Netgear S3300-52X Software Guide
Netgear S3300-52X Manual
 |
View all Netgear S3300-52X manuals
Add to My Manuals
Save this manual to your list of manuals |
Netgear S3300-52X manual content summary:
- Netgear S3300-52X | Software Guide - Page 1
S3300 Smart Switch Software Administration Manual July 2014 202-11377-01 350 East Plumeria Drive San Jose, CA 95134 USA - Netgear S3300-52X | Software Guide - Page 2
through the NETGEAR website. For product updates and web support, visit http://support.netgear.com. Phone (US & Canada only): 1-888-NETGEAR. Phone (Other Countries): Check the list of phone numbers at http://support.netgear.com/general/contact/default.aspx. Contact your Internet service provider for - Netgear S3300-52X | Software Guide - Page 3
NETGEAR 32 Support 33 User Guide 33 48 Denial of Service 53 DNS 55 Green Ethernet 58 License 63 Switch Stack Configuration 64 Stacking Overview 64 Basic Stack Configuration 66 Advanced Stack Configuration 69 Advanced Stack Status 69 Advanced Stack-Port Configuration 71 Advanced Stack-Port - Netgear S3300-52X | Software Guide - Page 4
S3300 Smart Switch Multiple Stack Links 74 PoE 76 Advanced PoE Configuration 77 Advanced PoE Port Configuration 77 SNMP 80 Configure the SNMPv1/v2 Community 80 LLDP 84 LLDP Configuration 85 LLDP Port Settings 86 LLDP-MED Network Policy 87 LLDP-MED Port Settings 88 Local Information 88 - Netgear S3300-52X | Software Guide - Page 5
S3300 Smart Switch CST Configuration 137 CST Port Configuration 138 CST Port Status 139 Rapid STP 140 MST Configuration 142 MST Port Configuration 802.1AS Port Settings 183 802.1AS Statistics 185 Chapter 4 Configuring Routing Configure IP Settings 188 IP Configuration 188 IP Statistics - Netgear S3300-52X | Software Guide - Page 6
220 Change Password 220 RADIUS Configuration 221 Configure TACACS 225 Authentication List Configuration 227 Configuring Management Access 230 HTTP Configuration 230 Secure HTTP Configuration 231 Certificate Management 232 Certificate Download 232 Access Control 234 Port Authentication 236 - Netgear S3300-52X | Software Guide - Page 7
Reset 293 Device Reboot 293 Factory Default 294 Upload 294 TFTP File Upload 295 HTTP File Upload 296 USB File Upload 297 Download 298 TFTP File Download 298 HTTP File Download 300 USB File Download 301 File Management 302 Copy 302 Dual Image 302 Troubleshooting 304 Ping IPv4 304 Ping - Netgear S3300-52X | Software Guide - Page 8
IPv4 313 TraceRoute IPv6 314 Troubleshooting Chart 315 Appendix B Configuration Examples Virtual Local Area Network Configuration Example 318 Access Control Lists 321 MAC ACL Configuration Example 321 Standard IP ACL Configuration Example 323 Differentiated Services 325 Class 325 DiffServ - Netgear S3300-52X | Software Guide - Page 9
(GUI). The manual describes the software configuration procedures and explains the options available within those procedures. The S3300 switches are referred to as the NETGEAR switch throughout this document. The individual switches are: • S3300-28X • S3300-28X-PoE+ • S3300-52X • S3300-52X-PoE+ The - Netgear S3300-52X | Software Guide - Page 10
S3300 Smart Switch Getting Started with the NETGEAR Switch This chapter provides an overview of starting your NETGEAR switch and accessing the user interface. It also leads you through the steps to use the Smart Control Center (SCC) application, which can be downloaded to your computer. This guide - Netgear S3300-52X | Software Guide - Page 11
several utilities to help you maintain the NETGEAR switch on your network, such as password management, firmware upgrade, and configuration file backup. For more about the Smart Control Center utilities, see the Smart Control Center User Guide at http://docs.netgear.com/scc/enu/202-10685-01/index - Netgear S3300-52X | Software Guide - Page 12
S3300 Smart Switch Connect the Switch to the Network To enable remote management of the switch through a web browser or SNMP, you must connect the switch to the network and configure it with network information (an IP address, subnet mask, and default gateway). The switch has a default IP address of - Netgear S3300-52X | Software Guide - Page 13
S3300 Smart Switch Discover a Switch in a Network with a DHCP Server This section describes how to set up your switch in a network that has a DHCP server. The DHCP client on the switch is enabled by default. When you connect it to your network, the DHCP server will automatically assign an IP address - Netgear S3300-52X | Software Guide - Page 14
S3300 Smart Switch Figure 2. Smart Control Center - Device List 7. Select your switch the login screen of the selected device. Use your web browser to manage your switch. The default password is password. For more information about the screen layout and options, see Use the Web Interface on page - Netgear S3300-52X | Software Guide - Page 15
S3300 Smart Switch Discover a Switch in a Network without a DHCP Server This section describes how to use the Smart Control Center to set up your switch in a network without a DHCP server. If your network has no DHCP service, you must assign a static IP address to your switch. If you choose, you can - Netgear S3300-52X | Software Guide - Page 16
S3300 Smart Switch 9. Type your password to continue with the configuration change. Tip: You must enter the current password every time you use the Smart Control Center to update the switch setting. The default password is password. 10. Click the Apply button to configure the switch with the network - Netgear S3300-52X | Software Guide - Page 17
S3300 Smart Switch The Local Area Connection Properties window displays. Figure 5. Internet Protocol Version 4 (TCP/IPv4) Properties window appears. 5. Select the Use the following IP address option and set the IP address of the administrative system to an address in the 192.168.0.0 network, such as - Netgear S3300-52X | Software Guide - Page 18
network address settings before you change them. Figure 6. IP Address Settings 6. Click the OK button. To configure a static address on the switch: 1. Use a straight-through cable to connect the Ethernet port on the administrative system directly to any port on the switch. 2. Open a web browser on - Netgear S3300-52X | Software Guide - Page 19
Guide at http://docs.netgear.com/scc/enu/202-10685-01/index.htm. • Open a web browser and enter the IP did not change the IP address of the switch from the default value, enter 192 network size and requirements, and on your preference. This manual describes how to use the web interface to manage - Netgear S3300-52X | Software Guide - Page 20
S3300 Smart Switch The factory default password is password. Passwords are case-sensitive. 3. Click the Login button. After the system authenticates you, the System Information screen displays. The following figure shows the layout of the - Netgear S3300-52X | Software Guide - Page 21
S3300 Smart Switch Link Submenu in the heading row of a table. Sends the updated configuration to the switch. Configuration changes take effect immediately. returns the switch to its default settings. Device View The Device View is a Java® applet that displays the ports on the switch. This - Netgear S3300-52X | Software Guide - Page 22
10. S3300-28X-PoE+ The following image shows the Device View of the S3300-52X. Figure 11. S3300-52X The following image shows the Device View of the S3300-52X-PoE+. Figure 12. S3300-52X-PoE+ In the S3300, the four uplink ports can work in either Stacking mode or in Ethernet mode. • By default those - Netgear S3300-52X | Software Guide - Page 23
Select the menu option to access the page that contains the configuration or monitoring options. Figure 13. Device View S3300-52X Port Menu If you click the graphic but do not click a specific port, the main menu appears, as Figure 14 shows. This menu contains the same option as the navigation menu - Netgear S3300-52X | Software Guide - Page 24
unit number in green. The dot LED on the bottom right glows when either the unit is a Stack Manager or Standalone (meaning that it is not connected in a Stack). PoE Max LED The PoE Max LED is for the S3300-28X-PoE+ and S3300-52X-PoE+ devices. • Off indicates the system has more than 7 watts (W) of - Netgear S3300-52X | Software Guide - Page 25
S3300 Smart Switch • A steady yellow LED indicates that less than 7W of PoE power is available. • A blinking yellow LED managing the switch. The online help screens are context-sensitive. For example, if the IP Addressing screen is open, the help topic for that screen displays if you click Help. - Netgear S3300-52X | Software Guide - Page 26
MIBs that support additional switch functionality. All private MIBs begin with a hyphen (-) prefix. The main object for interface configuration is in -SWITCHING-MIB, which is a private MIB. Some interface configurations also involve objects in the public MIB, IF-MIB. SNMP is enabled by default. The - Netgear S3300-52X | Software Guide - Page 27
. • S3300-28X-PoE+. The S3300-28X-PoE+ switch is identical to the S3300-28X except it supports PoE+ on the 24 1G ports. • S3300-52X. The ProSafe S3300-52X Smart switch is a stackable small/medium business class switch. This 52-port Gigabit Ethernet Layer 2 switch provides the following: - Ports 1-48 - Netgear S3300-52X | Software Guide - Page 28
S3300 Smart Switch Table 3. Interface naming conventions Interface Description Example Link aggregation group (LAG) LAG interfaces are logical interfaces that are only used for l1, l2, - Netgear S3300-52X | Software Guide - Page 29
S3300 Smart Switch Configuring Interface Settings For some features that allow you to configure interface settings, you can apply the same settings simultaneously to any of the following: • A single port • Multiple ports • All ports • A single LAG • Multiple LAGs • All LAGs • Multiple ports and LAGs - Netgear S3300-52X | Software Guide - Page 30
S3300 Smart Switch 4. Configure the desired settings. 5. Click the Apply button. The the selected interface. To configure multiple ports: 1. Ensure that the screen is displaying all ports, and not only the LAGs. 2. Select the check box next to each port to configure. The row for each selected - Netgear S3300-52X | Software Guide - Page 31
S3300 Smart Switch Figure 17. Select Multiple Ports 3. Configure the desired settings. 4. Click the Apply button heading row are applied to all selected interfaces. To configure all ports: 1. Ensure that the screen is displaying only ports, and not LAGs. 2. Select the check box in the heading row - Netgear S3300-52X | Software Guide - Page 32
S3300 Smart Switch 3. Configure the desired settings. 4. Click the Apply button. The settings you configure in the heading row are applied to all ports ports and LAGs. To configure all ports and LAGs: 1. Click the All link to display all ports row are applied to all ports and LAGs. Online Help The - Netgear S3300-52X | Software Guide - Page 33
Apply button to access the NETGEAR support site for the switch. User Guide The S3300 Smart Switch Software Administration Manual (the guide you are now reading) is available at the NETGEAR download center at downloadcenter.netgear.com. To access the reference manual online from the web management - Netgear S3300-52X | Software Guide - Page 34
S3300 Smart Switch Registration To qualify for product updates and product warranty, NETGEAR encourages you to register your product. The first time that you connect to the switch while it is connected to the Internet, you have the - Netgear S3300-52X | Software Guide - Page 35
provides access to the configuration menus described in the following sections: • Management on page 36 • Device View on page 62 • License on page 63 • Switch Stack Configuration on page 64 • PoE on page 76 • SNMP on page 80 • LLDP on page 84 • Services on page 95 • Timer Schedule on page 109 35 - Netgear S3300-52X | Software Guide - Page 36
on page 39 • USB Device Information on page 41 • Slot Information on page 43 • IP Configuration on page 44 • IPv6 Network Configuration on page 46 • IPv6 Network Neighbor on page 47 • Time on page 48 • Denial of Service on page 53 • DNS on page 55 • Green Ethernet on page 58 System Information After - Netgear S3300-52X | Software Guide - Page 37
alphanumeric characters. The factory default is blank. 3. Click the Apply button. The system parameters are applied, and the device is updated. The following table describes Sensor Description The unit number in the stack. The temperature sensor for the given unit. Configure System Information - Netgear S3300-52X | Software Guide - Page 38
S3300 Smart Switch Table 5. System Information - Temperature Sensors Status Fields (continued) Type Speed Duty Level State Description The unit number in the stack. The fan index used to identify the fan for the given stack member. The description of the temperature sensor. Specifies whether the - Netgear S3300-52X | Software Guide - Page 39
S3300 Smart Switch The following table describes the status information displayed in the Power Supplies section of the System Information screen. Table 7. System Information - Power Supplies Status Fields Field Unit Power Supply Description Type State Description The unit number in the stack. The - Netgear S3300-52X | Software Guide - Page 40
S3300 Smart Switch To display a member unit's CPU status information: 1. Select System Management System CPU Status > System CPU Status 2. In the CPU Utilization > Unit No. field, - Netgear S3300-52X | Software Guide - Page 41
S3300 Smart Switch Click Update to update the page with the latest information on the switch. To Threshold value. 2. Click the Apply button. The system parameters are applied, and the device is updated. 3. Click the Cancel button to cancel the configuration on the screen, and reset the data on - Netgear S3300-52X | Software Guide - Page 42
device installed in the master unit. The limitations for the USB Device supported on the S3300 are as follows: • The USB disk should comply for USB 2.0. • The USB disk should have a filetype of FAT32 or VFAT. NTFS is not supported. • The write/read speed is about 1 Mbps due to a hardware limitation - Netgear S3300-52X | Software Guide - Page 43
S3300 Smart Switch about the different slots in the different units in the switch stack. To display the Slot Information: Select System Management card is pluggable or not. Supported Card Card Model Displays the list of models of all cards that can be supported. Card Index Displays the - Netgear S3300-52X | Software Guide - Page 44
the supported switch. Click Update to update the page with the latest information on the switch. IP Configuration Use the IP must obtain the IP address through a BootP server. • Static IP Address. Specifies that the IP address, subnet mask, and default gateway must be manually configured. Enter - Netgear S3300-52X | Software Guide - Page 45
S3300 Smart Switch When the management VLAN is set to a different value, an IP connection can be made only through a port that is part of the management VLAN. It is also mandatory that the port VLAN ID (PVID) of the port to be connected in that management VLAN be the same as the management VLAN ID - Netgear S3300-52X | Software Guide - Page 46
do not affect the configuration of the front panel ports through which traffic is switched or routed. To access the switch over an IPv6 network, you must initially configure the switch with IPv6 information (IPv6 prefix, prefix length, and default gateway). IPv6 can be configured using any of the - Netgear S3300-52X | Software Guide - Page 47
S3300 Smart Switch IPv6 Network Neighbor Use the IPv6 Network Neighbor discovered. Table 13. IPv6 neighbor table fields Field IPv6 Address MAC Address IsRtr Neighbor State Last Updated Description The IPv6 address of the neighbor. The MAC address associated with an interface. Indicates whether - Netgear S3300-52X | Software Guide - Page 48
S3300 Smart Switch Time The switch supports the Simple Network Time Protocol (SNTP). You can also set the system time manually. SNTP assures . Polling for unicast information is used for contacting a server for which the IP address is known. SNTP servers that have been configured on the device are - Netgear S3300-52X | Software Guide - Page 49
S3300 IP address or DNS name of one or more SNTP servers for the switch to poll. For more information, see SNTP Server Configuration on page 51. 5. In the Port field, specify the local UDP port is 0 to 10. The default value is 1. 10. When using SNTP/NTP time servers to update the switch's clock, the - Netgear S3300-52X | Software Guide - Page 50
Configuration status fields Field Version Supported Mode Last Update Time Last Attempt Time Last Attempt Status Server IP Address Description Specifies the SNTP version the client supports. Specifies the SNTP modes the client supports. Multiple modes can be supported by a client. Specifies the - Netgear S3300-52X | Software Guide - Page 51
S3300 Smart Switch entries configured for this client. Broadcast Count - Click Update to update the page with the latest information on the switch. an IP address (IPv4) or hostname (DNS). 3. In the Address field, specify the IP address or the host name of the SNTP server. 4. If the UDP port on the - Netgear S3300-52X | Software Guide - Page 52
S3300 Smart Switch Table 15. SNTP Server Status Fields Field Address Last Update Time Last Attempt Time Last SNTP server is not valid. • Version Not Supported. The SNTP version supported by the server is not compatible with the version supported by the client. • Server Unsynchronized. The SNTP - Netgear S3300-52X | Software Guide - Page 53
of Service (DoS) feature to configure DoS control. The switch software provides support for classifying and blocking specific types of DoS attacks. Configure Auto-DoS The Auto-DoS Configuration screen lets you automatically enable all the DoS features available on the switch, except for the L4 Port - Netgear S3300-52X | Software Guide - Page 54
port is shut down and can be enabled only manually by the admin user. 3. Click the Apply button. Configure Denial of Service The Denial of Service greater than the configured ICMPv4 packet size. The factory default is disabled. • Denial of Service Max ICMPv4 Packet Size. Specify the maximum ICMPv4 - Netgear S3300-52X | Software Guide - Page 55
where the IP payload length minus the IP header size is less than the minimum allowed TCP header size. • Denial of Service TCP Offset. Service TCP SYN&FIN. Enabling UDP Port DoS prevention causes the switch to drop packets that have UDP source port equal to UDP destination port. The factory default - Netgear S3300-52X | Software Guide - Page 56
S3300 Smart Switch When the system is performing a lookup on an unqualified hostname, this field is provided as the domain name (for example, if default domain name is netgear.com and the user enters test, then test is changed to test.netgear updated. The type of the dynamic entry. Lists the IP - Netgear S3300-52X | Software Guide - Page 57
S3300 Smart Switch To change the host name or IP address in an entry: 1. Select the check box next to the entry to update. 2. Enter the new information in the appropriate field. 3. Click the Apply button. Configure System Information 57 - Netgear S3300-52X | Software Guide - Page 58
S3300 Smart Switch Green Ethernet Use this screen to configure Green Ethernet features. for the selected ports: • Auto Power Down Mode. The factory default is Disable. If Auto Power Down Mode is not supported, then N/A (not applicable) is displayed. When this mode is enabled and a port link is down, - Netgear S3300-52X | Software Guide - Page 59
S3300 Smart Switch lightly loaded, the port can transition to low-power mode. The EEE and the Short Cable modes are not supposed to be active simultaneously. 4. Click the Apply button. Green Ethernet Detail Use this screen to view detailed per-port are lightly loaded, the port can transition to low - Netgear S3300-52X | Software Guide - Page 60
S3300 Smart Switch Table 17. Green Ethernet The value of Tw_sys that the local system can support. This value is updated by the EEE DLL Transmitter state diagram. The is updated by the local system software. The amount of time that has passed since the Green Ethernet information for this port was - Netgear S3300-52X | Software Guide - Page 61
all the ports on the switch. Estimated Percentage Power Saving Cumulative Energy Saving per (Watts*Hours) The percentage of power saving due to the Green Ethernet features. The cumulative of energy savings. The following table describes the information in the Green Ethernet feature support table - Netgear S3300-52X | Software Guide - Page 62
S3300 Smart Switch 3. In the Max Samples to keep field, specify the maximum number of LPI samples to keep in the history buffer. 4. Click the Apply - Netgear S3300-52X | Software Guide - Page 63
S3300 Smart Switch License Some switch features require a special license in order to the license is active or inactive. If a license is inactive, a license should be purchased and downloaded to the switch. The license is not activated until the switch reboots. Description A description of the - Netgear S3300-52X | Software Guide - Page 64
switch while having the port capacity of the sum of the combined switches. One of the switches in the stack controls the operation of the stack. This switch is called the stack manager. The remaining switches in the stack are stack members. The stack members use stacking technology to behave and - Netgear S3300-52X | Software Guide - Page 65
IP Address management through web and SCC • Manager-member configuration - Configuration for all units is stored on the manager - Auto-detection for new members, with synchronization of firmware (upgrade or downgrade as needed). • Configuration updates download is supported across the stack through - Netgear S3300-52X | Software Guide - Page 66
S3300 Smart Switch Note: NETGEAR recommends assigning the highest priority value to the switch that you prefer to be the stack manager. This ensures that the switch is re-elected as stack manager if a re-election occurs. • The switch with the higher MAC address A stack updated configuration to the - Netgear S3300-52X | Software Guide - Page 67
timestamps. The factory default is Cumulative. 2. Enter a value for Max Samples - the maximum number of samples to keep. The valid range is 100 to 500. Max Samples applies to History mode. Figure 26. Configure Stack Sample Mode 3. Click the Apply button to send the updated configuration to the - Netgear S3300-52X | Software Guide - Page 68
S3300 Smart Switch 5. Select the Management Status. Indicates whether the selected switch is the management unit, or a normal stacking switch. 8. Click Update to update the page with the latest information on the switch. 9. After the reload is complete, all stack management capability must be - Netgear S3300-52X | Software Guide - Page 69
S3300 Smart Switch Table 24. Basic Stack Status Field Description Unit ID The Unit ID of Displays the Stack Firmware Synchronization last attempt status. Click Update to update the page with the latest information on the switch. Advanced Stack Configuration Advanced > Stack Configuration uses - Netgear S3300-52X | Software Guide - Page 70
S3300 Smart Switch Figure 27. Advanced Stack Status The following table describes the non-configurable Advanced Stack Status data that is displayed. Click Update to update the page with the latest information on the switch. Table 25. Advanced Stack Status Field Unit ID Neighbor Unit ID Current - Netgear S3300-52X | Software Guide - Page 71
S3300 Smart Switch 3. Click Apply to send the updated configuration to the switch. Configuration changes take effect immediately. Advanced Stack-Port Configuration To configure a Stack-port: 1. Click System Stacking > Advanced > Stack-port Configuration. 2. Select either the Unit ID or All. • - Netgear S3300-52X | Software Guide - Page 72
S3300 Smart Switch Field Receive Data Rate (Mbps) Receive Error Rate (Error/s) Total Receive Errors Link Flaps Description Displays the approximate receive rate on the stack port. Displays the number of errors in receive packets per second. Displays the total number of errors in receive packets - Netgear S3300-52X | Software Guide - Page 73
displayed. Table 28. Stack-port Packet-path Field Description Direction Displays the path direction. Packet-path Displays the packet path. Click Update to update the page with the latest information on the switch. Stack Firmware Synchronization The Firmware Synchronization feature provides - Netgear S3300-52X | Software Guide - Page 74
the data on the screen to the latest value of the switch. 5. Click Update to update the page with the latest information on the switch. Multiple Stack Links The S3300 platforms contain two dedicated (non-combo) 10GBaseT copper links (ports) and 2 dedicated SFP+ fiber links. Any of these links can be - Netgear S3300-52X | Software Guide - Page 75
the links) does not destabilize the stack. In a multi-unit stack of S3300-52X and/or S3300-52X-PoE+, the following apply: • One or both copper links between two adjacent S3300 units can be connected to form a Stack. • One or both fiber links between two adjacent S3300 units can be connected to form - Netgear S3300-52X | Software Guide - Page 76
port. 5. Configure Traps. Enable or Disable the activation of PoE traps by selecting the corresponding check box. The factory default is Enable. 6. Click the Apply button to send the updated PoE Configuration data that is displayed. Table 29. PoE Configuration Non-configurable Data Field Firmware - Netgear S3300-52X | Software Guide - Page 77
(mW). Consumed Power The total amount of power which is currently being delivered to all ports in milliwatts. Click Update to update the page with the latest information on the switch. Advanced PoE Configuration The Advanced > PoE Configuration screen displays the same table as the Basic - Netgear S3300-52X | Software Guide - Page 78
is IEEE 802. 9. Assign a Timer Schedule to the port. Select None to remove the timer schedule assignment. The factory default is None. See Timer Schedule on page 109. 10. Click the Apply button to send the updated configuration to the switch. Configuration changes take effect immediately. Configure - Netgear S3300-52X | Software Guide - Page 79
is displayed. Table 30. PoE Port Configuration Non-Configurable Data Field Port High Power Max Power (mW) Class Output Voltage Output Current Output Power Temperature Description The interface for which data is to be displayed or configured. Enabled when a particular port supports High Power Mode - Netgear S3300-52X | Software Guide - Page 80
S3300 Smart Switch Field Status Fault Status Description Operational status of the port PD detection. Possible values are: • Disabled. Indicates that no power is being delivered. • Delivering Power. Indicates that power is being drawn by the device. • Fault. Indicates a problem the defaults or to - Netgear S3300-52X | Software Guide - Page 81
S3300 only one station, use a management station IP mask value of 255.255.255.255, and use that machine's IP address for client address. 4. In modify an existing community: 1. Select the check box next to the community. 2. Update the desired fields. 3. Click the Apply button. To delete a community: - Netgear S3300-52X | Software Guide - Page 82
S3300 Smart Switch To add an SNMP trap receiver: 1. Select System SNMP SNMP V1/V2 Trap Configuration 2. In the Recipients IP field, specify the IP check box next to the recipient. 2. Update the desired fields. 3. Click the Apply button provide a valid user name and password. • Link Up/Down. - Netgear S3300-52X | Software Guide - Page 83
S3300 Smart Switch SNMP Supported MIBS This screen displays a list of all MIBs supported by the switch. To view the supported MIBs, select System SNMP SNMP V1/V2 Supported MIBs. The following table describes the fields on the screen. Table 31. SNMP MIB Field Name Description Description The - Netgear S3300-52X | Software Guide - Page 84
S3300 Smart Switch LLDP The IEEE 802.1AB-defined standard, Link Layer Discovery Protocol and receive functions can be enabled or disabled separately per port. By default, both transmit and receive are enabled on all ports. The application is responsible for starting each transmit and receive - Netgear S3300-52X | Software Guide - Page 85
mode on the port changes. • Transmit Delay. The minimum number of seconds to wait between transmissions of remote data change notifications to one or more SNMP trap receivers configured on the switch. 3. (Optionally) In the Fast Start Duration field, configure a non-default value. This value - Netgear S3300-52X | Software Guide - Page 86
both transmitting and receiving LLDP PDUs on the selected ports. - Disabled. Do not transmit or receive LLDP PDUs on the selected ports. The factory default is Tx and Rx. • Management IP Address. Choose whether to advertise the management IP address from the interface. The possible field values are - Netgear S3300-52X | Software Guide - Page 87
S3300 Smart Switch LLDP-MED Network Policy This screen displays information • Guest Voice Signaling • Softphone Voice • Video Conferencing • Streaming Video • Video Signaling A port can receive multiple application types. The application information is displayed only if a network policy TLV has - Netgear S3300-52X | Software Guide - Page 88
S3300 Smart Switch LLDP-MED Port Settings Use this screen to enable LLDP-MED mode on an interface and configure its properties. To configure LLDP-MED settings for a port: 1. Select System LLDP Advanced LLDP-MED Port Settings. 2. From the Port list, select the port to configure. 3. Use the - Netgear S3300-52X | Software Guide - Page 89
S3300 Smart Switch Table 33. LLDP local device information (continued) Field . Interface SubType The port subtype. Interface Number The number that identifies the port. MAC/PHY Details Auto Negotiation Supported Indicates whether the interface supports port speed autonegotiation. The - Netgear S3300-52X | Software Guide - Page 90
S3300 Smart Switch Table 34. Detailed LLDP local port information (continued) Field MED Details Capabilities Supported Current Capabilities Device Class Network Policies Application Type VLAN ID VLAN Type User Priority DSCP Description The MED capabilities enabled on the port. The TLVs advertised - Netgear S3300-52X | Software Guide - Page 91
S3300 Smart Switch Neighbors Information Use the LLDP Neighbors Information screen to view discovered. Table 35. LLDP neighbor summary information Field MSAP Entry Local Port Chassis ID Subtype Chassis ID Description The Media Service Access Point (MSAP) entry number for the remote device. The - Netgear S3300-52X | Software Guide - Page 92
that sent the information. MAC/PHY Details Auto-Negotiation Supported Specifies whether the remote device supports port-speed auto-negotiation. The possible values are True or False. Auto-Negotiation Enabled The port speed autonegotiation support status. The possible values are True or False - Netgear S3300-52X | Software Guide - Page 93
S3300 Smart Switch Table 36. LLDP neighbor details (continued) Field Current Capabilities Device Class Hardware Revision Firmware support and device information management capabilities. The hardware version advertised by the remote device. The firmware The Emergency Call Service (ECS) Emergency - Netgear S3300-52X | Software Guide - Page 94
S3300 Smart Switch Table 36. LLDP neighbor details (continued) Field Type Value Description The unknown TLV type field. The unknown TLV value field. Configure System Information 94 - Netgear S3300-52X | Software Guide - Page 95
S3300 Smart Switch Services use this option for IP addresses and other parameter assignment policies. These DHCP relay agents are typically IP routing-aware devices and Admin Mode field. The factory default Admin Mode is Disabled. 3. Click the Apply button. The updated configuration is sent to the - Netgear S3300-52X | Software Guide - Page 96
S3300 Smart Switch Figure 32. DHCP L2 Relay VLAN Configuration To configure DHCP L2 Relay VLAN: 1. Select System Services default is Disabled. 5. Use the Remote ID String field to specify the Remote ID String. The string can contain up to 32 characters. 6. Click the Apply button. The updated - Netgear S3300-52X | Software Guide - Page 97
S3300 Smart Switch Figure 33. DHCP L2 Relay Interface Configuration To configure DHCP L2 Relay Interface settings: 1. Select System Services DHCP L2 Relay DHCP L2 Relay Interface Configuration. 2. In the Go To Interface field, enter the interface in unit/slot/port format and click on the Go - Netgear S3300-52X | Software Guide - Page 98
S3300 Smart button to reset the DHCP L2 Relay Interface statistics. Click Update to update the page with the latest information on the switch. The your network. The DHCP snooping binding table contains the MAC address, IP address, lease time, binding type, VLAN number, and interface information - Netgear S3300-52X | Software Guide - Page 99
S3300 Smart Switch trusted interface is an interface that is configured to receive responses received on that port are discarded. To configure DHCP snooping interface settings: 1. Select System Services DHCP Snooping Interface Configuration. 2. Select one or more ports or LAGs to configure. - Netgear S3300-52X | Software Guide - Page 100
S3300 this object for consecutively burst interval seconds, the port will be shut down. If this value is static DHCP bindings: 1. Select System Services DHCP Snooping Binding Configuration. 2. is authorized to use. 5. In the IP Address field, specify the IP address of the client. 6. Click the - Netgear S3300-52X | Software Guide - Page 101
S3300 Smart Switch The DHCP Snooping Dynamic Binding Configuration table shows must be able to reach the IP address of the remote system to send bindings to a remote database. To configure DHCP snooping persistent settings: 1. Select System Services DHCP Snooping Persistent Configuration - Netgear S3300-52X | Software Guide - Page 102
S3300 Smart Switch Statistics Use this screen to view and clear per-interface statistics about the DHCP messages filtered by the DHCP snooping feature on untrusted interfaces. To view and clear the DHCP snooping statistics: 1. Select System Services port. Configure System Information 102 - Netgear S3300-52X | Software Guide - Page 103
S3300 attacker sends ARP requests or responses mapping another station's IP address to its own MAC address. When DAI is port. This example assumes VLAN 100 and LAG 1 have already been configured. To configure DAI on a VLAN and an Interface: 1. Enable DAI on VLAN 100. a. Select System Services - Netgear S3300-52X | Software Guide - Page 104
S3300 Smart Switch d. Click the Apply button. 2. Configure LAG 1, which includes ports 11-14, as a trusted port. All other interfaces are untrusted by default. a. Select System Services Dynamic ARP Inspection DAI Interface Configuration. b. Click the LAGS link to view all LAG interfaces. c. - Netgear S3300-52X | Software Guide - Page 105
S3300 Smart Switch Figure 37. DAI Interface Configuration - Rate Limiting d. Click the Apply button. Configure a DAI ACL DAI relies on the information in the DHCP snooping bindings database to validate ARP packets. For networks that use static IP 1. Select System Services Dynamic ARP Inspection - Netgear S3300-52X | Software Guide - Page 106
S3300 Smart Switch Figure 38. DAI ACL Configuration 4. Click the ACL name, which is a hyperlink to the Dynamic ARP Inspection ACL Rules Configuration page. 5. From the ACL Name list, select the DAI ACL to configure. 6. In the Source IP Address field, specify the IP address of a host. 7. In the - Netgear S3300-52X | Software Guide - Page 107
S3300 Smart Switch Figure 39. DAI Rule Table 10. Select System Services Dynamic ARP Inspection DAI VLAN Configuration. 11. Next to VLAN 100, MAC address is unspecified in ARP requests. You can also enable IP address checking. When this option is enabled, DAI drops ARP packets with an invalid - Netgear S3300-52X | Software Guide - Page 108
address in ARP packets. In ARP response packets, the check is applied only on the target IP address. To configure the optional DAI features: 1. Select System Services Dynamic ARP Inspection DAI Configuration. 2. Next to Validate Source MAC, select the Enable radio button. 3. Next to Validate - Netgear S3300-52X | Software Guide - Page 109
S3300 Smart Switch Timer Schedule The NETGEAR Smart Switch provides timer schedules for use with PoE/PoE+. To use Timer Schedules with PoE/PoE+, you first define a timer schedule on the System Timer Schedule screen. Then you associate the timer schedule to a PoE/PoE+ port (or ports) on the System - Netgear S3300-52X | Software Guide - Page 110
S3300 Smart Switch The following table describes the non-configurable fields Select the Timer Schedule Type of entry to be configured. The choices are Absolute or Periodic. The factory default is Absolute. 4. Select the number of the Timer Schedule Entry to be configured or added. Select the option - Netgear S3300-52X | Software Guide - Page 111
S3300 Smart Switch 2. Enter the Time End. This is the time of day in hh:mm to the selected timer schedule. Configuration changes take effect immediately. 7. Click Apply to send the updated configuration to the switch. Configuration changes take effect immediately. 8. Click the Cancel button to cancel - Netgear S3300-52X | Software Guide - Page 112
S3300 Smart Switch Configure System Information 112 - Netgear S3300-52X | Software Guide - Page 113
features you access from the Switching tab to define Layer 2 features. The Switching tab contains links to the features described in the following sections. • Ports on page 114 • Link Aggregation Groups on page 117 • VLANs on page 121 • Auto-VoIP Configuration on page 131 • Spanning Tree Protocol on - Netgear S3300-52X | Software Guide - Page 114
All supported speeds. If you select Auto, the duplex mode and speed will be set by the auto-negotiation process. The port's maximum capability (full duplex and 1000 Mbps) will be advertised. Otherwise, your selection will determine the port's duplex mode and transmission rate. The factory default is - Netgear S3300-52X | Software Guide - Page 115
S3300 . Specify the maximum Ethernet frame size the interface supports. Valid values are 1518 to 9216. The default value is 1518. The size includes the Ethernet low threshold, the switch enables the port to again transmit frames. The factory default is Disabled. For LAG interfaces Flow Control - Netgear S3300-52X | Software Guide - Page 116
S3300 Smart Switch The following table shows the non-configurable information on the Port Configuration screen. Table 41. Switching Ports Port Configuration Field Port Type Physical Status Link Status MAC Address PortList Bit Offset ifindex Description For most ports this field is blank. - Netgear S3300-52X | Software Guide - Page 117
default management VLAN (that is, VLAN 1). A LAG interface can be either static or dynamic, but not both. All members of a LAG must participate in the same protocols. A static port channel interface does not require a partner system to be able to aggregate its member ports. Static LAGs are supported - Netgear S3300-52X | Software Guide - Page 118
not transmit or process received LAGPDUs, for example the member ports do not transmit LAGPDUs and all the LAGPDUs it can receive are dropped. The LAG is configured manually. The default is Static. - LACP-Enables Link Aggregation Control Protocol (LACP) on the selected LAG. The LAG is configured - Netgear S3300-52X | Software Guide - Page 119
S3300 Smart Switch LAG Membership Use the LAG Membership screen to select two or more full-duplex Ethernet links to be aggregated together to form a link aggregation group (LAG), which is also known as a port channel. The switch can treat the port channel as if it were a single link. To add - Netgear S3300-52X | Software Guide - Page 120
S3300 Smart Switch LACP Configuration The LACP configuration screen is used to set the LACP system globally by specifying a priority from 1-65535. The default value is 32768. 3. Click the Apply button. LACP Port Configuration The LACP port configuration screen is used to configure the LACP priority - Netgear S3300-52X | Software Guide - Page 121
S3300 Smart Switch VLANs Adding virtual LAN (VLAN) support to a Layer 2 switch offers some of the benefits of both it or insert a tag using its default VLAN ID. A given port can handle traffic for more than one VLAN, but it can support only one default VLAN ID. For more information about configuring - Netgear S3300-52X | Software Guide - Page 122
S3300 Smart Switch Basic VLAN Configuration Use the VLAN Configuration screen to define VLAN groups stored in the VLAN membership table. The switch supports up to 256 VLANs. The default VLAN (1), voice VLAN (2) and auto-video VLAN (3) are created by default, and all ports are untagged members. When - Netgear S3300-52X | Software Guide - Page 123
is not a member of the VLAN. • Tagged. Frames transmitted from this port are tagged with the port VLAN ID. • Untagged. Frames transmitted from this port are untagged. Each port can be an untagged member of only one VLAN. By default, all ports are an untagged member of VLAN 1. In the following figure - Netgear S3300-52X | Software Guide - Page 124
S3300 Smart Switch To configure the same VLAN membership settings for all ports and LAGs: 1. Select Switching VLAN Advanced VLAN Membership. 2. In the VLAN ID list, select the VLAN to which you want to add ports Default. • VLAN Type. The VLAN type: - Default IP VLAN has a type of Dynamic (IP - Netgear S3300-52X | Software Guide - Page 125
S3300 Smart Switch Port VLAN ID Configuration The Port PVID Configuration screen lets you assign a port VLAN ID (PVID) to an interface. There are certain requirements for a PVID: • All ports must have a defined PVID. • If no other value is specified, the default VLAN PVID is used. • If you want to - Netgear S3300-52X | Software Guide - Page 126
S3300 Smart Switch MAC-Based VLAN The MAC Based VLAN feature uses the source is specified by a source MAC address and the desired VLAN ID. The MAC to VLAN configurations are shared across all ports of the device (that is, there is a system-wide table that has MAC address to VLAN ID mappings). When - Netgear S3300-52X | Software Guide - Page 127
S3300 Smart Switch Protocol-Based VLAN Group Configuration Protocol-based VLAN can be used to define filtering criteria for untagged packets. By default, if you do not configure any port a protocol, you can specify the EtherType hex value or (for IP, ARP, and IPX) the protocol keyword. 5. In the VLAN - Netgear S3300-52X | Software Guide - Page 128
S3300 Smart Switch Protocol-Based VLAN Group Membership The Protocol-Based VLAN Group From the Interface Mode list, select one of the following options to determine how an IP phone connected to the selected port should send voice traffic: • VLAN ID. Forward voice traffic in the specified voice VLAN. - Netgear S3300-52X | Software Guide - Page 129
S3300 Smart Switch This field is valid only when VLAN ID or dot1p is selected as the interface mode. 6. From the CoS Override Mode list, specify the CoS override mode for the selected ports: • Enabled. The port factory default is Disable. 3. Click the Apply button to send the updated configuration - Netgear S3300-52X | Software Guide - Page 130
order to maintain uninterrupted service. Enter a number between 20 and 600 (0.2 to 6.0 seconds). The factory default is 60 centiseconds default is 1000 centiseconds (10 seconds). An instance of this timer exists for each GARP participant for each port. 8. Click the Apply button to send the updated - Netgear S3300-52X | Software Guide - Page 131
S3300 be prioritized above data packets in order to provide better Quality of Service (QoS). With the Auto VoIP feature, voice prioritization is provided configure. For information about how to select and configure one or more ports, see Configuring Interface Settings on page 28. 5. In the Auto VoIP - Netgear S3300-52X | Software Guide - Page 132
S3300 Smart Switch 6. Click the Apply button. Configure OUI-Based Auto-VoIP From the OUI-based link, you can access the following pages: • OUI-Based Properties on page 132 • OUI-Based Port Settings on page 132 • OUI-Based OUI Table on page 133 OUI-Based Properties To configure OUI based properties: - Netgear S3300-52X | Software Guide - Page 133
S3300 Smart Switch OUI-Based OUI Table Device hardware manufacturers can include an OUI in a network adapter to help identify a hardware device. The OUI is a unique 24-bit number assigned by the IEEE registration authority. The switch comes preconfigured with the following OUIs that identify the IP - Netgear S3300-52X | Software Guide - Page 134
ID. Maximum Number of Voice Displays the maximum number of VoIP channels supported. Channels Supported Number of Voice Channels Displays the number of VoIP channels prioritized successfully. Detected Click Update to update the page with the latest information on the switch. Configuring Switching - Netgear S3300-52X | Software Guide - Page 135
between end stations, avoiding and eliminating loops. For information about configuring Common STP, see CST Port Configuration on page 138. Multiple Spanning Tree Protocol (MSTP) supports multiple instances of Spanning Tree to efficiently channel VLAN traffic over different interfaces. Each instance - Netgear S3300-52X | Software Guide - Page 136
S3300 Smart Switch STP being used. The values allowed are between 0 and 65535. The default value is 0. 5. Next to Forward BPDU while STP Disabled, parameter for the switch indicating if a topology change is in progress on any port assigned to the CST. The value is either True or False. Designated - Netgear S3300-52X | Software Guide - Page 137
S3300 Smart Switch Table 44. STP status information (continued) Field Root Port Max Age (secs) Forward Delay (secs) Hold TIme (secs) CST Regional Root CST Path Cost Description Port value between 0 and 4095, it will be set to 0. The default priority is 32768. • Bridge Max Age (secs). Specify the - Netgear S3300-52X | Software Guide - Page 138
S3300 Smart Switch 3. Click the Apply button. The following MSTP status information is to configure Common Spanning Tree (CST) and Internal Spanning Tree on a specific port on the switch. A port can become Diagnostically Disabled (D-Disable) when DOT1S experiences a severe error condition. The - Netgear S3300-52X | Software Guide - Page 139
fields. Click Update to update the page with the latest information on the switch. Table 46. Advanced CST Port Configuration Field Port State Port ID Hello Timer Description The Forwarding state of this port. The default is disabled. The port identifier for the specified port within the CST - Netgear S3300-52X | Software Guide - Page 140
. The bridge priority and base MAC address of the CST regional root. CST Path Cost Port Forwarding State The path cost to the CST tree regional root. The forwarding state of this port. Click Update to update the page with the latest information on the switch. Rapid STP Use the Rapid STP screen - Netgear S3300-52X | Software Guide - Page 141
S3300 Smart Switch The following table describes the Rapid STP Status information displayed on the screen. Table 48. Rapid STP status information Field Interface Role Mode Fast Link Status Description The physical or port channel interfaces associated with VLANs associated with the CST. Each MST - Netgear S3300-52X | Software Guide - Page 142
S3300 Smart to any value between 0 and 4095, it will be set to 0. The default priority is 32768.The valid range is 0-61440. • VLAN ID. The menu contains path cost to the Designated Root for this MST instance. Root Port Indicates the port to access the Designated Root for this MST instance. To - Netgear S3300-52X | Software Guide - Page 143
S3300 Smart Switch 2. Click the Delete button. MST Port Configuration Use the MST Port Configuration screen to configure and display Multiple Spanning Tree (MST) settings on a specific port on the switch. A port can become Diagnostically Disabled (D-Disable) when DOT1S experiences a severe error - Netgear S3300-52X | Software Guide - Page 144
S3300 Smart Switch Table 50. MST port status information (continued) Field Description Port Up Time Since Counters Time since the counters were last cleared, displayed in Days, Last Cleared Hours, Minutes, and Seconds. Port Mode Spanning Tree Protocol Administrative Mode associated with the - Netgear S3300-52X | Software Guide - Page 145
S3300 Smart Switch STP Statistics Use the Spanning Tree Statistics screen to view information about the number and type of bridge protocol data units (BPDUs) transmitted and received on each port. To display the Spanning Tree Statistics screen, select Switching STP Advanced STP Statistics. - Netgear S3300-52X | Software Guide - Page 146
S3300 Smart Switch Multicast Multicast IP traffic is traffic that is destined to a host group. IGMP Snooping Querier • MLD Snooping MFDB Table The Multicast Forwarding Database (MFDB) holds the port membership information for all active multicast address entries. The key for an entry consists of - Netgear S3300-52X | Software Guide - Page 147
S3300 Smart Switch Table 52. MFDB table information (continued) Field Description Interface Forwarding Interfaces Description The text description of this multicast table entry. Possible values are - Netgear S3300-52X | Software Guide - Page 148
S3300 Smart Switch IP addresses, which range from 224.0.0.0 to 239.255.255.255. Based on the IGMP query and report messages, the switch forwards traffic only to the ports the period of time that the multicast packet is flooded. The problem of wasting bandwidth is even worse when the LAN segment is not - Netgear S3300-52X | Software Guide - Page 149
S3300 Smart the option is not present, the packet is dropped. • Disable. The IGMP IP header is not checked for Router Alert option. 4. Click the Apply button. IGMP Snooping IGMP Snooping Interface Configuration. 2. Select the ports or LAGs to configure. For information about how to select and - Netgear S3300-52X | Software Guide - Page 150
S3300 Smart Switch 3. Configure the IGMP snooping values for the selected ports or LAGs: • Admin Mode. Select the interface mode for the selected interface for IGMP snooping for the switch from the menu. The default is Disable. • Host Timeout. Specify the amount of time you want the switch to wait - Netgear S3300-52X | Software Guide - Page 151
S3300 2 LAN port but were still interested in receiving multicast traffic directed to that group. Also, fast-leave processing is supported only with 25. The configured value must be less than the Group Membership Interval. The default is 10 seconds. • MRouter Timeout. Enter the amount of time that a - Netgear S3300-52X | Software Guide - Page 152
S3300 Smart IGMP querier and receives multicast traffic. Use this screen to manually configure an interface as a static multicast router interface. All IGMP configure. For information about how to select and configure one or more ports or LAGs, see Configuring Interface Settings on page 28. 3. Use - Netgear S3300-52X | Software Guide - Page 153
S3300 updated with the current multicast group membership on a port-by-port basis. If the switch does not receive updated In the Snooping Querier Address field, specify the IP address to be used as source address in in the range of 1-1800 seconds. The default value is 60. 6. In the Querier Expiry - Netgear S3300-52X | Software Guide - Page 154
S3300 Smart Switch IGMP Snooping Querier VLAN Configuration To create a new VLAN ID for IGMP The other querier moves to non-querier state. • Snooping Querier VLAN Address. Specify the snooping querier IP address to be used as the source address in periodic IGMP queries sent on the specified VLAN. - Netgear S3300-52X | Software Guide - Page 155
S3300 Smart Switch Table 56. IGMP snooping querier VLAN status (continued) Field Last Querier Address Last Querier Version Operational Max Response Time Description The IP forwarded to a list of ports that want to receive the data, instead of being flooded to all ports in a VLAN. This list - Netgear S3300-52X | Software Guide - Page 156
S3300 . For information about how to select and configure one or more ports or LAGs, see Configuring Interface Settings on page 28. 3. In to 3600) seconds. The configured value must be greater than Max Response Time. The default is 260 seconds. 5. In the Max Response Time (secs) field, specify the - Netgear S3300-52X | Software Guide - Page 157
S3300 Smart Switch 7. From the Fast Leave Admin Mode list, select the Fast Leave mode for a particular interface from the menu. The default is Disable. multicast packets, they should be forwarded on ports that have joined using MLD/IGMP and also on ports on which multicast routers are attached. In - Netgear S3300-52X | Software Guide - Page 158
S3300 Smart Switch management. The default configure one or more ports or LAGs, see Configuring previous release of the system firmware, snooping dynamic learning mode feature, specify the IP address of the router supported IPv6 formats are x:x:x:x:x:x:x:x and x::x. Configuring Switching 158 - Netgear S3300-52X | Software Guide - Page 159
supported MLD Version is 1. 5. In the Query Interval field, specify the time interval in seconds between periodic queries sent by the snooping querier. The Query Interval must be a value in the range of 1-1800 seconds. The default field, specify the snooping querier IP address to be used as the - Netgear S3300-52X | Software Guide - Page 160
S3300 Smart Switch The following table describes the MLD snooping querier status not configured. Operational Version The MLD protocol version of the operational querier. Last Querier Address The IP address of the last querier from which a query was snooped on the VLAN. Last Querier Version - Netgear S3300-52X | Software Guide - Page 161
S3300 Smart Switch MVR Configuration IGMP snooping helps limit multicast traffic when member ports are in the same VLAN; however, when ports belong to different VLANs, a copy of the multicast stream is sent to each VLAN that has member ports when multicast group member ports belong to different VLANs - Netgear S3300-52X | Software Guide - Page 162
S3300 Smart Switch MVR Configuration multicast data will be received. All source ports belong to this VLAN. The value can be set in a range of 1 to 4093. The default value is 1. 4. In the MVR Global groups that MVR supports. The current number of the MVR groups allocated. Configuring Switching 162 - Netgear S3300-52X | Software Guide - Page 163
S3300 Smart Switch MVR Group Configuration Use the MVR Group Configuration screen to create and manage MVR groups on the switch. In this example, five MVR groups are created. To create multiple MVR groups in the same step, the groups must have contiguous IP addresses, such as 239.1.1.1, 239.1.1.2, - Netgear S3300-52X | Software Guide - Page 164
To configure MVR group membership: 1. Select Switching > MVR > Advanced > MVR Group Membership. 2. From the Group IP list, select the IP address of the MVR group to configure. 3. Click under Group IP to display the ports. 4. To add a port to the selected MVR group, click the box directly below the - Netgear S3300-52X | Software Guide - Page 165
S3300 Smart Switch MVR Statistics Use the MVR Statistics screen to view information about the IGMP messages and IGMP packages the switch has transmitted. To view - Netgear S3300-52X | Software Guide - Page 166
S3300 Smart Switch Address Table The address table maintains a list of MAC addresses after having received a packet from this MAC address. The transparent bridging function uses - Netgear S3300-52X | Software Guide - Page 167
S3300 Smart For example, 00:0F:89:AB:CD:EF. The port where this address was learned: that is, this field displays the port through which the MAC address can be reached. The that has not been updated. Note: IEEE 802.1D recommends a default of 300 seconds, which is the factory default value. 3. Click - Netgear S3300-52X | Software Guide - Page 168
S3300 Smart Switch Static MAC Address Use the Static MAC Address Configuration screen to configure and view static MAC addresses on an interface. To add a static MAC address: 1. Select Switching Address Table Advanced Static MAC Address. 2. From the Interface list, select the port to - Netgear S3300-52X | Software Guide - Page 169
) feature is only supported on a standalone S3300 switch. Standalone here means that all four stack ports are running in Ethernet specific VLAN ID. With the use of MVRP on both ingress and egress, no manual VLAN configuration is required to pass tagged traffic through the network. Note: MRP framework - Netgear S3300-52X | Software Guide - Page 170
S3300 Smart Switch • Network attributes are likely to change frequently, requiring reconfiguration of the intermediate the MRP link, you can access the following screens: • MRP Configuration • MRP Port Settings • MMRP Statistics • MVRP Statistics • MSRP Statistics • MSRP Reservation Parameters • Qav - Netgear S3300-52X | Software Guide - Page 171
S3300 Smart Switch switch. MMRP provides an application to register MAC address information. The default mode is Disable. 4. Next to MSRP Mode, select Enable to system. d. In the MSRP Max Fan In Ports field, specify the maximum number of the ports where MSRP registrations are allowed. e. Enable MSRP - Netgear S3300-52X | Software Guide - Page 172
, of the MRP Leave Timer. f. Specify the value, in centiseconds, of the MRP LeaveAll Timer. g. In the MSRP SR class PVID field, specify the default VLAN ID to be used for MSRP stream traffic. ClassA/ClassB Boundary Port fields are not configurable and show whether the interface is a boundary - Netgear S3300-52X | Software Guide - Page 173
S3300 Smart Switch MMRP Statistics The MMRP Statistics screen displays information regarding the MMRP frames transmitted and received by the switch and by each interface. To - Netgear S3300-52X | Software Guide - Page 174
S3300 Smart Switch MVRP Statistics The MVRP Statistics screen displays information regarding the MVRP frames transmitted and received by the switch and by each interface. To - Netgear S3300-52X | Software Guide - Page 175
S3300 Smart Switch MSRP Statistics The MSRP Statistics screen displays information about the MSRP frames transmitted and received by the switch and by each interface. To - Netgear S3300-52X | Software Guide - Page 176
S3300 Smart Switch The number that represents the reason for the failure. The switch supports the following codes: • 1-Insufficient bandwidth • 3-Insufficient bandwidth for is already in use • 7-Reported latency has changed • 8-Egress port is not Audio/Video Bridging (AVB) capable • 9-Use a different - Netgear S3300-52X | Software Guide - Page 177
S3300 Smart Switch Table 66. MSRP Reservation Parameters (continued) Field Failure Bridge Use the Qav Parameters screen to configure and view the per-port IEEE 802.1Qav settings. The IEEE 802.1Qav standard supports time-sensitive traffic streams by pacing all switch traffic, including legacy - Netgear S3300-52X | Software Guide - Page 178
S3300 Smart Switch be served, when the MSRP registrations exceed the capacity of a Port to carry the corresponding data streams. If a Bridge becomes and adjust queue selection parameters in order to supply the quality of service requested by an MSRP Talker Declaration. It represents the maximum rate, - Netgear S3300-52X | Software Guide - Page 179
S3300 Smart Switch Table 68. MSRP Streams Information (continued) Field Description TSpec Max Interval Frames The 32-bit unsigned Frame Rate component is used to allocate resources and adjust queue selection parameters in order to supply the quality of service requested by an MSRP Talker - Netgear S3300-52X | Software Guide - Page 180
Smart Switch 802.1AS1 Note: The 802.1AS feature is only supported on a standalone S3300 switch. Standalone here means that all four stack ports are running in Ethernet mode. The IEEE 802.1AS standard specifies the protocol and procedures used to ensure that the QoS requirements are guaranteed for - Netgear S3300-52X | Software Guide - Page 181
. Last GM Change Timestamp The system time when the most recent grandmaster clock change occurred. 802.1AS (EAV) in a Stacking Environment If all the four Uplink ports are configured in Stacking mode, then the EAV pages are disabled and the 802.1AS (EAV) unavailable message is displayed: • On the - Netgear S3300-52X | Software Guide - Page 182
S3300 Smart Switch In a similar manner, if EAV is enabled, then the stack port pages are disabled. When stack ports are not configured (in other words, the 10G ports are configured as Ethernet) and EAV is enabled globally: 1. Configure the Uplink ports in Ethernet mode and reload the switch, using - Netgear S3300-52X | Software Guide - Page 183
S3300 Smart Switch Figure 51. Stack Configuration is Unavailable 802.1AS Port Settings Use the 802.1AS Port Settings screen to configure and view per-port 802.1AS settings. To configure the 802.1AS port settings: 1. Select Switching > 802.1AS Advanced 802.1AS Port Settings. 2. Select the ports - Netgear S3300-52X | Software Guide - Page 184
S3300 Smart Switch 8. port settings Field Port Role Propagation Delay Measuring Pdelay 802.1AS Capable Neighbor Rate Ratio Current Sync Interval Current Pdelay Interval Current Announce Interval Description The 802.1AS role of the interface. The possible roles are as follows: • Disabled (default - Netgear S3300-52X | Software Guide - Page 185
S3300 Smart Switch 802.1AS Statistics The 802.1AS Statistics screen displays information regarding the 802.1AS messages transmitted and received by each interface. If all - Netgear S3300-52X | Software Guide - Page 186
S3300 Smart Switch Table 71. 802.1AS statistics (continued) Field Pdelay Discards Bad Headers Description The total number of PDELAY packets discarded. The total number of packets received with bad header. Configuring Switching 186 - Netgear S3300-52X | Software Guide - Page 187
4. Configuring Routing 4 The switch supports IP routing. Use the menus under the Routing tab to manage no match, then the packet is routed to the next hop specified in the default route. If there is no default route configured, then the packet is passed to the software to be handled appropriately. - Netgear S3300-52X | Software Guide - Page 188
to Live Maximum Next Hops Description The default value inserted into the Time-To-Live field of the IP header of datagrams originated by the switch, if a TTL value is not supplied by the transport layer protocol. The default value is 64. The maximum number of hops supported by the switch. This is - Netgear S3300-52X | Software Guide - Page 189
of locally addressed datagrams received successfully but discarded because of an unknown or unsupported protocol. The number of input IP datagrams for which no problems were encountered to prevent their continued processing, but which were discarded (e.g., for lack of buffer space). Note that this - Netgear S3300-52X | Software Guide - Page 190
S3300 Smart Switch Table 73. IP any datagrams which a host cannot route because all of its default gateways are down. The maximum number of seconds which received Time Exceeded messages received. The number of ICMP Parameter Problem messages received. The number of ICMP Source Quench messages - Netgear S3300-52X | Software Guide - Page 191
S3300 Smart Switch Table 73. IP routing statistics (continued) Field all those counted by icmpOutErrors. The number of ICMP messages which this entity did not send due to problems discovered within ICMP such as a lack of buffers. This value should not include errors discovered outside the ICMP - Netgear S3300-52X | Software Guide - Page 192
S3300 Smart Switch Configure VLAN Routing You can configure the switch software with some ports supporting VLANs and some supporting routing. You can also configure the software to allow traffic on a VLAN to be treated as if the VLAN were a router port. When a port is enabled for bridging (default) - Netgear S3300-52X | Software Guide - Page 193
an interface. A valid range is from 68 bytes to the link MTU. The default value is 1500. A value of 0 indicates that the IP MTU is unconfigured. When the IP MTU is unconfigured, the router uses the link MTU as the IP MTU. The link MTU is the maximum frame size minus the length of - Netgear S3300-52X | Software Guide - Page 194
S3300 the selected interface. 4. In the Advertise Address field. specify the IP address to be used to advertise the router. 5. In the the Preference Level field, specify the preference level of the router as a default router relative to other routers on the same subnet. Higher numbered addresses are - Netgear S3300-52X | Software Guide - Page 195
S3300 Smart Switch Configure and View Routes From the Route Configuration screen, you can configure static and default routes and view the routes that the Description Indicates whether the learned route is a static or default route. The IP route prefix for the destination. Also referred to as the - Netgear S3300-52X | Software Guide - Page 196
S3300 Smart Switch Table 75. Routing table information (continued) Field Protocol any) in the path towards the destination. The next router is always one of the adjacent neighbors or the IP address of the local interface for a directly attached network. The preference is an integer value from 1 to - Netgear S3300-52X | Software Guide - Page 197
manual ARP configuration. With manual ARP configuration, you can statically add entries into the ARP table. ARP is a necessary part of the Internet protocol (IP) and is used to translate an IP switch supports 512 ARP entries, which ARP cache unless entries are updated in reaction to new information - Netgear S3300-52X | Software Guide - Page 198
S3300 Smart Switch ARP Cache Use the ARP Cache screen to view entries in the 76. ARP cache information Field Description IP Address The associated IP address of a device on a subnet attached to one of the switch's existing routing interfaces. Port Shows the associated interface of the - Netgear S3300-52X | Software Guide - Page 199
S3300 Smart Switch Create a Static ARP Entry Use this screen to add a static entry to the ARP table. To add an entry to the ARP table: 1. Select Routing ARP > Advanced ARP Create. 2. In the IP Address field, specify the IP address to add. It must be the IP address of a device on a subnet - Netgear S3300-52X | Software Guide - Page 200
S3300 Smart Switch Remove an ARP Entry From the ARP Cache Use this screen to remove certain entries . 3. If Specific Dynamic/Gateway Entry or Specific Static Entry is the selected type, enter the IP address of the entry to remove from the ARP table. 4. Click the Apply button. Configuring Routing 200 - Netgear S3300-52X | Software Guide - Page 201
based on user-defined criteria. When a packet is queued for transmission in a port, the rate at which it is serviced depends on how the queue is configured and possibly the amount of traffic present in the other queues of the port. If a delay is necessary, packets get held in the queue until the - Netgear S3300-52X | Software Guide - Page 202
, such as minimum guaranteed bandwidth, or transmission rate shaping are user configurable at the queue (or port) level. Eight queues per port are supported. From the Advanced link, the Class of service menu under the QoS tab, you can access the screens described in the following sections: • CoS - Netgear S3300-52X | Software Guide - Page 203
S3300 Smart Switch The six most significant bits of the DiffServ field are called the Differentiated Services Code Point (DSCP) bits. 4. Click the Apply button. To overrides the global settings. 2. From the interface list, select the port or LAG to configure. 3. From the Interface Trust Mode list, - Netgear S3300-52X | Software Guide - Page 204
S3300 information about how to select and configure one or more ports and LAGs, see Configuring Interface Settings on page 28 bits of the DiffServ field are called the Differentiated Services Code Point (DSCP) bits. 4. In the a second-level shaping mechanism. The default value is 0. The value 0 means - Netgear S3300-52X | Software Guide - Page 205
S3300 Smart of packet transmission from the set of all queues on a port. Each port has its own CoS queue-related configuration. The configuration process is robin associates a weight to each queue. This is the default. - Strict. Services traffic with the highest priority on a queue first. • - Netgear S3300-52X | Software Guide - Page 206
S3300 the traffic class. The traffic class is the hardware queue for a port. Higher traffic class values indicate a higher queue position. Before traffic in with the value. The traffic class is the hardware queue for a port. Higher traffic class values indicate a higher queue position. Before traffic - Netgear S3300-52X | Software Guide - Page 207
S3300 Smart Switch Differentiated Services The QoS feature contains Differentiated Services (DiffServ) support that allows traffic to be classified into streams and given certain QoS treatment in accordance with defined per-hop behaviors. Standard IP-based networks are designed to provide "best - Netgear S3300-52X | Software Guide - Page 208
S3300 Smart but it is not active. 3. Click the Apply button to send the updated configuration to the switch. Configuration changes take effect immediately. 4. Click the size is 320. Service Table The current and maximum number of rows of the service table. The max size is 338. Configuring Quality - Netgear S3300-52X | Software Guide - Page 209
S3300 Select the class type 4. Click the Add button. The switch supports only the Class Type value All, which means all the various match the check box next to the configured class. 2. In the Class Name field, update the name. 3. Click the Apply button. To delete a class: 1. Select Service 209 - Netgear S3300-52X | Software Guide - Page 210
S3300 Smart Switch Figure 53. DiffServ Class Configuration Criteria 2. Define the criteria to class can reference at most one other class of the same type. • Class of Service. Select the field and enter a class of service 802.1p user priority value to be matched for the packets. The valid range is - Netgear S3300-52X | Software Guide - Page 211
S3300 and a Port ID field displays. Enter a user-defined Port ID by which packets are matched to the rule. • IP DSCP. IP Precedence. Matches the packet's IP Precedence value to the class criteria's when Enter a value in the range of 0-7. • IP ToS. Matches the packet's Type of Service bits in the IP - Netgear S3300-52X | Software Guide - Page 212
S3300 Smart Switch IPv6 Class Configuration The IPv6 Class Configuration feature extends the existing QoS ACL and DiffServ functionality by providing support that specifies an L4 Port match value. With the form of quality-of-service (QoS) handling in routers IP DSCP field in the Traffic Class octet. IP - Netgear S3300-52X | Software Guide - Page 213
S3300 Smart Switch The same set of fields described for IPv6 ACL classification are also supported as match to the policy: 1. Select the check box next to the configured class. 2. Update the desired fields. 3. Click the Apply button. 4. Click the Cancel button to Configuring Quality of Service 213 - Netgear S3300-52X | Software Guide - Page 214
S3300 Smart Switch The policy name is a hyperlink. The the policy attribute is defined to redirect every inbound packet to the specified interface. • Mark IP DSCP. This lists the keywords for the known DSCP values from which one can be selected color-aware specifier. Configuring Quality of Service 214 - Netgear S3300-52X | Software Guide - Page 215
S3300 Smart Switch One of default) These packets are immediately dropped. - Mark CoS. These packets are marked by DiffServ with the specified CoS value before being presented to the system forwarding element. This selection requires that the Mark CoS value field be set. - Mark IP of Service 215 - Netgear S3300-52X | Software Guide - Page 216
To attach a DiffServ policy to an interface: 1. Select QoS DiffServ Advanced Service Configuration. 2. Select the interfaces to attach to the policy. 3. For information about how to select and configure one or more ports and LAGs, see Configuring Interface Settings on page 28From the Policy In - Netgear S3300-52X | Software Guide - Page 217
discarded for all class instances in this service policy for any reason due to DiffServ treatment. This is the overall count per-interface, per-direction. Member Classes Selects the member class for which octet statistics are to display. Click Update to update the page with the latest information - Netgear S3300-52X | Software Guide - Page 218
S3300 Smart Switch Configuring Quality of Service 218 - Netgear S3300-52X | Software Guide - Page 219
6. Managing Device Security 6 Use the features available from the Security navigation tab to configure management security settings for port, user, and server security. The Security tab contains links to the features described in the following sections. • Management Security Settings on page 220 • - Netgear S3300-52X | Software Guide - Page 220
S3300 Smart Switch Management Security Settings From the Management Security menu, you can configure the login password, Remote Authorization Dial-In User Service device reboots, and all switch settings, including the password, are reset to the factory default values. If you press the button for less - Netgear S3300-52X | Software Guide - Page 221
S3300 Smart and password before authorizing use of the network. RADIUS servers provide a centralized authentication method for: • Web access • Port access Current Server IP Address field is blank if no servers are configured (see RADIUS Server Configuration on page 222). The switch supports up to - Netgear S3300-52X | Software Guide - Page 222
S3300 Smart Switch RADIUS Server Configuration Use the RADIUS Server the IP address of the RADIUS server to add. 3. In the Authentication Port field, specify the UDP port number the server uses to verify the RADIUS server authentication. The valid range is 1-65535. The default value is - Netgear S3300-52X | Software Guide - Page 223
. 2. In the Accounting Server Address field, specify the IP address of the RADIUS accounting server to add. 3. In the Port field, specify the UDP port number the server uses to verify the RADIUS accounting server authentication. The default UDP port number is 1813. 4. From the Secret Configured menu - Netgear S3300-52X | Software Guide - Page 224
S3300 Server Address The IP address of the supported RADIUS accounting port and dropped for some other reason. Use the buttons at the bottom of the screen to perform the following actions: • Click the Clear Counters button to reset all statistics to their default value. • Click Update to update - Netgear S3300-52X | Software Guide - Page 225
services: • Authentication. Provides authentication during login and through user names and user-defined passwords by using the inband management port. To configure global valid range is 1-30 seconds. Default is 5 seconds. 4. Click TACACS Server field, specify the IP address of the TACACS server. - Netgear S3300-52X | Software Guide - Page 226
S3300 Smart Switch The priority determines the order in which the TACACS+ servers are contacted when attempting to authenticate a user. A value of 0 is the highest priority. 4. (Optionally) In the Port field, specify the authentication port value for TACAS+ server sessions. If you do not specify a - Netgear S3300-52X | Software Guide - Page 227
S3300 Smart Switch Authentication List Configuration Use the Authentication List screen to configure the default login list. A login list specifies one or more authentication methods to validate switch or port . • RADIUS. The user's ID and password will be authenticated using the RADIUS server. - Netgear S3300-52X | Software Guide - Page 228
S3300 Smart Switch 7. Click the Apply button. HTTPS Authentication List Use the HTTPS Authentication List to configure the default login list you have specified more than one method. • RADIUS. The user's ID and password will be authenticated using the RADIUS server. If you select RADIUS or TACACS+ as - Netgear S3300-52X | Software Guide - Page 229
S3300 Smart Switch To change the Dot1x authentication method for the defaultList: 1. Select options are: • Local. The user's locally stored ID and password will be used for authentication. • Radius. The user's ID and password will be authenticated using the RADIUS server instead of locally. - Netgear S3300-52X | Software Guide - Page 230
S3300 Certificate Management on page 232 • Certificate Download on page 232 • Access Control on must be in the range of 0-60 minutes. The default value is 5 minutes. The currently configured value is automatically logged out and must re-enter the password to access the management interface. A value of - Netgear S3300-52X | Software Guide - Page 231
or disable the administrative mode of Secure HTTP. The default value is Disable. You can download SSL certificates only when the HTTPS Admin mode is password to access the management interface. A value of zero corresponds to an infinite time-out. The valid range is 1-60 minutes. The default value - Netgear S3300-52X | Software Guide - Page 232
S3300 Smart Switch Certificate Management Use this screen to generate or delete certificates. In the Certificate Management area, select Delete Certificates. 3. Click the Apply button. Certificate Download For the web server on the switch to accept HTTPS connections from a management station, the - Netgear S3300-52X | Software Guide - Page 233
Switch The default is IPv4. 4. In the TFTP Server IP field, specify the address of the TFTP server. The address can be an IP address in standard x.x.x.x format or a hostname. The hostname must start with a letter of the alphabet. Make sure that the software image or other file to be downloaded is - Netgear S3300-52X | Software Guide - Page 234
S3300 Smart Switch Access Control Access control allows you to configure a profile and displays. Table 82. Access Profile Configuration Field Packets Filtered Profile Summary Rule Type Service Type Source IP Address Mask Priority Description The number of packets filtered. The action to be - Netgear S3300-52X | Software Guide - Page 235
S3300 Smart Switch deny rule blocks traffic that matches the rule criteria. 3. From the Service Type field, select the access method to which the rule is HTTP (SSL) • SNMP • JAVA 4. In the Source IP Address field, specify the IP address of the client from which the management traffic originates 5. - Netgear S3300-52X | Software Guide - Page 236
is the default authentication mode. The 802.1X network has three components: • Authenticators. Specifies the port that is authenticated before permitting system access. • Supplicants. Specifies the host connected to the authenticated port requesting access to the system services. • Authentication - Netgear S3300-52X | Software Guide - Page 237
S3300 Smart Switch 3. In the VLAN Assignment Mode field, select Enable. When enabled, this feature allows a port to be support is enabled on the switch. 6. Click the Apply button. Port Authentication Use the Port Authentication screen to enable and configure port access control on one or more ports - Netgear S3300-52X | Software Guide - Page 238
Specify the VLAN ID for the guest VLAN. The valid range is 0-4093. The default value is 0. Enter 0 to reset the Guest VLAN ID on the interface. The guest VLAN allows the port to provide a distinguished service to unauthenticated users. This feature provides a mechanism to allow users access to hosts - Netgear S3300-52X | Software Guide - Page 239
S3300 Smart Switch 4. Click the Apply button. The following table describes the 802.1X status information available on the screen. Table 83. Port is reset to the initialization state. Traffic sent to and from the port is blocked during the authentication process. This button is available only if - Netgear S3300-52X | Software Guide - Page 240
S3300 Smart Switch To restart the 802.1X authentication process on a port: 1. Select the check box associated with the port to reauthenticate. 2. Click the Reauthenticate button. The selected port state. The switch cannot provide authentication services to the client through the interface. - Netgear S3300-52X | Software Guide - Page 241
S3300 Smart Switch Client Summary This screen displays information about supplicant devices that are connected to the local authenticator ports. If there are no active 802.1X sessions, the table is empty. To access the Client Summary screen, select Security Port Authentication Advanced Client - Netgear S3300-52X | Software Guide - Page 242
S3300 Smart Switch Traffic Control From the Traffic Control menu, you can configure MAC Filters, Storm Control, Port Security, and Protected Port settings. The Traffic Control menu contains links to the features described in the following sections. • MAC Filter: • MAC Filter Configuration on page - Netgear S3300-52X | Software Guide - Page 243
S3300 Smart Switch If a packet with the MAC address and VLAN ID you specify is received on a port that is not in the list, it will be dropped. 6. From the list of Destination Port Members, select the ports to include in the outbound filter. Packets with the MAC address and VLAN ID you selected will - Netgear S3300-52X | Software Guide - Page 244
S3300 Smart Switch Storm Control A broadcast storm is the result of an excessive number of broadcast messages simultaneously transmitted across a network by a single port or RateLimit. The default mode is RateLimit. The Control Action field provides the ability to shutdown the port when threshold of - Netgear S3300-52X | Software Guide - Page 245
the appropriate radio button to enable or disable port security on the switch. The default is Disable. 3. Click the Apply button. The Port Security Violation table shows information about violations that occurred on ports that are enabled for port security. The following table describes the fields - Netgear S3300-52X | Software Guide - Page 246
S3300 Smart Switch 3. Specify the following settings: • Port Security. Enable or Disable the port security feature for the selected port. The default is Disable. • Max Allowed Dynamically Learned MAC. Specify the maximum number of dynamically learned MAC addresses on the selected interface. • Max - Netgear S3300-52X | Software Guide - Page 247
S3300 Smart Switch Protected Ports Membership If a port is configured as protected, it does not forward traffic to any other protected port on the switch, but it will forward traffic to unprotected ports. Use the Protected Ports Membership screen to configure the ports as protected or unprotected. - Netgear S3300-52X | Software Guide - Page 248
S3300 updates, decide which types of traffic are forwarded or blocked, and above all provide security for the network. Switch software supports source, and destination IP and MAC addresses, and other packet-matching criteria. Finally, use the ID number to assign the ACL to a port or to a LAG. - Netgear S3300-52X | Software Guide - Page 249
S3300 Smart Switch ACL Wizard The ACL Wizard helps you to create a simple ACL and apply it to the selected ports easily and quickly. First, you can select an ACL type. Then, you can add an ACL rule to this ACL, and a rule can be applied this ACL on the selected ports. The ACL - Netgear S3300-52X | Software Guide - Page 250
S3300 Smart Switch 6. IP address mask. • Destination Prefix. Specify the destination prefix. • Destination Prefix Length. Specify the destination prefix length. • Source Prefix. Specify the source destination prefix. • Source Prefix Length. Specify the source prefix length. • Destination L4 port - Netgear S3300-52X | Software Guide - Page 251
S3300 Smart Switch Table 89. ACL fields according to selected ACL type. ACL Based On Fields Destination IPv6 L4 Port Source IPv6 L4 Port • Destination L4 port (protocol). Specify the destination IPv6 L4 port protocol. • Destination L4 port (value). Specify the destination IPv6 L4 port value. • - Netgear S3300-52X | Software Guide - Page 252
S3300 Smart Switch Figure 56. ACL Wizard 9. Click the Add button. To modify a rule: 1. Select check box associated with the rule to remove. 2. Update the match criteria as needed. 3. Click the Apply button. To remove a rule: 1. Select check box associated with the rule to remove. 2. Click the - Netgear S3300-52X | Software Guide - Page 253
S3300 Smart Switch 1. Create the ACL ID. See MAC ACL on page 252. 2. Create The access list definition includes rules that specify whether traffic matching the criteria is forwarded normally or discarded. A default deny all rule is the last rule of every list. Note: To create a new MAC ACL, use the - Netgear S3300-52X | Software Guide - Page 254
S3300 Smart Switch 2. From the ACL Name list, select the MAC ACL for which to create or update available. • CoS. Requires a packet's class of service (CoS) to match the CoS value listed here. -0xFFFF. • Source MAC. Requires a packet's source port MAC address to match the address listed here. Enter - Netgear S3300-52X | Software Guide - Page 255
S3300 Smart Switch • Logging. When set to Enable, logging is enabled for this system. A trap is not issued if the ACL rule hit count is zero for the current interval. This field is only supported for a Deny action. 5. Click the Add button. To change the match criteria for a rule: 1. Select the - Netgear S3300-52X | Software Guide - Page 256
S3300 Smart Switch MAC Binding Configuration When an ACL is bound to an packet filtering direction for ACL is Inbound, which means the MAC ACL rules are applied to traffic entering the port. 3. Specify an optional sequence number to indicate the order of this access list relative to other access - Netgear S3300-52X | Software Guide - Page 257
S3300 Smart Switch MAC Binding Table Use the MAC Binding Table screen to view or . The only valid direction is Inbound, which means the MAC ACL rules are applied to traffic entering the port. The type of ACL assigned to selected interface and direction. The ACL name identifying the ACL assigned to - Netgear S3300-52X | Software Guide - Page 258
S3300 Smart Switch IP ACL IP ACLs allow network managers to define classification actions and rules for specific ingress ports. Packets can be filtered on ingress (inbound) ports only. If the filter rules match, then some actions can be taken, including dropping the packet or disabling the port. For - Netgear S3300-52X | Software Guide - Page 259
S3300 Smart Switch IP Rules Use the IP Rules screen to define rules for IP-based standard ACLs. The access list definition includes rules that specify whether traffic matching the criteria is forwarded normally or discarded. Note: There is an - Netgear S3300-52X | Software Guide - Page 260
S3300 Smart Switch Figure 58. Standard ACL Rule Configuration 4. In the Rule ID field, specify a number from 1 to 50 to identify the IP ACL rule. 5. Select or specify values for one or more of the following match criteria: • Rule ID. Specify a number from 1-50 to identify the IP ACL rule. You can - Netgear S3300-52X | Software Guide - Page 261
. 6. Click the Apply button. To modify the match criteria for an ACL rule: 1. From the ACL Name list on the IP Rules screen, select the ACL that includes the rule to update. 2. In the Basic ACL Rule Table, click the rule ID. The rule ID is a hyperlink to the Standard ACL Rule - Netgear S3300-52X | Software Guide - Page 262
S3300 Smart Switch Figure 59. Extended ACL Rule Configuration 4. Next to Rule ID, specify a number from 1 to 50 to identify the IP ACL rule. You can create up to 50 rules for each ACL. 5. Select or specify values for one or more of the following match criteria: • - Netgear S3300-52X | Software Guide - Page 263
L4 keyword is Other, enter a user-defined Port ID by which packets are matched to the rule. • Service Type. Select one of the Service Type match conditions for the extended IP ACL rule. The possible values are IP DSCP, IP precedence, and IP TOS, which are alternative ways of specifying a match - Netgear S3300-52X | Software Guide - Page 264
S3300 Smart Switch example, to check for an IP TOS value having bits 7 and 5 set and bit 1 clear, where bit 7 From the ACL Name list on the Extended ACL Rules screen, select the ACL that includes the rule to update. 2. In the Extended ACL Rule Table, click the rule ID. The rule ID is a hyperlink to - Netgear S3300-52X | Software Guide - Page 265
S3300 Smart Switch IPv6 ACL An IPv6 ACL consists of a set of rules which are matched taken and the additional rules are not checked for a match. On this menu, the interfaces to which an IP ACL applies must be specified, as well as whether it applies to inbound or outbound traffic. Rules for the IPv6 - Netgear S3300-52X | Software Guide - Page 266
S3300 Smart Switch IPv6 Rules Use the IPv6 Rules screen to configure the rules for the IPv6 Access Control Lists. The IPv6 Access Control Lists are created using the IPv6 Access Control List Configuration screen. By default, no specific value is in effect for any of the IPv6 ACL rules. To add a - Netgear S3300-52X | Software Guide - Page 267
S3300 Smart Switch • Assign Queue ID. Specifies the hardware egress queue identifier a packet's destination IP Address as a match criteria for the selected IPv6 ACL rule. Prefix length can be in the range (0 to 128). • Destination L4 Port. Specify a packet's destination layer 4 port as a match - Netgear S3300-52X | Software Guide - Page 268
S3300 Smart Switch • Flow Label. Flow label is 20-bit number that is unique to an IPv6 packet, used by end stations to signify quality-of-service handling in routers. Flow label can be specified within the range (0 to 1048575). • IPv6 DSCP Service. Specify the IP DiffServ Code Point (DSCP) field. - Netgear S3300-52X | Software Guide - Page 269
S3300 Smart Switch • To remove the selected ACL from a port or LAG, click the box directly below the port or LAG number to clear the selection. A check mark in the box indicates that the ACL is applied to the interface. 5. Click the Apply button. IP Binding Table Use the IP Binding Table screen to - Netgear S3300-52X | Software Guide - Page 270
S3300 Smart Switch number. If the sequence number is not specified by the user (i.e., the value direction will be used. Valid range is (1 to 4294967295). 5. From the ACL Type list, select the type of ACL: • IP ACL • MAC ACL • IPv6 ACL 6. From the ACL ID list, select the ID of the ACL to bind to the - Netgear S3300-52X | Software Guide - Page 271
number and type of traffic transmitted from and received on the switch. From the Ports menu, you can access links to the features described following sections: • Switch Statistics • Port Statistics on page 274 • Port Detailed Statistics on page 275 • EAP Statistics on page 281 • Cable Test on page - Netgear S3300-52X | Software Guide - Page 272
S3300 Smart Switch Switch Statistics The Switch Statistics screen displays detailed statistical information about the traffic the switch handles. To view the switch statistics, select Monitoring Ports Switch Statistics. The following table describes the switch statistics displayed on the screen - Netgear S3300-52X | Software Guide - Page 273
S3300 Smart Switch Table 92. Switch statistics (continued) Field Description Transmit counters, resetting all switch summary and detailed statistics to default values. The discarded packets count cannot be cleared. • Click Update to update the page with the latest information on the switch. - Netgear S3300-52X | Software Guide - Page 274
S3300 Smart Switch Port Statistics The Port Statistics screen displays a summary of per-port traffic statistics on the switch. To access the port summary screen: 1. Select Monitoring Ports > Port Statistics. 2. Select whether to display physical interfaces, link aggregation groups (LAGs), or - Netgear S3300-52X | Software Guide - Page 275
S3300 Smart Switch You can also type the interface number (for example, g7) in the Go To Interface field at the top or bottom of the table and click the Go button. 2. Click the Clear button. Port Detailed Statistics The Port Detailed Statistics screen displays a variety of per-port traffic - Netgear S3300-52X | Software Guide - Page 276
in IEEE 802.1D: • Disabled • Blocking • Listening • Learning • Forwarding • Broken Admin Mode The port control administration state: • Enable. The port can participate in the network (default). • Disable. The port is administratively down and does not participate in the network. Flow Control Mode - Netgear S3300-52X | Software Guide - Page 277
S3300 Smart Switch Table 94. Detailed Interface Statistics (continued) Field Description Packets RX and TX 256-511 Octets The total number of packets (including bad packets) - Netgear S3300-52X | Software Guide - Page 278
S3300 Smart Switch Table 94. Detailed Interface Statistics (continued) Field Description Packets an integral number of octets Overruns The total number of frames discarded as this port was overloaded with incoming packets, and could not keep up with the inflow. Monitoring the System 278 - Netgear S3300-52X | Software Guide - Page 279
S3300 Smart Switch . Unacceptable Frame Type The number of frames discarded from this port due to being an unacceptable frame type. Total Packets Transmitted size the interface supports or is configured, including ethernet header, CRC, and payload. (1518 to 9216). The default maximum frame size - Netgear S3300-52X | Software Guide - Page 280
S3300 Smart Switch Table 94. Detailed Interface Statistics (continued) Field Description received at the selected port. STP BPDUs Transmitted Number of STP BPDUs transmitted from the selected port. RSTP BPDUs Received Number of RSTP BPDUs received at the selected port. RSTP BPDUs Transmitted - Netgear S3300-52X | Software Guide - Page 281
S3300 Smart Switch Table 94. Detailed Interface Statistics (continued) Field Description Clear button to clear all the counters. This resets all statistics for this port to the default values. • Click Update to update the page with the latest information on the switch. EAP Statistics Use the - Netgear S3300-52X | Software Guide - Page 282
click the Clear button. The button resets all statistics for all ports to default values. • To clear the counters for a specific port, select the check box associated with the port and click the Clear button. • Click Update to update the page with the latest information on the switch. Cable Test - Netgear S3300-52X | Software Guide - Page 283
S3300 Smart Switch The following table describes the cable information displayed on the screen. Table 96. Cable information Field Port Cable Status Cable Length Failure Location Description Specifies the port that has the connected cable. The cable status. • Normal. The cable is working correctly - Netgear S3300-52X | Software Guide - Page 284
S3300 Smart Switch Memory Logs The Memory Log stores messages in memory based upon the Server Log on page 286. The message was generated on March 24 at 5:34:05 a.m. by the switch with an IP address of 10.131.12.183. The component that generated the message is unknown, but it came from line 179 of - Netgear S3300-52X | Software Guide - Page 285
S3300 Smart Switch Use the buttons at the bottom of the screen to perform the following actions: • Click the Clear button to clear the messages out of the buffered log in the memory. • Click Update to update , Critical, Alert, and Emergency. The default severity level is Alert (1). The severity can - Netgear S3300-52X | Software Guide - Page 286
S3300 Smart user-level message (1) with severity 7 (debug) on a system that is not stacked and generated by component MSTP running in thread id 2110 on Aug 24 05:34: sent to any collector/relay. 3. In the Local UDP Port field, specify the port on the switch from which syslog messages are sent. 4. - Netgear S3300-52X | Software Guide - Page 287
S3300 IP Address Type of Host. It can be one of the following: - IPv4 - IPv6 - DNS • Host Address. Specify the hostname of the host configured for syslog. • Port. Specify the port on the host to which syslog messages are sent. The default port entered only by qualified support personnel. 2. Click the - Netgear S3300-52X | Software Guide - Page 288
S3300 Smart Switch To modify the settings for an existing host: 1. Select the check box next to the host to modify. 2. Change the desired information. 3. Click the Apply button. Monitoring the System 288 - Netgear S3300-52X | Software Guide - Page 289
S3300 Smart Switch Trap Logs Use the Trap Logs screen to view information about the SNMP traps generated on the switch. To view trap log information, - Netgear S3300-52X | Software Guide - Page 290
S3300 Smart Switch Event Logs Use the Event Logs screen to display the event log, which is used to hold error messages for catastrophic events. After the event is logged and the updated or untagged as it was received on the source port. If the mirror is copying a transmitted packet, the copied - Netgear S3300-52X | Software Guide - Page 291
the following links above the table heading: • 1. Only physical interfaces are displayed. This is the default setting. • LAGS. Only link aggregation groups are displayed. • CPU. The CPU port is displayed. • All. Both physical interfaces and link aggregation groups are displayed. b. Select the check - Netgear S3300-52X | Software Guide - Page 292
S3300 Smart Switch Monitoring the System 292 - Netgear S3300-52X | Software Guide - Page 293
the text configuration file is downloaded, the stack applies the configuration automatically. on page 301 • Troubleshooting on page 304 Reset The Reset menu contains links to the features described in the following sections. • Device Reboot on page 293 • Factory Default on page 294 Device Reboot - Netgear S3300-52X | Software Guide - Page 294
S3300 Smart Switch Factory Default Use the Factory Default screen to reset the system configuration to the factory default values. Note: If you reset the switch to the default configuration, the IP address is reset to 192.168.0.239, and the DHCP client is enabled. If you loose network connectivity - Netgear S3300-52X | Software Guide - Page 295
S3300 default is Archive. • Tech Support. Retrieve the tech support file, which contains a variety of hardware, software, and configuration information that can assist in device and network troubleshooting that the TFTP server address is an IP address in dotted-decimal format. • DNS. Indicates that - Netgear S3300-52X | Software Guide - Page 296
S3300 from the switch. The factory default is Archive. • Archive. IP address), and download it to that device. • Tech Support. The tech support file is a text-base file that contains a variety of hardware, software, and configuration information that can assist in device and network troubleshooting - Netgear S3300-52X | Software Guide - Page 297
S3300 specify what type of file you want to upload from the switch. The factory default is Archive. • Archive. The archive (STK) is the system software image, for another similar device (for example, change the device name or IP address), and download it to that device. 3. The Image Name field is only - Netgear S3300-52X | Software Guide - Page 298
S3300 Smart Switch Download The switch supports system file downloads from a remote system to the switch by using either TFTP or HTTP. The Download menu contains links to the features described in the following sections. • TFTP File Download on page 298 • HTTP File Download on page 300 • After the - Netgear S3300-52X | Software Guide - Page 299
is an IP address in dotted-decimal format. • DNS. Indicates the TFTP server address is a hostname. 5. In the TFTP Server IP field, specify the IP address or software image that you download to the switch, see After the text configuration file is downloaded, the stack applies the configuration - Netgear S3300-52X | Software Guide - Page 300
S3300 Smart Switch HTTP File Download Use the HTTP File Download screen to download files of various types to the switch through an HTTP session by using your web browser. To download a file to the switch by using HTTP: 1. Select Maintenance Download HTTP File Download IP address), and download - Netgear S3300-52X | Software Guide - Page 301
S3300 Smart Switch Note: After the text configuration file is downloaded, the stack applies the configuration automatically. USB File Download Use the USB File Download screen to download a file to the switch from a USB device. To access the USB File Download page, click Maintenance Download USB - Netgear S3300-52X | Software Guide - Page 302
S3300 Smart Switch The last row of the table displays non-configurable information about the progress of the file transfer. This information is displayed only after - Netgear S3300-52X | Software Guide - Page 303
S3300 Smart Switch To change the image that loads during boot-up: 1. Select Maintenance > File Management > Dual Image > Dual Image Configuration. 2. From the Image Name list, - Netgear S3300-52X | Software Guide - Page 304
S3300 Smart Switch Troubleshooting The Troubleshooting menu contains links to the following options: • Ping IPv4 on page 304 • Ping IPv6 on page 305 • Traceroute IPv4 on page 307 • Traceroute IPv6 on page 308 Ping IPv4 Use this screen to tell the switch to send a Ping request to a specified IP - Netgear S3300-52X | Software Guide - Page 305
would be the address of the default outgoing interface. • IP Address-The source IP address to use when sending the Echo request packets. This field is shown when IP Address is selected as the source = n ms. To access the Ping IPv6 page, click Maintenance Troubleshooting Ping IPv6. Maintenance 305 - Netgear S3300-52X | Software Guide - Page 306
S3300 Smart Switch size. The valid range is 0 to 13000. The default value is 0 bytes. 6. Enter the Source IP address or interface to use when sending the echo request as the source option. 7. Click Apply to send the updated configuration to the switch. Configuration changes take effect immediately. - Netgear S3300-52X | Software Guide - Page 307
S3300 Smart Switch Traceroute IPv4 Use this screen to tell the switch to send a Traceroute request to a specified IP Troubleshooting Traceroute IP Address/Hostname to enter the IP address or Hostname of the station you want the switch to discover a path. The default value is blank. The IP - Netgear S3300-52X | Software Guide - Page 308
port you enter is not retained across a power cycle. 8. Enter the Size of the probe packets. The default value is 0. The range is 0 to 39936. The Size you enter is not retained across a power cycle. 9. Enter the Source IP page, click Maintenance Troubleshooting Traceroute IPv6. Maintenance 308 - Netgear S3300-52X | Software Guide - Page 309
value is 3. The range is 1 to 60. The Interval you enter is not retained across a power cycle. 7. Enter the UDP Destination Port in probe packets. The default value is 33434. The range is 1- 65535. The port you enter is not retained across a power cycle. 8. Enter the Size of the probe packets. The - Netgear S3300-52X | Software Guide - Page 310
S3300 Smart Switch Full Memory Dump Use this screen to tell the switch to do a full memory dump to help with troubleshooting. To display the Full Memory Dump screen, click Maintenance Troubleshooting can be used. The factory default is ./.. 3. In the File Name send the updated configuration to - Netgear S3300-52X | Software Guide - Page 311
whether the switch can communicate with a particular network host. To send a ping to an IPv4 address: 1. Select Maintenance Troubleshooting Ping. 2. In the IP Address/Host Name field, specify the IP address or the host name of the station you want the switch to ping. The initial value is blank - Netgear S3300-52X | Software Guide - Page 312
. • In the Source field, select the source type from which the ping is sent, which is one of the following: - None. The source is the IP address of the default outgoing interface. Troubleshooting 312 - Netgear S3300-52X | Software Guide - Page 313
. Specify the UDP destination port in the probe packets. • Size. Specify the size of the probe packets. • Source. Select the source type from which the packet is sent: - None. The source is the IP address of the default outgoing interface. - IP address. The source is an IP address that you specify - Netgear S3300-52X | Software Guide - Page 314
S3300 Select Maintenance Troubleshooting TraceRoute port in the probe packets. • Size. Specify the size of the probe packets. • Source. Select the source type from which the packet is sent: - None. The source is the IP address of the default outgoing interface. - IP address. The source is an IP - Netgear S3300-52X | Software Guide - Page 315
solutions of possible problems. Table 101. Troubleshooting chart Symptom Cause Solution Power LED is off. No power is received. Check the power cord connections for the switch at the switch and the connected AC power source. Link/ACT LED is off when a cable connects the port to a valid device - Netgear S3300-52X | Software Guide - Page 316
S3300 Smart Switch Troubleshooting 316 - Netgear S3300-52X | Software Guide - Page 317
information about how to configure: • Virtual Local Area Network Configuration Example on page 318 • Access Control Lists on page 321 • Differentiated Services on page 325 • 802.1X Configuration Example on page 329 • MSTP on page 331 • VLAN Routing Interface Configuration Example on page 336 - Netgear S3300-52X | Software Guide - Page 318
S3300 Smart Switch Virtual Local Area Network Configuration Example port's default VLAN ID tag number. Each port has a default VLAN ID setting that is user configurable (the default setting is 1). The default VLAN ID setting for each port can be changed in the Port PVID Configuration screen. See Port - Netgear S3300-52X | Software Guide - Page 319
use and describes how the switch handles tagged and untagged traffic. In this example, you create two new VLANs, change the port membership for default VLAN 1, and assign port members to the two new VLANs: 1. In the Basic VLAN Configuration screen create the following VLANs: • A VLAN with VLAN ID 10 - Netgear S3300-52X | Software Guide - Page 320
S3300 Smart Switch Figure 63. VLAN Membership For more information about how to perform this step, see VLAN Membership Configuration on page 89. 3. In the Port PVID Configuration screen, specify the PVID for ports g1 and g4 so that packets entering these ports are tagged with the port VLAN ID: • - Netgear S3300-52X | Software Guide - Page 321
. A default deny all rule is the last rule of every list. 3. Apply the access list to an interface in the inbound direction. The switch allows ACLs to be bound to physical ports and LAGs.The switch software supports MAC ACLs and IP ACLs. MAC ACL Configuration Example The following example shows how - Netgear S3300-52X | Software Guide - Page 322
S3300 Smart Switch • CoS. 0 • Destination MAC. 01:02:1A:BC:DE:EF • Destination MAC Mask. 00:00:00:00:FF: step, see MAC Rules on page 211. 4. From the MAC Binding Configuration screen, assign the Sales_ACL to Ethernet ports 6, 7, and 8. Figure 65. MAC Binding Configuration Configuration Examples 322 - Netgear S3300-52X | Software Guide - Page 323
S3300 Smart Switch For more information about how to perform this step, the IP Binding Configuration screen, assign ACL ID 1 to the Ethernet ports 2, 3, and 4, and assign a sequence number of 1. For more information about this step, see IP Binding Configuration on page 224. By default, this IP ACL - Netgear S3300-52X | Software Guide - Page 324
S3300 Smart Switch The IP ACL in this example matches all packets with the source IP address and subnet mask of the Finance department's network and deny it on the Ethernet interfaces 2, 3, and 4 of the switch. The second rule permits all non-Finance traffic on the ports. The second rule is required - Netgear S3300-52X | Software Guide - Page 325
S3300 Smart Switch Differentiated Services Standard IP-based networks are designed to provide best effort data delivery service. Best effort service implies supports DiffServ. The DiffServ feature contains a number of conceptual QoS building blocks you can use to construct a differentiated service - Netgear S3300-52X | Software Guide - Page 326
S3300 Smart Switch • Layer 4 protocol (such as TCP or UDP) • Layer 4 source/destination ports • Source/destination IP address From a DiffServ point of view, there are two types of classes: • DiffServ traffic classes • DiffServ service levels/forwarding classes DiffServ Traffic Classes With DiffServ, - Netgear S3300-52X | Software Guide - Page 327
S3300 Smart Switch • Mark IP DSCP or IP Precedence. Marking/re-marking the DiffServ code point in a packet with the DSCP value representing the service level associated with a particular DiffServ traffic class. Alternatively, the IP The DiffServ feature supports the following egress port (physical - Netgear S3300-52X | Software Guide - Page 328
more information about this step, see Service Configuration on page 176. 10. Click the Apply button. All UDP packet flows destined to the 192.12.2.0 network with an IP source address from the 192.12.1.0 network that have a Layer 4 Source port of 4567 and Destination port of 4568 from this switch on - Netgear S3300-52X | Software Guide - Page 329
/Disable EAPoL packet forwarding support.You can disable or enable the forwarding of EAPoL when 802.1X is disabled on the device. The ports of an 802.1X authenticator switch provide the means in which it can offer services to other systems reachable via the LAN. Port-based network access control - Netgear S3300-52X | Software Guide - Page 330
Port that enforces authentication before allowing access to services available via that Port. • Supplicant. A Port that attempts to access services offered are required in order to complete an authentication exchange. The switch supports the Authenticator role only, in which the PAE is responsible - Netgear S3300-52X | Software Guide - Page 331
step, see Port Security Configuration on page 203. 6. Click the Apply button. This example uses the default values for the port authentication settings, traffic. IEEE 802.1s Multiple Spanning Tree Protocol (MSTP) supports multiple instances of Spanning Tree to efficiently channel VLAN traffic over - Netgear S3300-52X | Software Guide - Page 332
S3300 Smart Switch The difference between the RSTP and the traditional STP (IEEE 802.1D) is the ability to configure and recognize full duplex connectivity and ports that are connected to end stations, resulting in rapid transitioning of the port .1s bridge inherently also supports IEEE 802.1w and - Netgear S3300-52X | Software Guide - Page 333
any VLAN can be in one and only one MSTI or CIST). For example, port A can be forwarding for instance 1 while discarding for instance 2. The port states have changed since IEEE 802.1D specification. To support multiple spanning trees, a MSTP bridge has to be configured with an unambiguous assignment - Netgear S3300-52X | Software Guide - Page 334
S3300 Smart Switch MSTP Configuration Example This example shows how to create an MSTP instance on the switch. The example network has three different switches that serve different locations in the network. In this example, ports g1-g5 are connected to host stations, so those links are not subject - Netgear S3300-52X | Software Guide - Page 335
Click the Apply button. You can use the CST Port Status screen to view spanning tree information about each port. 9. From the MST Configuration screen, create a MST instances with the following settings: • MST ID. 1 • Priority. Use the default (32768) • VLAN ID. 300 For more information about this - Netgear S3300-52X | Software Guide - Page 336
S3300 interfaces (switch virtual interfaces (SVI)). When a port is enabled for bridging (default) rather than routing, all normal bridge processing is route between the VLANs, the VLAN interfaces must be configured with an IP address. When the switch receives a packet destined for another subnet/ - Netgear S3300-52X | Software Guide - Page 337
S3300 Smart Switch Figure 66. VLAN Routing Wizard The following figure shows the VLAN Routing screen with the configured VLAN routing interface. Figure 67. VLAN Routing Configuration Configuration Examples 337 - Netgear S3300-52X | Software Guide - Page 338
S3300 Smart Switch Configuration Examples 338 - Netgear S3300-52X | Software Guide - Page 339
Specifications and Default Values B Switch Specifications The switch conforms to the TCP/IP, UDP, HTTP, ICMP, TFTP, DHCP, IEEE 802.1D, IEEE 802.1p, and IEEE 802.1Q standards. Table 102. Switch Specifications and Performance Feature S3300-28X S3300-28X-PoE+ S3300-52X S3300-52X-PoE+ Flash memory - Netgear S3300-52X | Software Guide - Page 340
Option Trust Mode Stacking Global Switch Priority Stack Sample Mode Stack Port Configured Stack Mode Stack Firmware Synchronization Stack Firmware Auto Upgrade Traps Allow Downgrade PoE Global System Usage Threshold Power Management Mode Traps Interface Default Disabled Disabled Disabled Disabled - Netgear S3300-52X | Software Guide - Page 341
S3300 Smart Switch Feature Name/Parameter Admin Mode Port Priority Power Mode Power Limit Type Power Limit (mW) Detection Type Timer Schedule Virtual LAN (IEEE 802.1Q Default VLANs PVID Acceptable Frame Types Ingress Filtering Port Priority Jumbo Frames Maximum Frame Size Flow Control Admin Mode - Netgear S3300-52X | Software Guide - Page 342
S3300 Smart Switch Feature Name/Parameter Periodic Reauthentication Reauthentication Period CST Bridge Max Age CST Bridge Hello Time CST Bridge Forward Delay CST Spanning Tree Max Hops MST Default Instance ID MST Instance 0 Priority MST Instance 0 VLAN IDs PV(R)STP UplinkFast Rate Interface CST STP - Netgear S3300-52X | Software Guide - Page 343
S3300 Smart Switch Feature Name/Parameter CST External Path Cost GARP Interface Join Timer Leave Timer Leave All Timer GVRP Global GVRP Mode Interface Port Fast Start Duration Interface Admin Status Management IP Address Notification Optional TLVs Default 0 20 (centiseconds) 60 (centiseconds) 1000 - Netgear S3300-52X | Software Guide - Page 344
S3300 Smart Switch Feature Name/Parameter DHCP Snooping Global Admin Mode MAC Initial Sync Interval Initial Pdelay Interval Initial Announce Interval SyncRx Timeout Announce Rx Timeout MRP Global Default Disabled Enabled Disabled Disabled N/A N/A Local 300 Disabled 246 248 Enabled 2500 8000 3 -3 - Netgear S3300-52X | Software Guide - Page 345
S3300 Smart Switch Feature Name/Parameter MVRP Mode MMRP Mode MSRP Mode MSRP talker Pruning Periodic State Machine (MVRP Mode) MSRP Max Fan In Ports Delta Bandwidth (percent) IP Routing Admin Mode Time-To-Live (seconds) Retries Cache Size Default Disabled Disabled Disabled Disabled Disabled - Netgear S3300-52X | Software Guide - Page 346
Dynamic Review Router Discovery Protocol Advertise Mode Advertise Address Maximum Advertise Interval Minimum Advertise Interval Advertise Lifetime Preference Level Differentiated Services Admin Mode Class of Service (CoS) Global Trust Mode 802.1p to Queue Mapping (802.1p -> Queue) Default Enabled - Netgear S3300-52X | Software Guide - Page 347
S3300 Smart Switch Feature Name/Parameter DSCP to Queue Mapping (DSCP -> Queue) Default Class Selector: (CS 0) 000000 -> 1 (CS 1) 001000 -> 0 (CS 2) 010000 -> 0 (CS 3) 011000 -> 1 (CS 4) 100000 -> 2 (CS 5) 101000 -> 2 (CS 6) 110000 -> 3 (CS 7) 111000 -> 3 Assured Forwarding: (AF 11) 001010 -> 0 ( - Netgear S3300-52X | Software Guide - Page 348
S3300 Smart Switch Feature Name/Parameter Interface Trust Mode Interface Shaping Rate 802.1p to Queue Mapping (802.1p -> Queue) Queue Minimum Band Width Queue Scheduler Type Auto-VoIP Default (21) 010101 -> 0 (23) 010111 -> 0 (25) 011001 -> 1 (27) 011011 -> 1 (29) 011101 -> 1 (31) 011111 -> 1 (33) - Netgear S3300-52X | Software Guide - Page 349
S3300 Smart Switch Feature Name/Parameter Protocol-based Admin Mode Prioritization Type Traffic Class OUI-based Admin Mode Auto-VoIP VLAN OUI-based priority Table 104. Port characteristics Default Disabled Traffic Class 3 Disabled 2 7 Feature Sets Supported Default Auto negotiating speed and - Netgear S3300-52X | Software Guide - Page 350
/deny an IP address/subnet All IP addresses allowed All ports Disabled Table 108. System setup and maintenance Feature Boot code update DHCP/manual IP Default gateway System name configuration Configuration save/restore Firmware upgrade Restore defaults Sets Supported 1 1 1 1 1 1 1 (web and - Netgear S3300-52X | Software Guide - Page 351
/Flash/Server) 1 N/A N/A Table 110. Other features Feature Sets Supported Timer Schedules 100 IGMP snooping v1/v2/v3 All ports Configurations upload/download 1 EAPoL flooding All ports BPDU flooding All ports Static multicast groups 8 Filter multicast control 1 Number of static - Netgear S3300-52X | Software Guide - Page 352
S3300 Smart Switch Table 110. Other features (continued) Feature Sets Supported MLD Snooping N/A Protocol and MAC-based VLAN N/A Dynamic ARP Inspection N/A Multiple VLAN Registration (MVR) N/A Multiple Registration Protocol N/A (MRP) 802.1AS N/A Default N/A N/A Disabled Disabled - Netgear S3300-52X | Software Guide - Page 353
firmware limits operation to only the channels allowed in a particular Region or Country. Therefore, all options described in this user's guide contain any user serviceable components and NETGEAR, Inc., 350 East Plumeria Drive, San Jose, CA 95134, declare under our sole responsibility that the S3300 - Netgear S3300-52X | Software Guide - Page 354
S3300 Smart Switch FCC Radio Frequency Interference Warnings & Instructions This equipment has been tested and found to radio/TV technician for help. Modifications made to the product, unless expressly approved by NETGEAR, Inc., could void the user's right to operate the equipment. TV Tuner (on
-
1 -
2 -
3 -
4 -
5 -
6 -
7 -
8
-
9
-
10
-
11
-
12
-
13
-
14
-
15
-
16
-
17
-
18
-
19
-
20
-
21
-
22
-
23
-
24
-
25
-
26
-
27
-
28
-
29
-
30
-
31
-
32
-
33
-
34
-
35
-
36
-
37
-
38
-
39
-
40
-
41
-
42
-
43
-
44
-
45
-
46
-
47
-
48
-
49
-
50
-
51
-
52
-
53
-
54
-
55
-
56
-
57
-
58
-
59
-
60
-
61
-
62
-
63
-
64
-
65
-
66
-
67
-
68
-
69
-
70
-
71
-
72
-
73
-
74
-
75
-
76
-
77
-
78
-
79
-
80
-
81
-
82
-
83
-
84
-
85
-
86
-
87
-
88
-
89
-
90
-
91
-
92
-
93
-
94
-
95
-
96
-
97
-
98
-
99
-
100
-
101
-
102
-
103
-
104
-
105
-
106
-
107
-
108
-
109
-
110
-
111
-
112
-
113
-
114
-
115
-
116
-
117
-
118
-
119
-
120
-
121
-
122
-
123
-
124
-
125
-
126
-
127
-
128
-
129
-
130
-
131
-
132
-
133
-
134
-
135
-
136
-
137
-
138
-
139
-
140
-
141
-
142
-
143
-
144
-
145
-
146
-
147
-
148
-
149
-
150
-
151
-
152
-
153
-
154
-
155
-
156
-
157
-
158
-
159
-
160
-
161
-
162
-
163
-
164
-
165
-
166
-
167
-
168
-
169
-
170
-
171
-
172
-
173
-
174
-
175
-
176
-
177
-
178
-
179
-
180
-
181
-
182
-
183
-
184
-
185
-
186
-
187
-
188
-
189
-
190
-
191
-
192
-
193
-
194
-
195
-
196
-
197
-
198
-
199
-
200
-
201
-
202
-
203
-
204
-
205
-
206
-
207
-
208
-
209
-
210
-
211
-
212
-
213
-
214
-
215
-
216
-
217
-
218
-
219
-
220
-
221
-
222
-
223
-
224
-
225
-
226
-
227
-
228
-
229
-
230
-
231
-
232
-
233
-
234
-
235
-
236
-
237
-
238
-
239
-
240
-
241
-
242
-
243
-
244
-
245
-
246
-
247
-
248
-
249
-
250
-
251
-
252
-
253
-
254
-
255
-
256
-
257
-
258
-
259
-
260
-
261
-
262
-
263
-
264
-
265
-
266
-
267
-
268
-
269
-
270
-
271
-
272
-
273
-
274
-
275
-
276
-
277
-
278
-
279
-
280
-
281
-
282
-
283
-
284
-
285
-
286
-
287
-
288
-
289
-
290
-
291
-
292
-
293
-
294
-
295
-
296
-
297
-
298
-
299
-
300
-
301
-
302
-
303
-
304
-
305
-
306
-
307
-
308
-
309
-
310
-
311
-
312
-
313
-
314
-
315
-
316
-
317
-
318
-
319
-
320
-
321
-
322
-
323
-
324
-
325
-
326
-
327
-
328
-
329
-
330
-
331
-
332
-
333
-
334
-
335
-
336
-
337
-
338
-
339
-
340
-
341
-
342
-
343
-
344
-
345
-
346
-
347
-
348
-
349
-
350
-
351
-
352
-
353
-
354
 |
 |
350 East Plumeria Drive
San Jose, CA 95134
USA
July 2014
202-11377-01
S3300 Smart Switch
Software Administration Manual