Home » LevelOne Manuals » Hubs & Switches » LevelOne GEP-5070 » Manual Viewer

LevelOne GEP-5070 Manual - Page 60

Configuring User Privilege Levels

Add to My Manuals
Save this manual to your list of manuals

Page 60 highlights

CHAPTER 4 | Configuring the Switch Configuring Security CONFIGURING USER Use the Privilege Levels page to set the privilege level required to read or PRIVILEGE LEVELS configure specific software modules or system settings. PATH Advanced Configuration, Security, Switch, Privilege Levels PARAMETERS These parameters are displayed: ◆ Group Name - The name identifying a privilege group. In most cases, a privilege group consists of a single module (e.g., LACP, RSTP or QoS), but a few groups contains more than one module. The following describes the groups which contain multiple modules or access to various system settings: ■ System: Contact, Name, Location, Timezone, Log. ■ Security: Authentication, System Access Management, Port (contains Dot1x port, MAC based and the MAC Address Limit), ACL, HTTPS, SSH, ARP Inspection, and IP source guard. ■ IP: Everything except for ping. ■ Port: Everything except for VeriPHY. ■ Diagnostics: ping and VeriPHY. ■ Maintenance: CLI - System Reboot, System Restore Default, System Password, Configuration Save, Configuration Load and Firmware Load. Web - Users, Privilege Levels and everything in Maintenance. ■ Debug: Only present in CLI. ◆ Privilege levels - Every privilege level group can be configured to access the following modules or system settings: Configuration Readonly, Configuration/Execute Read-write, Status/Statistics Read-only, and Status/Statistics Read-write (e.g., clearing statistics). The default settings provide four access levels: ■ 1 - Read access of port status and statistics. ■ 5 - Read access of all system functions except for maintenance and debugging ■ 10 - read and write access of all system functions except for maintenance and debugging ■ 15 - read and write access of all system functions including maintenance and debugging. WEB INTERFACE To configure privilege levels: 1. Click Advanced Configuration, Security, Switch, Privilege Levels. 2. Set the required privilege level for any software module or functional group. - 60 -

Section	Page
GEP-5070 User Manual	1
About This Guide	5
Contents	7
Figures	13
Tables	19
Getting Started	21
Introduction	23
Key Features	23
Description of Software Features	24
System Defaults	28
Initial Switch Configuration	31
Web Configuration	33
Using the Web Interface	35
Navigating the Web Browser Interface	35
Home Page	35
Configuration Options	36
Panel Display	36
Main Menu	36
Configuring the Switch	45
Configuring System Information	45
Setting an IP Address	46
Setting an IPv4 Address	46
Setting an IPv6 Address	48
Configuring NTP Service	50
Configuring the Time Zone and Daylight Savings Time	51
Configuring Remote Log Messages	53
Configuring Power Reduction	54
Reducing Power to Idle Queue Circuits	54
Configuring Port Connections	55
Configuring Security	57
Configuring User Accounts	58
Configuring User Privilege Levels	60
Configuring The Authentication Method For Management Access	61
Configuring SSH	64
Configuring HTTPS	65
Filtering IP Addresses for Management Access	66
Using Simple Network Management Protocol	67
Configuring SNMP System and Trap Settings	68
Setting SNMPv3 Community Access Strings	72
Configuring SNMPv3 Users	73
Configuring SNMPv3 Groups	74
Configuring SNMPv3 Views	75
Configuring SNMPv3 Group Access Rights	76
Remote Monitoring	77
Configuring RMON Statistical Samples	78
Configuring RMON History Samples	78
Configuring RMON Alarms	80
Configuring RMON Events	82
Configuring Port Limit Controls	83
Configuring Authentication Through Network Access Servers	85
Filtering Traffic with Access Control Lists	96
Assigning ACL Policies and Responses	96
Configuring Rate Limiters	98
Configuring Access Control Lists	99
Configuring DHCP Snooping	107
Configuring DHCP Relay and Option 82 Information	109
Configuring IP Source Guard	111
Configuring Global and Port Settings for IP Source Guard	111
Configuring Static Bindings for IP Source Guard	113
Configuring ARP Inspection	114
Configuring Global and Port Settings for ARP Inspection	115
Configuring Static Bindings for ARP Inspection	116
Specifying Authentication Servers	117
Creating Trunk Groups	119
Configuring Static Trunks	120
Configuring LACP	123
Configuring Loop Protection	125
Configuring the Spanning Tree Algorithm	127
Configuring Global Settings for STA	129
Configuring Multiple Spanning Trees	132
Configuring Spanning Tree Bridge Priorities	134
Configuring STP/RSTP/CIST Interfaces	135
Configuring MIST Interfaces	138
Multicast VLAN Registration	140
Configuring General MVR Settings	140
Configuring MVR Channel Settings	143
IGMP Snooping	145
Configuring Global and Port-Related Settings for IGMP Snooping	145
Configuring VLAN Settings for IGMP Snooping and Query	149
Configuring IGMP Filtering	151
MLD Snooping	152
Configuring Global and Port-Related Settings for MLD Snooping	152
Configuring VLAN Settings for MLD Snooping and Query	155
Configuring MLD Filtering	158
Link Layer Discovery Protocol	158
Configuring LLDP Timing and TLVs	159
Configuring LLDP-MED TLVs	162
Power over Ethernet	167
Configuring the MAC Address Table	170
IEEE 802.1Q VLANs	172
Assigning Ports to VLANs	173
Configuring VLAN Attributes for Port Members	174
Using Port Isolation	177
Configuring MAC-based VLANs	177
Protocol VLANs	179
Configuring Protocol VLAN Groups	179
Mapping Protocol Groups to Ports	181
Configuring IP Subnet-based VLANs	182
Managing VoIP Traffic	183
Configuring VoIP Traffic	184
Configuring Telephony OUI	186
Quality of Service	187
Configuring Port Classification	188
Configuring Port Policiers	188
Configuring Egress Port Scheduler	189
Configuring Egress Port Shaper	192
Configuring Port Remarking Mode	193
Configuring Port DSCP Translation and Rewriting	195
Configuring DSCP- based QoS Ingress Classification	196
Configuring DSCP Translation	198
Configuring DSCP Classification	199
Configuring QoS Control Lists	199
Configuring Storm Control	204
Configuring WRED	205
Configuring Congestion Management	206
Configuring Local Port Mirroring	207
Configuring Remote Port Mirroring	208
Configuring UPnP	213
Configuring sFlow	214
Monitoring the Switch	219
Displaying Basic Information About the System	219
Displaying System Information	219
Displaying CPU Utilization	220
Displaying Log Messages	221
Displaying Log Details	223
Displaying Information About Ports	223
Displaying Port Status On the Front Panel	223
Displaying an Overview of Port Statistics	224
Displaying QoS Statistics	224
Displaying QCL Status	225
Displaying Detailed Port Statistics	226
Displaying Information About Security Settings	229
Displaying Access Management Statistics	229
Displaying Information About Switch Settings for Port Security	230
Displaying Information About Learned MAC Addresses	231
Displaying Port Status for Authentication Services	232
Displaying Port Statistics for 802.1X or Remote Authentication Service	233
Displaying ACL Status	237
Displaying Statistics for DHCP Snooping	239
Displaying DHCP Relay Statistics	240
Displaying MAC Address Bindings for ARP Packets	241
Displaying Entries in the IP Source Guard Table	242
Displaying Information on Authentication Servers	243
Displaying a List of Authentication Servers	243
Displaying Statistics for Configured Authentication Servers	244
Displaying Information on RMON	247
Displaying RMON Statistics	247
Displaying RMON Historical Samples	249
Displaying RMON Alarm Settings	250
Displaying RMON Event Settings	251
Displaying Information on LACP	252
Displaying an Overview of LACP Groups	252
Displaying LACP Port Status	252
Displaying LACP Port Statistics	253
Displaying Information on Loop Protection	254
Displaying Information on the Spanning Tree	255
Displaying Bridge Status for STA	255
Displaying Port Status for STA	257
Displaying Port Statistics for STA	258
Displaying MVR Information	259
Displaying MVR Statistics	259
Displaying MVR Group Information	260
Displaying MVR SFM Information	261
Showing IGMP Snooping Information	262
Showing IGMP Snooping Status	262
Showing IGMP Snooping Group Information	263
Showing IPv4 SFM Information	263
Showing MLD Snooping Information	264
Showing MLD Snooping Status	264
Showing MLD Snooping Group Information	266
Showing IPv6 SFM Information	266
Displaying LLDP Information	267
Displaying LLDP Neighbor Information	267
Displaying LLDP-MED Neighbor Information	268
Displaying LLDP Neighbor PoE Information	271
Displaying LLDP Neighbor EEE Information	272
Displaying LLDP Port Statistics	273
Displaying PoE Status	275
Displaying the MAC Address Table	276
Displaying Information About VLANs	277
VLAN Membership	277
VLAN Port Status	278
Displaying Information About MAC-based VLANs	279
Displaying Information About Flow Sampling	280
Performing Basic Diagnostics	283
Pinging an IPv4 or IPv6 Address	283
Running Cable Diagnostics	285
Performing System Maintenance	287
Restarting the Switch	287
Restoring Factory Defaults	288
Upgrading Firmware	288
Activating the Alternate Image	289
Managing Configuration Files	290
Saving Configuration Settings	290
Restoring Configuration Settings	290
Appendices	293
Software Specifications	295
Software Features	295
Management Features	296
Standards	297
Management Information Bases	298
Troubleshooting	299
Problems Accessing the Management Interface	299
Using System Logs	300
License Information	301
The GNU General Public License	301
Glossary	305