Page 1 Web UI Reference Guide ® DGS-3120 Series Product Model: xStack Layer 2 Managed Stackable Gigabit Switch Release 1.0 August 2010...
Page 2 Reproduction of this document in any manner whatsoever without the written permission of D-Link Corporation is strictly forbidden. Trademarks used in this text: D-Link and the D-LINK logo are trademarks of D-Link Corporation; Microsoft and Windows are registered trademarks of Microsoft Corporation.
Page 3: Table Of Contents
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Table of Contents Intended Readers ..........................1 Typographical Conventions ............................. 1 Notes, Notices and Cautions............................1 Chapter 1 Web-based Switch Configuration ................2 Introduction ..................................2 Login to the Web Manager .............................. 2 Web-based User Interface ..............................
Page 4 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Gratuitous ARP Settings ............................29 IPv6 Neighbor Settings (EI Mode Only) ........................29 IP Interface ..................................30 System IP Address Settings ............................30 Interface Settings ............................... 32 Management Settings ..............................35 Session Table................................
Page 5 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide VLAN Trunk Settings ..............................77 Browse VLAN ................................77 Show VLAN Ports ..............................78 Spanning Tree ................................79 STP Bridge Global Settings ............................81 STP Port Settings ..............................82 MST Configuration Identification ..........................
Page 6 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Multicast Filtering ................................ 118 IPv4 Multicast Filtering ............................118 IPv4 Multicast Profile Settings ..........................119 IPv4 Limited Multicast Range Settings ....................... 120 IPv4 Max Multicast Group Settings ........................120 IPv6 Multicast Filtering ............................
Page 7 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide CPU Access Profile List .............................. 171 ACL Finder .................................. 186 ACL Flow Meter................................186 Egress Access Profile List (EI Mode Only) ......................... 190 Egress ACL Flow Meter (EI Mode Only) ........................201 Chapter 8 Security .........................
Page 8 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide ARP Spoofing Prevention Settings ..........................242 BPDU Attack Protection .............................. 243 Loopback Detection Settings ............................245 Traffic Segmentation Settings ............................. 246 NetBIOS Filtering Settings ............................247 DHCP Server Screening ............................. 248 DHCP Server Screening Port Settings ........................
Page 9 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Port Statistics ................................283 Packets ................................283 Errors .................................. 288 Packet Size ................................292 Mirror ................................... 294 Port Mirror Settings ..............................294 RSPAN Settings ..............................295 sFlow (EI Mode Only) ..............................296 sFlow Global Settings ..............................
Page 10: Intended Readers
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Intended Readers Typographical Conventions Notes, Notices and Cautions Safety Instructions General Precautions for Rack-Mountable Products Protecting Against Electrostatic Discharge The DGS-3120 Series Web UI Reference Guide contains information for setup and management of the Switch. This manual is intended for network managers familiar with network management concepts and terminology.
Page 11: Chapter 1 Web-Based Switch Configuration
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 1 Web-based Switch Configuration Introduction Login to the Web Manager Web-based User Interface Web Pages Introduction All software functions of the DGS-3120 Series switches can be managed, configured and monitored via the embedded web-based (HTML) interface.
Page 12: Web-Based User Interface
Select the menu or window to display. Open folders and click the hyperlinked menu buttons Area 1 and subfolders contained within them to display menus. Click the D-Link logo to go to the D- Link website. Presents a graphical near real-time image of the front panel of the Switch. This area displays the Switch's ports, console and management port, showing port activity.
Page 13: Web Pages
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Web Pages When connecting to the management mode of the Switch with a web browser, a login screen is displayed. Enter a user name and password to access the Switch's management mode.
Page 14: Chapter 2 System Configuration
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 2 System Configuration Device Information System Information Settings Port Configuration Serial Port Settings Warning Temperature Settings System Log configuration Time Range Settings Port Group Settings (EI Mode Only)
Page 15: System Information Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 2-1 Device Information window Click the Settings link to navigate to the appropriate feature page for configuration. System Information Settings The user can enter a System Name, System Location, and System Contact to aid in defining the Switch.
Page 16: Port Configuration
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description System Name Enter a system name for the Switch, if so desired. This name will identify it in the Switch network. System Location Enter the location of the Switch, if so desired.
Page 17 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description Unit Select the unit you wish to configure. From Port / To Port Select the appropriate port range used for the configuration here. State Toggle the State field to either enable or disable a given port or group of ports.
Page 18: Port Description Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Port Description Settings The Switch supports a port description feature where the user may name various ports. To view the following window, click System Configuration > Port Configuration > Port Description Settings, as...
Page 19: Jumbo Frame Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 2-5 Port Error Disabled The fields that can be displayed are described below: Parameter Description Port Display the port that has been error disabled. Port State Describe the current running state of the port, whether enabled or disabled.
Page 20: Poe System Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide • Auto-discovery recognizes the connection of a PD (Powered Device) and automatically sends power to • The Auto-disable feature occurs under two conditions: firstly, if the total power consumption exceeds the system power limit;...
Page 21: Poe Port Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 2-7 PoE System Settings window The following parameters can be configured: Parameter Description Unit Select the unit you wish to configure. Tick the All check box to select all units.
Page 22: Serial Port Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 2-8 PoE Port Settings window The following parameters can be configured: Parameter Description Unit Select the unit you wish to configure. From Port / To Port Select a range of ports from the pull-down menus to be enabled or disabled for PoE.
Page 23: Warning Temperature Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 2-9 Serial Port Settings window The fields that can be configured are described below: Parameter Description Baud Rate Specify the baud rate for the serial port on the Switch. There are four possible baud rates to choose from, 9600, 19200, 38400 and 115200.
Page 24: System Log Configuration
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide High Threshold Enter the high threshold value of the warning temperature setting. Low Threshold Enter the low threshold value of the warning temperature setting. Click the Apply button to implement changes made.
Page 25: System Log
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 2-12 System Log Server Settings (SI Mode Only) Figure 2-13 System Log Server Settings (EI Mode Only) The fields that can be configured are described below: Parameter...
Page 26: System Log & Trap Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 2-14 System Log window The Switch can record event information in its own log. Click Go to go to the next page of the System Log window.
Page 27: System Severity Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 2-15 System Log & Trap Settings window (SI Mode Only) Figure 2-16 System Log & Trap Settings window (EI Mode Only) The fields that can be configured are described below:...
Page 28: Time Range Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 2-17 System Severity Settings window The fields that can be configured are described below: Parameter Description System Severity Choose how the alerts are used from the drop-down menu. Select Log to send the alert of the Severity Type configured to the Switch’s log for analysis.
Page 29: Port Group Settings (Ei Mode Only)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide End Time - Use this parameter to identify the ending time of the time range, in hours, minutes and seconds, based on the 24-hour time system. Weekdays Use the check boxes to select the corresponding days of the week that this time range is to be enabled.
Page 30: User Accounts Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description Date (DD/MM/YYYY) Enter the current day, month, and year to update the system clock. Time (HH:MM:SS) Enter the current time in hours, minutes, and seconds. Click the Apply button to accept the changes made.
Page 31: Command Logging Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Apply button to accept the changes made. NOTICE: In case of lost passwords or password corruption, please refer to the appendix chapter entitled, “Password Recovery Procedure,” which will guide you through the steps necessary to resolve this issue.
Page 32 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 2-23 Switches stacked in a Duplex Chain Figure 2-24 Switches stacked in a Duplex Ring Within each of these topologies, each switch plays a role in the Switch stack. These roles can be set by the user per individual Switch, or if desired, can be automatically determined by the Switch stack.
Page 33: Stacking Device Table
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Synchronization State – Once the Primary Master and the Backup Master have been established, the Primary Master will assign Stacking Unit IDs to switches in the stack, synchronize configurations for all switches and then transmit commands to the rest of the switches based on the users configurations of the Primary Master.
Page 34: Stacking Mode Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Stacking Mode Settings To begin the stacking process, users must first enable this device for stacking by using the Stacking Mode Settings window. To view this window, click System Configuration > Stacking > Stacking Mode Settings, as shown below:...
Page 35: Chapter 3 Management
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 3 Management Gratuitous ARP IPv6 Neighbor Settings (EI Mode Only) IP Interface Management Settings Session Table Single IP Management SNMP Settings Telnet Settings Web Settings Static ARP Settings The Address Resolution Protocol is a TCP/IP protocol that converts IP addresses into physical addresses.
Page 36: Proxy Arp Settings (Ei Mode Only)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Delete All button to remove all the entries listed. Click the Edit button to re-configure the specific entry. Click the Delete button to remove the specific entry.
Page 37: Gratuitous Arp
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide IP Address Enter or view the IP Address used. MAC Address Enter or view the MAC Address used. Click the Find button to locate a specific entry based on the information entered.
Page 38: Gratuitous Arp Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide NOTE: With the gratuitous ARP learning, the system will not learn new entry but only do the update on the ARP table based on the received gratuitous ARP packet.
Page 39: Ip Interface
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-6 IPv6 Neighbor Settings The fields that can be configured are described below: Parameter Description Interface Name Enter the interface name of the IPv6 neighbor. Neighbor IPv6 Address Enter the neighbor IPv6 address.
Page 40 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-7 System IP Address Settings window The fields that can be configured are described below: Parameter Description Static Allow the entry of an IP address, subnet mask, and a default gateway for the Switch.
Page 41: Interface Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide subnet should be sent. This is usually the address of a router or a host acting as an IP gateway. If your network is not part of an intranet, or you do not want the Switch to be accessible outside your local network, you can leave this field unchanged.
Page 42 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-10 IPv4 Interface Settings window (EI Mode Only) The fields that can be configured are described below: Parameter Description IP Interface Name Enter the name of the IP interface being created.
Page 43 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide VLAN Name Enter the VLAN Name used. IPv4 State Use the drop-down menu to enable or disable IPv4 State. Interface Admin State Use the drop-down menu to enable or disable the Interface Admin State.
Page 44: Management Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Management Settings Users can stop the scrolling of multiple pages beyond the limits of the console when using the Command Line Interface. This window is also used to enable the DHCP auto configuration feature on the Switch. When enabled, the Switch is instructed to receive a configuration file from a TFTP server, which will set the Switch to become a DHCP client automatically on boot-up.
Page 45: Session Table
Click the Refresh button to refresh the display table so that new entries will appear. Single IP Management Simply put, D-Link Single IP Management is a concept that will stack switches together over Ethernet instead of using stacking ports or modules. There are some advantages in implementing the “Single IP Management” feature: 1.
Page 46 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide • There is no limit to the number of SIM groups in the same IP subnet (broadcast domain); however a single switch can only belong to one group.
Page 47: Single Ip Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide 1. The Commander Switch (CS) now has the capability to automatically rediscover member switches that have left the SIM group, either through a reboot or web malfunction. This feature is accomplished...
Page 48: Topology
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Role State Use the pull-down menu to change the SIM role of the Switch. The two choices are: Candidate – A Candidate Switch (CaS) is not the member of a SIM group but is connected to a Commander Switch.
Page 49 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-17 Single IP Management window - Tree View The Topology window holds the following information on the Data tab: Parameter Description Device Name This field will display the Device Name of the switches in the SIM group configured by the user.
Page 50: Tool Tips
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-18 Topology view This window will display how the devices within the Single IP Management Group connect to other groups and devices. Possible icons on this window are as follows:...
Page 51: Group Icon
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide In the Topology view window, the mouse plays an important role in configuration and in viewing device information. Setting the mouse cursor over a specific device in the topology window (tool tip) will display the same information about a specific device as the Tree view does.
Page 52: Commander Switch Icon
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-21 Right-Clicking a Group Icon The following options may appear for the user to configure: • Collapse – To collapse the group that will be represented by a single icon.
Page 53: Member Switch Icon
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-23 Right-clicking a Commander Icon The following options may appear for the user to configure: • Collapse – To collapse the group that will be represented by a single icon.
Page 54: Menu Bar
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-26 Input password window • Property – To pop up a window to display the device information. Menu Bar The Single IP Management window contains a menu bar for device configurations, as seen below.
Page 55: Firmware Upgrade
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-29 About window Firmware Upgrade This screen is used to upgrade firmware from the Commander Switch to the Member Switch. Member Switches will be listed in the table and will be specified by Port (port on the CS where the MS resides), MAC Address, Model Name and Version.
Page 56: Upload Log File
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Upload Log File The following window is used to upload log files from SIM member switches to a specified PC. To upload a log file, enter the Server IP address of the SIM member switch and then enter a Path\Filename on your PC where you wish to save this file.
Page 57: Snmp Global Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide messages may be encrypted. To read more about how to configure SNMPv3 settings for the Switch read the next section. Traps Traps are messages that alert network personnel of events that occur on the Switch. The events can be as serious as a reboot (someone accidentally turned OFF the Switch), or less serious like a port status change.
Page 58: Snmp Traps Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide SNMP Traps Settings Users can enable and disable the SNMP trap support function of the switch and SNMP authentication failure trap support, respectively. To view the following window, click Management > SNMP Settings > SNMP Traps Settings, as show below:...
Page 59: Snmp View Table Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-35 SNMP Linkchange Traps Settings window The fields that can be configured are described below: Parameter Description Unit Select the unit you want to configure. From Port / To Port Select the starting and ending ports to use.
Page 60: Snmp Community Table Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-36 SNMP View Table Settings window The fields that can be configured are described below: Parameter Description View Name Type an alphanumeric string of up to 32 characters. This is used to identify the new SNMP view being created.
Page 61: Snmp Group Table Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-37 SNMP community Table Settings window The fields that can be configured are described below: Parameter Description Community Name Type an alphanumeric string of up to 32 characters that is used to identify members of an SNMP community.
Page 62 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-38 SNMP Group Table Settings window The fields that can be configured are described below: Parameter Description Group Name Type an alphanumeric string of up to 32 characters. This is used to identify the new SNMP group of SNMP users.
Page 63: Snmp Engine Id Settings
SNMP management private enterprise number as assigned by IANA (D-Link is 171). The fifth octet is 03 to indicate the rest is the MAC address of this device. The sixth to eleventh octets is the MAC address.
Page 64: Snmp Host Table Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description User Name An alphanumeric string of up to 32 characters. This is used to identify the SNMP users. Group Name This name is used to specify the SNMP group created can request SNMP messages.
Page 65: Snmpv6 Host Table Settings (Ei Mode Only)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide security level. AuthNoPriv – To specify that the SNMP version 3 will be used, with an Auth-NoPriv security level. AuthPriv – To specify that the SNMP version 3 will be used, with an Auth-Priv security level.
Page 66: Telnet Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-43 RMON Settings window The fields that can be configured are described below: Parameter Description RMON Rising Alarm Trap Enable this option to use the RMON Rising Alarm Trap Feature.
Page 67 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 3-45 Web Settings window The fields that can be configured are described below: Parameter Description Web Status Web-based management is Enabled by default. If you choose to disable this by clicking Disabled, you will lose the ability to configure the system through the web interface as soon as these settings are applied.
Page 68: Chapter 4 L2 Features
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 4 L2 Features VLAN Spanning Tree Link Aggregation L2 Multicast Control Multicast Filtering LLDP NLB FDB Settings VLAN Understanding IEEE 802.1p Priority Priority tagging is a function defined by the IEEE 802.1p standard designed to provide a means of managing traffic on a network where many different types of data may be transmitted simultaneously.
Page 69: Notes About Vlans On The Switch
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide are forwarded only between ports within the VLAN. Typically, a VLAN corresponds to a particular subnet, although not necessarily. VLANs can enhance performance by conserving bandwidth, and improve security by limiting traffic to specific domains.
Page 70: Q Vlan Tags
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The main characteristics of IEEE 802.1Q are as follows: • Assigns packets to VLANs by filtering. • Assumes the presence of a single global spanning tree. • Uses an explicit tagging scheme with one-level tagging.
Page 71: Port Vlan Id
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The EtherType and VLAN ID are inserted after the MAC source address, but before the original EtherType/Length or Logical Link Control. Because the packet is now a bit longer than it was originally, the Cyclic Redundancy Check (CRC) must be recalculated.
Page 72: Tagging And Untagging
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide connected to a tag-unaware device, the packet should be untagged. If the transmitting port is connected to a tag-aware device, the packet should be tagged. Tagging and Untagging Every port on an 802.1Q compliant switch can be configured as tagging or untagging.
Page 73: 802.1Q Vlan Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide VLAN Name Switch Ports System (default) 5, 6, 7 Engineering 9, 10 Sales 1, 2, 3, 4 Port-based VLANs Port-based VLANs limit traffic that flows into and out of switch ports. Thus, all devices connected to a port are members of the VLAN(s) the port belongs to, whether there is a single computer directly connected to a switch, or an entire department.
Page 74 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Enter a page number and click the Go button to navigate to a specific page when multiple pages exist. To create a new 802.1Q VLAN or modify an existing 802.1Q VLAN, click the Add/Edit VLAN tab.
Page 75 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide To search for a VLAN, click the Find VLAN tab. A new tab will appear, as shown below. Figure 4-6 802.1Q VLAN Settings – Find VLAN Tab window Enter the VLAN ID number in the field offered and then click the Find button.
Page 76: 802.1V Protocol Vlan
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide tagged. Untagged Specify the port as 802.1Q untagged. Use the drop-down menu to designate the port as untagged. Forbidden Specify the port as not being a member of the VLAN and that the port is forbidden from becoming a member of the VLAN dynamically.
Page 77: 802.1V Protocol Vlan Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide octet) hex value. For IEEE802.3 LLC, this is a 2-octet IEEE 802.2 Link Service Access Point (LSAP) pair. The first octet is for Destination Service Access Point (DSAP) and the second octet is for Source.
Page 78: Asymmetric Vlan Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide For more information on priority queues, CoS queues and mapping for 802.1p, see the QoS section of this manual. Port List Select the specified ports you wish to configure by entering the port number in this field, or tick the All Ports check box.
Page 79: Gvrp Port Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-11 GVRP Global Settings window The fields that can be configured are described below: Parameter Description GVRP State Click the radio buttons to enable or disable the GVRP State.
Page 80 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-12 GVRP Port Settings window The fields that can be configured are described below: Parameter Description Unit Select the unit you want to configure. From Port / To Port Select the starting and ending ports to use.
Page 81: Mac-Based Vlan Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide MAC-based VLAN Settings Users can create new MAC-based VLAN entries, search and delete existing entries. When a static MAC-based VLAN entry is created for a user, the traffic from this user will be able to be serviced under the specified VLAN regardless of the authentication function operating on this port.
Page 82 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-14 Private VLAN Settings window The fields that can be configured are described below: Parameter Description VLAN Name Enter a VLAN name. VID (2-4094) Enter a VID value.
Page 83: Pvid Auto Assign Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide PVID Auto Assign Settings Users can enable or disable PVID Auto Assign Status. The default setting is enabled. To view the following window, click L2 Features > VLAN > PVID Auto Assign Settings, as show below: Figure 4-16 PVID Auto Assign Settings window Click the Apply button to accept the changes made.
Page 84: Voice Vlan Port Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Aging Time The aging time to set, the range is 1 – 65535 minutes. The default value is 720 minutes. The aging time is used to remove a port from voice VLAN if the port is an automatic VLAN member.
Page 85: Voice Vlan Oui Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Voice VLAN OUI Settings This page is used to configure the user-defined voice traffic’s OUI. The OUI is used to identify the voice traffic. There are a number of pre-defined OUIs. The user can further define the user-defined OUIs if needed. The user-defined OUI cannot be the same as the pre-defined OUI.
Page 86: Vlan Trunk Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide VLAN Trunk Settings Enable VLAN on a port to allow frames belonging to unknown VLAN groups to pass through that port. This is useful if you want to set up VLAN groups on end devices without having to configure the same VLAN groups on intermediary devices.
Page 87: Show Vlan Ports
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide To view the following window, click L2 Features > VLAN > Browse VLAN, as show below: Figure 4-23 Browse VLAN window Enter a page number and click the Go button to navigate to a specific page when multiple pages exist.
Page 88: Spanning Tree
802.1Q-2005 MSTP. 802.1D-1998 STP will be familiar to most networking professionals. However, since 802.1D-2004 RSTP and 802.1Q-2005 MSTP have been recently introduced to D-Link managed Ethernet switches, a brief introduction to the technology is provided below followed by a description of how to set up 802.1D-1998 STP, 802.1D- 2004 RSTP, and 802.1Q-2005 MSTP.
Page 89: Port Transition States
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Port Transition States An essential difference between the three protocols is in the way ports transition to a forwarding state and in the way this transition relates to the role of the port (forwarding or not forwarding) in the topology. MSTP and RSTP combine the transition states disabled, blocking and listening used in 802.1D-1998 and creates a single state Discarding.
Page 90: Stp Bridge Global Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide STP Bridge Global Settings On this page the user can configure the STP bridge global parameters. To view the following window, click L2 Features > Spanning Tree > STP Bridge Global Settings, as show below:...
Page 91: Stp Port Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide switch on the hop count will reduce the hop count by one until the value reaches zero. The Switch will then discard the BDPU packet and the information held for the port will age out.
Page 92: Mst Configuration Identification
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide 20000. Enter a value between 1 and 200000000 to determine the External Cost. The lower the number, the greater the probability the port will be chosen to forward packets.
Page 93: Stp Instance Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-27 MST Configuration Identification window The fields that can be configured are described below: Parameter Description Configuration Name This name uniquely identifies the MSTI (Multiple Spanning Tree Instance). If a Configuration Name is not set, this field will show the MAC address to the device running MSTP.
Page 94: Mstp Port Information
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-28STP Instance Settings window The fields that can be configured are described below: Parameter Description MSTI ID Enter the MSTI ID in this field. An entry of 0 denotes the CIST (default MSTI).
Page 95: Link Aggregation
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The fields that can be configured are described below: Parameter Description Unit Select the unit you want to configure. Port Select the port you want to configure. Instance ID The MSTI ID of the instance to be configured.
Page 96: Port Trunking Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The Switch treats all ports in a trunk group as a single port. Data transmitted to a specific host (destination address) will always be transmitted over the same port in a trunk group. This allows packets in a data stream to arrive in the same order they were sent.
Page 97: Lacp Port Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-31 Port Trunking Settings window The fields that can be configured are described below: Parameter Description Algorithm This is the traffic hash algorithm among the ports of the link aggregation group. Options to choose from are MAC Source Dest, IP Source Dest and Lay4 Source Dest.
Page 98 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-32 LACP Port Settings window The fields that can be configured are described below: Parameter Description Unit Select the unit you want to configure. From Port / To Port A consecutive group of ports may be configured starting with the selected port.
Page 99: Fdb
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Static FDB Settings Unicast Static FDB Settings Users can set up static unicast forwarding on the Switch. To view the following window, click L2 Features > FDB > Static FDB Settings > Unicast Static FDB Settings, as...
Page 100: Mac Notification Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-34 Multicast Static FDB Settings window The fields that can be configured are described below: Parameter Description The VLAN ID of the VLAN the corresponding MAC address belongs to.
Page 101: Mac Address Aging Time Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-35 MAC Notification Settings window The fields that can be configured are described below: Parameter Description State Enable or disable MAC notification globally on the Switch Interval The time in seconds between notifications.
Page 102: Mac Address Table
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-36 MAC Address Aging Time Settings window The fields that can be configured are described below: Parameter Description MAC Address Aging Time This field specify the length of time a learned MAC Address will remain in the...
Page 103: Arp & Fdb Table
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Clear Dynamic Entries button to delete all dynamic entries of the address table. Click the View All Entries button to display all the existing entries. Click the Clear All Entries button to remove all the entries listed in the table.
Page 104: L2 Multicast Control
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide L2 Multicast Control IGMP Snooping Internet Group Management Protocol (IGMP) snooping allows the Switch to recognize IGMP queries and reports sent between network stations or devices and an IGMP host. When enabled for IGMP snooping, the Switch can open or close a port to a specific device based on IGMP messages passing through the Switch.
Page 105 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-41 IGMP Snooping Parameters Settings window The fields that can be configured are described below: Parameter Description Specify the name of the VLAN ID. VLAN Name Specify the name of the VLAN for which IGMP snooping querier is to be configured.
Page 106 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide send the multicast-routing protocol packet, the port will be timed out as a router port. Report Suppression When enabled, multiple IGMP reports or leave for a specific (S, G) will be integrated into one report only before sending to the router port.
Page 107: Igmp Snooping Rate Limit Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the <<Back button to discard the changes made and return to the previous page. IGMP Snooping Rate Limit Settings On this page the user can configure the IGMP snooping rate limit parameters.
Page 108 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-44 IGMP Snooping Static Group Settings window The fields that can be configured are described below: Parameter Description VLAN Name The VLAN Name of the multicast group.
Page 109: Igmp Router Port
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide IGMP Router Port Users can display which of the Switch’s ports are currently configured as router ports. A router port configured by a user (using the console or Web-based management interfaces) is displayed as a static router port, designated by S. A router port that is dynamically configured by the Switch is designated by D, while a Forbidden port is designated by F.
Page 110: Igmp Snooping Forwarding Table
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description VLAN Name The VLAN Name of the multicast group. VID List The VLAN ID list of the multicast group. Port List Specify the port number(s) used to find a multicast group.
Page 111 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-49 IGMP Snooping Counter window The fields that can be configured are described below: Parameter Description VLAN Name The VLAN Name of the multicast group. VID List The VLAN ID list of the multicast group.
Page 112: Mld Snooping
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide MLD Snooping Multicast Listener Discovery (MLD) Snooping is an IPv6 function used similarly to IGMP snooping in IPv4. It is used to discover ports on a VLAN that are requesting multicast data. Instead of flooding all ports on a selected VLAN with multicast traffic, MLD snooping will only forward multicast data to ports that wish to receive this data through the use of queries and reports produced by the requesting ports and the source of the multicast traffic.
Page 113: Mld Snooping Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide packets. Since video cameras do not have the capability to run MLD protocols, the IP multicast data will be dropped with the original MLD snooping function. MLD Snooping Settings Users can configure the settings for MLD snooping.
Page 114 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Max Response Time The maximum time in seconds to wait for reports from listeners. The default setting is 10 seconds. Robustness Value Provides fine-tuning to allow for expected packet loss on a subnet. The value of the...
Page 115: Mld Snooping Rate Limit Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-53 MLD Snooping Router Port Settings window The fields that can be configured are described below: Parameter Description Unit Select the unit you want to configure. Static Router Port This section is used to designate a range of ports as being connected to multicast- enabled routers.
Page 116: Mld Snooping Static Group Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-54 MLD Snooping Rate Limit Settings window The fields that can be configured are described below: Parameter Description Port List Enter the Port List here. VID List Enter the VID List value here.
Page 117: Mld Router Port
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Create button to add a static group. Click the Delete button to delete a static group. Click the View All button to display all the existing entries.
Page 118: Mld Snooping Group
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide NOTE: The abbreviations used on this page are Static Router Port (S), Dynamic Router Port (D) and Forbidden Router Port (F). MLD Snooping Group Users can view MLD Snooping Groups present on the Switch. MLD Snooping is an IPv6 function comparable to IGMP Snooping for IPv4.
Page 119: Mld Snooping Counter
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-59 MLD Snooping Forwarding Table window The fields that can be configured are described below: Parameter Description VLAN Name The name of the VLAN for which you want to view MLD snooping forwarding table information.
Page 120: Multicast Vlan
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-61 Browse MLD Snooping Counter window Click the Clear Counter button to clear all the information displayed in the fields. Click the Refresh button to refresh the display table so that new information will appear.
Page 121: Igmp Multicast Group Profile Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide IGMP Multicast Group Profile Settings Users can add a profile to which multicast address reports are to be received on specified ports on the Switch. This function will therefore limit the number of reports received and the number of multicast groups configured on the Switch.
Page 122: Igmp Snooping Multicast Vlan Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Delete button to remove the corresponding entry. IGMP Snooping Multicast VLAN Settings On this page the user can configure the IGMP snooping multicast VLAN parameters. To view the following window, click L2 Features > L2 Multicast Control > Multicast VLAN > IGMP Snooping...
Page 123 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-65 IGMP Snooping Multicast VLAN Settings – Edit window The fields that can be configured are described below: Parameter Description VLAN Name This option will display the VLAN name of the VLAN configured.
Page 124: Mld Multicast Group Profile Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the <<Back button to discard the changes made and return to the previous page. After clicking the Profile List link, the following page will appear: Figure 4-66 IGMP Snooping Multicast VLAN Group List Settings window...
Page 125: Mld Snooping Multicast Vlan Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the View All button to display all the existing entries. Click the Group List link to configure the Multicast Group Profile Multicast Address Settings for the specific entry.
Page 126 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide MLD Multicast VLAN Click the radio buttons to can enable or disable the MLD multicast VLAN Forward Forward Unmatched Unmatched state. VLAN Name Enter the VLAN name used.
Page 127: Multicast Filtering
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide None. Replace Priority Tick the check box to specify that the packet’s priority will be changed by the switch, based on the remap priority. This flag will only take effect when the remap priority is set.
Page 128: Ipv4 Multicast Profile Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide IPv4 Multicast Profile Settings Users can add a profile to which multicast address(s) reports are to be received on specified ports on the Switch. This function will therefore limit the number of reports received and the number of multicast groups configured on the Switch.
Page 129: Ipv4 Limited Multicast Range Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Profile Name Display the profile name. Multicast Address List Enter the multicast address list here. Click the Add button to add a new entry based on the information entered.
Page 130: Ipv6 Multicast Filtering
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-75 IPv4 Max Multicast Group Settings window The fields that can be configured are described below: Parameter Description Ports / VID List Select the appropriate port(s) or VLAN IDs used for the configuration here.
Page 131: Ipv6 Limited Multicast Range Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The fields that can be configured are described below: Parameter Description Profile ID Enter a Profile ID between 1 and 60. Profile Name Enter a name for the IP Multicast Profile.
Page 132: Ipv6 Max Multicast Group Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-78 IPv6 Limited Multicast Range Settings window The fields that can be configured are described below: Parameter Description Ports/VID List Select the appropriate port(s) or VLAN IDs used for the configuration here.
Page 133: Multicast Filtering Mode
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Max Group If the checkbox Infinite is not selected, the user can enter a Max Group value. Infinite Tick the check box to enable or disable the use of the Infinite value.
Page 134: Lldp
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide LLDP LLDP Global Settings On this page the user can configure the LLDP global parameters. To view the following window, click L2 Features > LLDP > LLDP Global Settings, as show below:...
Page 135: Lldp Port Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide LLDP Port Settings On this page the user can configure the LLDP port parameters. To view the following window, click L2 Features > LLDP > LLDP Port Settings, as show below:...
Page 136: Lldp Management Address List
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Action Use the drop-down menu to enable or disable the action field. Address Enter the IP address that will be sent. Click the Apply button to accept the changes made.
Page 137: Lldp Dot1 Tlvs Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-84 LLDP Basic TLVs Settings window The fields that can be configured are described below: Parameter Description Unit Select the starting and ending ports to use. From Port / To Port Select the port range to use for this configuration.
Page 138 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-85 LLDP Dot1 TLVs Settings window The fields that can be configured are described below: Parameter Description Unit Select the starting and ending ports to use. From Port / To Port Use the drop-down menu to select the port range to use for this configuration.
Page 139: Lldp Dot3 Tlvs Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide LLDP Dot3 TLVs Settings This window is used to configure an individual port or group of ports to exclude one or more IEEE 802.3 organizational specific TLV data type from outbound LLDP advertisements.
Page 140: Lldp Statistic System
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Apply button to accept the changes made. LLDP Statistic System The LLDP Statistics System page allows you an overview of the neighbor detection activity, LLDP Statistics and the settings for individual ports on the Switch.
Page 141 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-88 LLDP Local Port Information window To view the normal LLDP Local Port information page per port, click the Show Normal button. To view the brief LLDP Local Port information page per port, click the Show Brief button.
Page 142: Lldp Remote Port Information
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-90 LLDP Local Port Information – Show Detail window Click the <<Back button to return to the previous page. LLDP Remote Port Information This page displays port information learned from the neighbors. The switch receives packets from a remote station but is able to store the information as local.
Page 143 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 4-93 NLB Multicast FDB Table window The following fields can be set: Parameter Description VLAN Name Click the radio button and enter the VLAN of the NLB multicast FDB entry to be created.
Page 144: Chapter 5 L3 Features
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 5 L3 Features IPv4 Default Route Settings (SI Mode Only) IPv4 Static/Default Route Settings (EI Mode Only) IPv4 Route Table IPv6 Static/Default Route Settings (EI Mode Only)
Page 145: Ipv4 Route Table
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 5-2 IPv4 Static/Default Route Settings window The fields that can be configured are described below: Parameter Description IP Address This field allows the entry of an IPv4 address to be assigned to the Static or Default route.
Page 146: Ipv6 Static/Default Route Settings (Ei Mode Only)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide IPv6 Static/Default Route Settings (EI Mode Only) A static entry of an IPv6 address can be entered into the Switch’s routing table for IPv6 formatted addresses. To view the following window, click L3 Features > IPv6 Static/Default Route Settings, as show below:...
Page 147 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 5-6 IP Forwarding Table Click the IP Address, Interface Name or Port radio button, enter the information and click the Find button to locate a specific entry based on the information entered.
Page 148: Chapter 6 Qos
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 6 802.1p Settings Bandwidth Control Traffic Control Settings DSCP HOL Blocking Prevention Scheduling Settings The Switch supports 802.1p priority queuing Quality of Service. The following section discusses the implementation of QoS (Quality of Service) and benefits of using 802.1p priority queuing.
Page 149: 802.1P Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide the receiving end, the administrator instructs the Switch to examine packets for this tag, acquires the tagged packets and maps them to a class queue on the Switch. Then in turn, the administrator will set a priority for this queue so that will be emptied before any other packet is forwarded.
Page 150: 802.1P Default Priority Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide 802.1p Default Priority Settings The Switch allows the assignment of a default 802.1p priority to each port on the Switch. This page allows the user to assign a default 802.1p priority to any given port on the switch that will insert the 802.1p priority tag to untagged packets received.
Page 151: Bandwidth Control
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 6-3 802.1p User Priority Settings window Once a priority has been assigned to the port groups on the Switch, then a Class may be assigned to each of the eight levels of 802.1p priorities using the drop-down menus on this window.
Page 152 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 6-4 Bandwidth Control Settings window The fields that can be configured are described below: Parameter Description Unit Select the unit you want to configure. From Port / To Port Use the drop-down menu to select the port range to use for this configuration.
Page 153: Queue Bandwidth Control Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Apply button to accept the changes made. Queue Bandwidth Control Settings To view this window, click QoS > Bandwidth Control > Queue Bandwidth Control Settings, as shown below.
Page 154: Traffic Control Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Traffic Control Settings On a computer network, packets such as Multicast packets and Broadcast packets continually flood the network as normal procedure. At times, this traffic may increase due to a malicious end station on the network or a malfunctioning device, such as a faulty network card.
Page 155 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 6-6 Traffic Control Settings window The fields that can be configured are described below: Parameter Description Unit Select the unit you want to configure. From Port / To Port Use the drop-down menu to select the port range to use for this configuration.
Page 156 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Time Interval (5-600) The Time Interval will set the time between Multicast and Broadcast packet counts sent from the Switch’s chip to the Traffic Control function. These packet counts are the determining factor in deciding when incoming packets exceed the Threshold value.
Page 157: Dscp
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide DSCP DSCP Trust Settings This page is to configure the DSCP trust state of ports. When ports are under the DSCP trust mode, the switch will insert the priority tag to untagged packets by using the DSCP Map settings instead of the default port priority.
Page 158 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 6-8 DSCP Map Settings - DSCP Priority window To view the following window, click QoS > DSCP > DSCP Map Settings and select DSCP DSCP from the DSCP Map...
Page 159: Hol Blocking Prevention
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Priority Use the drop-down menu to select a Priority value. This appears when selecting DSCP Priority in the DSCP Map drop-down menu. DSCP Enter a DSCP value. This appears when selecting DSCP Priority in the DSCP DSCP drop-down menu.
Page 160: Qos Scheduling Mechanism
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 6-11 QoS Scheduling window The following parameters can be configured: Parameter Description Unit Select the unit you wish to configure. From Port / To Port Enter the port or port list you wish to configure.
Page 161 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 6-12 QoS Scheduling Mechanism The following parameters can be configured: Parameter Description Unit Select the unit you wish to configure. From Port / To Port Enter the port or port list you wish to configure.
Page 162: Chapter 7 Acl
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 7 ACL Configuration Wizard Access Profile List CPU Access Profile List ACL Finder ACL Flow Meter Egress Access Profile List (EI Mode Only) Egress ACL Flow Meter (EI Mode Only)
Page 163: Access Profile List
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide to automatically assign an unused access ID to this rule. From / To This rule can be created to apply to four different categories: Any – Selecting this option will include any starting category to this rule.
Page 164: Add An Ethernet Acl Profile
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-2 Access Profile List window Click the Add ACL Profile button to add an entry to the Access Profile List. Click the Delete All button to remove all access profiles from this table.
Page 165 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-3 Add ACL Profile window (Ethernet ACL) The fields that can be configured are described below: Parameter Description Profile ID Enter a unique identifier number for this profile set. This value can be set from 1 to 768.
Page 166 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide packet header and use this as the, or part of the criterion for forwarding. Ethernet Type Selecting this option instructs the Switch to examine the Ethernet type value in each frame's header.
Page 167 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-6 Add Access Rule window (Ethernet ACL) The fields that can be configured are described below: Parameter Description Access ID (1-1536) Type in a unique identifier number for this access. This value can be set from 1 to 1536.
Page 168: Adding An Ipv4 Acl Profile
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide priority and DSCP are set to be modified. Replace ToS Specify that the IP precedence of the outgoing packet is changed with the new value. If Precedence (0-7) used without an action priority, the packet is sent to the default traffic class.
Page 169 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-8 Add ACL Profile window (IPv4 ACL) The fields that can be configured are described below: Parameter Description Profile ID Enter a unique identifier number for this profile set. This value can be set from 1 to 768.
Page 170 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide IPv4 Destination IP Mask Enter an IP address mask for the destination IP address, e.g. 255.255.255.255. Protocol Selecting this option instructs the Switch to examine the protocol type value in each frame's header.
Page 171 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Show All Profiles button to navigate back to the Access Profile List Page. After clicking the Add/View Rules button, the following page will appear: Figure 7-10 Access Rule List window (IPv4 ACL) Click the Add Rule button to create a new ACL rule in this profile.
Page 172 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Access ID for the rule being created. Action Select Permit to specify that the packets that match the access profile are forwarded by the Switch, according to any additional rule added (see below).
Page 173: Adding An Ipv6 Acl Profile
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Adding an IPv6 ACL Profile The window shown below is the Add ACL Profile window for IPv6. To use specific filtering masks in this ACL profile, click the packet filtering mask field to highlight it red. This will add more filed to the mask.
Page 174 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Select Packet Content to instruct the Switch to examine the packet content in each frame’s header. IPv6 Class Ticking this check box will instruct the Switch to examine the class field of the IPv6 header.
Page 175 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Enter a page number and click the Go button to navigate to a specific page when multiple pages exist. After clicking the Add Rule button, the following page will appear:...
Page 176: Adding A Packet Content Acl Profile
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide meets the selected criteria) with the value entered in the adjacent field. When an ACL rule is added to change both the priority and DSCP of an IPv6 packet, only one of them can be modified due to a chip limitation.
Page 177 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-18 Add ACL Profile (Packet Content ACL) The fields that can be configured are described below: Parameter Description Profile ID Enter a unique identifier number for this profile set. This value can be set from 1 to 768.
Page 178 However, ARP is vulnerable as it can be easily spoofed and utilized to attack a LAN (i.e. an ARP spoofing attack). For a more detailed explanation on how ARP protocol works and how to employ D-Link’s unique Packet Content ACL to prevent ARP spoofing attack, please see Appendix E at the end of this manual.
Page 179 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Add Rule button to create a new ACL rule in this profile. Click the <<Back button to return to the previous page. Click the Show Details button to view more information about the specific rule created.
Page 180: Cpu Access Profile List
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide previously in this command, before forwarding it on to the specified CoS queue. Otherwise, a packet will have its incoming 802.1p user priority re-written to its original value before being forwarded by the Switch.
Page 181: Adding A Cpu Ethernet Acl Profile
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide NOTE: CPU Interface Filtering is used to control traffic access to the switch directly such as protocols transition or management access. A CPU interface filtering rule won’t impact normal L2/3 traffic forwarding.
Page 182 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide After clicking the Add CPU ACL Profile button, the following page will appear: Figure 7-24 Add CPU ACL Profile (Ethernet ACL) The fields that can be configured are described below:...
Page 183 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Select button to select a CPU ACL type. Click the Create button to create a profile. Click the <<Back button to discard the changes made and return to the previous page.
Page 184 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-27 Add CPU Access Rule (Ethernet ACL) The fields that can be configured are described below: Parameter Description Access ID (1-100) Type in a unique identifier number for this access. This value can be set from 1 to 100.
Page 185: Adding A Cpu Ipv4 Acl Profile
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-28 CPU Access Rule Detail Information (Ethernet ACL) Click the Show All Rules button to navigate back to the CPU Access Rule List. Adding a CPU IPv4 ACL Profile The window shown below is the Add CPU ACL Profile window for IP (IPv4).
Page 186 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Select ACL Type Select profile based on Ethernet (MAC Address), IPv4 address, IPv6 address, or packet content mask. This will change the menu according to the requirements for the type of profile.
Page 187 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Select button to select a CPU ACL type. Click the Create button to create a profile. Click the <<Back button to discard the changes made and return to the previous page.
Page 188 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-32 Add CPU Access Rule (IPv4 ACL) The fields that can be configured are described below: Parameter Description Access ID (1-100) Type in a unique identifier number for this access. This value can be set from 1 to 100.
Page 189: Adding A Cpu Ipv6 Acl Profile
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Show All Rules button to navigate back to the CPU Access Rule List. Adding a CPU IPv6 ACL Profile The window shown below is the Add CPU ACL Profile window for IPv6. To use specific filtering masks in this ACL profile, click the packet filtering mask field to highlight it red.
Page 190 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide header. IPv6 Class Checking this field will instruct the Switch to examine the class field of the IPv6 header. This class field is a part of the packet header that is similar to the Type of Service (ToS) or Precedence bits field in IPv4.
Page 191 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-37 Add CPU Access Rule (IPv6 ACL) The fields that can be configured are described below: Parameter Description Access ID (1-100) Enter a unique identifier number for this access. This value can be set from 1 to 100.
Page 192: Adding A Cpu Packet Content Acl Profile
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-38 CPU Access Rule Detail Information (IPv6 ACL) Click the Show All Rules button to navigate back to the CPU Access Rule List. Adding a CPU Packet Content ACL Profile The window shown below is the Add CPU ACL Profile window for Packet Content.
Page 193 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Select IPv6 to instruct the Switch to examine the IP address in each frame's header. Select Packet Content Mask to specify a mask to hide the content of the packet header.
Page 194 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-42 Add CPU Access Rule (Packet Content ACL) The fields that can be configured are described below: Parameter Description Access ID (1-100) Type in a unique identifier number for this access. This value can be set from 1 to 100.
Page 195: Acl Finder
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-43 CPU Access Rule Detail Information (Packet Content ACL) Click the Show All Rules button to navigate back to the CPU Access Rule List. ACL Finder The ACL rule finder helps you to identify any rules that have been assigned to a specific port and edit existing rules quickly.
Page 196 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide trTCM, the packet flow is marked green if it doesn’t exceed the CIR and yellow if it does. The configured rate of the CIR must not exceed that of the PIR. The CIR can also be configured for unexpected packet bursts using the CBS and PBS fields.
Page 197 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Profile Name Here the user can enter the Profile Name for the flow meter. Access ID Here the user can enter the Access ID for the flow meter.
Page 198 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide with a high precedence. trTCM – Specify the “two-rate three-color mode.” CIR – Specify the Committed information Rate. The unit is Kbps. CIR should always be equal or less than PIR.
Page 199: Egress Access Profile List (Ei Mode Only)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Egress Access Profile List (EI Mode Only) Egress ACL performs per-flow processing of packets when they egress the Switch. The Switch supports three Profile Types, Ethernet ACL, IPv4 ACL, and IPv6 ACL.
Page 200 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Select Ethernet ACL to instruct the Switch to examine the layer 2 part of each packet header. Select IPv4 ACL to instruct the Switch to examine the IPv4 address in each frame's header.
Page 201 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-51 Add Egress Access Rule window (Ethernet ACL) The fields that can be configured are described below: Parameter Description Access ID (1-512) Type in a unique identifier number for this access. This value can be set from 1 to 512.
Page 202 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Counter Here the user can select the counter. By checking the counter, the administrator can see how many times that the rule was hit. Port When a range of ports is to be configured, the Auto Assign check box MUST be ticked in the Access ID field of this window.
Page 203 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-53 Add Egress ACL Profile window (IPv4 ACL) The fields that can be configured are described below: Parameter Description Profile ID Enter a unique identifier number for this profile set. This value can be set from 1 to 256.
Page 204 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Mask Protocol Selecting this option instructs the Switch to examine the protocol type value in each frame's header. Then the user must specify what protocol(s) to include according to the...
Page 205 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-54 Egress Access Profile Detail Information window (IPv4 ACL) Click the Show All Profiles button to navigate back to the Access Profile List Page. After clicking the Add/View Rules button, the following page will appear: Figure 7-55 Egress Access Rule List window (IPv4 ACL) Click the Add Rule button to create a new ACL rule in this profile.
Page 206 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The fields that can be configured are described below: Parameter Description Access ID (1-512) Type in a unique identifier number for this access. This value can be set from 1 to 512.
Page 207 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-57 Egress Access Rule Detail Information (IPv4 ACL) Click the Show All Rules button to navigate back to the Access Rule List. Adding an IPv6 ACL Profile The window shown below is the Add Egress ACL Profile window for IPv6.
Page 208 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Profile ID Enter a unique identifier number for this profile set. This value can be set from 1 to 256. Profile Name Enter a profile name for the profile created.
Page 209 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-60 Egress Access Rule List window (IPv6 ACL) Click the Add Rule button to create a new ACL rule in this profile. Click the <<Back button to return to the previous page.
Page 210: Egress Acl Flow Meter (Ei Mode Only)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Priority (0-7) Tick the corresponding check box to re-write the 802.1p default priority of a packet to the value entered in the Priority field, which meets the criteria specified previously in this command, before forwarding it on to the specified CoS queue.
Page 211 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-63 Egress ACL Flow Meter window The fields that can be configured are described below: Parameter Description Profile ID Here the user can enter the Profile ID for the flow meter.
Page 212 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Profile ID Here the user can enter the Profile ID for the flow meter. Profile Name Here the user can enter the Profile Name for the flow meter.
Page 213 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 7-65 Egress ACL Flow meter Display window Click the <<Back button to return to the previous page.
Page 214: Chapter 8 Security
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 8 Security 802.1X RADIUS IP-MAC-Port Binding (IMPB) (EI Mode Only) MAC-based Access Control (MAC) Web-based Access Control (WAC) Compound Authentication Port Security ARP Spoofing Prevention Settings BPDU Attack Protection...
Page 215 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Authentication Server The Authentication Server is a remote device that is connected to the same network as the Client and Authenticator, must be running a RADIUS Server program and must be configured properly on the Authenticator (Switch).
Page 216: Authentication Process
Figure 8-6 The 802.1X Authentication Process The D-Link implementation of 802.1X allows network administrators to choose between two types of Access Control used on the Switch, which are: 1. Port-Based Access Control – This method requires only one user to be authenticated per port by a remote RADIUS server to allow the remaining users on the same port access to the network.
Page 217: 802.1X Global Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Host-Based Network Access Control In order to successfully make use of 802.1X in a shared media LAN segment, it would be necessary to create “logical” Ports, one for each attached device that required access to the LAN.
Page 218: 802.1X Port Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide 802.1X Port Settings Users can configure the 802.1X authenticator port settings. To view this window, click Security > 802.1X > 802.1X Port Settings as shown below: Figure 8-10 802.1X Port Settings...
Page 219: 802.1X User Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide state machine will retransmit an EAP Request packet to the Supplicant before it times out the authentication session. Its default value is 2; it can be set by management to any value in the range from 1 to 10.
Page 220: Guest Vlan Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-11 802.1X User Settings window The fields that can be configured are described below: Parameter Description 802.1X User The user can enter an 802.1X user’s username in here.
Page 221: Authenticator State
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide fully operational target VLAN and normal switch functions will be open to the client. If the authenticator does not have target VLAN placement information, the client will be returned to its originating VLAN. Yet, if the client is denied authentication by the authenticator, it will be placed in the Guest VLAN where it has limited rights and access.
Page 222: Authenticator Statistics
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-14 Authenticator State window The fields that can be configured are described below: Parameter Description Unit Select the unit to be displayed. Port Select a port to be displayed.
Page 223: Authenticator Session Statistics
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-15 Authenticator Statistics window NOTE: The Authenticator Statistics cannot be viewed on the Switch unless 802.1X is enabled by port or by MAC address. To enable 802.1X, go to Security > 802.1X > 802.1X Global Settings, and select Port-based or Mac-based from the Authentication Mode drop-down menu.
Page 224: Authenticator Diagnostics
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-16 Authenticator Session Statistics window NOTE: The Authenticator Session Statistics cannot be viewed on the Switch unless 802.1X is enabled by port or by MAC address. To enable 802.1X, go to Security > 802.1X > 802.1X Global Settings, and select Port-based or Mac-based from the Authentication Mode drop- down menu.
Page 225: Initialize Port(S)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-17 Authenticator Diagnostics window NOTE: The Authenticator Diagnostics cannot be viewed on the Switch unless 802.1X is enabled by port or by MAC address. To enable 802.1X, go to Security > 802.1X > 802.1X Global Settings, and select Port-based or Mac-based from the Authentication Mode drop-down menu.
Page 226: Reauthenticate Port(S)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide If MAC-based is selected in the Authentication Mode drop-down menu in 802.1X Global Settings window, the following window appears. Figure 8-19 Initialize Port(s) - MAC-based window The fields that can be configured are described below:...
Page 227: Radius
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide RADIUS Authentication RADIUS Server Settings The RADIUS feature of the Switch allows the user to facilitate centralized user administration as well as providing protection against a sniffing, active hacker.
Page 228: Radius Accounting Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide IPv6 Address (EI Mode Only) Set the RADIUS server IPv6 address. Authentication Port Set the RADIUS authentic server(s) UDP port which is used to transmit RADIUS data between the Switch and the RADIUS server. The default port is 1812.
Page 229 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide To view this window, click Security > RADIUS > RADIUS Authentication as shown below: Figure 8-24 RAIUS Authentication window The user may also select the desired time interval to update the statistics, between 1s and 60s, where “s” stands for seconds.
Page 230: Radius Account Client
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Request is sent and decremented due to receipt of an Access-Accept, Access-Reject or Access-Challenge, a timeout or retransmission. Timeouts The number of authentication timeouts to this server. After a timeout the client may retry to the same server, send to a different server, or give up.
Page 231: Ip-Mac-Port Binding (Impb) (Ei Mode Only)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Request that matched it from this RADIUS accounting server. Requests The number of RADIUS Accounting-Request packets sent. This does not include retransmissions. Retransmissions The number of RADIUS Accounting-Request packets retransmitted to this RADIUS accounting server.
Page 232: Impb Port Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-26 IMPB Global Settings The fields that can be configured are described below: Parameter Description Trap / Log Click the radio buttons to enable or disable the sending of trap/log messages for IP- MAC-port binding.
Page 233: Impb Entry Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The fields that can be configured are described below: Parameter Description Unit Select the unit you want to configure. From Port / To Port Select a range of ports to set for IP-MAC-port binding.
Page 234: Mac Block List
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description IP Address Enter the IP address to bind to the MAC address set below. MAC Address Enter the MAC address to bind to the IP Address set above.
Page 235: Dhcp Snooping Entry
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-30 DHCP Snooping Max Entry Settings window The fields that can be configured are described below: Parameter Description From Port / To Port Use the drop-down menus to select a range of ports to use.
Page 236: Mac-Based Access Control (Mac)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Ports (e.g.: 1, 7-12) Specify the ports for which to view DHCP snooping entries. Tick the All check box to clear entries for all ports. Click the Find button to locate a specific entry based on the port number selected.
Page 237 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-32 MAC-based Access Control Settings window The fields that can be configured are described below: Parameter Description MAC-based Access Toggle to globally enable or disable the MAC-based access control function on the Control State Switch.
Page 238: Mac-Based Access Control Local Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Max User Enter the maximum amount of users of the Switch. VLAN Name Enter the name of the previously configured Guest VLAN being used for this function. Click the radio button and enter a Guest VLAN ID.
Page 239: Mac-Based Access Control Authentication State
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Find by MAC button to locate a specific entry based on the MAC address entered. Click the Find by VLAN button to locate a specific entry based on the VLAN name or ID entered.
Page 240 WAC by attempting to gain Web access. D-Link’s implementation of WAC uses a virtual IP that is exclusively used by the WAC function and is not known by any other modules of the Switch. In fact, to avoid affecting a Switch’s other features, WAC will only use a virtual IP address to communicate with hosts.
Page 241: Conditions And Limitations
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Conditions and Limitations 1. If the client is utilizing DHCP to attain an IP address, the authentication VLAN must provide a DHCP server or a DHCP relay function so that client may obtain an IP address.
Page 242: Wac Global Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide 2. Certain functions exist on the Switch that will filter HTTP packets, such as the Access Profile function. The user needs to be very careful when setting filter functions for the target VLAN, so that these HTTP packets are not denied by the Switch.
Page 243: Wac User Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide HTTPS – Specifies that the TCP port will run the WAC HTTPS protocol. The default value is 443. HTTPS cannot run at TCP port 80. Click the Apply button to accept the changes made for each individual section.
Page 244 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide To view this window, click Security > Web-based Access Control (WAC) > WAC Port Settings as shown below: Figure 8-39 WAC Port Settings window The fields that can be configured are described below:...
Page 245: Wac Authentication State
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Enter a value between 0 and 300 seconds. The default value is 60 seconds. Click the Apply button to accept the changes made. WAC Authentication State Users can view and delete the hosts for Web authentication.
Page 246 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-41 Compound Authentication Settings window (SI Mode Only) Figure 8-42 Compound Authentication Settings window (EI Mode Only)
Page 247: Compound Authentication Guest Vlan Settings (Ei Mode Only)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The fields that can be configured are described below: Parameter Description Authorization Network State Click the radio buttons to enable of disable the Authorization Network State. Authentication Server Click the radio buttons to configure the authentication server failover function.
Page 248: Port Security
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-43 Compound Authentication Guest VLAN Settings window The fields that can be configured are described below: Parameter Description VLAN Name Click the button and assign a VLAN as a Guest VLAN. The VLAN must be an existing static VLAN.
Page 249 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-44 Port Security Settings window The fields that can be configured are described below: Parameter Description Port Security Trap/Log Use the radio button to enable or disable Port Security Traps and Logs on the Switch.
Page 250: Port Security Vlan Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide After clicking the View Detail button, the following page will appear: Figure 8-45 Port Security Port-VLAN Settings window Click the Apply button to accept the changes made. Click the <<Back button to discard the changes made and return to the previous page.
Page 251: Arp Spoofing Prevention Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-47 Port Security Entries window The fields that can be configured are described below: Parameter Description VLAN Name The VLAN Name of the entry in the forwarding database table that has been permanently learned by the Switch.
Page 252: Bpdu Attack Protection
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description Gateway IP Address Enter the gateway IP address to help prevent ARP Spoofing. Gateway MAC Address Enter the gateway MAC address to help prevent ARP Spoofing.
Page 253 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-49 BPDU Attack Protection window The fields that can be configured are described below: Parameter Description BPDU Attack Protection Click the radio buttons to enable or disable the BPDU Attack Protection state.
Page 254: Loopback Detection Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Loopback Detection Settings The Loopback Detection (LBD) function is used to detect the loop created by a specific port. This feature is used to temporarily shut down a port on the Switch when a CTP (Configuration Testing Protocol) packet has been looped back to the Switch.
Page 255: Traffic Segmentation Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide To Port Use the drop-down menu to select an ending port number. State Use the drop-down menu to toggle between Enabled and Disabled. Click the Apply button to accept the changes made for each individual section.
Page 256: Netbios Filtering Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide be displayed. Click the Apply button to accept the changes made. NetBIOS Filtering Settings NetBIOS is an application programming interface, providing a set of functions that applications use to communicate across networks.
Page 257: Dhcp Server Screening
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide DHCP Server Screening This function allows the user to not only to restrict all DHCP Server packets but also to receive any specified DHCP server packet by any specified DHCP client, it is useful when one or more DHCP servers are present on the network and both provide DHCP services to different distinct groups of clients.
Page 258: Dhcp Offer Permit Entry Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description Filter DHCP Server Trap Enable or disable this feature. Log State Illegal Server Log Choose an illegal server log suppress duration of 1 minute, 5 minutes, or 30 minutes.
Page 259: Enable Admin
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide • Extended TACACS (XTACACS) - An extension of the TACACS protocol with the ability to provide more types of authentication requests and more types of response codes than TACACS. This protocol also uses UDP to transmit packets.
Page 260: Authentication Policy Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide "enable", and a password configured by the administrator that will support the "enable" function. This function becomes inoperable when the authentication policy is disabled. To view this window, click Security > Access Authentication Control > Enable Admin as shown below:...
Page 261: Application Authentication Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The fields that can be configured are described below: Parameter Description Authentication Policy Use the pull-down menu to enable or disable the Authentication Policy on the Switch. Response Timeout (0-...
Page 262: Authentication Server Group Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Authentication Server Group Settings Users can set up Authentication Server Groups on the Switch. A server group is a technique used to group TACACS/XTACACS/TACACS+/RADIUS server hosts into user-defined categories for authentication using method lists.
Page 263: Authentication Server Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-60 Authentication Server Group Settings – Edit Server Group window To add an Authentication Server Host to the list, enter its name in the Group Name field, IP address in the IP Address field, use the drop-down menu to choose the Protocol associated with the IP address of the Authentication Server Host, and then click Add to add this Authentication Server Host to the group.
Page 264: Login Method Lists Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-61 Authentication Server Settings window The fields that can be configured are described below: Parameter Description IP Address The IP address of the remote server host to add.
Page 265: Enable Method Lists Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Successful login using any of these techniques will give the user a "User" privilege only. If the user wishes to upgrade his or her status to the administrator level, the user must use the Enable Admin window, in which the user must enter a previously configured password, set by the administrator.
Page 266 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide by the Administrator. A maximum of eight Enable Method Lists can be implemented on the Switch, one of which is a default Enable Method List. This default Enable Method List cannot be deleted but can be configured.
Page 267: Local Enable Password Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide TACACS protocol from a remote TACACS server. Click the Apply button to accept the changes made. Click the Edit button to re-configure the specific entry. Click the Delete button to remove the specific entry.
Page 268 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide CBC Block Ciphers – CBC refers to Cipher Block Chaining, which means that a portion of the previously encrypted block of encrypted text is used in the encryption of the current block. The Switch supports the 3DES EDE encryption code defined by the Data Encryption Standard (DES) to create the encrypted text.
Page 269 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-65 SSL Settings window To set up the SSL function on the Switch, configure the parameters in the SSL Settings section described. The fields that can be configured are described below:...
Page 270: Ssh
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide This field is Enabled by default. Click the Apply button to accept the changes made. To download SSL certificates, configure the parameters in the SSL Certificate Download section described below.
Page 271: Ssh Authentication Method And Algorithm Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-66 SSH Settings window The fields that can be configured are described below: Parameter Description SSH Server State Use the radio buttons to enable or disable SSH on the Switch. The default is Disabled.
Page 272 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-67 SSH Authentication Method and Algorithm Settings window The fields that can be configured for SSH Authentication Mode are described below: Parameter Description Password This may be enabled or disabled to choose if the administrator wishes to use a locally configured password for authentication on the Switch.
Page 273: Ssh User Authentication List
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Twofish128 Use the check box to enable or disable the twofish128 encryption algorithm. The default is enabled. Twofish192 Use the check box to enable or disable the twofish192 encryption algorithm. The default is enabled.
Page 274: Trusted Host Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide remote SSH server for authentication purposes. Choosing this parameter requires the user to input the following information to identify the SSH user. Password – This parameter should be chosen if the administrator wishes to use an administrator-defined password for authentication.
Page 275: Safeguard Engine Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-70 Trusted Host window (EI Mode Only) When the user clicks the Edit button, one will be able to edit the service allowed to the selected host.
Page 276 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide many packets flooding the Switch. If the threshold has been crossed, the Switch will initially stop all ingress ARP and IP broadcast packets and packets from un-trusted IP addresses for five seconds. After another five-second checking interval arrives, the Switch will again check the ingress flow of packets.
Page 277 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 8-72 Safeguard Engine Settings window The fields that can be configured are described below: Parameter Description Safeguard Engine State Use the radio button to globally enable or disable Safeguard Engine settings for the Switch.
Page 278: Chapter 9 Network Application
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 9 Network Application DHCP SNTP Flash File System Settings DHCP DHCP Relay DHCP Relay Global Settings Users can enable and configure DHCP Relay Global Settings. The relay hops count limit allows the maximum number of hops (routers) that the DHCP messages can be relayed through to be set.
Page 279 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Threshold (0-65535) for routing a DHCP packet. If a value of 0 is entered, the Switch will not process the value in the seconds’ field of the DHCP packet. If a non-zero value is entered, the Switch will use that value, along with the hop count to determine whether to forward a given DHCP packet.
Page 280 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide NOTE: If the Switch receives a packet that contains the option 82 field from a DHCP client and the information-checking feature is enabled, the Switch drops the packet because it is invalid.
Page 281: Dhcp Relay Interface Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide DHCP Relay Interface Settings Users can set up a server, by IP address, for relaying DHCP information to the Switch. The user may enter a previously configured IP interface on the Switch that will be connected directly to the DHCP server using this window.
Page 282: Dhcp Relay Option 60 Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Delete button to remove the specific entry. Click the Delete All button to remove all the entries listed. NOTE: When there is no matching server found for the packet based on option 60, the relay servers will be determined by the default relay server setting.
Page 283: Dhcp Relay Option 61 Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide DHCP Relay Option 61 Settings On this page the user can configure, add and delete DHCP relay option 61 parameters. To view this window, click Network Application > DHCP > DHCP Relay > DHCP Relay Option 61 Settings as...
Page 284: Sntp
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 9-8 DHCP Local Relay Settings window The fields that can be configured are described below: Parameter Description DHCP Local Relay Enable or disable the DHCP Local Relay Global State. The default is Disabled.
Page 285: Time Zone Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide SNTP First Server The IP address of the primary server from which the SNTP information will be taken. SNTP Second Server The IP address of the secondary server from which the SNTP information will be taken.
Page 286: Flash File System Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description DST Repeating Settings Using repeating mode will enable DST seasonal time adjustment. Repeating mode requires that the DST beginning and ending date be specified using a formula. For example, specify to begin DST on Saturday during the second week of April and end DST on Sunday during the last week of October.
Page 287 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide To view this window, click Network Application > Flash File System Settings as shown below: Figure 9-11Flash File System Settings window Enter the Current Path string and click the Go button to navigate to the path entered.
Page 288 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Apply button to initiate the copy. Click the Cancel button the discard the process. After clicking the Move button, the following page will appear: Figure 9-14 Flash File System Settings – Move window When moving a file to another place, the user must enter the Source and Destination path.
Page 289: Chapter 10 Oam
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 10 Cable Diagnostics Cable Diagnostics The cable diagnostics feature is designed primarily for administrators or customer service representatives to verify and test copper cables; it can rapidly determine the quality of the cables and the types of error.
Page 290: Chapter 11 Monitoring
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 11 Monitoring Utilization Statistics Mirror sFlow (EI Mode Only) Ping Test Trace Route Peripheral Utilization CPU Utilization Users can display the percentage of the CPU being used, expressed as an integer percentage and calculated as a simple average by time interval.
Page 291: Dram & Flash Utilization
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description Time Interval Select the desired setting between 1s and 60s, where "s" stands for seconds. The default value is one second. Record Number Select number of times the Switch will be polled between 20 and 200. The default value is 200.
Page 292: Statistics
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 11-3 Port Utilization window To select a port to view these statistics for, select the port by using the Port pull-down menu. The user may also use the real-time graphic of the Switch at the top of the web page by simply clicking on a port.
Page 293 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Received (RX) To select a port to view these statistics for, select the port by using the Port pull-down menu. The user may also use the real-time graphic of the Switch at the top of the web page by simply clicking on a port.
Page 294 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The fields that can be configured are described below: Parameter Description Unit Select the unit you want to configure. Port Use the drop-down menu to choose the port that will display statistics.
Page 295 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 11-6 UMB_cast (RX) window (for Unicast, Multicast, and Broadcast Packets) Click the View Table link to display the information in a table rather than a line graph.
Page 296 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Port Use the drop-down menu to choose the port that will display statistics. Time Interval Select the desired setting between 1s and 60s, where "s" stands for seconds. The default value is one second.
Page 297: Errors
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 11-9 TX Packets Analysis window (table for Bytes and Packets) The fields that can be configured are described below: Parameter Description Port Use the drop-down menu to choose the port that will display statistics.
Page 298 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Received (RX) To select a port to view these statistics for, select the port by using the Port pull-down menu. The user may also use the real-time graphic of the Switch at the top of the web page by simply clicking on a port.
Page 299 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description Unit Select the unit you want to configure. Port Use the drop-down menu to choose the port that will display statistics. Time Interval Select the desired setting between 1s and 60s, where "s" stands for seconds. The default value is one second.
Page 300 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 11-12 Transmitted (TX) window (for errors) Click the View Table link to display the information in a table rather than a line graph. Figure 11-13 TX Error Analysis window (table)
Page 301: Packet Size
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Time Interval Select the desired setting between 1s and 60s, where "s" stands for seconds. The default value is one second. Record Number Select number of times the Switch will be polled between 20 and 200. The default value is 200.
Page 302 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 11-14 Packet Size window Click the View Table link to display the information in a table rather than a line graph. Figure 11-15 RX Size Analysis window (table)
Page 303: Mirror
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Record Number Select number of times the Switch will be polled between 20 and 200. The default value is 200. The total number of packets (including bad packets) received that were 64 octets in length (excluding framing bits but including FCS octets).
Page 304: Rspan Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description State Click the radio buttons to enable or disable the Port Mirroring feature. Target Port Use the drop-down menu to select the Target Port used for Port Mirroring.
Page 305: Sflow (Ei Mode Only)
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Parameter Description RSPAN State Click the radio buttons to enable or disable the RSPAN feature. VLAN Name Create the RSPAN VLAN by VLAN name. Create the RSPAN VLAN by VLAN ID.
Page 306: Sflow Analyzer Server Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 11-19 sFlow Global Settings window The fields that can be configured are described below: Parameter Description sFlow State Here the user can enable or disable the sFlow feature.
Page 307: Sflow Flow Sampler Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Timeout The length of time before the server times out. When the analyzer server times out, all of the flow samplers and counter pollers associated with this analyzer server will be deleted.
Page 308: Sflow Counter Poller Settings
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide be encapsulated and forwarded to the server. If not specified, the default value is 128. Click the Apply button to accept the changes made. Click the Delete All button to remove all the entries listed.
Page 309 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 11-23 Ping Test window (SI Mode Only) Figure 11-24 Ping Test window (EI Mode Only) The user may click the Infinite times radio button, in the Repeat Pinging for field, which will tell the ping program to keep sending ICMP Echo packets to the specified IP address until the program is stopped.
Page 310: Trace Route
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide After clicking the Start button, the following page will appear: Figure 11-25 Ping Test Result window Click the Stop button to halt the Ping Test. Click the Resume button to resume the Ping Test.
Page 311 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 11-27 Trace Route window (EI Mode Only) The fields that can be configured are described below: Parameter Description IPv4 Address / IPv6 IP address of the destination station.
Page 312: Peripheral
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Click the Stop button to halt the Trace Route. Click the Resume button to resume the Trace Route. Peripheral Device Environment The device environment feature displays the Switch internal temperature status.
Page 313: Chapter 12 Save And Tools
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Chapter 12 Save and Tools Save Configuration / Log To view this window, click Save > Save Configuration / Log, as shown below. Save Configuration allows the user to backup the configuration of the switch to a folder on the computer. Select Configuration from the Type drop-down menu and enter the File Path in the space provided and click Apply.
Page 314 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide To view this window, click Tools > Stacking Information, as shown below. Figure 12-4 Stacking Information window The Stacking Information window displays the following information: Parameter Description Topology Show the current topology employed using this Switch.
Page 315: Download Firmware
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Download firmware The following window is used to download firmware for the Switch. Download Firmware From TFTP This page allows the user to download firmware from a TFTP Server to the Switch and updates the switch.
Page 316: Upload Firmware
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 12-7 Download Firmware – HTTP window The fields that can be configured are described below: Parameter Description Unit Use the drop-down menu to select a unit for receiving the firmware. Select All for all units.
Page 317: Download Configuration
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The fields that can be configured are described below: Parameter Description Unit Use the drop-down menu to select a unit for uploading the firmware. TFTP Server IP Enter the TFTP server IP address used.
Page 318: Upload Configuration
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide TFTP Server IP Enter the TFTP server IP address used. IPv4 (EI Mode Only) Click the radio button to enter the TFTP server IP address used. IPv6 (EI Mode Only) Click the radio button to enter the TFTP server IPv6 address used.
Page 319: Upload Configuration To Http
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 12-13 Upload Configuration – TFTP window (SI Mode Only) Figure 12-14 Upload Configuration – TFTP window (EI Mode Only) The fields that can be configured are described below:...
Page 320: Upload Log File
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Figure 12-15 Upload Configuration – HTTP window The fields that can be configured are described below: Parameter Description Unit Use the drop-down menu to select a unit for uploading the configuration file.
Page 321: Reset
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide IPv4 (EI Mode Only) Click the radio button to enter the TFTP server IP address used. IPv6 (EI Mode Only) Click the radio button to enter the TFTP server IPv6 address used.
Page 322: Reboot System
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide The fields that can be configured are described below: Parameter Description Reset Selecting this option will factory reset the Switch but not the IP Address, User Accounts and the Banner.
Page 323 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide...
Page 324: Appendix A Mitigating Arp Spoofing Attacks Using Packet Content Acl
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Appendix A Mitigating ARP Spoofing Attacks Using Packet Content ACL How Address Resolution Protocol works Address Resolution Protocol (ARP) is the standard method for finding a host’s hardware address (MAC address) when only its IP address is known.
Page 325 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide When the switch receives the frame, it will check the “Source Address” in the Ethernet frame’s header. If the address is not in its Forwarding Table, the switch will learn PC A’s MAC and the associated port into its Forwarding Table.
Page 326: How Arp Spoofing Attacks A Network
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Table 4 Ethernet Frame Format The switch will also examine the “Source Address” of the Ethernet frame and find that the address is not in the Forwarding Table. The switch will learn PC B’s MAC and update its Forwarding Table.
Page 327: Prevent Arp Spoofing Via Packet Content Acl
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide A common DoS attack today can be done by associating a nonexistent or any specified MAC address to the IP address of the network’s default gateway. The malicious attacker only...
Page 328 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide 2. The switch will deny all other ARP packets which claim they are from the gateway’s IP. The design of Packet Content ACL on the Switch enables users to inspect any offset chunk. An offset chunk is a 4-byte block in a HEX format, which is utilized to match the individual field in an Ethernet frame.
Page 329 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide 0x806 port 1-12 permit correct Source MAC in the Ethernet frame can pass through the switch. Step 3: create access_profile profile_id 2 Create access profile 2 profile_name 2 packet_content_mask...
Page 330: Appendix B Password Recovery Procedure
This document will explain how the Password Recovery feature can help network administrators reach this goal. The following steps explain how to use the Password Recovery feature on D-Link devices to easily recover passwords. Complete these steps to reset the password: 1.
Page 331: Appendix C Trap Logs
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Appendix C Trap Logs This table lists the trap logs found on the Switch. Log Entry Description L2macNotification This trap indicates the MAC address 1.3.6.1.4.1.171.11.101.1.2.100.1.2.0.1 variations in the address table.
Page 332 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide generates a link down notification. SingleIPMSLinkUp The commander switch will send 1.3.6.1.4.1.171.12.8.6.0.14 swSingleIPMSLinkUp notification to the indicated host when its member generates a link up notification. SingleIPMSAuthFail The commander switch will send 1.3.6.1.4.1.171.12.8.6.0.15...
Page 333 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide risingAlarm This trap is an SNMP notification that 1.3.6.1.2.1.16.29.2.0.1 is generated when a high capacity alarm entry crosses its rising threshold and generates an event that is configured for sending SNMP traps.
Page 334: Appendix D Glossary
DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide Appendix D Glossary 1000BASE-SX: A short laser wavelength on multimode fiber optic cable for a maximum length of 550 meters 1000BASE-LX: A long wavelength for a "long haul" fiber optic cable for a maximum length of 10 kilometers 100BASE-FX: 100Mbps Ethernet implementation over fiber.
Page 335 DGS-3120 Series Layer 2 Stackable Managed Switch Web UI Reference Guide multicast: Single packets copied to a specific subset of network addresses. These addresses are specified in the destination- address field of the packet. protocol: A set of rules for communication between devices on a network. The rules dictate format, timing, sequencing and error control.

This manual is also suitable for:

Xstack dgs-3120-24tc

D-Link xStack Reference Manual

Intended Readers

Chapter 1 Web-Based Switch Configuration

Chapter 2 System Configuration

Chapter 3 Management

Chapter 4 L2 Features

Chapter 5 L3 Features

Chapter 6 Qos

Chapter 7 ACL

Chapter 8 Security

Chapter 9 Network Application

Chapter 10 OAM

Chapter 11 Monitoring

Quick Links

Need help?

Questions and answers

Related Manuals for D-Link xStack

Summary of Contents for D-Link xStack