moxa M5300 Managed Switch Next Generation User Manual
- June 9, 2024
- MOXA
Table of Contents
M5300 Managed Switch Next Generation
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
Version 1.1, January 2023 www.moxa.com/products
Models covered by this user manual: EDS-4008, EDS-4009, EDS-4012, EDS-4014,
EDS-G4008, EDS-G4012, EDS-G4014
© 2023 Moxa Inc. All rights reserved.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
The software described in this manual is furnished under a license agreement
and may be used only in accordance with the terms of that agreement.
Copyright Notice
© 2023 Moxa Inc. All rights reserved.
Trademarks
The MOXA logo is a registered trademark of Moxa Inc. All other trademarks or
registered marks in this manual belong to their respective manufacturers.
Disclaimer
· Information in this document is subject to change without notice and does
not represent a commitment on the part of Moxa.
· Moxa provides this document as is, without warranty of any kind, either
expressed or implied, including, but not limited to, its particular purpose.
Moxa reserves the right to make improvements and/or changes to this manual, or
to the products and/or the programs described in this manual, at any time.
· Information provided in this manual is intended to be accurate and reliable.
However, Moxa assumes no responsibility for its use, or for any infringements
on the rights of third parties that may result from its use.
· This product might include unintentional technical or typographical errors.
Changes are periodically made to the information herein to correct such
errors, and these changes are incorporated into new editions of the
publication.
Technical Support Contact Information
www.moxa.com/support
Table of Contents
1. About This Manual ………………………………………………………………………………………………………………..5 Symbols
for the Meanings in the Web Interface Configurations …………………………………………………………..
6 About Note, Attention, and Warning …………………………………………………………………………………………… 7
Configuration Reminders ………………………………………………………………………………………………………… 8 A: About
Mandatory Parameters…………………………………………………………………………………………. 8 B: Configurations
before Enable/Disable……………………………………………………………………………….. 8
2. Getting Started …………………………………………………………………………………………………………………….9 Log in by
Web Interface………………………………………………………………………………………………………….. 9 Connecting to the
Switch………………………………………………………………………………………………… 10 Log in by RS-232 Console
……………………………………………………………………………………………………… 11 Log in by
Telnet………………………………………………………………………………………………………………….. 13
3. Web Interface Configuration ………………………………………………………………………………………………..16
Function Introduction …………………………………………………………………………………………………………… 16 Device
Summary ………………………………………………………………………………………………………………… 17 System
Information………………………………………………………………………………………………………. 17 Panel Status
……………………………………………………………………………………………………………….. 18 Event Summary (Last 3 Days)
…………………………………………………………………………………………. 19 CPU Utilization History
…………………………………………………………………………………………………… 20
System…………………………………………………………………………………………………………………………….. 21 System Management
…………………………………………………………………………………………………….. 21 Account
Management…………………………………………………………………………………………………….. 33 Network
…………………………………………………………………………………………………………………….. 39 Time
…………………………………………………………………………………………………………………………. 49 Port
………………………………………………………………………………………………………………………………… 54 Port Interface
……………………………………………………………………………………………………………… 54 Link Aggregation
………………………………………………………………………………………………………….. 58
PoE…………………………………………………………………………………………………………………………… 61 Layer 2 Switching
……………………………………………………………………………………………………………….. 70 VLAN
………………………………………………………………………………………………………………………… 70 MAC
…………………………………………………………………………………………………………………………. 79 QoS
………………………………………………………………………………………………………………………….. 81 Multicast
……………………………………………………………………………………………………………………. 89 Network Redundancy
…………………………………………………………………………………………………………… 95 Layer 2 Redundancy
……………………………………………………………………………………………………… 96 Management
……………………………………………………………………………………………………………………. 115 Network Management
………………………………………………………………………………………………….. 116
Security………………………………………………………………………………………………………………………….. 121 Device Security
………………………………………………………………………………………………………….. 122 Network
Security………………………………………………………………………………………………………… 130 Loop Protection
………………………………………………………………………………………………………….. 152 Authentication
…………………………………………………………………………………………………………… 153 Diagnostics
……………………………………………………………………………………………………………………… 159 System Status
…………………………………………………………………………………………………………… 159 Event Notification
……………………………………………………………………………………………………….. 164 Diagnosis
…………………………………………………………………………………………………………………. 172 Industrial Applications
………………………………………………………………………………………………………… 182 General Settings
………………………………………………………………………………………………………… 182 Security Settings
………………………………………………………………………………………………………… 184 Maintenance and Tool
………………………………………………………………………………………………………… 187 Standard/Advanced
Mode……………………………………………………………………………………………… 187 Disable Auto Save
………………………………………………………………………………………………………. 188 Locator
……………………………………………………………………………………………………………………. 189 Reboot
…………………………………………………………………………………………………………………….. 190 Reset to Default
…………………………………………………………………………………………………………. 191 Log Out of the Switch
………………………………………………………………………………………………….. 192
A. Account Privileges List……………………………………………………………………………………………………….193 Account
Privileges List ………………………………………………………………………………………………………… 193
B. Event Log Description ………………………………………………………………………………………………………..195 Event
Log Description…………………………………………………………………………………………………………. 195
C. SNMP MIB File ………………………………………………………………………………………………………………….198 Standard MIB
Installation Order ……………………………………………………………………………………………. 198 MIB Tree
………………………………………………………………………………………………………………………… 198
D. Security Guidelines ……………………………………………………………………………………………………………200
Installation ……………………………………………………………………………………………………………………… 200 Physical
Installation …………………………………………………………………………………………………….. 200 Account
Management…………………………………………………………………………………………………… 200 Vulnerable Network Ports
……………………………………………………………………………………………… 201 Operation
……………………………………………………………………………………………………………………….. 201 Maintenance
……………………………………………………………………………………………………………………. 202 Decommission
………………………………………………………………………………………………………………….. 203
1. About This Manual
Thank you for purchasing Moxa’s managed switch. Read this user’s manual to
learn how to connect your Moxa switch with various interfaces and how to
configure all settings and parameters via the user-friendly web interface.
Three methods can be used to connect to the Moxa’s switch, which all will be
described in the next two chapters. See the following descriptions for each
chapter’s main functions. Chapter 2: Getting Started In this chapter, we
explain the instruction on how to initialize the configuration on Moxa’s
switch. We provide three interfaces to access the configuration settings:
RS-232 console interface, telnet interface, and web interface. Chapter 3: Web
Interface Configuration In this chapter, we explain how to access a Moxa
switch’s various configuration, monitoring, and management functions. The
functions can be accessed by web browser. We describe how to configure the
switch functions via web interface, which provides the most user-friendly way
to configure a Moxa switch. Appendix A: Account Privileges List This appendix
describes the read/write access privileges for different accounts on Moxa’s
Managed Ethernet Series switch. Appendix B: Event Log Description In this
appendix, users can check the event log name and its event log description.
When any event occurs, this appendix helps users quickly check the detailed
definition for each event. Appendix C: SNMP MIB File This appendix contains
the SNMP MIB files so that users can manage the entities in a network with
Moxa’s switch.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
5
Symbols for the Meanings in the Web Interface Configurations
The Web Interface Configuration includes various symbols. For your convenience, refer to the following table for the meanings of the symbols.
Symbols
Meanings
Add
Read detailed information
Clear all
Column selection
Refresh Enable/Disable Auto Save When Auto Save is disabled, users need to
click this icon to save the configurations. Export*
Edit
Re-authentication
Delete
Panel View Expand Collapse Hint Information Settings
Data Comparison
Menu icon Change mode Locator
Reboot
Reset to default
Logout
Increase Decrease Equal Menu
Search
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
6
Symbols
Meanings Hide text that is typed into a text box (usually used when typing a password)
Show text typed into a text box (usually used when providing password)
*The Export function helps users save the current configurations or information for the specific functions. It is located on the upper part of the configuration area. There are two formats available: CVS, or PDF. Select the format and save in your local computer.
About Note, Attention, and Warning
Throughout the whole manual, users will see some notes, attentions, and
warnings. Here are the explanations for each definition. Note: It indicates
the additional explanations for the situation that users might encounter. Here
is the example:
NOTE
By default, the password assigned to the Moxa switch is moxa. Be sure to
change the default password after you first log in to help keep your system
secure.
Attention: It indicates the situations where users might take some extra care
or it might bring some problems. Here is the example:
ATTENTION
When a different type of module has been inserted into the switch, we suggest
you configure the settings, or use reset-to-default.
Warning: It indicates the situations where users need to pay particular
attention to, or it might bring serious damage to the system or the switch.
Here is an example:
WARNING
There is a risk of explosion if the battery is replaced by an incorrect type.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
7
Configuration Reminders
In this section, several examples will be used to remind users when
configuring the settings for Moxa’s switch.
A: About Mandatory Parameters
1. The items with asterisks mean they are mandatory parameters that must be
provided. In the figure above, the parameters for VLAN, Version, and Query
Interval all need to be provided, or it will not be created or applied.
2. If the item is marked with red it means this item has been skipped. You
need to fill in the parameters or you cannot apply or create the function.
In addition, some parameter values will be limited to a specific range. If the
values exceed the range, it cannot be applied or created.
B: Configurations before Enable/Disable
In another situation, some settings can be configured first, but remain
disabled. Users can decide to enable them when necessary without configuring
the same settings again. This is particularly convenient and userfriendly when
configuring various settings. For example, on the DHCP Server configuration
page, users can configure the DHCP settings first, but later select to disable
the DHCP settings in the General tab. When users decide to enable the DHCP
settings, they only need to select Enable in General settings, so that the
DHCP settings (either MAC-based IP Assignment or Port-based IP Assignment as
shown as an example in the following figure) can be enabled at the same time.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
8
2. Getting Started
In this chapter, we explain how to log in a Moxa’s switch for the first time.
There are three ways to access the Moxa switch’s configuration settings:
RS-232 console, telnet (disabled by default) or web-based interface.
Log in by Web Interface
You can directly connect Moxa’s switch to your computer with a standard
network cable or install your computer at the same intranet as your switch.
Then you need to configure your computer’s network setting. The default IP
address for the Moxa’s switch is: 192.168.127.253 For example, you can
configure the computer’s IP setting as 192.168.127.99, and the subnet mask as
255.255.255.0.
Click OK when finished.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
9
Connecting to the Switch
Open a browser, such as Google Chrome, Internet Explorer 11, or Firefox, and
connect to the following IP address: https://192.168.127.253
NOTE
For network security consideration, all HTTP connections will be automatically
redirected to HTTPS connections. The web browser will display a warning
message if the device uses a certificate which isn’t signed by the
certification authority. You may add an exception rule for the certificate in
the web browser to continue. We recommend using a certificate signed by a
certification authority for security reasons. Refer to “Security > Device
Security > SSH & SSL > SSL” for the configuration steps.
The default username and password are:
Username: admin Password: moxa
Click LOG IN to continue. If you have logged in before, you will see a screen
indicating the previous login records. Click CLOSE.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
10
Another system message will appear, reminding you to change the default
password. We recommend you change your password, or a message will appear
whenever you log in. You can change the password in the Account Management
section. Click CLOSE to continue.
Log in by RS-232 Console
The Moxa’s managed switch offers a serial console port, allowing users to
connect to the switch and configure the settings. Do the following steps for
the serial connection and configuration. 1. Prepare an RS-232 serial cable
with an RJ45 interface. 2. Connect the RJ45 interface end to the console port
on the switch, and the other end to the computer. 3. We recommend you use
PComm Terminal Emulator for serial communication. The software can be
downloaded free of charge from Moxa’s website. After installing PComm Terminal
Emulator, open the Moxa switch’s console as follows: 1. From the Windows
desktop, click Start > Moxa > PComm Terminal Emulator.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
11
2. Select Open under the Port Manager menu to open a new connection. 3. The
Property window should open. On the Communication Parameter tab for Ports,
select the COM
port that is being used for the console connection. Set the other fields as
follows: 115200 for Baud Rate, 8 for Data Bits, None for Parity, and 1 for
Stop Bits.
4. On the Terminal tab, select VT100 for Terminal Type, and then click OK to
continue.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
12
5. The console will prompt you to log in. The default login name is admin, and the default password is moxa. This password will be required to access any of the consoles (web, serial, Telnet).
6. After successfully connecting to the switch by serial console, users can
start configuring the switch parameters by using command line instructions.
Refer to the Moxa Command Line Interface Manual.
NOTE
By default, the password assigned to the Moxa switch is moxa. Be sure to
change the default password after you first log in to help keep your system
secure.
Log in by Telnet
NOTE
The telnet protocol is disabled by default. Go to the Security > Device
Security > Management Interface section to enable the telnet function first.
Opening the Moxa switch’s Telnet or web console over a network requires that
the PC host and Moxa switch are on the same logical subnet. You might need to
adjust your PC host’s IP address and subnet mask. By default, the Moxa
switch’s IP address is 192.168.127.253 and the Moxa switch’s subnet mask is
255.255.255.0. Your PC’s IP address must be set to 192.168.xxx.xxx if the
subnet mask is 255.255.0.0, or to 192.168.127.xxx if the subnet mask is
255.255.255.0.
NOTE
When connecting to the Moxa switch’s Telnet or web console, first connect one
of the Moxa switch’s Ethernet ports to your Ethernet LAN, or directly to your
PC’s Ethernet port. You can use either a straightthrough or cross-over
Ethernet cable.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
13
NOTE
The Moxa switch’s default IP address is 192.168.127.253.
After making sure that the Moxa switch is connected to the same LAN and
logical subnet as your PC, open the Moxa switch’s Telnet console as follows:
- Click Start > Run from the Windows Start menu and then Telnet to the Moxa
switch’s IP address from
the Windows Run window. You can also issue the Telnet command from a DOS prompt.
2. Next, use Telnet to connect the Moxa switch’s IP address (192.168.127.253) from the Windows Run window. You can also issue the Telnet command from a DOS prompt.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
14
3. The Telnet console will prompt you to log in. The default login name is
admin, and the password is moxa. This password will be required to access any
of the consoles (web, serial, Telnet).
4. After successfully connecting to the switch by Telnet, users can start
configuring the switch parameters by using command line instructions. Refer to
the Moxa Command Line Interface Manual.
NOTE
By default, the password assigned to the Moxa switch is moxa. Be sure to
change the default password after you first log in to help keep your system
secure.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
15
3. Web Interface Configuration
Moxa’s managed switch offers a user-friendly web interface for easy
configurations. Users find it simple to configure various settings over the
web interface. All configurations for the Moxa’s managed switch can be easily
set up and done via this web interface, essentially reducing system
maintenance and configuration effort.
Function Introduction
This section describes the web interface design, providing a basic visual
concept for users to understand the main information or configuration menu for
the web interface pages.
1. Login Name: It shows the role of the login name.
2. Configuration Mode: Two modes can be shown: Standard Mode and Advanced
Mode. Standard Mode: Some of the features and parameters will be hidden to
make the configurations simpler (default). Advanced Mode: More features and
parameters will be shown for users to configure detailed settings.
3. Search Bar: Type the items you want to search of the function menu tree.
4. Function Menu: All functions of the switch are shown here. Click the
function you want to view or configure.
5. Device Summary: All important device information of the functions will be
shown here.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
16
Device Summary
After successfully connecting to the switch, the Device Summary will
automatically appear. You can view the whole web interface on the screen. If
you are in the middle of performing configurations, simply click Device
Summary on the Function Menu and you can view the detailed information of the
switch.
See the following sections for detailed descriptions for the specific items.
System Information
This shows the system information, including product model name, product
revision, serial number, firmware version, system uptime, etc.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
17
Panel Status
This section illustrates the panel status. For example, the connecting ports
will be shown in green, while the disconnected ports will be shown in gray.
Click EXPAND to view more detailed information on the panel status and click
Collapse to return.
Click EXPAND to view more detailed information on the panel status and click
COLLAPSE to return.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
18
Panel View
Click the icon with four arrows ( ) to view the device port status
graphically. Click the close icon in the upper right corner to return to the
main page. This appearance of the panel view figure depends on which model is
being used, so what you see might be different than the panel view shown
below.
Event Summary (Last 3 Days)
This section shows the event summary for the past three days.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
19
Click VIEW ALL EVENTS LOGS to go to the Event Log page, where you can view all
event logs.
For Event Log settings, refer to Event Log under the Diagnosis section.
CPU Utilization History
This section shows the CPU usage. The data will be shown as a percentage over
time. Click the refresh icon on the page to show the latest information.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
20
System
Click System on the function menu. You can configure the System Management,
Account Management, Network, and Time configurations.
System Management
Click System Management, four functions can be configured under this section:
Information Setting, Firmware Upgrade, Configure Backup and Restore, and Event
Log Backup.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
21
Information Setting
Define Information Setting items to make it easier to identify different
switches that are connected to your network.
Device Name Setting
1 to 64 characters
Description This option is useful for differentiating between the roles or applications of different units. Note that the device name cannot be empty.
Factory Default moxa
NOTE
The Device Name field follows the PROFINET I/O naming rule. The name can only
include the following characters, a-z/0-9/-.
Location Setting
Max. 255 characters
Description This option is for differentiating between the locations of different switches. Example: production line 1.
Factory Default None
Description Setting
Max. 255 characters
Description This option is for recording a more detailed description of the unit.
Factory Default None
Contact Information Setting
Max. 255 characters
Description
Factory Default
Users can input contact information such as email address, or None telephone number when problems occur.
When finished, click APPLY to save your changes.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
22
Firmware Upgrade
There are three ways to update your Moxa switch’s firmware: from a local *.rom
file, by remote SFTP server, and remote TFTP server.
Local
Select Local tab.
Select File
Before performing firmware upgrade, download the updated firmware (*.rom) file first from Moxa’s website (www.moxa.com).
Setting
Description
Select the firmware file
Click the icon on the right and select the firmware file from the location where the updated firmware is located.
Browse for the (*.rom) file, and then click the
This option allows users to select the updated firmware file and perform the firmware upgrade.
UPGRADE button.
Factory Default None
None
SFTP
Select SFTP tab.
Server IP Address
Setting
Description
Input the IP address of Input the server IP address of the computer where the new
the SFTP server.
firmware file (*.rom) is located.
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
23
Account Setting Input the account of the SFTP server
Description The account must be authorized in order for the SFTP Server to have a secure connection.
Factory Default None
Password Setting Input the password for the SFTP server
Description
Factory Default
The account has to be specified in order to authorize the SFTP None
Server for secure connection.
File Name Setting Input the file name of the firmware
Description Input the file name of the new firmware.
Factory Default None
When finished, click UPGRADE to perform the firmware upgrade. The switch will reboot automatically and perform the firmware upgrade.
TFTP Server
Users can also upgrade firmware via the TFTP server. Click TFTP tab first.
Server IP Address
Setting
Description
Input the IP address of Input the IP address of the TFTP server where the new
the TFTP server
firmware file (*.rom) is located.
File Name Setting Input the file name of the firmware
Description Input the file name of the new firmware.
When finished, click UPGRADE to perform the firmware upgrade.
Factory Default None
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
24
USB
You can upgrade the firmware via Moxa’s USB-based ABC-02 configuration tool.
Connect the ABC-02 to the switch and select USB from the drop-down list under
Method.
Select File
Before performing the firmware upgrade, download the latest firmware (*.rom) file first from Moxa’s website (www.moxa.com).
Setting
Description
Select the firmware file from the location where the updated Select the
firmware file
firmware is located.
Browse for the (*.rom) This option allows users to select the updated firmware file
file
and perform the firmware upgrade.
Factory Default None None
When finished, click UPGRADE to perform the firmware upgrade.
Note
If you have difficulty using the ABC-02 configuration tool, check if the USB
Function has been enabled in the Hardware Interface section.
microSD
You can upgrade the firmware via Moxa’s microSD-based ABC-03-microSD-T
configuration tool. Connect the ABC-03-microSD-T to the switch and select
microSD from the drop-down list under Method.
Select File
Before performing the firmware upgrade, download the latest firmware (*.rom)
file first from Moxa’s website (www.moxa.com).
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
25
Setting
Description
Select the firmware file from the location where the updated Select the firmware file firmware is located.
Browse for the (*.rom) This option allows users to select the updated firmware file
file
and perform the firmware upgrade.
Factory Default None None
When finished, click UPGRADE to perform the firmware upgrade.
Configuration Backup and Restore
There are five ways to back up the configurations of your Moxa switch: from a
local configuration file, by remote SFTP server, by remote TFTP server, by a
USB tool, or by a microSD card.
Local
Click Local tab first.
Configuration Selection
Setting
Description
Running Configuration Back up the running configuration.
Startup Configuration Back up the start-up configuration.
Factory Default Running Configuration
Default Configuration
Setting
Description
Not Included
Back up the configuration without default settings.
Included
Back up the configuration with default settings.
Factory Default Not Included
Select File
Setting
Description
Click the Backup button
to back up the
Back up the system file to your local computer.
configuration file to a
local drive.
Browse for a
configuration file on a
local disk, and then
Select the configuration file and perform system restoration.
click the RESTORE
button.
Factory Default None
None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
26
SFTP Server
Click SFTP tab first.
Server IP Address
Setting
Description
Input the IP address of Input the IP address of the SFTP server where the new
the SFTP server
firmware file (*.rom) is located.
Factory Default None
Account Setting Input the account of the SFTP server
Description
Factory Default
An account must be provided to authorize the SFTP server for None secure connection.
Password
Setting
Description
Input the passwords for The password has to be specified in order to authorize the
the SFTP server
SFTP Server for secure connection.
Factory Default None
File Name
Setting
Description
Input the
backup/restore file Input the file name of the configuration backup or
restoration
name (support up to 54 characters, including file.
the .ini file extension).
Factory Default None
When finished, click BACKUP or RESTORE to back up or restore the system configuration file.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
27
TFTP Server
Click TFTP tab first.
Server IP Address
Setting
Description
Input the IP address of the TFTP server
Users can input the IP address of the TFTP server.
Factory Default None
File Name
Setting
Description
Factory Default
Input the
backup/restore file
name (supports up to 54 characters, including
Users can input the configuration file.
file
name
to
back
up
or
restore
the
system
None
the .ini file extension).
When finished, click BACKUP or RESTORE to perform the firmware upgrade.
USB
Select USB from the drop-down list under Method.
Insert Moxa’s ABC-02 USB-based configuration tool into the USB port of the
switch, click BACKUP to back up the system configuration file.
Note
If you have difficulty using the ABC-02 configuration tool, check if the USB
Function has been enabled in the Hardware Interface section.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
28
microSD
Select microSD from the drop-down list under Method.
NOTE
If you have difficulty using the ABC-03-microSD-T configuration tool, check if
the microSD has been enabled in the Hardware Interface section.
File Encryption
To encrypt the configuration file, click the File Encryption tab first.
Enable Configuration File Encryption
Setting
Description
Enabled
Enable the configuration file to be encrypted.
Disabled
Disable the feature that allows the configuration file to be encrypted.
Factory Default Disabled
Password Setting 4 to 16 characters, numbers only.
Description
Factory Default
Input the password when users encrypt the configuration file. None
When finished, click APPLY to save your changes.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
29
File Signature
Click File Signature tab to see additional configuration options. Enabling the
file signature can ensure file integrity and authenticity.
Enable Signed Configuration
Setting
Description
Enabled
Enable configuration file signature.
Disabled
Disable configuration file signature
Click APPLY to save your changes. Click + icon to add customer key.
Factory Default Disabled
Label Setting 0 to 16 characters
Certificate Setting Click the import file icon to select the file from your
computer
Description Provide the name for the certificate and the key.
Description Import the certificate file.
Factory Default None
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
30
Key Setting Click the import file icon to select the file from your computer
Description Import the key file.
When finished, click CREATE to save your changes.
Factory Default None
Event Log Backup
There are three ways to back up Moxa switch’s log files: from a local drive,
by remote SFTP server, or by remote TFTP.
Local
Click Local tab.
Click BACKUP to back up the log file to a local drive.
SFTP Server
Click SFTP tab.
Server IP Address
Setting
Description
Input the IP address of the SFTP server
Users can input the IP address of the SFTP server.
Port Setting Input the port of the SFTP server, 1 to 65535
Description Specify the port used in the SFTP server.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
Factory Default None Factory Default None
31
Account Setting Input the account of the SFTP server
Description
Factory Default
An account must be specified to authorize the SFTP server for
secure connection.
None
Password Setting Input the password for the SFTP server
Description
Factory Default
The password has to be entered in order to authorize the SFTP None
Server for secure connection.
File Name Setting Input the file name for event log backup
Description Users can input the file name of the event log.
Factory Default None
When finished, click BACKUP to back up the event log file.
TFTP Server
Click TFTP tab.
Server IP Address
Setting
Description
Input the IP address of the TFTP server
Users can input the IP address of the TFTP server.
Port Setting Input the port of the TFTP server, 1 to 65535
Description Users can input the port used in the TFTP server.
File Name Setting Input the file name for event log backup
Description Users can input the file name of the event log.
When finished, click BACKUP to back up the event log file.
Factory Default None
Factory Default None
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
32
Account Management
The Account Management feature allows users to manage the accounts of the
switch. You can enable different accounts with different roles to facilitate
convenient management and safe access.
User Account
This section describes how to manage the existing accounts of the switch.
Here, you can add, edit, and delete user accounts for the switch. By default,
there is only one account: admin. In order to enhance security, we suggest you
create a new account with the user authority.
There is a search function on the upper right of the User Account page. Type
the username you want to search for.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
33
Editing Existing Accounts
Select the account you want to edit and click the edit icon.
Configure the following settings.
Enabled Setting Enabled Disabled
Description This enables the user account. This disables the user account.
Authority Setting admin
supervisor
user
Description This account has read/write access for all configuration parameters. This account has read/write access for some specific configuration parameters. This account can only view some specific configuration parameters.
Setting
Description
Input an email address Input an email address for the account if required.
When finished, click APPLY to save your changes.
Factory Default Enabled Factory Default
admin
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
34
To change the password for the user, click CHANGE PASSWORD.
New Password Setting 4 to 63 characters
Description Enter the password to use for this account.
Confirm Password Setting 4 to 63 characters
Description Reenter the password to confirm it.
When finished, click APPLY to save your changes.
Factory Default None
Factory Default None
NOTE
Refer to Appendix A for detailed descriptions for read/write access privileges
for the admin, supervisor, and user authority levels.
Creating a New Account
You can create new account by clicking the + icon on the configuration page.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
35
Configure the following settings.
Enabled Setting Enabled Disabled
Description This enables the account. This disables the account.
Factory Default Enabled
Username
Setting
Description
Input a username, 4 to 32 characters
Input a new username for this account.
Factory Default None
Authority Setting admin
supervisor
user
Description This account has read/write access of all configuration parameters. This account has read/write access for some specific configuration parameters. This account can only view some specific configuration parameters.
Factory Default None
In order to enhance security, we suggest you create a new account with the user authority.
New Password Setting 4 to 63 characters
Description Input a new password for this account.
Factory Default None
Confirm Password Setting 4 to 63 characters
Description Reenter the password to confirm.
Factory Default None
Setting
Description
Input an email address Input an email address for the account if required.
Factory Default None
When finished, click CREATE to complete.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
36
Delete an Existing Account
To delete the existing account, simply select the account you want to delete,
and then click the delete icon on the configuration page.
Click DELETE to delete the account.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
37
Password Policy
In order to prevent hackers from cracking weak passwords, a password policy
can be set. The password policy can force users to create passwords with a
minimum length and complexity, and can also set a maximum lifetime for the
password to ensure it is changed periodically.
Minimum Length Setting Input from 4 to 63
Description This sets the minimum length of the password.
Factory Default 4
Password Complexity Strength Check
Setting
Description
digit, letter cases,
These determine the required complexity for the password.
special characters
Multiple options may be checked.
Factory Default None
Password Max-life-time (day)
Setting
Description
Input from 0 to 365
This determines how long the password can be used before it must be changed.
Factory Default 0
When finished, click Apply to save your changes.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
38
Online Accounts
The Online Accounts function allows users to view who has connected to the
device. You may immediately remove the user who is currently online.
Select the remove icon and select REMOVE to disconnect the user.
Network
This section describes how to configure the switch’s network settings,
including IP Configuration and the DHCP Server.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
39
IP Configuration
Users can configure the IP settings of the switch.
Get IP From Setting Manual
DHCP
Description
Factory Default
The IP address of the switch must be set manually.
The IP address of the switch will be assigned automatically by Manual
the network’s DHCP server.
IP Address
Setting
Description
Input the IP address for Specify the IP address to use for the switch. the switch
Factory Default 192.168.127.253
Subnet Mask Setting Input the subnet mask for the switch
Description Specify the subnet mask to use for the switch.
Factory Default 24(255.255.255.0)
Default Gateway
Setting
Description
Input the IP address for Specify the IP address of the gateway that connects the LAN
the gateway
to a WAN or another network.
Factory Default None
DNS Server 1
Setting
Description
Factory Default
Specify the IP address of the 1st DNS server used by your
Input the IP address of the 1st DNS server
network. After specifying the DNS server’s IP address, you can use the switch’s URL (e.g., www.mymoxaswitch.com) to open
None
the web console instead of entering the IP address.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
40
DNS Server 2
Setting
Description
Specify the IP address of the 2nd DNS server used by your
Input the IP address of the 2nd DNS server
network. The switch will use the secondary DNS server if the first DNS server fails to connect.
Factory Default None
IPv6 Global Unicast Address Prefix (Prefix Length: 64 bits) Default Gateway
Setting
Description
Factory Default
The prefix value must be formatted according to the RFC 2373
IPv6 Addressing Architecture, using 8 colon-separated 16-bit
Global Unicast Address hexadecimal values. One double colon can be used in the
Prefix
address to indicate the appropriate number of zeros required
None
to fill the undefined fields.
Note: This feature is only available in Advanced Mode.
IPv6 DNS Server 1
Setting
Description
Factory Default
Specify the IPv6 address of the 1st DNS server used by your
Input the IPv6 IP
network. After specifying the DNS server’s IP address, you can
address of the 1st DNS use the switch’s URL (e.g., www.mymoxaswitch.com) to open None
server
the web console instead of entering the IP address.
Note: This feature is only available in Advanced Mode.
IPv6 DNS Server 2
Setting
Description
Factory Default
Specify the IPv6 address of the 2nd DNS server used by your
Input the IPv6 address network. The Moxa switch will use the secondary DNS server if None of the 2nd DNS server the first DNS server fails to connect.
Note: This feature is only available in Advanced Mode.
IPv6 Global Unicast Address
Setting
Description
Factory Default
Displays the IPv6 Global Unicast address. The network portion
of the Global Unicast address can be configured by specifying
the Global Unicast Prefix and using an EUI-64 interface ID in
None
the low order 64 bits of the address. The host portion of the Global Unicast address is automatically generated using the
None
modified EUI-64 form of the interface identifier (the switch’s
MAC address).
Note: This feature is only available in Advanced Mode.
IPv6 Link-Local Address
Setting
Description
Factory Default
The network portion of the Link-Local address is FE80 and the
host portion of the Link-Local address is automatically
None
generated using the modified EUI-64 form of the interface
None
identifier (the switch’s MAC address).
Note: This feature is only available in Advanced Mode.
When finished, click APPLY to save your changes.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
41
DHCP Server
This section describes how to configure the DHCP server settings for Moxa’s
switch. First, click the General tab.
Then select DHCP/MAC-based IP Assignment and click APPLY.
NOTE
The DHCP server will use UDP port 67 to send messages to the DHCP client.
DHCP
Select the DHCP tab and then click the + icon on the configuration page to
create a new DHCP server pool.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
42
Configure the following parameters.
NOTE
Users can only create one IP pool. It can be connected to different network
subnets with the Management IP of the switch.
Enable Setting Enabled Disable
Description Enables the DHCP server pool. Disables the DHCP server pool.
Start IP Address Setting Input the first IP address
Description Specify the first IP address for the pool.
Subnet Mask Setting Select from the dropdown list
Description Specify the subnet mask for the pool.
End IP Address Setting Input the last IP address
Description Specify the last IP address for the pool.
Factory Default Disabled
Factory Default None
Factory Default None
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
43
Default Gateway
Setting
Description
Input the IP address of
the default gateway
Specify the default gateway for clients to use.
Factory Default None
Lease Time (sec.)
Setting
Description
Input the lease time for
the DHCP, from 10 to Specify the lease time for DHCP IP assignments.
604,800 seconds (up to
7 days)
Factory Default 86400
DNS Server 1
Setting
Description
Factory Default
Input the IP address of
the 1st DNS server
Specify the IP address of the 1st DNS server for clients to use. None
DNS Server 2
Setting
Description
Input the IP address of Specify the IP address of the 2nd DNS server for clients to
the 2nd DNS server use.
Factory Default None
NTP Server Setting Input the address of the NTP server
Description Specify the NTP server clients will use.
Factory Default None
When finished, click CREATE.
MAC-based IP Assignment
Users can assign an IP address for a specific MAC address. This can be useful
if you always want the same IP address to be assigned to a specific device,
even if it is reconnected or connected to a different port.
Click the MAC-based IP Assignment tab, and then click the + icon on the
configuration page.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
44
Configure the following parameters.
Enable Setting Enabled Disabled
Description Enables the MAC-based IP assignment entry. Disables the MAC-based IP assignment entry.
Hostname Setting Enter a hostname between 0 and 63 characters
Description Specify a hostname to use for the DHCP client.
IP Address Setting Input the assigned IP address
Description Specify the IP address to assign to the client.
Subnet Mask Setting Select from the dropdown list
Description Specify the subnet mask to use for the client.
Factory Default Enabled
Factory Default None
Factory Default None
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
45
MAC Address
Setting
Description
Specify the MAC address of the device you want to assign an
Input the assigned MAC IP address to. Make sure the MAC address is entered in the
address
correct format. Here is an example:
28-d2-44-D3-e3-f2 or 28:d2:44:D3:e3:f2.
Factory Default None
Default Gateway
Setting
Description
Input the IP address of the default gateway
Specify the default gateway for the client to use.
Factory Default None
Lease Time (sec.)
Setting
Description
Factory Default
Input the lease time for the DHCP, from 10 to Define how long before the IP address needs to be reassigned. 86400
DNS Server 1
Setting
Description
Input the IP address of Specify the IP address of the 1st DNS server for the client to
the 1st DNS server
use.
Factory Default None
DNS Server 2
Setting
Description
Input the IP address of Specify the IP address of the 2nd DNS server for the client to
the 2nd DNS server use.
Factory Default None
NTP Server Setting Input the address of the NTP server
Description Specify the NTP server the client will use.
Factory Default None
When finished, click CREATE.
Port-based IP Assignment
Users can assign an IP to a device based on what switch port it is connected
to. This can be useful if you want to always use the same IP for a device
connected to a specific port, even if it is replaced with a different device.
On the General tab, select Port-based IP Assignment. Click APPLY.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
46
Next, click the Port-based IP Assignment tab, and then click the + icon on the configuration page. Configure the following parameters.
Enable Setting Enabled Disabled
Description Enables the port-based IP assignment entry. Disables the port- based IP assignment entry.
Port Setting
Select from 1 to 28
Description Select which switch port the DHCP server will assign an IP address for.
IP Address Setting Input the assigned IP address
Description Specify the IP address to assign to the client.
Factory Default Enabled
Factory Default None
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
47
Subnet Mask Setting Select from the dropdown list
Description Specify the subnet mask to use for the client.
Factory Default None
Default Gateway
Setting
Description
Input the IP address of Specify the default gateway for the client to use.
the default gateway
Factory Default None
Lease Time (sec.)
Setting
Description
Factory Default
Input the lease time for
the DHCP, from 10 to Define how long before the IP address needs to be reassigned. 86400
604800
DNS Server 1
Setting
Description
Input the IP address of Specify the IP address of the 1st DNS server for the client to
the 1st DNS server
use.
Factory Default None
DNS Server 2
Setting
Description
Input the IP address of Specify the IP address of the 2nd DNS server for the client to the 2nd DNS server use.
Factory Default None
NTP Server Setting Input the address of the NTP server
Description Specify the NTP server the client will use.
Factory Default None
When finished, click CREATE.
Lease Table
Click Lease Table to view detailed information for the hostname, IP address,
MAC address, and time left for each port.
Item Hostname IP Address MAC Address Time Left
Description The hostname of the client. The IP address of the client. The MAC address of the client. The amount of time left on the DHCP lease for the client.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
48
Time
This section describes how to configure the Time Zone and System Time settings
for the switch. The switch has a time calibration function based on
information from an NTP server or a user-specified time and date, allowing
functions such as automatic warning emails to include a time and date stamp.
NOTE
The user must update the Current Time and Current Date after the switch has
been powered off for an extended period of time (e.g., three days). The user
must pay particular attention to this when there is no NTP server or Internet
connection available.
Time Zone
Users can configure the time zone for the switch.
System Uptime Setting
System-specified time
Description
Factory Default
This indicates how long the switch has been running since the N/A
last cold start.
Current Time Setting User-specified time
Description Shows the current system time.
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
49
Time Zone Setting Select from the dropdown list
Description Specify the time zone to use for the switch.
Factory Default GMT (Greenwich Mean Time)
Daylight Saving Time
The Daylight Saving Time settings are used to automatically adjust the time
according to regional standards.
Configure the following settings.
Daylight Saving Time
Setting
Description
Enabled
Enables Daylight Saving Time.
Disabled
Disables Daylight Saving Time.
Start Date Setting User-specified date
Description Specify the date that Daylight Saving Time begins.
End Date Setting User-specified date
Description Specify the date that Daylight Saving Time ends.
Offset Setting
User-specified hour
Description Specify the offset (in HH:MM format) to use during Daylight Saving Time.
When finished, click APPLY to activate the time zone settings.
Factory Default Disabled
Factory Default None
Factory Default None
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
50
System Time
This section describes how to configure the Time, NTP Server, and NTP
Authentication settings.
Time
The section describes how to configure the system time. Click the Time tab.
Current Time Setting
None
Description This automatically shows the current time according to your default settings.
Clock Source Setting Select from the dropdown list
Description Specify whether to set the time manually (Local), from an SNTP server, or from an NTP server.
Clock Source is from Local
Date Setting Select the date
Description Select the current date.
Factory Default Local
Factory Default Local
Factory Default Local
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
51
Time Setting
Input the current time
Description
Factory Default
Specify the current time. You can manually input the time, or
you can click Sync From Browser to set the time based on the None
time used by your web browser.
Clock Source is from SNTP
Time Server 1 Setting Input the address of the 1st SNTP time server
Description Specify the IP or domain address of the 1st SNTP server to use (e.g., 192.168.1.1, time.stdtime.gov.tw, or time.nist.gov).
Factory Default Time.nist.gov
Time Server 2 Setting Input the address of the 2nd SNTP time server
Description
Specify the IP or domain address of the secondary SNTP server to use if the
first SNTP server fails to connect.
Factory Default None
Click APPLY to complete.
Clock Source is from NTP
If the switch is connecting to an NTP server that requires authentication, refer to the NTP Authentication section to configure the NTP key to use.
Time Server 1
Setting
Description
Factory Default
Input the address of Specify the IP or domain address of the 1st NTP server to use the 1st NTP time server (e.g., 192.168.1.1, time.stdtime.gov.tw, or time.nist.gov).
Time.nist.gov
Authentication Setting Disabled
Description Enable or disable NTP authentication for Time Server 1.
Factory Default Disabled
Time Server 2 Setting Input the address of the 2nd time server
Description
Factory Default
Specify the IP or domain address of the secondary NTP server
to use if the first NTP server fails to connect.
None
Authentication Setting Disabled
Description Enable or disable NTP Authentication for Time Server 2.
Factory Default Disabled
Click APPLY to complete.
NTP Server
Click the NTP Server Tab to perform further configuration.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
52
Enable Setting Enabled Disabled
Description Enable the NTP server. Disable the NTP server.
Client Authentication
Setting
Description
Enabled
Enable NTP authentication.
Disabled
Disable NTP authentication.
When finished, click APPLY to save your changes.
NOTE
The NTP server will use TCP port 123 to send messages to the NTP client.
Factory Default Disabled
Factory Default Disabled
NTP Authentication
This section describes how to configure NTP Authentication. Click the NTP
Authentication tab, and then click the + icon on the page.
Configure the following settings.
Key ID Setting Input the Key ID from 1 to 10
Description Input the Key ID to use for NTP authentication.
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
53
Type Setting Input the authentication type
Description Input the authentication type.
Key String
Setting
Description
Input the key string for
authentication, from 0 Input the password to use for the authentication key.
to 32 characters.
When finished, click CREATE.
Factory Default MD5
Factory Default None
Port
This section describes how to configure the Port Interface, Link Aggregation,
and PoE functions for the switch.
Port Interface
Two functions are included in this section: Port Setting and Linkup Delay.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
54
Port Setting
Under Port Setting, select the Setting tab and then click the edit icon on the
port you want to configure.
Configure the following parameters.
Admin Status Setting Enable Disabled
Description Allows data transmission through this port. Disables data transmission through this port.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
Factory Default Enabled
55
Media Type Setting Media type
Description Displays the media type for each module’s port.
Factory Default 1000TX,RJ45,PTP
Description Setting
Max. 63 characters
Description Specify an alias for the port to help differentiate between different ports (e.g., PLC1).
Factory Default None
Speed/Duplex Setting
Auto
10M Half 10M Full 100M Half 100M Full
Description Allows the port to use the IEEE 802.3u protocol to negotiate with
connected devices. The port and connected devices will determine the best
speed for that connection.
Choose a fixed speed option if the connected Ethernet device has trouble auto-
negotiating line speed.
Factory Default Auto
Flow Control
This setting enables or disables flow control for the port when the port’s speed is set to Auto. The final result will be determined by the Auto process between the switch and connected devices.
Setting Enable Disable
Description
Factory Default
Enables flow control for this port when the port’s speed is set
to Auto. Disabled
Disables flow control for this port when the port’s speed is set
to Auto.
MDI/MDIX Setting
Auto
MDI MDIX
Description Allows the port to auto-detect the port type of the connected Ethernet device, and changes the port type accordingly. Choose MDI or MDIX if the connected Ethernet device has trouble auto-detecting the port type.
Factory Default Auto
Copy Config to Ports
Setting
Description
Select the port(s) from the drop-down list
Allows you to copy the configuration to other port(s).
Factory Default None
When finished, click APPLY to save your changes.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
56
Port Status
To view the status of the ports, click the Status tab.
Linkup Delay
Linkup Delay Overview
Linkup delay is used to prevent a port alternating between link up and link
down. It is also sometimes called link flap prevention. This feature is useful
when the link connection is unstable. An unstable connection might be caused
by a faulty cable, faulty fiber transceiver, duplex mismatch, etc. This
feature helps administrators to mitigate the risk of an unstable network,
particularly when the topology changes frequently.
Linkup Delay Settings
This section describes how to configure the linkup delay for the ports. Click
the Linkup Delay menu. The default value is disabled, which means linkup delay
is disabled for all ports.
Enable Setting Enable Disabled
Description Enables linkup delay. Disables linkup delay.
When finished, click APPLY to save your changes.
Factory Default Disabled
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
57
To configure linkup delay for a port, click the edit icon on the port you want to configure.
Some parameters need to be configured.
Linkup Delay Setting Enable Disable
Description Enables linkup delay for the port. Disables linkup delay for the port.
Delay Time (sec.) Setting 1 to 1000
Description Specify the linkup delay time from 1 to 1000 seconds.
Copy Config to Ports
Setting
Description
Select the port(s) from Allows you to copy the configurations to other
port(s).
the drop-down list
When finished, click APPLY to save your changes.
Factory Default Disabled
Factory Default 2
Factory Default None
Link Aggregation
Link Aggregation (Port Channel) Overview
Link Aggregation helps balance, optimize, and facilitate the switch’s
throughput. This method can combine multiple network communications in
parallel to maximize data throughput, increasing data communication efficiency
for each port. In addition, it also acts as a useful method for network
redundancy when a link fails. In general, Link Aggregation supports combining
multiple physical switch ports into a single, efficient bandwidth data
communication route. This can improve network load sharing and increase
network reliability.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
58
Static Trunk
For some networking applications, a situation can arise where traffic from
multiple ports is required to be filtered through one port. For example, if
there are 30 UHD IP surveillance cameras deployed and connected in a ring, the
traffic can reach up to 1 Gbps, causing a surge in traffic that can increase
network loading by up to 50%. Hence, the uplink port needs to use the static
trunk function to provide more bandwidth and redundancy protection.
LACP
The Link Aggregation Control Protocol (LACP) allows a network device to
negotiate an automatic bundling of several ports by sending LACP packets to
the peer, a directly connected device that also uses LACP.
Link Aggregation Settings
This section describes how to configure link aggregation for each port. Click
Link Aggregation on the menu and then click the + icon on the configuration
page.
To create a link aggregation group, configure the following parameters.
LA Group Status Setting Enable Disable
Type Setting Manual LACP
Description Enable link aggregation grouping. Disable link aggregation
grouping.
Description Configure the link aggregation type manually. Configure the link
aggregation type by LACP.
Factory Default None
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
59
Config Member Port Setting
Select from the ports
Description Select the ports you want to create for link aggregation grouping.
Factory Default None
When finished, click CREATE to continue.
You can view the current Link Aggregation or Port Channel (Trunk) status on
the configuration page. You can also edit or delete by clicking the edit or
delete icon on the page.
Editing Port Setting for Link Aggregation
To edit each port’s setting for Link Aggregation, click the edit icon on the
port name. You can also check the port and then click the edit icon for
editing the port settings for Link Aggregation.
Edit the following port settings.
LA Group Status Setting Enable Disable
Description Enable link aggregation grouping. Disable link aggregation grouping.
Factory Default None
Type Setting Manual LACP
Description Configure link aggregation manually. Configure link aggregation by LACP.
Factory Default None
Config Member Port Setting
Select from the ports
Description
Factory Default
Select the ports you want to create link aggregation grouping None
for.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
60
When finished, click APPLY to save your changes.
Deleting the Port for Link Aggregation
To delete the port for Link Aggregation, check the port and then click the
delete icon.
Click DELETE to finish. Note that some features, such as RSTP and VLAN will be
set to default values once you delete the Link Aggregation setting.
When using SFP ports to perform Link Aggregation on the EDS-4014 Series and
EDS-G4014 Series, we suggest using the top four ports, as opposed to the two
located at the bottom of the device.
PoE
PoE Overview
Power over Ethernet (PoE) has become increasingly popular, due in large part
to the reliability provided by PoE Ethernet switches that supply the power to
Powered Devices (PD) when AC power is not available or is too expensive to
provide locally. Power over Ethernet can be used with the following types of
devices: · Surveillance cameras · Security I/O sensors · Industrial wireless
access points · Emergency IP phones Recently, more data, video, voice,
service, and control packets are converging on one network. Moxa’s PoE
switches are equipped with many advanced PoE management functions, providing
critical security systems with a convenient and reliable Ethernet network.
Moreover, Moxa’s advanced PoE switches support the high power PoE+ standard,
PD failure check, legacy PD detection, and auto power cutting.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
61
PoE Port Settings
Click PoE on the menu, and then select the General tab on the configuration
page.
NOTE
Please do not switch Power Management mode, i.e. Allocated Power and Consumed
Power, when the device is in operation.
Configure the following settings.
NOTE
Please enable Auto Power Cutting to optimize power usage.
Power Output Setting Enable Disable
Description Enable PoE for all ports on the switch. Disable PoE for all ports on the switch.
Factory Default Enabled
Power Management mode
Setting
Description
Allocated Power
Calculate power budget of all ports and ensure the allocated power is under the power budget limit.
Consumed Power
Calculate real-time power consumption of all ports.
Factory Default Consumed Power
Auto Power Cutting Setting
Enable
Disable
Description
Factory Default
If the total power consumption exceeds the system power
budget threshold, low priority for power output of the port will
perform auto power cutting.
Disabled
Disable the system power budget criteria design.
System Power Budget (watt)
Setting
Description
Input the value from 30
to 240
Input a value for the system power budget.
Factory Default 240
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
62
Actual Power Budget (watts)
Setting
Description
Display the current
Show the current power budget information. The lower value
power budget
between “Actual Power Budget” and “System Power Budget”
information
will become the “Power Budget Limit”.
Factory Default 240
When finished, click APPLY to save your changes.
Editing PoE Settings for Each Port
In this section, you can also enable the PoE function for specific ports even
when the system PoE is disabled under the General tab.
To edit the PoE settings for a port, click the edit icon for that port.
Edit the following parameters.
Power Output Setting Enable Disable
Description Enable PoE for this port. Disable PoE for this port.
Output Mode Setting
Auto
Description Auto mode follows the 802.3bt standard, which means the power allocation value cannot be changed manually.
Factory Default Enabled
Factory Default Auto
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
63
Setting Force
Description
Factory Default
Provides power output to non-802.3 af/at/bt PDs when the
detected PD has higher/lower resistance or higher capacitance
and the acceptable PD resistance range exceeds 2.4 k. The
system will prompt you to select Force Mode to allocate 0 to
90 watts of power.
Legacy PD Detection
The PoE Ethernet Switch includes a Legacy PD Detection function. When the capacitance of the PD is higher than 2.7 F and less than 10 F, enabling the Legacy PD Detection will trigger the system to output power to the PD. In this case, it will take a few seconds for PoE power to be output through this port after the switch Legacy PD Detection is enabled.
Setting Enable Disable
Description Enable legacy PD detection. Disable legacy PD detection.
Factory Default Disabled
Power Allocation (watt)
Setting
Description
0 to 90
Input the power allocation value.
Factory Default 0
Priority
Use Power Priority when managing PoE power with measured power mode. You can choose one of the following settings: critical, high, or low. When the PoE measured power exceeds the assigned limit, the switch will disable the PoE port with the lowest priority.
Setting Critical High Low
Description Configure the port as critical (highest) priority. Configure the port as high priority. Configure the port as low priority.
Factory Default Low
Copy Config to Ports
Setting
Description
Select the port(s) from Allows you to copy the configurations to other port(s). the drop-down list
Factory Default None
When finished, click APPLY to save your changes.
PD Failure Check
The PoE Ethernet switch can monitor the status of a PD via its IP address. If
the PD fails, the switch will not receive a PD response after the defined
period, and the authentication process will be restarted. This function is
extremely useful for ensuring your network’s reliability and reducing your
management burden.
Select the PD Failure Check tab, and then click the edit icon on the port you
want to configure.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
64
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
65
Configure the following parameters.
Enable Setting Enable Disable
Description Enable PD failure check for this port. Disable PD failure check for this port.
Device IP Setting Input the device’s IP
Description Specify the PD’s IP address.
Check Frequency (sec.)
Setting
Description
5 to 300
Specify how often the PD failure check will run.
No Response Times Setting 1 to 10
Description The maximum number of IP checking cycles.
Action Setting No Action Restart PD Shutdown PD
Description No action will run. Restart the PoE device when settings are triggered. Shut down the PoE device when settings are triggered.
Copy Config to Ports
Setting
Description
Select the port(s) from
the drop-down list
Copy the configurations to other port(s).
When finished, click APPLY to save your changes.
Factory Default Disabled
Factory Default 0.0.0.0
Factory Default 10
Factory Default 3
Factory Default No Action
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
66
PoE Scheduling
Note that this function is only available in Advanced Mode. Powered devices
might not need to be running 24 hours a day, 7 days a week. The PoE Ethernet
switch includes a PoE scheduling mechanism that allows users to economize the
system’s power burden by setting a flexible working schedule for each PoE
port. Switch to Advanced Mode, click the Scheduling tab, and then click the +
icon to create the scheduling settings.
Edit the following parameters.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
67
Rule Name Setting Input the rule name
Description Input the name for the scheduling rule.
Factory Default None
Enable Setting Enable Disable
Description Enable PoE Scheduling for this port. Disable PoE Scheduling for this port.
Factory Default Disabled
Start Date Setting Input start date in the mm/dd/yyyy format
Description Input the start date for the rule.
Factory Default None
Start Time
Setting
Description
Select the start time in Select the start time for the rule. AM/PM hh/mm format
Factory Default None
End Time Setting Select the end time in AM/PM hh/mm format
Description Select the end time for the rule.
Factory Default None
Repeat Execution Setting None Daily Weekly
Description Do not repeat the rule. Execute the rule every day. Execute the rule every week.
Factory Default None
Apply the rule to port
Setting
Description
Select the port(s) from Copy the settings to the port(s) you want to have the same
the drop-down list
rule.
Factory Default None
When finished, click CREATE. You can check the PoE Scheduling settings in the following figure.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
68
PoE Status
You can view the current PoE setting status by clicking the Status tab.
You can view the PoE status for each port. Refer to the following descriptions.
Name Port PoE Supported Power Output Classification Current (mA) Voltage (V) Consumption (W) Device Type Configuration Suggestion PD Failure Check
Description PoE port on the device. Check if this port supports PoE. Power output status (on/off) for the port. Check the Classification table below for details. The current (mA) that the port supplies. The voltage (V) that the port supplies. The power consumption that the device consumes. Check the Device Type table below for details. Refer to the Configuration Suggestion table below for details. Disable/Alive/Not Alive.
Classification Classification 0 1 2 3 4 (802.3at Type 2) 4 (802.3at) 5 6 7 8
Max Power (watt) by PSE Output 15.4 4 7 15.4 30 30 45 60 75 90
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
69
Device Type Item Not Present
Legacy PoE Device
802.3bt DS 802.3bt SS NIC Unknown N/A Configuration Suggestion Item Disable
PoE power output
Enable “Legacy PD Detection”
Select Force Mode
Select IEEE 802.3bt auto mode
Select high power output Raise the external power supply voltage to greater
than 46 VDC Enable PoE function for detection
Description No connection to the port. A legacy PD is connected to the port,
and the PD has detected that the voltage is too low or high, or the PD’s
detected capacitance is too high. An IEEE 802.3bt Dual Signature PD is
connected to the port. An IEEE 802.3bt Single Signature PD is connected to the
port. A NIC is connected to the port. An unknown PD is connected to the port.
The PoE function is disabled.
Description When detecting a NIC or unknown PD, the system suggests disabling
PoE power output. When detecting a higher capacitance of PD, the system
suggests enabling Legacy PD Detection. When detecting higher/lower resistance
or higher capacitance, the system suggests selecting Force Mode. When
detecting an IEEE 802.3bt PD, the system suggests selecting 802.3bt Auto mode.
When detecting an unknown classification, the system suggests selecting High
Power output. When the external supply voltage is detected at less than 46 V,
the system suggests raising the voltage. The system suggests enabling the PoE
function.
Layer 2 Switching
This section describes how to configure various parameters, such as VLAN,
GARP, MAC, QoS, and Multicast, for Moxa’s switch. Click Layer 2 Switching on
the function menu.
VLAN
This section includes IEEE802.1Q configurations.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
70
IEEE 802.1Q Overview
The IEEE 802.1Q is a network communication protocol that falls under the IEEE
802.1 standard regulation, allowing various segments to use a physical network
at the same time to block broadcast packets by different segmentations. It
specifies the VLAN tagging for Ethernet frames on switches that can control
the path process.
How A VLAN Works
What is a VLAN?
A VLAN is a group of devices that can be located anywhere on a network, but
which communicate as if they are on the same physical segment. With VLANs, you
can segment your network without being restricted by physical connections–a
limitation of traditional network design. With VLANs you can segment your
network into:
· Departmental groups–You could have one VLAN for the marketing department,
another for the finance department, and another for the product development
department.
· Hierarchical groups–You could have one VLAN for directors, another for
managers, and another for general staff.
· Usage groups–You could have one VLAN for email users and another for
multimedia users.
Benefits of VLANs
The main benefit of VLANs is that they provide a network segmentation system
that is far more flexible than traditional networks. Using VLANs also provides
you with three other benefits:
· VLANs ease the relocation of devices on networks: With traditional networks,
network administrators spend much of their time dealing with changes. If users
move to a different subnetwork, the addresses of each host must be updated
manually. With a VLAN setup, if a host originally on the Marketing VLAN is
moved to a port on another part of the network, and retains its original
subnet membership, you only need to specify that the new port is on the
Marketing VLAN. You do not need to do any re-cabling.
· VLANs provide extra security: Devices within each VLAN can only communicate
with other devices on the same VLAN. If a device on the Marketing VLAN needs
to communicate with devices on the Finance VLAN, the traffic must pass through
a routing device or Layer 3 switch.
· VLANs help control traffic: With traditional networks, congestion can be
caused by broadcast traffic that is directed to all network devices,
regardless of whether or not they need it. VLANs increase the efficiency of
your network because each VLAN can be set up to contain only those devices
that need to communicate with each other.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
71
VLANs and the Moxa switch
Your Moxa switch includes support for VLANs using IEEE Std 802.1Q-2005. This
standard allows traffic from multiple VLANs to be carried across one physical
link. The IEEE Std 802.1Q-2005 standard allows each port on your Moxa switch
to be placed as follows:
· On a single VLAN defined in the switch · On several VLANs simultaneously
using 802.1Q tagging
The standard requires that you define the 802.1Q VLAN ID for each VLAN on your
Moxa switch before the switch can use it to forward traffic:
Managing a VLAN
A new or initialized Moxa switch contains a single VLAN–the Default VLAN. This
VLAN has the following definition:
· Management VLAN ID 1 can be changed · 802.1Q VLAN default ID 1 cannot be
deleted
All the ports are initially placed on this VLAN, and it is the only VLAN that
allows you to access the management software of the Moxa switch over the
network.
Communication Between VLANs
If devices connected to a VLAN need to communicate with devices on a different
VLAN, a router or Layer 3 switching device with connections to both VLANs need
to be installed. Communication between VLANs can only take place if they are
all connected to a routing or Layer 3 switching device.
VLANs: Tagged and Untagged Membership
Moxa’s switch supports 802.1Q VLAN tagging, a system that allows traffic for
multiple VLANs to be carried on a single physical link (backbone, trunk). When
setting up VLANs you need to understand when to use untagged or tagged
membership of VLANs. Simply put, if a port is on a single VLAN it can be an
untagged member, but if the port needs to be a member of multiple VLANs, a
tagged membership must be defined.
A typical host (e.g., clients) will be an untagged member of one VLAN, defined
as an Access Port in a Moxa switch, while an inter-switch connection will be a
tagged member of all VLANs, defined as a Trunk Port in a Moxa switch.
The IEEE Std 802.1Q-2005 defines how VLANs operate within an open packet-
switched network. An 802.1Q compliant packet carries additional information
that allows a switch to determine which VLAN the port belongs to. If a frame
is carrying the additional information, it is known as a tagged frame.
To carry multiple VLANs across a single physical link (backbone, trunk), each
packet must be tagged with a VLAN identifier so that the switches can identify
which packets belong to which VLAN. To communicate between VLANs, a router
must be used.
Moxa’s switch supports three types of VLAN port settings:
· Access Port: The port connects to a single device that is not tagged. The
user must define the default port PVID that assigns which VLAN the device
belongs to. Once the ingress packet of this Access Port egresses to another
Trunk Port (the port needs all packets to carry tag information), the switch
will insert this PVID into this packet so the next 802.1Q VLAN switch can
recognize it.
· Trunk Port: The port connects to a LAN that consists of untagged devices and
tagged devices. In general, the traffic of the Trunk Port must have a Tag.
Users can also assign a PVID to a Trunk Port. The untagged packet on the Trunk
Port will be assigned the default port PVID as its VID.
· Hybrid Port: The port is similar to a Trunk port, except users can
explicitly assign tags to be removed from egress packets.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
72
The following section illustrates how to use these ports to set up different applications.
In this application:
· Port 1 connects a single untagged device and assigns it to VLAN 5; it should
be configured as an Access Port with PVID 5.
· Port 2 connects a LAN with two untagged devices belonging to VLAN 2. One
tagged device with VID 3 and one tagged device with VID 4. It should be
configured as a Hybrid Port with PVID 2 for untagged device and Fixed VLAN
(Tagged) with 3 and 4 for tagged device. Since each port can only have one
unique PVID, all untagged devices on the same port must belong to the same
VLAN.
· Port 3 connects with another switch. It should be configured as a Trunk
Port. GVRP protocol will be used through the Trunk Port.
· Port 4 connects a single untagged device and assigns it to VLAN 2; it should
be configured as an Access Port with PVID 2.
· Port 5 connects a single untagged device and assigns it to VLAN 3; it should
be configured as an Access Port with PVID 3.
· Port 6 connect a single untagged device and assigns it to VLAN 5; it should
be configured as an Access Port with PVID 5.
· Port 7 connects a single untagged device and assigns it to VLAN 4; it should
be configured as an Access Port with PVID 4.
After the application is properly configured:
· Packets from Device A will travel through Trunk Port 3 with tagged VID 5.
Switch B will recognize its VLAN, pass it to port 6, and then remove tags
received successfully by Device G, and vice versa.
· Packets from Devices B and C will travel through Hybrid Port 2 with tagged
VID 2. Switch B recognizes its VLAN, passes it to port 4, and then removes
tags received successfully by Device F, and vice versa.
· Packets from Device D will travel through Trunk Port 3 with tagged VID 3.
Switch B will recognize its VLAN, pass to port 5, and then remove tags
received successfully by Device H. Packets from Device H will travel through
Trunk Port 3 with PVID 3. Switch A will recognize its VLAN and pass it to port
2, but will not remove tags received successfully by Device D.
· Packets from Device E will travel through Trunk Port 3 with tagged VID 4.
Switch B will recognize its VLAN, pass it to port 7, and then remove tags
received successfully by Device I. Packets from Device I will travel through
Trunk Port 3 with tagged VID 4. Switch A will recognize its VLAN and pass it
to port 2, but will not remove tags received successfully by Device E.
VLAN Settings
To configure VLAN, click VLAN on the function menu, then select IEEE 802.1Q.
Click Global tab.
GVRP (Generic VLAN Registration Protocol) is an IEEE 802.1Q standard protocol
that helps specify how to define a method of tagging frames with VLAN
configuration data. It essentially facilitates management of VLAN within a
larger network data communication.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
73
To edit the GVRP function, click the Global tab.
Configure the following setting.
GVRP Setting Disabled Enabled
Description Disables GVRP. Enables GVRP.
Click APPLY to finish.
Factory Default Disabled
VLAN Management Port Quick Settings
In the lower part of the configuration page, you can quickly configure the
VLAN settings.
Configure the following settings.
Management VLAN
Setting
Description
Select the Management VLAN from the drop- Show the list of selectable VLANs. down list
Management Port Setting Select the port(s) as the VLAN port(s) from the drop- down list
Description To select the port(s) as the VLAN port(s).
When finished, click APPLY to save your changes.
Factory Default 1
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
74
Detailed VLAN Settings
On the IEEE 802.1Q page, first click the Setting tab, and then click the edit
icon.
Configure the following parameters.
VID Setting Input a VLAN ID, (10 VLANs max.)
Description Input a VLAN ID.
Name Setting Input a name for the VLAN, (32 characters max.)
Description Specify a name for the VLAN.
Member Port
Setting
Description
Select the port drop-down list.
from
the
Specify
the
ports
that
are
the
member
ports
for
the
VLAN.
When finished, click CREATE.
Forbidden Port (in Advanced Mode only)
Setting
Description
Select the port from the
drop-down list
Specify the ports that are forbidden for the VLAN.
Factory Default None
Factory Default None
Factory Default None
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
75
Editing the Existing VLAN Settings
To edit the exiting VLAN settings, click the edit icon of the VLAN you want to
edit.
Configure the following settings.
VID Setting Show the VLAN ID
Description Display the VLAN ID.
Name Setting Show the name of the VLAN
Description Display the VLAN name.
Member Port
Setting
Description
Select the port drop-down list
from
the
Specify
the
ports
that
are
member
ports
for
the
VLAN.
When finished, click APPLY to save your changes.
Forbidden Port (in Advanced Mode only)
Setting
Description
Select the port drop-down list
from
the
Specify
the
ports
that
are
forbidden
for
the
VLAN.
Factory Default None Factory Default None
Factory Default None
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
76
Editing the Port Settings
To edit the port settings, in the VLAN tab select the edit icon on the port
you want to configure on the lower part of the page.
Configure the following settings.
Mode Setting Access Trunk
Hybrid
PVID Setting 1 to 4094
GVRP Setting Enabled Disabled
Description When this port is connected to a single device, without tags. When this port is connected to another 802.1Q VLAN aware switch. When this port is connected to another Access 802.1Q VLAN aware switch or another LAN that combines tagged and/or untagged devices.
Factory Default Access
Description Sets the default VLAN ID for untagged devices connected to the port.
Factory Default None
Description Enables GVRP. Disables GVRP.
Factory Default Disabled
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
77
Tagged VLAN Setting
1 to 4094
Description This field will be active only when selecting the Trunk or Hybrid port type. Set the other VLAN ID for tagged devices that connect to the port.
Factory Default None
Untagged VLAN Setting
VID range from 1 to 4094
Description This field is only active when the Hybrid port type is selected. Set the other VLAN ID for tagged devices that connect to the port and tags that need to be removed in egress packets.
Factory Default 1
Copy Config to Ports
Setting
Description
Select the port(s) from
the drop-down list
Copy the configuration to other port(s).
Factory Default None
When finished, click APPLY to save your changes.
GARP Overview
GARP stands for Generic Attribute Registration Protocol, which is a
communication protocol defined by IEEE 802.1, offering a generic framework for
bridges to register and de-register an attribute value. In a VLAN structure,
two applications can be applied: GARP VLAN Registration Protocol (GVRP) is
used to register VLAN trunking between multilayer switches, and GARP Multicast
Registration Protocol (GMRP) for providing a constrained multicast flooding
facility.
GARP Settings
Select GARP on the menu page, and then click the edit icon on the port you
want to configure.
Configure the following settings.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
78
Join Time (sec.) Setting 10 to 499999980
Description Input the join time from 10 to 499999980 seconds.
Leave Time (sec.) Setting 30 to 499999980
Description Input the leave time from 30 to 499999980 seconds.
Leave All time (sec.) Setting 30 to 499999990
Description Input the leave all time.
Copy Config to Ports
Setting
Description
Select the port(s) from
the drop-down list
Copy the configurations to other port(s).
When finished, click APPLY to save your changes.
Factory Default 200
Factory Default 600
Factory Default 10000
Factory Default None
MAC
This section explains Independent VLAN learning and describes how to configure Static Unicast and the MAC Address Table.
Independent VLAN Learning
Moxa’s switch uses the Independent VLAN Learning (IVL) mode. In an IVL Mode, a
MAC table will be created in each VLAN, which will constitute many MAC tables.
However, the same VID record will be selected and put in a table. A MAC table
will be stored in the format of MAC + VID, the same MAC will be stored in
different tables with different VIDs.
Static Unicast
Click Static Unicast on the function menu page and click the + icon on the
configuration page.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
79
Configure the following settings.
VID Setting Input a VLAN ID
Description Input a VLAN ID.
MAC Address Setting MAC address of the port
Description Input the MAC address of the port.
Port
Setting
Description
Select the port from the Specify the port you want to create a VLAN for.
drop-down list
When finished, click CREATE.
MAC Address Table
Select MAC Address Table, and configure the following settings.
Factory Default None
Factory Default None
Factory Default None
MAC Learning Mode Information Independent VLAN learning
Description Show the current MAC Learning Mode.
Aging Time Setting 10 to 300
Description Input a VLAN ID.
When finished, click APPLY to save your changes.
Factory Default Independent VLAN learning
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
80
You can view the current MAC Address Table on the bottom part of the configuration page.
Item Name Index VLAN MAC Address Type Port
Description The number of the MAC address. The VLAN number The MAC address on this device. Learnt Unicast, Learnt Multicast, Static Unicast, Static: Multicast The forwarding port of this MAC address.
QoS
This section describes how QoS works and how to configure the settings.
QoS Overview
The switch’s traffic prioritization capability provides Quality of Service
(QoS) to your network by making data delivery more reliable. You can
prioritize traffic on your network to ensure that high priority data is
transmitted with minimum delay. Traffic can be controlled by a set of rules to
obtain the required Quality of Service for your network. The rules define
different types of traffic and specify how each type should be treated as it
passes through the switch. The switch can inspect both IEEE 802.1p/1Q layer 2
CoS (Class of Service) tags, and even layer 3 DSCP (Differentiated Services
Code Point) information to provide consistent classification of the entire
network. The switch’s QoS capability improves the performance and determinism
of industrial networks for mission-critical applications.
The Traffic Prioritization Concept
Traffic prioritization allows you to prioritize data so that time-sensitive
and system-critical data can be transferred smoothly and with minimal delay
over a network. The benefits of using traffic prioritization are:
· Improve network performance by controlling a wide variety of traffic and by
managing congestion. · Assign priorities to different categories of traffic.
For example, set higher priorities for time-critical or
mission-critical applications. · Provide predictable throughput for multimedia
applications, such as video conferencing or voice over IP,
and minimize traffic delay and jitter. · Optimize the network utilization
depending on application usage and usage needs. Hence, asset owners
do not always need to expand their backbone bandwidth as the amount of traffic
increases.
Traffic prioritization uses eight traffic queues to ensure that higher
priority traffic can be forwarded separately from lower priority traffic,
which guarantees Quality of Service (QoS) to your network.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
81
Moxa switch traffic prioritization is based on two standards:
· IEEE 802.1p–a layer 2 QoS marking scheme · Differentiated Services (DiffServ)–a layer 3 QoS marking scheme.
IEEE 802.1p Class of Service
The IEEE Std 802.1D 2005 Edition marking scheme, which is an enhancement to IEEE Std 802.1D, enables Quality of Service on the LAN. Traffic service levels are defined in the IEEE 802.1Q 4-byte tag, which is used to carry VLAN identification as well as IEEE 802.1p priority information. The IEEE 802.1p occupying 3 bits of the tag follows the destination MAC address and Source MAC address.
The IEEE Std 802.1D 2005 Edition priority marking scheme assigns an IEEE 802.1p priority level between 0 and 7 to each frame, which specifies the level of service that the associated packets shall be handled. The table below shows an example of how different traffic types can be mapped to the eight IEEE 802.1p priority levels.
IEEE 802.1p Priority Level 0 1 2 3 4 5 6 7
IEEE 802.1D Traffic Type Best Effort Background (lowest priority) Reserved Excellent Effort (business critical) Controlled Load (streaming multimedia) Video (interactive media) Voice (interactive voice) Network Control Reserved traffic
Even though the IEEE 802.1p standard is the most widely used prioritization scheme for LAN environments, it still has some restrictions:
· It requires an additional 4-byte tag in the frame, which is normally
optional for Ethernet networks. Without this tag, the scheme cannot work.
· The tag is part of the IEEE 802.1Q header, so to implement QoS at layer 2,
the entire network must implement IEEE 802.1Q VLAN tagging.
· It is only supported within a LAN and does not cross the WAN boundaries,
since the IEEE 802.1Q tags will be removed when the packets pass through a
router.
Differentiated Services (DiffServ) Traffic Marking
DiffServ is a Layer 3 marking scheme that uses the DiffServ Code Point (DSCP) field in the IP header to specify the packet priority. DSCP is an advanced intelligent method of traffic marking that allows you to choose how your network prioritizes different types of traffic. The DSCP field can be set from 0 to 63 to map to user-defined service levels, enabling users to regulate and categorize traffic by applications with different service levels.
The advantages of DiffServ over IEEE 802.1Q are as follows:
· You can prioritize and assign different traffic with appropriate latency,
throughput, or reliability by each port.
· No extra tags are required.
· The DSCP priority tags are carried in the IP header, which can pass the WAN
boundaries and through the Internet.
· DSCP is backwards compatible with IPv4 ToS (Type of Service), which allows
operation with legacy devices that use IPv4 layer 3.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
82
Traffic Prioritization
Moxa switches classify traffic based on layer 2 of the OSI 7 layer model, and
the switch prioritizes outbound traffic according to the priority information
defined in the received packet. Incoming traffic is classified based upon the
IEEE 802.1p service level field and is assigned to the appropriate egress
priority queue. The traffic flow through the switch is as follows:
· A packet received by the Moxa switch may or may not have an 802.1p tag
associated with it. If it does not, then it is given a default CoS value
(according to the port settings in the classification section). Alternatively,
the packet might be marked with a new 802.1p value, which will result in all
knowledge of the previous 802.1p tag being lost.
· Each egress queue has associated 802.1p priority levels, and can be defined
by users, the packet will be placed in the appropriate priority queue. When
the packet reaches the head of its queue and is about to be transmitted, the
device determines whether or not the egress port belongs to the VLAN group. If
it is, then the new 802.1p tag is used in the extended 802.1D header.
Traffic Queues
The hardware of Moxa switches has multiple traffic queues that allow packet
prioritization to occur. Higher priority traffic can pass through the Moxa
switch without being delayed by lower priority traffic. As each packet arrives
in the Moxa switch, it undergoes ingress processing (which includes
classification, marking/re-marking), and is then sorted into the appropriate
queue. The switch then forwards packets from each queue.
Moxa switches support two different queuing mechanisms:
· Weight Fair: This method services all the traffic queues, giving priority to
the higher priority queues. Under most circumstances, the Weight Fair method
gives high priority precedence over low priority, but in the event that high
priority traffic does not reach the link capacity, lower priority traffic is
not blocked.
· Strict: This method services high traffic queues first; low priority queues
are delayed until no more high priority data needs to be sent. The Strict
method always gives precedence to high priority over low priority.
Classification
There are three parameters in this section: DSCP Mapping, CoS Mapping, and
Port Setting. The three parameters are described below in detail.
DSCP to CoS Mapping
In the Classification menu, click the DSCP Mapping tab, and then click the
edit icon.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
83
Configure the priority setting from the drop-down list for this port.
DSCP Value and Priority
Setting
Description
0 to 7
8 to 15
16 to 23
24 to 31
Different DSCP values map to one of eight different priorities
32 to 39
from 0 to 7.
40 to 47
48 to 55
56 to 63
Factory Default 0 1 2 3 4 5 6 7
When finished, click APPLY to save your changes.
CoS to Queue Mapping
In the Classification menu, click the CoS Mapping tab, and then click the edit
icon.
Configure the Queue priority setting for the port.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
84
Queue Priority Setting 0 1 2 3 4 5 6 7
Description
Different 802.1p values map to one of the eight different queues from 1
(lowest priority) to 8 (highest).
When finished, click APPLY to save your changes.
Factory Default 1 2 3 4 5 6 7 8
Port Settings
In the Classification menu, click the Port Setting tab, and then click the
edit icon.
Configure the following settings.
Trust Type Setting CoS DSCP
Description Enables the port with CoS-based traffic classification. Enables the port with DSCP-based traffic classification.
Factory Default CoS
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
85
Untag Default Priority
Setting
Description
Factory Default
0 to 7
802.1p tag (CoS) can be range from 0 (lowest) to 7 (highest). 3
Copy Config to Ports Setting Select from the dropdown list
Description Copy the settings to other ports you select.
Factory Default None
When finished, click APPLY to save your changes.
Ingress Rate Limit
Exceed Rate Limit Threshold Port Shutdown
In general, any user shall not consume unlimited bandwidth and influence
others’ access. One particular scenario is that a malfunctioning switch or
mis-configured network might cause “broadcast storms”. Moxa industrial
Ethernet switches not only prevent broadcast storms, but can also regulate
ingress packet rates, giving administrators full control of their limited
bandwidth to prevent undesirable effects caused by unpredictable faults.
Editing Port Shutdown
To edit the port shutdown configurations, click the Port Shutdown tab.
Configure the following settings.
Enable Setting Enable Disable
Description Enable the port to be shut down. Disable the ability for the port to be shut down.
Release Interval (min.)
Setting
Description
0 to 10080
Specify the release interval for the port to shut down. 0 means this port will be shut down until manually enabled.
When finished, click APPLY to save your changes.
Factory Default Disabled
Factory Default 60
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
86
Editing the Port for Port Shutdown
Edit the specific port that you want to edit the port shutdown configurations
for.
Configure the following settings.
Enable Setting Enable Disable
Description Enable port shutdown for this port. Disable port shutdown for this port.
Threshold (Mbps) Setting 1 to 100 or 1000 for Gigabit ports
Description Specify the threshold for port shutdown
Copy Config to Ports
Setting
Description
Select the port(s) from Copy the configurations to other port(s).
the drop-down list
When finished, click APPLY to save your changes.
Factory Default Disable
Factory Default 100 or 1000
Factory Default None
Scheduler
Scheduler Overview
Scheduler is an arbiter in switch forwarding path to prioritize traffic flows
by users’ defined criteria. This essentially enhances data transmission
efficiency and guarantees that critical packets can be transmitted earlier.
Moxa’s switches support two scheduling algorithms: Strict Priority and
Weighted Round Robin.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
87
Strict Priority
The Strict Priority type allows users to determine to transmit packets in the
highest priority queue first, while packets with lower priority will be
transmitted later. This guarantees that traffic with the highest level of
priority for data transmission will go first.
Weighted Round Robin
The Weighted Round Robin type allows users to give priority to specific
packets in the higher weighted queue to ensure those packets will be sent
first. Moxa switches now have 8 queues, and the weights from highest to lowest
are 8:8:4:4:2:2:1:1.
Scheduler Settings
Select Scheduler in the menu and then click the edit icon on the port you want
to configure.
Configure the following settings.
Type Setting Strict Priority
Weighted Round Robin
Description Set scheduler algorithm as Strict Priority. Set the scheduler algorithm as Weighted Round Robin: The queued packet will be forwarded by its associated weight.
Copy Config to Ports
Setting
Description
Select the port from the Copy the same settings to other ports. drop-down list
When finished, click APPLY to save your changes.
Factory Default Strict Priority
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
88
Multicast
Multicast filtering improves the performance of networks that carry multicast
traffic. This section will explain the Layer 2 multicast settings, such as
IGMP Snooping, GMRP, and Static Multicast.
IGMP Snooping IGMP Snooping Overview
IGMP stands for Internet Group Management Protocol, which is a network
communication protocol that hosts nearby routers on networks to construct
multicast group memberships. IGMP snooping allows a network switch to listen
in on the IGMP conversation between hosts and routers. By listening to these
conversations, the switch maintains an association mapping table between
port(s) and multicast group.
How IGMP Snooping Works
A switch will, by default, flood multicast traffic to all the other ports,
aside ingress, in a broadcast domain (or the VLAN equivalent). Multicast can
cause unnecessary loading for host devices by requiring them to process
packets they have not solicited. IGMP snooping is designed to prevent hosts on
a local network from receiving traffic for a multicast group they have not
explicitly joined. It provides switches with a mechanism to forward multicast
traffic to specific ports that receive IGMP hosts. Hence, IGMP snooping can
utilize the network bandwidth more efficiently.
Without IGMP Snooping
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
89
With IGMP Snooping
Differences Between IGMP Snooping V1, V2, and V3
IGMP protocols regulate the communication mechanism between querier and listener. IGMP Snooping has three different versions. Refer to the following table for the detailed differences.
IGMP Version V1 V2 V3
Main Features
Reference
The IGMPv1 querier will periodically send out a “query”. Listeners can
solicit a “report” of their interested group. However, IGMPv1 does have a “leave group” message, and the querier might need to
not
RFC-1112
implement a timeout mechanism for each registered group.
Compatible with V1 and the following functions:
a. Group-specific query
b. Leave group messages
RFC-2236
c. Resends specific queries to verify leave message was the last one
in the group
d. Querier election if multiple capable queries are present.
Compatible with V1, V2, and the following functions:
Source filtering enables hosts to specify: – the multicast traffic from a specified source
RFC-3376
– the multicast traffic from any source except a specified source
IGMP Snooping Settings
First, select IGMP Snooping on the menu and then click the General tab on the
configuration page.
Enable Setting Enabled Disabled
Description Enable IGMP Snooping on a specific VLAN. Disable IGMP Snooping on a specific VLAN.
Factory Default Disabled
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
90
Configuring VLAN Setting
Click the VLAN Setting tab, and then click the edit icon to configure the VLAN
settings.
Enable Setting Enabled Disabled
Description Enable IGMP Snooping on a switch. Disable IGMP Snooping on a switch.
Factory Default Disabled
Version Setting
1, 2, 3
Description
Factory Default
Specify the IGMP version of the packets that the switch listens
to and send queries for.
2
Query Interval (sec) Setting
20 to 600
Description Specify the query interval for the Querier function globally (Querier has to be enabled.)
Factory Default 125
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
91
Static Router Port
Setting
Description
The router port is the port that connects to the upper level
Check the port drop-down list
from
the
router (or IGMP querier), or to the upper level router of downstream multicast streams. All of the received IGMP signaling packets or multicast streams will be forwarded
to
those static router ports.
Config Role Setting Querier Non-Querier
Description The switch will act as the Querier role. The switch will not act as the Querier role.
When finished, click APPLY to save your changes.
Factory Default None
Factory Default Querier
Viewing the Group Table
Click the Group Table tab, which allows you to view the current Group Table
status.
Refer to the following table for the detailed description for each item.
Item VLAN Group Address
Filter Mode
Port Source Address
Description The VLAN ID. The registered multicast group. Only applicable for IGMPv3. (v1 and v2 will display “N/A”) Include: source-specific multicast address group Exclude: source-specific exclusive multicast address group The forwarded port. Only applicable for IGMPv3. (v1 and v2 will display N/A)
Viewing the Forwarding Table
Click the Forwarding Table tab to view the current forwarding table.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
92
Refer to the following table for a description of each item.
Item VLAN Group Address Source Address Port
Description The VLAN ID. The associated multicast group address of the streaming data. The source address of the streaming data. The forwarded port.
GMRP
GMRP stands for GARP Multicast Registration Protocol, which is a Generic
Attribute Registration Protocol (GARP) application that can be used to prevent
multicast from data flooding. Both GMRP and GARP are defined by the IEEE
802.1P, and widely used as a standard protocol in various industrial-related
applications. GMRP allows bridges and the devices at the edge of the network
to perform a dynamic group membership information registration with the MAC
bridges connected to the same LAN section. The information can be transmitted
among all bridges in the Bridge LAN that is implemented with extended
filtering features. To operate GMRP, the GARP service must be established
first.
Configuring GMRP Setting
To configure the GMRP settings, click GMRP on the menu.
Configure the following settings.
Enable Setting Enabled Disabled
Description Enable GMRP. Disable GMRP.
When finished, click APPLY to save your changes.
Configuring GMRP Settings for Each Port
Next, click the edit icon on the port you want to configure.
Factory Default Disabled
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
93
Configure the following settings.
Enable Setting Enabled Disabled
Description Enable GMRP for this port. Disable GMRP for this port.
Group Restrict Setting Enabled
Disabled
Description Enable Group Restrict on the port. This specific port will not process any GMRP control packets. Disable Group Restrict on the port. The specific port will receive and process incoming GMRP control packets.
Copy Config to Ports
Setting
Description
Select the port(s) from Allows you to copy the configurations to other
port(s).
the drop-down list
When finished, click APPLY to save your changes.
Factory Default Disabled
Factory Default Disabled
Factory Default None
Static Multicast
Click Static Multicast on the menu to view the current multicast table.
Adding Static Multicast Entry
To add more tables, click the + icon.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
94
Configure the following settings.
VID (VLAN ID) Setting Input the VID
Description Specify the multicast group’s associated VLAN ID.
Factory Default None
MAC Address
Setting
Description
Input the MAC address Specify the multicast MAC address.
Factory Default None
Egress Port
Setting
Description
Factory Default
Input the port from the Set the port(s) as an egress port(s) so that multicast streams
None
drop-down list
can be forwarded to this port.
Forbidden Port
Setting
Description
Factory Default
Input the port from the Set the port as forbidden so that packets cannot be forwarded
drop-down list
to this port.
None
When finished, click CREATE.
Network Redundancy
Setting up the Redundancy Protocol on your network helps protect critical
links against failure, protects against network loops, and keeps network
downtime to a minimum.
The Redundancy Protocol allows you to set up redundant paths on the network to
provide a backup data transmission route in the event that a cable or one of
the switches is inadvertently disconnected or damaged. This is a particularly
important feature for industrial applications, since it can take several
minutes to address the link down port or failed switch. For example, if a Moxa
switch is used as a key communications device for a production line, several
minutes of downtime can cause a big loss in production and revenue. Moxa
switches support the following Redundancy Protocol functions:
· Spanning Tree · Turbo Ring V2 · Turbo Chain · Dual Homing
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
95
Layer 2 Redundancy
First select Network Redundancy on the menu and then click Layer 2 Redundancy.
Spanning Tree Spanning Tree Overview
Spanning Tree Protocol (STP) was designed to help construct a loop-free
logical typology on an Ethernet network, and provide an automatic means of
avoiding any network loops. This is particularly important for networks that
have a complicated architecture, since unintended loops in the network can
cause broadcast storms. Moxa switches’ STP feature is disabled by default. To
be completely effective, you must enable STP/RSTP on every Moxa switch
connected to your network. STP (802.1D) is a bridge-based system that is used
to implement parallel paths for network traffic. STP uses a loop-detection
process to: · Locate and then disable less efficient paths (e.g., paths that
have lower bandwidth). · Enable one of the less efficient paths if a more
efficient path fails.
How STP Works
The figure below shows a network made up of three LANs separated by three
bridges. Each segment uses at most two paths to communicate with the other
segments. Since this configuration can give rise to loops, the network will
overload if STP is not enabled.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
96
If STP is enabled, it will detect duplicate paths or block one of the paths
from forwarding traffic. In the following example, STP determined that traffic
from segment 2 to segment 1 flows through switches C and A since this path is
in a forwarding state and is processing BPDUs. However, switch B on segment 1
is in a blocking state.
What happens if a link failure is detected? As shown in the figure below, the
STP will change the blocking state to a forwarding state so that traffic from
segment 2 flows through switch B to segment 1 through a redundant path.
STP will determine which path between each segment is most efficient, and then
assign a specific reference point on the network. When the most efficient path
has been identified, the other paths are blocked. In the previous three
figures, STP first determined that the path through switch C was the most
efficient, and as a result, blocked the path through switch B. After the
failure of switch C, STP re-evaluated the situation and opened the path
through switch B.
Difference Between STP and RSTP
RSTP is similar to STP but includes additional information in the BPDUs that
allow each bridge to confirm that it has taken action to prevent loops from
forming when it decides to enable a link to a neighboring bridge. Adjacent
bridges connected via point-to-point links will be able to enable a link
without waiting to ensure that all other bridges in the network have had time
to react to the change. The main benefit of RSTP is that the configuration
decision is made locally rather than network-wide, allowing RSTP to carry out
automatic configuration and restore a link faster than STP.
STP and RSTP spanning tree protocols operate without regard to a network’s
VLAN configuration and maintain one common spanning tree throughout a bridged
network. Thus, these protocols map one loopfree, logical topology on a given
physical topology.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
97
STP/RSTP Settings and Status
This section describes how to configure Spanning Tree settings.
General
Click Spanning Tree on the menu and then select the General tab.
Configure the following settings.
STP Mode Setting Disabled STP/RSTP MSTP
Description Disable Spanning Tree. Specify STP/RSTP as the STP mode. Specify MSTP as the STP mode.
Factory Default Disabled
Click APPLY to save your changes. When STP/RSTP has been selected, configure the following settings.
STP Mode Setting STP/RSTP
Description Use the STP/RSTP mode as the Spanning Tree protocol.
Factory Default STP/RSTP
Compatibility Setting STP RSTP
Description To be compatible with STP mode only To be compatible with RSTP and STP modes
Factory Default RSTP
Bridge Priority Setting
0 to 61440
Description Increase this device’s bridge priority by selecting a lower number. A device with a higher bridge priority has a greater chance of being established as the root of the Spanning Tree topology.
Factory Default 32768
Forwarding Delay Time (sec.)
Setting
Description
4 to 30
The amount of time the device waits before checking to see if it should change to a different state.
Factory Default 15
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
98
Hello Time (sec.) Setting
1 or 2
Description
Factory Default
The root of the Spanning Tree topology periodically sends out
a “hello” message to other devices on the network to check if the topology is healthy. The “hello time” is the amount of time
2
the root waits between sending hello messages.
Max Age (sec.) Setting
6 to 40
Description If this device is not the root, and it has not received a hello message from the root in the amount of time equal to “Max. Age,” then this device will reconfigure itself as a root. Once two or more devices on the network are recognized as a root, the devices will renegotiate a new Spanning Tree topology.
Factory Default 20
Error Recovery Time (sec.)
Setting
Description
30 to 65535
If the BPDU guard is triggered on a port, it will automatically recover to the normal state after the Error Recovery Time.
Factory Default 300
When finished, click APPLY to save your changes. If you select MSTP as the STP mode, configure the following settings.
STP Mode Setting MSTP
Description Use the MSTP mode as the Spanning Tree protocol.
Factory Default MSTP
Compatibility Setting MSTP STP RSTP
Description Only compatible with MTP mode. Only compatible with STP mode. Compatible with RSTP and STP modes.
Factory Default MSTP
Forwarding Delay Time (sec.)
Setting
Description
Factory Default
4 to 30
The amount of time the device waits before checking to see if it should change to a different state.
15
Hello Time (sec.) Setting
1 or 2
Description
Factory Default
The root of the Spanning Tree topology periodically sends out
a “hello” message to other devices on the network to check if the topology is healthy. The “hello time” is the amount of time
2
the root waits between sending hello messages.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
99
Max Age (sec.) Setting
6 to 40
Description If this device is not the root, and it has not received a hello message from the root in the amount of time equal to “Max. Age,” then this device will reconfigure itself as a root. Once two or more devices on the network are recognized as a root, the devices will renegotiate a new Spanning Tree topology.
Factory Default 20
Error Recovery Time (sec.)
Setting
Description
30 to 65535
If the BPDU guard is triggered on a port, it will automatically recover to the normal state after the Error Recovery Time.
Factory Default 300
Region Name Setting 0 to 32 characters
Description Provide the region name.
Factory Default MSTP
Region Revision
Setting
Description
0 to 65535 (characters) Provide the region revision.
Factory Default 0
Max. Hops Setting 6 to 40
Description Provide the maximum hops value.
Factory Default 20
When finished, click APPLY to save your changes.
Editing Spanning Tree for a Port
To edit the spanning tree settings for a specific port, click the edit icon on the port you want to configure.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
100
Configure the following settings.
Enable Setting Enabled Disabled
Description Enable Spanning Tree. Disable Spanning Tree.
Factory Default Disabled
Edge Setting Auto Yes No
Description Automatically detect to be the edge port. Set as an edge port. Do not set as an edge port.
Factory Default Auto
Priority Setting
0 to 255 (multiples of 16)
Description
Factory Default
Increase the priority of a port by selecting a lower number. A
port with a higher priority has a greater chance of being a root 128
port.
Path Cost Setting
0 to 20000000
Description The path cost value will be automatically assigned according to the different port speed if the value is set to zero.
Factory Default 0
Link Type Setting Force True
Force False Auto
Description Set to Force True when port operating in full-duplex mode, such as a switch. Set to Force False when port operating in half-duplex mode, such as a hub. Automatically select Force True or Force False mode.
Factory Default Auto
Copy Config to Ports
Setting
Description
Select the port(s) from Copy the configurations to other port(s). the drop- down list
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
101
Click APPLY to finish.
BPDU Overview
BDPUs (Bridge Protocol Data Units) are the network communication frames used
in the STP (Spanning Tree Protocol). When two switches exchange messages,
BDPUs are used to calculate the STP topology, and determine the network
communication route. A BDPU filter is often used to screen sending or
receiving BPDUs on a specific port of the switch.
BPDU Guard
BDPU Guard is a protection mechanism that prevents a port from receiving
BPDUs. When an RSTP-enabled port receives BPDUs, it will automatically be in
the error-disable state, which means the port will in turn switch to Block
state. When STP is enabled, all ports are involved in the STP domain, sending
and receiving BPDUs. However, when BPDU Guard is enabled, all ports will not
receive or send any BPDUs, as all computers and unmanaged switches do not
support STP. When BPDU Guard is enabled, all communications will be treated as
error-disabled, and the related ports will be blocked, therefore no more data
will be sent or received, protecting the network from a loop chain.
Root Guard
Root Guard prevents a designated port role from changing to root port role on
reception of superior information.
Loop Guard
Loop Guard prevents temporary loops in a network caused by non-designated
ports changing to the spanning-tree forwarding state due to a link failure in
the topology.
BPDU Filter
BPDU Filter prevents a port from sending and processing BPDUs. A BPDU filter
enabled port cannot transmit any BPDUs and drop all received BPDU either.
Configuring BPDU Filter, BPDU/Root/Loop Guard Settings
First click Spanning Tree on the menu and then select the Guard tab. Next,
click the edit icon on the port you want to configure.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
102
Configure the following settings.
BDPU Guard Setting Enabled Disabled
Description Enable BDPU Guard. Disable BDPU Guard.
Factory Default Disabled
NOTE
To establish a redundant port e.g. it is highly recommended that you do not
enable BPDU filter.
Root Guard Setting Enabled Disabled
Description Enable Root Guard. Disable Root Guard.
Loop Guard Setting Enabled Disabled
Description Enable Loop Guard. Disable Loop Guard.
BDPU Filter Setting Enabled Disabled
Description Enable BDPU Filter. Disable BDPU Filter.
Copy Config to Port
Setting
Description
Select the port(s) from Copy the same settings to other port(s).
the drop-down list
When finished, click APPLY to save your changes.
Factory Default Disabled
Factory Default Disabled
Factory Default Disabled
Factory Default None
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
103
Viewing Current Spanning Tree Status
Click the Status tab to view the current Spanning Tree status.
In addition, the status for each port will also be shown below.
Refer to the following table for detailed description of each item.
Item Port Edge
Port Rule
Port State Root Path Cost Path Cost Link Type BPDU Inconsistency Root
Inconsistency Loop Inconsistency
Description The port number on this device. Show if this port is connected to an edge device. Root: The port is connected directly or indirectly to the root device. Designated: The port is designated if it can send the best BPDU on the segment to which it is connected. Alternate: The alternate port receives more useful BPDU from another bridge and is the blocked port. Backup: The backup port receives more useful BPDU from the same bridge and is the blocked port. Disabled: The function is disabled. Forwarding: The traffic can be forwarded through this port. Blocked: The traffic will be blocked. Disabled: The function is disabled. The total path cost to the root bridge. The path cost on this link. Edge Port: The port is connected to an edge device. Point-to-Point Non Edge Port: The port is connected to another bridge and is full duplex. Shared Non Edge Port: The port is connected to another bridge and is half duplex. BPDU is received on a port enabled by a BPDU guard. A port is changed to a root port when enabled by a loop guard. A loop is detected on this port by a loop guard.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
104
Turbo Ring v2 Turbo Ring v2 Overview
Moxa Turbo Ring is a proprietary self-healing technology that enables fast
fault recovery of under 20 ms for Fast Ethernet, and 50 ms for Gigabit
Ethernet. Turbo Ring supports two topology expansions–ring coupling and dual-
ring–to reduce redundant network cabling and network planning costs and to
ensure high reliability of your industrial network applications. The Turbo
Ring v2 protocols identify one switch as the master of the network, and then
automatically block one port beside master on the ring (red line) to avoid
network’s redundant loops. In the event that one branch of the ring gets
disconnected from the rest of the network, the protocol automatically
readjusts the ring so that the part of the network that was disconnected can
reestablish contact with the rest of the network.
How Turbo Ring v2 Works
Turbo Ring v2 is an advanced technology for network redundancy, which ensures
recovery times of less than 20 ms for Fast Ethernet, and 50 ms for Gigabit
Ethernet when the network is down. In addition, it allows more switches within
the network rings. Users can select different network typologies for Turbo
Ring redundancy to allow more network reliability and reduce cabling costs.
Below are three examples of how Turbo Ring v2 works.
Ring Coupling
Ring Coupling helps users separate distributed devices into different smaller
redundant rings, but in such a way that the smaller rings at different remote
sites will be able to communicate with each other. This is useful for
applications where some devices are located at remote sites.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
105
Dual-Ring
Dual-Ring adds reliability by using a single Moxa switch to connect two
separate rings for applications that present cabling difficulties. It provides
another ring coupling configuration where two adjacent rings can share one
switch. This typology is an ideal solution for applications that have inherent
cabling difficulties.
How to Determine the Redundant Path
For Turbo Ring v2, the master is determined by two methods, one is a system
MAC address election, the smallest MAC address will play the Master role; the
other is user manual configuration to enable Master role on the switch. The
redundant path is determined by “Ring Port 2”, which means the port set on
“Ring Port 2” will become the blocking port.
Ring Coupling for a “Turbo Ring V2” Ring
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
106
For Turbo Ring V2, Ring Coupling is enabled by configuring the Coupling Port
(Primary) on Switch B, and the Coupling Port (Backup) on Switch A only. The
Coupling Port (Backup) on Switch A is used for the backup path, and connects
directly to an extra network port on Switch C. The Coupling Port (Primary) on
Switch B monitors the status of the main path, and connects directly to an
extra network port on Switch D. With ring coupling has been established,
Switch A can activate the backup path as soon as it detects a problem with the
main path.
ATTENTION
Ring Coupling needs to be enabled on one coupling primary switch and one
coupling backup switch as the Ring Coupler. The Coupler must designate
different ports as the two Turbo Ring ports and the coupling port.
NOTE
You do not need to use the same switch for both Ring Coupling and Ring Master.
Turbo Ring V2 Settings and Status
NOTE
If you connect the EDR-G9010 Series in your topology, please ensure it is not
set as the Master.
NOTE
When the DIP switch is on and working, you cannot configure Turbo Ring V2
settings.
Click Turbo Ring V2 on the menu, and then select the Setting tab.
Configure the following setting.
Enable Setting Enabled Disabled
Description Enable Turbo Ring V2. Disable Turbo Ring V2.
When finished, click APPLY to save your changes.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
Factory Default Disabled
107
Ring Settings
In Ring Setting, click the edit icon.
Configure the following settings. When finished, click Apply to save your
changes.
Enable Setting Enabled Disabled
Description Enable Ring Setting. Disable Ring Setting.
Master Setting Enabled Disabled
Description Enable this Ring as the Master. Disable this Ring as the Master.
Ring Port 1
Setting
Description
Select list
the
port
from
the
Specify
this
port
as
the
1st
redundant
port.
Ring Port 2
Setting
Description
Select list
the
port
from
the
Specify
this
port
as
the
2nd
redundant
port.
Factory Default Disabled
Factory Default Disabled
Factory Default 1/1
Factory Default 1/2
Ring Coupling Overview
Ring Coupling helps users separate distributed devices into different smaller
redundant rings, but in such a way that the smaller rings at different remote
sites will be able to communicate with each other. This is useful for the
applications where some devices are located at remote sites.
Moxa’s Managed Switch Next Generation OS (v3.x) User Manual
108
Ring Coupling Settings and Status
In the Ring Coupling Setting, click the edit icon.
Configure the following settings.
Enable Setting Enabled Disabled
Description Enable Ring Coupling. Disable Ring Coupling.
Coupling Mode Setting Coupling Backup Path
Coupling Primary Path
Description Select Coupling Mode to assign the coupling port as the backup path. Select Coupling Mode to assign the coupling port as the pri