- Committed Burst Size. Specify the burst size that is applied to conforming

packets by entering a value in the range from 1 to 128 KBytes (KB). The

committed burst size is used to limit the amount of conforming traffic.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual430

c. Specify a policy action for packets that conform to the simple policy.

- Send: Packets are forwarded unmodified. This is the default confirming action.

-Drop: Packets are dropped.

- Mark CoS: Packets are marked by DiffServ with the specified CoS value

before being forwarded. This selection requires that the Mark CoS field is set.

You must select a CoS value from 0 to 7 from the menu.

- Mark IP Precedence: These packets are marked by DiffServ with the specified

IP Precedence value before being forwarded. This selection requires that the

Mark IP Precedence field is set. You must select an IP precedence value from

0 to 7 from the menu.

- Mark IP DSCP: Packets are marked by DiffServ with the specified DSCP value

before being forwarded. This selection requires that the DSCP field is set. You

must either select a DSCP code from the menu or enter an IP DSCP value

from 0 to 63 in the field next to the menu. A value that you enter in the field

overrides any selection from the menu.

The DSCP value is defined as the high-order six bits of the Service Type octet

in the IP header.

d. Specify a policy action for packets that violate the simple policy.

- Send: Packets are forwarded unmodified. This is the default violating action.

- Drop: Packets are dropped.

- Mark CoS: Packets are marked by DiffServ with the specified CoS value

before being forwarded. This selection requires that the Mark CoS field is set.

You must select a CoS value from 0 to 7 from the menu.

- Mark IP Precedence: These packets are marked by DiffServ with the specified

IP Precedence value before being forwarded. This selection requires that the

Mark IP Precedence field is set. You must select an IP precedence value from

0 to 7 from the menu.

- Mark IP DSCP: Packets are marked by DiffServ with the specified DSCP value

before being forwarded. This selection requires that the DSCP field is set. You

must either select a DSCP code from the menu or enter an IP DSCP value

from 0 to 63 in the field next to the menu. A value that you enter in the field

overrides any selection from the menu.

The DSCP value is defined as the high-order six bits of the Service Type octet

in the IP header.

• Two Rate: Select this radio button to define a two-rate traffic policing style for the

class. A two-rate policy differs from a simple policy in that the two-rate policy allows

you to define a peak rate and a peak burst size, in addition to the committed rate and

committed burst size.

By default, the two-rate policy is color blind, and color classes do not apply. You can

make the two-rate policy color aware and select a color class.

A two-rate policy supports two data rates and results in and action for packets that

conform to the policy and an action for packets that violate the policy.

AV Line of Fully Managed Switches M4250 Series

Configure Quality of Service User Manual431

a. Specify the color class: