Netgear GSM7224v2 7000 Series Managed Switch Administration Guide for Software
Netgear GSM7224v2 - Layer 2 Managed Gigabit Switch Manual
View all Netgear GSM7224v2 manuals
Add to My Manuals
Save this manual to your list of manuals |
Netgear GSM7224v2 manual content summary:
- Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 1
NETGEAR Managed Switches Software Administration Manual, Release 8.0 NETGEAR, Inc. 350 East Plumeria Drive San Jose, CA 95134 202-10515-01 October 2009 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 2
and/or reliability, NETGEAR reserves the right to make changes to the products described in this document without notice. NETGEAR does not assume certain restrictions. Please refer to the notes in the operating instructions. The Federal Office for Telecommunications Approvals has been notified of - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 3
for Operation in the United States Radio Frequency Interference Warnings & Instructions This equipment has been tested and found to comply with the limits OFFICE USE Modifications made to the product, unless expressly approved by NETGEAR, Inc., could void the user's right to operate the equipment. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 4
Manual Conventions, Formats, Scope, and Audience xii Additional Documentation xiii How to Print This Manual Firmware Using the Boot Menu 1-9 Using Ezconfig for Switch Setup 1-10 Using the Web Interface 1-13 Chapter 2 Auto Install Configuration Switch IP Address the Default VLAN for Port 1/0/2 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 5
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Create a Protocol-Based VLAN 3-12 Virtual VLANs: Create an IP Ports on the Switch 5-3 Adding a Default Route 5-6 Adding a Static Route Configure an Inter-Area Router 8-2 Configure OSPF on a Border Router 8-8 Configure Area 1 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 6
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 9 Proxy Address Resolution Protocol (ARP) Proxy ARP Examples ...9-1 Chapter 10 Virtual Router Redundancy Protocol Configure VRRP on a Master Router 10-2 Configure VRRP on a Backup Router ip- Services Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 7
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 14 IGMP Snooping and Querier Enable IGMP Snooping 14-1 Show igmpsnooping ...14-2 Show mac-address-table igmpsnooping 14-3 Configure the Switch with an External Multicast Router DHCP Messages 15-48 IP Source Guard ...15-50 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 8
Interface: Upgrading Firmware 19-16 Chapter 20 SNMP Add a New Community 20-1 Enable SNMP Trap ...20-2 Configure SNMP V3 ...20-3 sFlow ...20-5 Configure Time-Based Sampling of Counters with sFlow 20-9 Chapter 21 DNS Specify Two DNS Servers 21-1 Manually Add a Host Name and an IP Address 21-2 ix - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 9
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 22 DHCP Server Configure a DHCP Server in Dynamic Mode 22-1 Configure a DHCP Reservation 22-3 MLD Configure MLD ...30-1 MLD Snooping ...30-19 Chapter 31 DVMRP Configure DVMRP on a NETGEAR Switch 31-1 x v1.0, October 2009 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 10
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 32 Captive Portal Captive Portal Configuration 32-2 Enable Captive Portal 32-2 Client Access, Authentication, and Control 32-5 Block a Captive Portal Instance 32-5 Local - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 11
conventions Italic Bold Fixed italic Emphasis, books, CDs, file and server names, extensions User input, IP addresses, GUI screen text Command prompt, CLI text, code URL links • Formats. This manual uses the following formats to highlight special messages: Note: This format is used to highlight - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 12
, see the following publications: • The NETGEAR installation guide for your switch • NETGEAR CLI Reference for the Prosafe 7X00 Series Managed Switch. Refer to the Command Line Reference for information for the command structure. There are three documents in this series; choose the appropriate one - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 13
.adobe.com. Tip: If your printer supports printing two pages on a single sheet of paper, you can save paper and printer ink by selecting this feature. Revision History Part Number Version Number Description 202-10515-01 1.0 Product update: New firmware and new user Interface xiv v1.0, October - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 14
available to assign an IP address to the switch via DHCP, the default IP address for the switch is 169.254.100.100. Subnet Subnet mask for the LAN gateway IP address of the default router, if the switch is a node outside the IP range of the LAN MAC Address MAC address of the switch 1-1 v1 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 15
the user name and the password is blank. The switch is installed and loaded with the default configuration. 5. Reduce network traffic by turning off the Network Configuration Protocol. Enter the following command: configure network protocol none 6. Set the IP address, subnet mask, and gateway - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 16
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Subnet Subnet mask for the LAN. The default value is 255.255.255.0. gateway IP address of the default router, if the switch is a node outside the IP range of the LAN. 7. To enable these changes to be retained during a reset of - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 17
NETGEAR Managed Switches Software Administration Manual detects a critical problem, the startup with a default user name and password. All IP address to be assigned to the management interface through which the switch is managed. • The IP subnet mask for the network. • The IP address of the default - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 18
all IP addresses. • Configures the default gateway IP address. Software Installation This section contains procedures to help you become acquainted quickly with the switch software. Before installing switch software, you should verify that the switch operates with the most recent firmware. Quick - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 19
port data • User account management • IP address configuration • Uploading from Networking Device to Out-of-Band PC (Only XMODEM) • Downloading from Out-of-Band PC to Networking Device (Only XMODEM) • Downloading from TFTP Server • Restoring factory defaults If you configure any network parameters - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 20
Protocol - Indicates which network protocol is being used (default: none) for IPv6. • Management VLAN Id - Specifies VLAN id network parms Privileged [gateway] EXEC Sets the IP address, subnet mask and gateway of the router. The IP address and the gateway must be on the same - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 21
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Table 1-1. Quick Start Commands (continued) ://// Before starting a TFTP server download, you must configure the IP address. Sets the destination (download) datatype to be an image. The URL must - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 22
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Table 1-1. login the CLI User EXEC prompt , that means you cannot use the CLI command to download the new firmware to the switch. 8.0 supports load firmware by xmodem and USB. USB is new feature in 8.0 and it downloads firmware - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 23
file from USB flash to switch. Using Ezconfig for Switch Setup Ezconfig is an interactive utility that provides a simplified procedure for setting up the following switch parameters: • Switch management IP address • Switch admin user password • Switch name and location Ezconfig can be entered either - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 24
configured. Do you wish to change it (Y/N/Q)? y Enter new password:******** Confirm new password:******** Password Changed! Setting Up the Switch IP Address After the password for both Admin and Enable mode is changed, you will be prompted to setup the IP 1-11 v1.0, October 2009 Getting Started - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 25
NETGEAR Managed Switches Software Administration Manual, Release 8.0 address of the switch. Assigning an IP address to your switch management Current IP Address Configuration IP address: 0.0.0.0 Subnet mask: 0.0.0.0 Would you like to assign an IP address now (Y/N/Q)? y IP Address: Ezconfig will - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 26
NETGEAR Managed Switches Software Administration Manual support: addresses. To terminate the Web login session, close the web browser. Configuring for Web Access To enable Web access to the switch: 1. Configure the switch for in-band connectivity. The switch Getting Started Guide provides instructions - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 27
these steps to start the switch Web interface: 1. Enter the IP address of the switch in the Web browser address field. 2. When the Login panel is displayed click Login. 3. Enter the appropriate user name and password. The user name and associated password are the same as those used for the terminal - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 28
NETGEAR Managed Switches Software Administration Manual, Release 8.0 The following screen shows an example of the PCC: information for system features and services such as the timer, DNS server, IP address, and system resource usage. Features that relate to Layer 2 services such as VLANs, link - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 29
Software Administration Manual, Release 8.0 Tabs Main tabs Maintenance Help Index Sub tabs Tab Contents Services to perform a firmware upgrade, to save the configuration, and to perform a backup of the configuration. Access to the NETGEAR product support website and documentation. Tthe site - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 30
NETGEAR Managed Switches Software Administration Manual, Release 8.0 4. Enter a new password in the Password field and then retype it in the Confirm Password field. Note: If SNMPv3 Authentication is to be used for this user, the password must be eight or more alphanumeric characters. 5. If you do - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 31
NETGEAR Managed Switches Software Administration Manual Auto Install process requires DHCP to be enabled by default in order for it to be completed. The IP address has not been assigned, the switch issues requests for an IP address assignment. The behavior of BOOTP or DHCP with respect to IP address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 32
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • The IP address of a default gateway (option 3), if needed for IP communication. Some network configurations require the specification of a default gateway through which some IP communication can occur. The default gateway is - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 33
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Obtaining a Config File After obtaining IP addresses for both the switch and the TFTP server, the Auto Install process attempts to download a configuration file. A host-specific configuration file is downloaded, if possible. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 34
NETGEAR Managed Switches Software Administration Manual, Release 8.0 If the switch is unable to map its IP address to a hostname, Auto Install sends TFTP requests for the default configuration file router.cfg. The following table summarizes the config files that may be downloaded, and the order in - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 35
NETGEAR Managed Switches Software Administration Manual, Release 8.0 When Auto Install has been successfully completed, , and then chooses to restart it. This action re-initiates the process for this login session only. It is recommended that this action be performed only when the administrator is - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 36
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Logging A message is logged for each of the following events: 1. The Auto Install component receiving a config file name and other options upon resolving an IP address by DHCP or BOOTP client. The boot options values are logged. 2. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 37
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Configure Auto Install Stacking The downloaded configuration BOOTP server: • The IP address(yiaddr) and subnet mask(option1) • The name of the configuration file (bootfile or option 67) • The IP address of the TFTP server (option - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 38
Switch) #network protocol dhcp Changing protocol mode will reset ip configuration. Are you sure you want to continue? (y/n)y Request an IP address, configuration file name and TFTP IP address from the DHCP server. (Netgear Switch) # Config file 'startup-config' created successfully. AutoInstalled - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 39
NETGEAR Managed Switches Software Administration Manual, Release 8.0 1. From the main menu, select Maintenance > Save Config >Auto Install Configuration. A screen similar to the following displays. Figure 2-2 2. Select Enable in the AutoInstall Mode - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 40
3-12 • "Virtual VLANs: Create an IP Subnet Based VLAN" on page 3-16 • "Voice VLAN" on page 3-19 Adding Virtual LAN (VLAN) support to a Layer 2 switch offers some of tag using its default VLAN ID. A given port may handle traffic for more than one VLAN, but it can only support one default VLAN ID. The - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 41
NETGEAR Managed Switches Software Administration Manual, Release 8.0 use to configure the switch as shown in the diagram. Layer 3 Switch Port 1/0/2 VLAN Router Port 1/3/1 192.150.3.1 Port 1/0/3 VLAN Router Port 1/3/2 192.150.4.1 Port 1/0/1 Layer 2 Switch Layer 2 Switch VLAN 10 VLAN 20 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 42
NETGEAR Managed Switches Software Administration Manual, Release 8.0 1. Create VLAN 2. a. From the main menu, select Switching > VLAN >Basic > VLAN configuration. A screen similar to the following displays. Figure 3-2 b. Enter the following information in - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 43
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • In the VLAN Name field, enter VLAN3 • Select Static in the VLAN Type field. c. Click Add. Assign Ports to VLAN2 This sequence shows how - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 44
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Click the Unit 1. The Ports display. d. Click the gray box under port 1 and 2 until T displays. The T specifies that the egress packet is tagged for - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 45
Switches Software Administration Manual, Release 8.0 CLI: Assigning Ports to VLAN3 (Netgear Switch) (Config)#interface range 1/0/2-1/0/4 (Netgear Switch) (conf-if-range-1/0/2-1/0/4)#vlan participation include 3 (Netgear Switch) (conf-if-range-1/0/2-1/0/4)#exit (Netgear Switch) (Config)#interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 46
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Switching > Default VLAN for Port 1/0/2 (Netgear Switch) #config (Netgear Switch) (Config)#interface 1/0/2 (Netgear Switch) (Interface 1/0/2)#vlan pvid 3 (Netgear Switch) (Interface 1/0/2)#exit (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 47
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Switching > VLAN >Advanced > Port PVID Configuration. A screen similar to the following displays. Figure 3-8 b. Under PVID Configuration, scroll down to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 48
NETGEAR Managed Switches Software Administration Manual, Release 8.0 MAC based VLAN feature allows incoming untagged packets to be assigned to a VLAN and thus classify traffic based on the source MAC address of the packet. A MAC to VLAN mapping is defined by configuring an entry in the MAC to VLAN - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 49
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface Procedure: Assigning a MAC-Based VLAN To use the Web interface to configure the managed switch, proceed as follows: 1. Create VLAN 3. a. From the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 50
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Select 3 in the VLAN ID field. c. Click the Unit 1. The Ports display. d. Click the gray box before the Unit 1until U displays. e. Click Apply 3. Assign - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 51
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Enter the following information in the MAC Based VLAN Configuration. • Enter 00:00:0A:00:00:02 in the MAC Address field. • Enter 3 in the PVID(1 to 4093) field. c. Click Add. Create a Protocol-Based VLAN Create two protocol vlan - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 52
Managed Switches Software Administration Manual, Release 8.0 Enable protocol vlan group 1 and 2 on the interface. (Netgear Switch)(Vlan)#exit (Netgear Switch)#config (Netgear Switch)(Config)#interface 1/0/11 (Netgear Switch)(Interface 1/0/11)#protocol vlan group 1 (Netgear Switch)(Interface 1/0/11 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 53
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Switching > VLAN >Advanced > Protocol Based VLAN Group Configuration. A screen similar to the following displays. Figure 3-15 b. Enter the following - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 54
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Switching > VLAN >Advanced > Protocol Based VLAN Group Membership. A screen similar to the following displays Figure 3-17 b. Select the 1 in - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 55
Software Administration Manual, Release 8.0 Virtual VLANs: Create an IP Subnet Based VLAN In an IP subnet based VLAN, all the end workstations in an IP subnet are classified to the same VLAN. In this VLAN, users can move their workstations without reconfiguring their network addresses. IP subnet - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 56
)# Have all the ports being member of the VLAN 2000. (Netgear Switch) #show mac-addr-table vlan 2000 MAC Address Interface Status 00:00:24:58:F5:56 1/0/1 Learned 00:00:24:59:00:62 1/0/24 Learned Web Interface: Creating an IP Subnet Based VLAN To use the Web interface to configure the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 57
NETGEAR Managed Switches Software Administration Manual, Release 8.0 2. Assign all of the ports to VLAN the following displays. Figure 3-22 b. Enter the following information in the IP Subnet Based VLAN Configuration. • In the IP Address field, enter 10.100.0.0. • In the Subnet Mask field, enter - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 58
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Voice VLAN The voice VLAN feature enables switch ports to carry voice traffic with defined priority so as to enable separation of voice and data traffic coming onto the port. Voice VLAN is to ensure that sound quality of an IP - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 59
Switches Software Administration Manual, Release 8.0 CLI: Configuring Voice VLAN and Prioritizing Voice Traffic Create VLAN 10. (Netgear Switch) #vlan database (Netgear Switch) (Vlan)#vlan 10 (Netgear Switch) (Vlan)#exit Include the ports 1/0/1and 1/0/2 in the VLAN 10. (Netgear Switch) (Config - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 60
Switch) (Config-policy-classmap)#exit Assign it to the interfaces 1/0/1 and 1/0/2. (Netgear Switch) (Config)#interface range 1/0/1-1/0/2 (Netgear Switch) (conf-if-range-1/0/1-1/0/2)# service-policy in PolicyVoiceVLAN Web Interface: Voice VLAN and Prioritizing Voice Traffic 1. Create VLAN 10. a. From - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 61
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. Click Add. At the end of this configuration a screen similar to the following displays. Figure 3-25 2. Include the ports 1/0/1 and 1/0/2 in the VLAN 10. a. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 62
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Select Port 1 and Port 2 as Tagged. A screen similar to the following displays. Figure 3-27 d. Click Apply. 3. Configure Voice VLAN globally. a. From the main menu, - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 63
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Click Apply. A screen similar to the following displays. Figure 3-29 4. Configure Voice VLAN Mode in the interface 1/0/2. a. From the main menu, select Switching > VLAN > - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 64
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > Advanced > Class Configuration. A screen similar to the following displays. Figure 3-31 b. Enter Class Name as ClassVoiceVLAN. c. Select Class - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 65
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Click the class ClassVoiceVLAN. A screen similar to the following displays. Figure 3-34 c. In the DiffServ Class Configuration table, select VLAN. d. Enter VLAN ID as - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 66
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > Advanced > Policy Configuration. A screen similar to the following displays. Figure 3-37 b. Enter Policy Name as PolicyVoiceVLAN. c. Select Policy - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 67
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > Advanced > Policy Configuration. A screen similar to the following displays. Figure 3-39 b. Click the Policy PolicyVoiceVLAN. A screen similar to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 68
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Select Assign Queue as 3. A screen similar to the following displays. Figure 3-41 d. Click Apply. 9. Assign it to the interfaces 1/0/1 and 1/0/2. a. From the main menu, select QoS > Advanced > Service Interface Configuration. A - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 69
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Select Policy Name as PolicyVoiceVLAN. A screen similar to the following displays. Figure 3-43 d. Click Apply. A screen similar to the following displays. Figure 3-44 Virtual LANs v1.0, October 2009 3-30 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 70
Chapter 4 Link Aggregation This chapter includes instructions for configuring Link Aggregation (LAG). The following examples are provided: • "Create Two LAGs" on page 4-2 • "Add the Ports to the LAGs" on page 4-3 • "Enable Both - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 71
Manual, Release 8.0 Create Two LAGs The following figure shows the example network. Port 1/0/3 LAG_10 Subnet 3 Port 1/0/2 Server LAG_10 Layer 3 Switch Port 1/0/8 LAG 20 Port 1/0/9 LAG_20 Layer 2 Switch Subnet 2 Subnet 3 Figure 4-1 CLI: Creating Two LAGs (Netgear Switch) #config (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 72
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Creating Two LAGs To use the Web interface to configure the managed switch, proceed as follows: 1. Create LAG lag_10. a. From the main - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 73
Manual, Release 8.0 CLI: Adding the Ports to the LAGs (Netgear Switch) #config (Netgear Switch) (Config)#interface 0/2 (Netgear Switch) (Interface 0/2)#addport 1/1 (Netgear Switch) (Interface 0/2)#exit (Netgear Switch) (Config)#interface 0/3 (Netgear Switch) (Interface 0/3)#addport 1/1 (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 74
NETGEAR Managed Switches Software Administration Manual, Release 8.0 e. Click Apply to save the settings. 2. Add shown as CLI commands and as a Web interface procedure. CLI: Enabling Both LAGs By default, the system enables link trap notification (Console) #config (Console) (Config)#port-channel - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 75
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Enabling Both LAGs To use the Web interface to configure the switch, proceed as follows: a. From the main menu, select Switching > LAG > - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 76
the Switch" on page 5-3 • "Adding a Default Route" on page 5-6 • "Adding a Static traffic, but had problems coping with large router's IP address is often statically configured in the end station, although the 7000 Series Managed Switch supports protocols such as DHCP that allow the address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 77
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • IP Forwarding, responsible for forwarding received IP packets. • ARP Mapping, responsible for maintaining the ARP Table used to correlate IP and MAC addresses support shown in the diagram. Layer 3 Switch acting as a router Port - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 78
Switches Software Administration Manual, Release 8.0 CLI: Enabling Routing for the Switch Use the following command to enable routing for the switch. Execution of the command enables IP forwarding by default. (Netgear Switch) #config (Netgear Switch) (Config)#ip routing (Netgear Switch) (Config - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 79
Manual, Release 8.0 CLI: Enabling Routing for Ports on the Switch (Netgear Switch) #config (Netgear Switch) (Config)#interface 1/0/2 (Netgear Switch) (Interface 1/0/2)#routing (Netgear Switch) (Interface 1/0/2)#ip address 192.150.2.1 255.255.255.0 (Netgear Switch) (Interface 1/0/2)#exit (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 80
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • In the IP Address field, enter 192.150.2.1. • In the Subnet Mask field, enter 255.255.255.0. • Select Enable in Routing Mode field. d. Click Apply to save the settings. 2. Assign IP address 192.150.3.1/24 to the interface 1/0/3. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 81
based on the destination IP address. The route entry in the route table can either be created dynamically via routing protocols like RIP and OSPF, or can be manually created by the network administrator. The routes created manually is called either static or default route. A default route is used - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 82
NETGEAR Managed Switches Software Administration Manual, Release 8.0 CLI: Add a Default Route (FSM7338S) (Config) #ip route default ? Enter the IP Address of the next router. (FSM7328S) (Config)#ip route default 10.10.10.2 Note that IP subnet "10.10.10.0" should be configured via either - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 83
packets destined for network 10.10.100.0 take the path of routing port. (FSM7328S) #show ip route Total Number of Routes 1 Network Subnet Next Hop Next Hop Address Mask Protocol Intf IP Address 10.10.10.0 255.255.255.0 Local 1/0/3 10.10.10.1 To delete the static route, simply - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 84
NETGEAR Managed Switches Software Administration Manual, Release 8.0 2. Select Static in the Route Type field. 3. Enter Network Address field. Noted this field is expecting a network IP address, not a host IP address remove the route entry, either static or default, simply check the box on the left - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 85
the 7000 Series Managed Switch with some ports supporting VLANs and some supporting routing. You can also configure it to allow traffic on a VLAN to be treated as if the VLAN were a router port. When a port is enabled for bridging (the default) rather than routing, all normal bridge processing is - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 86
NETGEAR Managed Switches Software Administration Manual, Release 8.0 The diagram in this section shows a Managed Switch to provide the VLAN routing support shown in the diagram. Layer 3 Switch Port 1/0/2 VLAN Router Port 1/3/1 192.150.3.1 Port 1/0/3 VLAN Router Port 1/3/2 192.150.4.1 Port 1/0/1 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 87
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Creating Two VLANs To use the Web interface to configure the managed switch, proceed as follows: 1. Create VLAN 10, VLAN20. a. From the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 88
NETGEAR Managed Switches Software Administration Manual, Release 8.0 h. In the VLAN Name field, enter VLAN20. i. Select Static in the VLAN Type field. j. Click Add. 2. Add ports to the VLAN10 and VLAN20. a. From - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 89
NETGEAR Managed Switches Software Administration Manual, Release 8.0 g. Select 20 in the VLAN ID field. h. Click the Unit 1. The Ports display. i. Click the gray box under port 3 until T displays. The T specifies that - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 90
NETGEAR Managed Switches Software Administration Manual, Release 8.0 f. From the main menu, select Switching > VLAN> Advanced > Port PVID Configuraton. A screen similar to the following displays. Figure 6-7 g. Under PVID Configuration, scroll down to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 91
Software Administration Manual, Release 8.0 Enable routing for the switch: (Netgear Switch) #config (Netgear Switch) (Config)#ip routing (Netgear Switch) (Config)#exit The next sequence shows an example of configuring the IP addresses and subnet masks for the virtual router ports. (Netgear Switch - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 92
NETGEAR Managed Switches Software Administration Manual, Release 8.0 4. From the main menu, select Routing > VLAN> VLAN the following information. • Select 10 in the VLAN ID(1 to 4093) field. • In the IP Address field, enter 192.150.4.1. • In the Subnet Mask filed, enter 255.255.255.0. 6. Click - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 93
routers after 180 seconds, and removed from their tables after an additional 120 seconds. There are two versions of RIP: • RIPv1 defined in RFC 1058 - Routes are specified by IP address, reducing network traffic - An authentication method is used for security The 7000 Series Managed Switch supports - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 94
NETGEAR Managed Switches Software Administration Manual, Release 8.0 The configuration commands used in the following example enable RIP on ports 1/0/2 and 1/0/3 as shown in the network illustrated in Figure 7-1 Layer 3 Switch acting as a router Port 1/0/2 192.150.2.2 Port 1/0/5 192.64.4.1 Port - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 95
and assigns IP addresses for ports 1/0/2 and 1/0/3. (Netgear Switch) #config (Netgear Switch) (Config)#interface 1/0/2 (Netgear Switch) (Interface 1/0/2)#routing (Netgear Switch) (Interface 1/0/2)#ip address 192.150.2.1 255.255.255.0 (Netgear Switch) (Interface 1/0/2)#exit (Netgear Switch) (Config - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 96
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Advanced >IP Interface Configuration. A screen similar to the following displays. Figure 7-3 b. Under IP the IP Interface Configuration, enter the following information. • In the IP Address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 97
. • In the IP Address field, enter 192.150.3.1. • In the Subnet Mask, enter 255.255.255.0. • Select Enable in the Routing Mode field. d. Click Apply to save the settings. Enable RIP for the Switch Note: This step can be skipped since the RIP is enabled by default. Routing Information Protocol - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 98
Administration Manual, Release 8.0 CLI: Enabling RIP for the Switch The next sequence enables RIP for the switch. the route preference defaults to 15. (Netgear Switch) #config (Netgear Switch) (Config)#router rip (Netgear Switch) (Config router)#enable (Netgear Switch) (Config router)#exit (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 99
Manual, Release 8.0 but send only RIPv2 formatted frames. (Netgear Switch) #config (Netgear Switch) (Config)#interface 1/0/2 (Netgear Switch) (Interface 1/0/2)#ip rip (Netgear Switch) (Interface 1/0/2)#ip rip receive version both (Netgear Switch) (Interface 1/0/2)#ip rip send version rip2 (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 100
NETGEAR Managed Switches Software Administration Manual, Release 8.0 4. From the main menu, select Routing > RIP > routers after 180 seconds, and removed from their tables after an additional 120 seconds. There are two versions of RIP: • RIPv1 defined in RFC 1058 - Routes are specified by IP - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 101
send RIPv2 packets to the RIPv1 broadcast address. • Prevent any RIP packets from being received • Prevent any RIP packets from being transmitted. This example adds support for RIPv2 to the configuration created in the base VLAN routing example. A second router, using port routing rather than VLAN - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 102
will default to 15. (Netgear Switch) (Config)#router rip (Netgear Switch) (Config router)#enable (Netgear Switch) (Config router)#exit Configure the IP address and subnet mask for a non-virtual router port. (Netgear Switch) (Config)#interface 1/0/5 (Netgear Switch) (Interface 1/0/5)#ip address 192 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 103
Manual, Release 8.0 Enable RIP for the VLAN router ports. Authentication will default to none, and no default route entry will be created. (Netgear Switch) (Config)#interface vlan 10 (Netgear Switch) (Interface vlan 10)#ip rip (Netgear Switch) (Interface vlan 10)#exit (Netgear the IP Address field, - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 104
Manual, Release 8.0 a. From the main menu, select Routing > VLAN > VLAN Routing Wizard. A screen similar to the following displays. Figure 7-10 b. Enter the following information in the VLAN Routing Wizard: • In the Vlan ID field, enter 20. • In the IP Address RIP is enabled by default). a. From the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 105
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > RIP > Advanced>RIP Configuration. A screen similar to the following displays. Figure 7-12 b. Under the Interface Configuration, enter the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 106
divided into areas: intra-area routing is used when a source and destination address are in the same area, and inter-area routing across an OSPF backbone is used when they are not. An inter-area router communicates with border routers in each of the areas to which it provides connectivity. The 7000 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 107
1/0/2 192.150.2.1 Port 1/0/3 192.150.3.1 Border Router Border Router Area 2 Figure 8-1 Area 3 CLI: Configuring an Inter-Area Router Step 1: Enable Routing for the switch. (Netgear Switch) #config (Netgear Switch) (Config)#ip routing (Netgear Switch) (Config)#exit OSPF 8-2 v1.0, October - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 108
Manual, Release 8.0 Step 2: Assign IP addresses for ports. (Netgear Switch) #config (Netgear Switch) (Config)#interface 1/0/2 (Netgear Switch) (Interface 1/0/2)#routing (Netgear Switch) (Interface 1/0/2)#ip address 192.150.2.1 255.255.255.0 (Netgear Switch) (Interface 1/0/2)#exit (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 109
Manual, Release 8.0 1. Enable IP routing on the switch: a. From the main menu, select Routing > IP > IP Configuration. A screen similar to the following displays. Figure 8-2 b. Next to the Routing Mode, select the Enable radio button. c. Click Apply to save the settings. 2. Assign IP address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 110
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. Click Apply to save the settings. 3. Assign IP address 192.150.3.1 to the port 1/0/3: a. From the main menu, select Routing > IP > Advanced> IP information in the IP Interface Configuration: • In the IP Address field, enter 192 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 111
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > OSPF > Advanced> OSPF Configuration. A screen similar to the following displays. Figure 8-5 b. Under the OSPF Configuration, enter the following information: • In the Router ID, enter 192. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 112
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > OSPF > Advanced> Interface Configuration. A screen similar to the following displays. Figure 8-6 b. Under Interface Configuration, scroll down to interface 1/0/2 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 113
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 8-7 b. Under Interface Configuration, Cost field, enter 64. c. Click Apply to save the settings. Configure OSPF on a Border Router The example is shown as CLI commands and as a Web interface procedure. For an OSPF example - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 114
.130.3.1 255.255.255.0 (Netgear Switch) (Interface 1/0/3)#exit (Netgear Switch) (Config)#interface 1/0/4 (Netgear Switch) (Interface 1/0/4)#routing (Netgear Switch) (Interface 1/0/4)#ip address 192.64.4.1 255.255.255.0 (Netgear Switch) (Interface 1/0/4)#exit Specify the router ID and enable OSPF for - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 115
Administration Manual, Release 8.0 (Netgear Switch) (Config)#interface 1/0/4 (Netgear Switch) (Interface 1/0/4)#ip ospf (Netgear Switch) (Interface 1/0/4)#ip ospf areaid 0.0.0.2 (Netgear Switch) (Interface 1/0/4)#ip ospf priority 255 (Netgear Switch) (Interface 1/0/4)#ip ospf cost 64 (Netgear Switch - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 116
Manual, Release 8.0 Figure 8-9 b. Under IP Interface Configuration, scroll down to interface 1/0/2 and select the checkbox for that interface. Now 1/0/2 appears in the Interface field at the top. c. Enter the following information in the IP Interface Configuration: • In the IP Address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 117
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Enter the following information in the IP Interface Configuration: • In the IP Address field, enter 192.130.3.1. • In the Network Mask field, enter 255.255.255.0. • Select Enable in the Admin Mode field. d. Click Apply to save - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 118
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 8-12 b. Under the OSPF Configuration, enter the following information: • In the Router ID, enter 192.130.1.1. • Select the Enable in the OSPF Admin Mode field. • Select the Disable in the RFC 1583 Compatibility field. c. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 119
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Under Interface Configuration, scroll down to interface 1/0/2 and select the checkbox for that interface. Now 1/0/2 appears in the Interface field at the top. • In - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 120
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 8-15 b. Under Interface Configuration, scroll down to interface 1/0/4 and select the checkbox for that interface. Now 1/0/4 appears in the Interface field at the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 121
the area 0.0.0.1. (Netgear Switch) (Config-router)#no area 0.0.0.1 stub summarylsa (Netgear Switch) (Config-router)#exit Enable OSPF area 0 on the 2/0/11. (Netgear Switch) (Config)#interface 2/0/11 (Netgear Switch) (Interface 2/0/11)#routing (Netgear Switch) (Interface 2/0/11)#ip address 192.168.10 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 122
Software Administration Manual, Release 8.0 (Netgear Switch) (Config)#ex (Netgear Switch) #show ip ospf neighbor interface all Router ID IP Address Neighbor Interface State 4.4.4.4 192.168.10.2 2/0/11 Full 2.2.2.2 192.168.20.2 2/0/19 Full (Netgear Switch) #show ip route Total - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 123
Manual, Release 8.0 Figure 8-18 b. Under IP Interface Configuration, scroll down to interface 2/0/11 and select the checkbox for that interface. 2/0/11 now appears in the Interface field at the top. c. Enter the following information in the IP Interface Configuration: • In the IP Address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 124
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • In the IP Address field, enter 192.168.20.1. • In the Network Mask field, enter 255.255.255.0. • Select Enable in the Admin Mode field. d. Click Apply to save the settings. 4. Specify the Router ID and Enable OSPF for the switch. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 125
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Under Interface Configuration, scroll down to interface 2/0/11 and select the checkbox for that interface. 2/0/11 now appears in the Interface field at the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 126
15. (Netgear Switch) (Config-router)#exit (Netgear Switch) (Config-router)#exit (Netgear Switch) (Config)#interface 1/0/15 (Netgear Switch) (Interface 1/0/15)#routing (Netgear Switch) (Interface 1/0/15)#ip address 192.168.20.2 (Netgear Switch) (Interface 1/0/15)#ip ospf (Netgear Switch) (Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 127
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Configuring Area 1 as a Stub Area on A2 To use the Web interface to configure OSPF on the switch, proceed as follows: 1. Enable IP routing on the switch. a. From the main menu, select Routing > IP > IP Configuration. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 128
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Select Enable in the Admin Mode field. d. Click Apply to save the settings. 3. Specify the Router ID and Enable OSPF for the switch a. From the main menu, select Routing > OSPF > Basic> OSPF Configuration. A screen similar to the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 129
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Click Apply to save the settings. 5. Configure area 0.0.0.1 as a stub area. a. From the main menu, select Routing > OSPF > Advanced> Stub Area Configuration. A screen similar - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 130
0.0.0.1 on the 2/0/19. (Netgear Switch) (Config-router)#exit (Netgear Switch) (Config)#interface 2/0/11 (Netgear Switch) (Interface 2/0/11)#routing (Netgear Switch) (Interface 2/0/11)#ip address 192.168.10.1 255.255.255.0 (Netgear Switch) (Interface 2/0/11)#ip ospf (Netgear Switch) (Interface 2/0/11 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 131
Managed Switches Software Administration Manual, Release 8.0 (Netgear Switch) (Interface 2/0/19)#exit (Netgear Switch) (Config)#exit (Netgear Switch) #show ip route Total Number of Routes 2 Network Subnet Next Hop Address Mask Protocol Intf 14.1.1.0 255.255.255.0 OSPF Inter 2/0/11 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 132
Manual, Release 8.0 Figure 8-31 b. Under IP Interface Configuration, scroll down to interface 2/0/11 and select the checkbox for that interface. 2/0/11 now appears in the Interface field at the top. c. Enter the following information in the IP Interface Configuration: • In the IP Address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 133
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • In the IP Address field, enter 192.168.20.1. • In the Subnet Mask field, enter 255.255.255.0. • Select Enable in the Admin Mode field. d. Click Apply to save the settings. 4. Specify the Router ID and Enable OSPF for the switch. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 134
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Under Interface Configuration, scroll down to interface 2/0/11 and select the checkbox for that interface. 2/0/11 now appears in the Interface field at the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 135
0.0.0.1 on the 1/0/15. (Netgear Switch) (Config-router)#exit (Netgear Switch) (Config)#interface 1/0/11 (Netgear Switch) (Interface 1/0/11)#routing (Netgear Switch) (Interface 1/0/11)#ip address 192.168.30.1 255.255.255.0 (Netgear Switch) (Interface 1/0/11)#ip rip (Netgear Switch) (Interface 1/0/11 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 136
Managed Switches Software Administration Manual, Release 8.0 (Netgear Switch) (Interface 1/0/15)#exit (Netgear Switch) (Config)#exit (Netgear Switch) #show ip route Total Number of Routes 6 Network Subnet Next Hop Address Mask Protocol Intf 0.0.0.0 0.0.0.0 OSPF Inter 1/0/15 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 137
Manual, Release 8.0 Figure 8-38 b. Under IP Interface Configuration, scroll down to interface 1/0/11 and select the checkbox for that interface. Now 1/0/11 appears in the Interface field at the top. c. Enter the following information in the IP Interface Configuration: • In the IP Address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 138
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Enter the following information in the IP Interface Configuration: • In the IP Address b. Under the OSPF Configuration, enter the following information: In the Router ID, enter 2.2.2.2. c. Click Apply to save the settings. 5. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 139
NETGEAR Managed Switches Software Administration Manual, Release 8.0 6. Enable OSPF on the port 1/0/15. a. From the main menu, select Routing > OSPF > Advanced> Interface Configuration. A screen similar to the following displays. Figure 8-42 b. Under IP Interface Configuration, scroll down to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 140
NETGEAR Managed Switches Software Administration Manual, Release 8.0 8. Redistribute the RIP routes into the OSPF area and destination address are in the same area, and inter-area routing across an OSPF backbone is used when they are not. An inter-area router communicates with border routers in each - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 141
)#ip address 192.150.4.1 255.255.255.0 (Netgear Switch) (Interface vlan 20)#exit Specify the router ID and enable OSPF for the switch. (Netgear Switch) (Config)#router ospf (Netgear Switch) (Config router)#router-id 192.150.9.9 (Netgear Switch) (Config router)#enable (Netgear Switch) (Config router - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 142
Managed Switches Software Administration Manual, Release 8.0 Enable OSPF for the VLAN and physical router ports. (Netgear Switch) (Config)#interface vlan 10 (Netgear Switch) (Interface vlan 10)#ip ospf areaid 0.0.0.2 (Netgear Switch) (Interface vlan 10)#ip ospf (Netgear Switch) (Interface vlan 10 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 143
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Enter the following information in the VLAN Routing Wizard. • In the Vlan ID field, enter 10. • In the IP Address field, enter 192.150.3.1. • In the Network Mask field, enter 255.255.255.0. c. Click Unit 1. The ports display: - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 144
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 8-47 b. Next to the OSPF Admin Mode, select Enable Radio button. c. Enter 192.150.9.9 in the Router the VLANS to show all the VLAN interfaces. c. Under IP Interface Configuration, scroll down to interface 0/2/1 and select the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 145
NETGEAR Managed Switches Software Administration Manual, Release 8.0 5. Enable OSPF on the VLAN 20. a. From the main including the following: peering is done via link-local addresses; the protocol is link-based rather than network-based; and addressing semantics have been moved to leaf LSAs, which - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 146
and assign 1.1.1.1 to router ID. (Netgear Switch) (Config)#ipv6 router ospf (Netgear Switch) (Config-rtr)#enable (Netgear Switch) (Config-rtr)#router-id 1.1.1.1 (Netgear Switch) (Config-rtr)#exit Enable routing mode on the interface 1/0/1 and assign 2000::1 to IPv6 address. (Netgear Switch) (Config - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 147
assign 2.2.2.2 to router ID. (Netgear Switch) (Config)#ipv6 router ospf (Netgear Switch) (Config-rtr)#enable (Netgear Switch) (Config-rtr)#router-id 2.2.2.2 (Netgear Switch) (Config-rtr)#exit Enable routing mode on the interface 1/0/13 and assign 2000::2 to IPv6 address. (Netgear Switch) (Config - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 148
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IPv6 > displays. Figure 8-52 b. Under the OSPF Configuration, enter the following information: • In the Router ID, enter 1.1.1.1 • Next to the Admin Mode, select the Enable radio button. c. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 149
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IPv6 > Advanced> IP Interface the settings. 4. Assign IP address 2001::1 to the port 1/0/1. a. From the main menu, select Routing > IPv6 > Advanced> IP Interface Configuration. A screen - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 150
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Enter the following information in the IPv6 Interface Configuration. A screen similar to the following displays. Figure 8-55 b. Under IP Interface Configuration, scroll down to interface 1/0/1 and select the checkbox for that - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 151
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 8-56 To use the Web interface to configure OSPF on the switch A2, refer to the configuration of switch A1. OSPF v1.0, October 2009 8-46 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 152
Address Resolution Protocol (ARP) feature. • Proxy ARP allows a router to answer ARP requests where the target IP address is not the router itself but a destination that the router can reach • If a host does not know the default IP configuration settings for all ports. (Netgear Switch) #show ip - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 153
Managed Switches Software Administration Manual, Release 8.0 CLI: ip proxy-arp (Netgear Switch) (Interface 0/24)#ip proxy-arp ? Press Enter to execute the command. (Netgear Switch) (Interface 0/24)#ip proxy-arp Web Interface: Configuring Proxy ARP on a Port To use the Web interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 154
with static default routes by enabling a backup router to take over from a "master" router without affecting the end stations using the route. The end stations will use a "virtual" IP address that will be recognized by the backup router if the master router fails. Participating routers use an - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 155
VRRP on a 7000 Series Managed Switch acting as the master router: Enable routing for the switch. IP forwarding will then be enabled by default. (Netgear Switch) #config (Netgear Switch) (Config)#ip routing Configure the IP addresses and subnet masks for the port that will participate in the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 156
Managed Switches Software Administration Manual, Release 8.0 Enable VRRP on the port. (Netgear Switch) (Interface 1/0/2)#ip vrrp 20 mode (Netgear Switch) (Interface 1/0/2)#exit (Netgear Switch) (Config)#exit Web Interface: Configuring VRRP on a Master Router To use the Web interface to configure - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 157
(1 to 255) field, enter 20. • Select 1/0/2 in the Interface field. • In the Primary IP Address, enter 192.150.2.1. • Select Active in the Mode field. d. Click Apply to save the settings. Configure VRRP on a Backup Router The example is shown as CLI commands and as a Web interface procedure. Virtual - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 158
VRRP on a 7000 Series Managed Switch acting as the backup router: Enable routing for the switch. IP forwarding will then be enabled by default. (Netgear Switch) #config (Netgear Switch) (Config)#ip routing Configure the IP addresses and subnet masks for the port that will particpate in the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 159
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Configuring VRRP on a Backup Router To use the Web interface to configure VRRP on a backup router on the switch, proceed as follows: 1. Enable IP routing on the switch. a. From the main menu, select Routing > IP > IP - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 160
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • In the Network Mask field, enter 255.255.0.0. • Virtual Router Configuration: • In the VRID(1 to 255) field, enter 20. • Select 1/0/4 in the Interface field. • In the Priority(1 to 255), enter 254. • In the Primary IP Address, - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 161
system supports ACLs set up for inbound traffic only. MAC ACLs MAC ACLs are Layer 2 ACLs. You can configure the rules to inspect the following fields of a packet (limited by platform): • Source MAC address with mask • Destination MAC address with mask • VLAN ID (or range of IDs) • Class of Service - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 162
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Ethertype - Secondary CoS (802.1p) - and may apply to one or more of the following fields within a packet: • Source IP address • Destination IP address • Source Layer 4 port • Destination Layer 4 port • ToS byte • Protocol number - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 163
support on a 7000 Series Managed Switch. Create ACL 101. Define the first rule: the ACL will permit packets with a match on the specified source IP address that are sent to the specified destination IP address. CLI Commands (Netgear Switch) #config (Netgear Switch) (Config)#access-list 101 permit - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 164
Only traffic matching the criteria will be accepted. (Netgear Switch) (Config)#interface 1/0/2 (Netgear Switch) (Interface 1/0/2)#ip access-group 101 in (Netgear Switch) (Interface 1/0/2)#exit (Netgear Switch) (Config)#exit Web Interface: Setting up an IP ACL with Two Rules To use the Web interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 165
NETGEAR Managed Switches Software Administration Manual, Release 8.0 following displays. Figure 11-3 b. Next to ACL ID, select 101. c. Click Add to create a new rule. 3. Create a new ACL rule and add it to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 166
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Select TCP in the Protocol Type field. • In the Source IP Address, enter 192.168.77.0. • In the Source IP Mask, enter 0.0.0.255. • In the Destination IP Address, enter 192.178.77.0. • In the Destination IP Mask, enter 0.0.0.255. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 167
NETGEAR Managed Switches Software Administration Manual, Release 8.0 to the following displays. Figure 11-6 b. Enter the following information in the IP Binding Configuration. • Select 101 in the ACL ID field. • In the Sequence Number field, enter 1. c. Click the Unit 1. The Ports display. d. Click - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 168
NETGEAR Managed Switches Software Administration Manual, Release IP address 192.168.30.1/24. (Netgear Switch) #vlan database (Netgear Switch) (Vlan)#vlan 30 (Netgear Switch) (Vlan)#vlan routing 30 (Netgear Switch) (Vlan)#exit (Netgear Switch) #config (Netgear Switch) (Config)#interface 0/35 (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 169
44)#vlan participation include 200 (Netgear Switch) (Interface 0/44)#exit (Netgear Switch) (Config)#interface vlan 200 (Netgear Switch) (Interface-vlan 200)#routing (Netgear Switch) (Interface-vlan 200)#ip address 192.168.200.1 255.255.255.0 (Netgear Switch) (Interface-vlan 200)#exit Add two static - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 170
: Create VLAN 40 with port 1/0/24 and assign IP address 192.168.40.1/24. (Netgear Switch) #vlan database (Netgear Switch) (Vlan)#vlan 40 (Netgear Switch) (Vlan)#vlan routing 40 (Netgear Switch) #configure (Netgear Switch) (Config)#interface 1/0/24 (Netgear Switch) (Interface 1/0/24)#vlan pvid 40 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 171
1/0/48)#vlan participation include 200 (Netgear Switch) (Interface 1/0/48)#exit (Netgear Switch) #interface vlan 200 (Netgear Switch) (Interface-vlan 200)#routing (Netgear Switch) (Interface-vlan 200)#ip address 192.168.200.2 255.255.255.0 (Netgear Switch) (Interface-vlan 200)#exit Add two static - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 172
Software Administration Manual, Release 8.0 a. From the main menu, select Routing > VLAN > VLAN Routing Wizard. A screen similar to the following displays. Figure 11-8 b. Enter the following information in the VLAN Routing Wizard: • In the Vlan ID field, enter 30. • In the IP Address field, enter - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 173
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 11-9 b. Enter the following information in the VLAN Routing Wizard: • In the Vlan ID field, enter 100. • In the IP Address to save VLAN 100. 3. Create VLAN 200 with IP address 192.168.200.1/24: a. From the main menu, select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 174
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 11-10 b. Enter the following information in the VLAN Routing Wizard: • In the Vlan ID field, enter 200. • In the IP Address field, enter 192.168.200.1. • In the Network Mask field, enter 255.255.255.0. c. Click Unit 1. The - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 175
enter 192.168.40.0. • In the Subnet Mask field, enter 255.255.255.0. • In the Next Hop IP Address field, enter 192.168.200.2. c. Click Add. 6. Create a static route with IP address 192.168.50.0/24: a. From the main menu, select Routing > Routing Table > Basic > Route Configuration. A screen similar - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 176
the following information: • Select Static in the Route Type field. • In the Network Address field, enter 192.168.50.0. • In the Subnet Mask field, enter 255.255.255.0. • In the Next Hop IP Address field, enter 192.168.200.2. c. Click Add. 7. Create an ACL with ID 101. a. From the main menu, select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 177
NETGEAR Managed Switches Software Administration Manual, Release 8.0 8. Create an ACL with ID 102: a. From the main menu, select Security > ACL > Advanced > IP ACL. A screen similar to the following displays. Figure 11-15 b. In the IP ACL ID field of the IP ACL Table, enter 102. c. Click Add. 9. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 178
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Click Add. The Extended ACL Rule the settings. 10. Add and configure an IP extended rule that is associated with ACL 102: a. From the main menu, select Security > ACL > Advanced > IP Extended Rules. A screen similar to the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 179
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 11-18 b. Under IP Extended Rules, select 102 in the the Permit radio button. • Select False in the Match Every field. • Select IP in the Protocol Type field. e. Click Apply to save the settings. Access Control Lists (ACLs) - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 180
NETGEAR Managed Switches Software Administration Manual, Release 8.0 11. Apply ACL 101 to port 44. a. From the main menu, select Security > ACL > Advanced > IP Binding Configuration. A screen similar to the following displays. Figure 11-20 b. Under Binding Configuration, make the following - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 181
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 11-21 b. Under Binding Configuration, make use the Web interface to configure the GSM7352S, proceed as follows: 1. Create VLAN 40 with IP address 192.168.40.1/24. a. From the main menu, select Routing > VLAN > VLAN Routing - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 182
NETGEAR Managed Switches Software Administration Manual, Release 8.0 following displays. Figure 11-22 b. Enter the following information in the VLAN Routing Wizard: • In the Vlan ID field, enter 40. • In the IP Address field, enter 192.168.40.1. • In the Network Mask field, enter 255.255.255.0. c. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 183
NETGEAR Managed Switches Software Administration Manual, Release 8.0 2. Create VLAN 50 with IP address 192.168.50.1/24: a. From the main menu, select Routing > e. Click Apply to save VLAN 50. 3. Create VLAN 200 with IP address 192.168.200.2/24: Access Control Lists (ACLs) v1.0, October 2009 11-23 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 184
Manual, Release 8.0 a. From the main menu, select Routing > VLAN > VLAN Routing Wizard. A screen similar to the following displays. Figure 11-24 b. Enter the following information in the VLAN Routing Wizard: • In the Vlan ID field, enter 200. • In the IP Address field, enter 192.168.200 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 185
enter 192.168.100.0. • In the Subnet Mask field, enter 255.255.255.0. • In the Next Hop IP Address field, enter 192.168.200.1. c. Click Add. 5. Create a static route with IP address 192.168.30.0/24: a. From the main menu, select Routing > Routing Table > Basic > Route Configuration. A screen similar - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 186
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Under Configure Routes, make the following selection and enter the following information: • Select Static in the Route Type field. • In the Network Address In the Next Hop IP Address field, enter 192.168.200.1. c. Click Add. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 187
1/0/48 to it, and assign IP address 192.168.48.1 to it. (Netgear Switch) #vlan database (Netgear Switch) (Vlan)#vlan 48 (Netgear Switch) (Vlan)#vlan routing 48 (Netgear Switch) (Vlan)#exit (Netgear Switch) #config (Netgear Switch) (Config)#interface 1/0/48 (Netgear Switch) (Interface 1/0/48)#vlan - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 188
) (Config)#interface vlan 38 (Netgear Switch) (Interface-vlan 38)#routing (Netgear Switch) (Interface-vlan 38)#ip address 10.100.5.34 255.255.255.0 (Netgear Switch) (Interface-vlan 38)#exit Enable IP routing on the switch. (Netgear Switch) (Config)#ip routing Add a default route so that all the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 189
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Configuring a One-Way Access Using a TCP Flag in an ACL To use the Web interface to isolate VLANs on a Layer 3 switch by using ACLs, proceed as follows: 1. Create VLAN 24 with IP address 192.168.24.1: a. From the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 190
Software Administration Manual, Release 8.0 a. From the main menu, select Routing > VLAN > VLAN Routing Wizard. A screen similar to the following displays. Figure 11-29 b. Enter the following information in the VLAN Routing Wizard: • In the Vlan ID field, enter 48. • In the IP Address field, enter - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 191
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 11-30 b. Enter the following information in the VLAN Routing Wizard: • In the Vlan ID field, enter 38. • In the IP Address field, enter 10.100.5.34. • In the Network Mask field, enter 255.255.255.0. c. Click Unit 1. The - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 192
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Under IP Configuration, make the following selections: • Next to Routing Mode, select the Enable radio button. • Next to IP Forwarding Mode, select the Enable radio button. c. Click Apply to enable IP Routing. 5. Create an ACL - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 193
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. In the IP ACL ID field of the IP ACL Table, enter 102. c. Click Add. 7. Create an ACL with ID 103: a. From the main menu, select Security > ACL > Advanced > IP ACL. A screen similar to the following displays. Figure 11-34 b. In - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 194
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Click Add. The Extended ACL • In the Destination IP Address field, enter 192.168.24.0. • In the Destination IP Mask field, enter 0.0.0.255. e. Click Apply to save the settings. 9. Add and configure an IP extended rule that is - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 195
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 11-37 b. Under IP Extended Rules, select 102 in Select False in the Match Every field. • In the Destination IP Address field, enter 192.168.48.0. • In the Destination IP Mask field, enter 0.0.0.255. e. Click Apply to save the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 196
NETGEAR Managed Switches Software Administration Manual, Release 8.0 10. Add and configure an IP extended rule that is associated with ACL 103: a. From the main menu, select Security > ACL > Advanced > IP Extended Rules. A screen similar to the following displays. Figure 11-39 b. Under IP Extended - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 197
NETGEAR Managed Switches Software Administration Manual, Release 8.0 11. Apply ACL 102 to port 24: a. From the main menu, select Security > ACL > Advanced > IP Binding Configuration. A screen similar to the following displays. Figure 11-41 b. Under Binding Configuration, make the following - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 198
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 11-42 b. Under Binding Configuration, make a. From the main menu, select Security > ACL > Advanced > IP Binding Configuration. A screen similar to the following displays. 11-38 v1.0, October 2009 Access Control Lists (ACLs - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 199
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 11-43 b. Under Binding Configuration MAC ACL with Two Rules Create a new MAC ACL acl_bpdu. (Netgear Switch) # (Netgear Switch) #config (Netgear Switch) (Config)#mac access-list extended acl_bpdu Access Control Lists (ACLs) - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 200
Managed Switches Software Administration Manual, Release 8.0 Deny all the traffic which has destination MAC 01:80:c2:xx:xx:xx. (Netgear Switch) (Config-mac-access-list)#deny any 01:80:c2:00:00:00 00:00:00:ff:ff:ff Permit all the other traffic. (Netgear Switch) (Config-mac-access-list)#permit any - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 201
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > ACL >MAC ACL> MAC Rules. A screen similar to the following displays. Figure 11-45 a. Select acl_bpdu in the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 202
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. Select acl_bpdu in the ACL Name field. b. Enter the following information in the Rule Table. • In the ID field, enter 2. • Select the Permit in - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 203
NETGEAR Managed Switches Software Administration Manual, Release 8.0 ACL Mirroring This feature extends the existing port mirroring functionality by allowing to mirror a desired traffic stream in an interface. It helps to mirror - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 204
monitorHost 2 inbound Interface(s 1/0/1 VLAN(s (Netgear Switch) #show ip access-lists monitorHost ACL Name: monitorHost Inbound Interface(s): 1/0/1 Rule Number: 1 Action permit Match All FALSE Protocol 255(ip) Source IP Address 10.0.0.1 Source IP Mask 0.0.0.0 Mirror Interface 1/0/19 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 205
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Configuring ACL Mirroring To use the Web interface to configure IP ACL on a port on the switch, proceed as follows: 1. Create an IP access control list with the name monitorHost on the switch: a. From the main menu, - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 206
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > ACL > Advanced > IP Extended Permit. e. Select Mirror Interface as 1/0/19. f. Enter Src IP address as 10.0.0.1. g. Enter Src IP Mask as 0.0.0.0. h. Click Apply. At the end of this - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 207
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > ACL > Advanced > IP Extended Rules. A screen similar to the following displays Figure 11-53 b. Click Add and a screen similar to the following displays. Figure 11-54 c. Enter the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 208
NETGEAR Managed Switches Software Administration Manual, Release 8.0 4. Bind the ACL with the interface 1/0/1. a. From the main menu, select Security > ACL > Advanced > IP Binding Configuration. A screen similar to the following displays. Figure 11-56 b. Enter Sequence Number as 1. c. Click Unit 1 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 209
NETGEAR Managed Switches Software Administration Manual, Release 8.0 ACL Redirect This feature redirects a desired 1/0/19. CLI: Redirecting a Traffic Stream Create a IP Access Control List with the name redirectHTTP. (Netgear Switch) (Config)#ip access-list redirectHTTP Define a rule to match the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 210
Managed Switches Software Administration Manual, Release 8.0 Bind the ACL with the interface 1/0/1. (Netgear Switch) (Interface 1/0/1)#ip access-group redirectHTTP in 1 View the configuration. (Netgear Switch) # show ip access-lists Current number of ACLs: 1 Maximum number of ACLs: 100 ACL - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 211
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > ACL > Advanced > IP ACL. A screen similar to the following displays. Figure 11-59 b. In the IP ACL filed enter redirectHTTP. c. Click Add to create the IP ACL redirectHTTP. At the end of - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 212
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > ACL > Advanced > IP Extended Rules. A screen similar to the following displays. Figure 11-61 b. Click Add to take the Extended ACL Rule Configuration screen similar to the following - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 213
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > ACL > Advanced > IP Extended Rules. A screen similar to the following displays. Figure 11-63 b. Click Add to take the Extended ACL Rule Configuration screen similar to the following - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 214
NETGEAR Managed Switches Software Administration Manual, Release 8.0 f. Click Apply. At the end of this configuration a screen similar to the following displays. Figure 11-65 4. Bind the ACL with the interface 1/0/1. a. From the main menu, select Security > ACL > Advanced > IP Binding Configuration. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 215
NETGEAR Managed Switches Software Administration Manual, Release 8.0 e. Click Apply. At the end of this configuration a screen similar to the following displays. Figure 11-67 Configure IPv6 ACLs This feature extends the existing IPv4 ACL by providing support for IPv6 packet classification. IPv6 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 216
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Interface 1/0/1 GSM73xxS 2001:0DB8:c0ab: List with the name ipv6-acl. IPv6 HTTP traffic IPv6 Telnet traffic IPv6 Any other traffic (Netgear Switch) (Config)# ipv6 access-list ipv6-acl Define three rules to: • Permit ANY IPv6 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 217
Interface(s) VLAN(s) ipv6-acl 3 inbound 1/0/1 (Netgear Switch) #show ipv6 access-lists ipv6-acl ACL Name: ipv6-acl Inbound Interface(s): 1/0/1 Rule Number: 1 Action permit Protocol 255(ipv6) Source IP Address 2001:DB8:C0AB:AC11::/64 Destination IP Address 2001:DB8:C0AB:AC14::/64 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 218
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Configuring an IPv6 ACL 1. Create the Access Control List with the name ipv6-acl a. From the main menu, select Security > ACL > Advanced > - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 219
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > ACL > Advanced > IPv6 Rules. A screen similar to the following displays. Figure 11-71 b. Select the ACL Name as - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 220
NETGEAR Managed Switches Software Administration Manual, Release 8.0 j. Click Apply. 3. Add Rule 2. a. Enter Rule ID as 2. b. Select Action as Permit. c. Select Protocol Type as TCP. d. Enter Source Prefix as 2001:DB8:C0AB: - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 221
NETGEAR Managed Switches Software Administration Manual, Release 8.0 f. Select Source L4 Port as http. A screen similar to the following displays. Figure 11-74 g. Click Apply. 5. Apply the rules to inbound traffic on - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 222
NETGEAR Managed Switches Software Administration Manual, Release 8.0 f. Click Apply. At the end of this configuration a screen similar to the following displays. Figure 11-76 6. View the binding table. From the main - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 223
This section describes the Class of Service (CoS) Queue Mapping and Traffic Shaping features. In this chapter, the following examples are provided: • "Show classofservice Trust" on page 12-3 • "Set classofservice trust Mode" on page 12-3 • "Show classofservice ip-precedence Mapping" on page 12 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 224
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Can only have one trust field at a time - per port. - 802.1p User Priority (default trust mode - Managed through Switching configuration) - IP Precedence - IP DiffServ Code Point (DSCP) The system can assign service level based - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 225
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Tail Drop parameters, Threshold Per-Interface Basis • Queue management type, Tail Drop vs. WRED Only if per queue config is not supported • WRED Decay Exponent • Traffic Shaping for an entire interface Show classofservice Trust - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 226
Switches Software Administration Manual, Release 8.0 CLI: Setting classofservice Trust Mode (Netgear Switch) (Config)#classofservice? dot1p-mapping ip-dscp-mapping trust Configure dot1p priority mapping. Maps an IP DSCP value to an internal traffic class. Sets the Class of Service Trust Mode of - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 227
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Show classofservice ip-precedence Mapping The example is shown as CLI commands and as a Web interface procedure. CLI: Showing classofservice ip-precedence Mapping (Netgear Switch) #show classofservice ip-precedence-mapping IP - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 228
NETGEAR Managed Switches Software Administration Manual, Release 8.0 5. The IP precedence to queue mapping of the interface is displayed. Configure Cos-queue Min-bandwidth and 1. Set min bandwidth 15 to the queue 0 of the interface 1/0/2. 12-6 v1.0, October 2009 Class of Service (CoS) Queuing - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 229
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > Advanced >Interface Queue Configuration. A screen similar to the the queue 1 of the interface 1/0/2 and set the scheduler type to strict. Class of Service (CoS) Queuing v1.0, October 2009 12-7 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 230
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > Advanced > Class of Service Trust Mode of an Interface to IP DSCP. (Netgear Switch) (Interface 1/0/3)#classofservice trust dot1p? Press Enter to execute the command. (Netgear Switch) - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 231
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Note: The Traffic Class value range is instead of because queue 7 is reserved in for all interfaces (Global Config) or for a single interface (Interface Config). Class of Service (CoS) Queuing v1.0, October 2009 12-9 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 232
NETGEAR Managed Switches Software Administration Manual, Release 8.0 The value is a percentage that ranges from 0 to 100 in increments of 5. The default bandwidth value is 0, meaning no upper limit is the following displays. Figure 12-7 12-10 v1.0, October 2009 Class of Service (CoS) Queuing - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 233
Manual, Release 8.0 b. Under CoS Interface Configuration, scroll down to interface 1/0/3 and select the 1/0/3 checkbox. Now 1/0/3 appears in the Interface field at the top. c. In the Interface Shaping Rate(0 to 100) field, enter 70. d. Click the Apply to save the settings. Class of Service - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 234
Service (QoS) policies. Using DiffServ in your network allows you to directly configure the relevant parameters on the switches and routers Services Code Point (DSCP) added to a packet's IP header support DiffServ in the outbound direction. Rules are defined in terms of classes, policies and services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 235
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Policy. Defines the QoS attributes for one or more traffic classes. An example of an attribute is the ability to mark a packet at ingress. The 7000 Series Managed Switch supports a Traffic Conditions Policy. This type of policy - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 236
Manual, Release 8.0 Ensure DiffServ operation is enabled for the switch. (Netgear Switch) #config (Netgear Switch) (Config)#diffserv Create a DiffServ class of type "all" for each of the departments, and name them. Define the match criteria - Source IP address -- for the new classes. (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 237
Managed Switches Software Administration Manual, Release 8.0 Attach the defined policy to interfaces 1/0/1 through 1/0/4 in the inbound direction. (Netgear Switch) (Config)#interface 1/0/1 (Netgear Switch) (Interface 1/0/1)#service-policy in internet_access (Netgear Switch) (Interface 1/0/1)#exit - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 238
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ >Basic >DiffServ Configuration. A screen similar to the following Class Type field. c. Click Add to create a new class finance_dept. 13-5 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 239
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. Click the finance_dept to configure this class. Figure 13-4 e. Under the Diffserv Class Configuration page, enter the following information: • In the Source IP Address field, enter 172.16.10.0. • In the Source Mask field, enter - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 240
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Enter the following information in the Class -6 e. On the Diffserv Class Configuration page, enter the following information: • In the Source IP Address field, enter 172.16.20.0. • In the Source Mask field, enter 255.255.255.0. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 241
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ > Advanced >Class Configuration. A screen similar a new class test_dept. d. Click the test_dept to configure this class. Figure 13-8 Differentiated Services v1.0, October 2009 13-8 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 242
NETGEAR Managed Switches Software Administration Manual, Release 8.0 e. Under the Diffserv Class Configuration page, enter the following information: • In the Source IP Address field, enter 172.16.30.0. the development_dept to configure this class. 13-9 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 243
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 13-10 e. Under the Diffserv Class Configuration page, enter the following information: • In the Source IP Address field, enter to the following displays. Figure 13-11 Differentiated Services v1.0, October 2009 13-10 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 244
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Enter the following information in the Class Configuration • In the Policy Selector field, enter >Advanced >Policy Configuration. A screen similar to the following displays. 13-11 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 245
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 13-13 b. Under Policy Configuration, scroll down to internet_access and class development_dept to the policy internet_access. 10. Assign queue 1 to the finance_dept. Differentiated Services v1.0, October 2009 13-12 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 246
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ > Advanced >Policy Configuration. A screen similar to the Queue field. d. Click Apply. 11. Assign queue 2 to the marketing_dept. 13-13 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 247
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ >Advanced >Policy Configuration. A screen similar to 2 in the Assign Queue field. d. Click Apply. 12. Assign queue 3 to the test_dept. Differentiated Services v1.0, October 2009 13-14 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 248
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ > Advanced >Policy Configuration. A screen similar to the Queue field. d. Click Apply. 13. Assign queue 4 to the development_dept. 13-15 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 249
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ >Advanced >Policy Configuration. A screen 14. Attach the defined policy to the interface 1/0/1 through 1/0/4 in the inbound direction Differentiated Services v1.0, October 2009 13-16 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 250
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > Advanced >Service Configuration. A screen similar to the following displays. Figure 13-23 b. Scroll down to interface 1/0/1 and select the checkbox for 1/0/1. c. Scroll down to interface 1/0/2 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 251
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 13-24 b. Under Interface Queue Configuration, scroll down to interface 1/0/5 and select select the checkbox for 1/ 0/5. Now 1/0/5 appears in the Interface field at the top. Differentiated Services v1.0, October 2009 13-18 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 252
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Select the 2 in the Queue ID field d. In the Minimum Bandwidth field, enter 25. e. CoS >Advanced >Interface Queue Configuration. A screen similar to the following displays. 13-19 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 253
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 13-27 b. Under Interface Queue Configuration uses of DiffServ is to support Voice over IP (VoIP). VoIP traffic is inherently timesensitive: for a network to provide acceptable service, a guaranteed transmission rate is - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 254
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Port 1/0/2 Port 1/0/3 Layer 3 Switch operating as Router 1 Internet Layer 3 Switch operating as Router 2 Figure 13-28 CLI: DiffServ for VoIP The following example configures DiffServ VoIP support: Enter Global Config mode. Set - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 255
-map)#mark ip-dscp ef (Netgear Switch) (Config policy-class-map)#assign-queue 5 (Netgear Switch) (Config policy-class-map)#exit (Netgear Switch) (Config policy-map)#exit Attach the defined policy to an inbound service interface. (Netgear Switch) (Config)#interface 1/0/2 (Netgear Switch) (Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 256
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 13-29 b. Under Interface Queue Configuration, select all the interfaces. c. Select 5 in > Advanced >DiffServ Configuration. A screen similar to the following displays. 13-23 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 257
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 13-31 b. In the Class Name, enter class_voip. c. Select All in the Class Type Protocol Type field. g. Click the Apply to create a new class. 4. Create a class class_ef: Differentiated Services v1.0, October 2009 13-24 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 258
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ > Advanced >DiffServ Configuration. A screen similar to the following displays: Figure 13-34 f. Select ef in the IP DSCP field. 13-25 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 259
NETGEAR Managed Switches Software Administration Manual, Release 8.0 g. Click Apply to create a new class. 5. Create a policy pol_voip and add class_voip into this policy the following displays. Figure 13-36 f. Select 5 in the Assign Queue field. Differentiated Services v1.0, October 2009 13-26 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 260
NETGEAR Managed Switches Software Administration Manual, Release 8.0 g. For the Policy Attribute, click the Mark IP DSCP radio button and select ef in the Mark IP DSCP field. h. Click Apply to create a new policy. similar to the following displays. 13-27 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 261
Software Administration Manual, Release 8.0 Figure 13-38 f. Select the 5 in the Assign Queue field. g. Click Apply to create a new policy. 7. Attach the defined policy to the interface 1/0/2 in the inbound direction a. From the main menu, select QoS > DiffServ > Advanced > Service Configuration - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 262
Software Administration Manual, Release 8.0 Auto VoIP Configuration The Auto-VoIP feature is intended to provide ease of use for the user in setting up VoIP for IP phones on a switch. This functionality copies VoIP signaling packets to the CPU to get the source and destination IP Address and Layer - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 263
Managed Switches Software Administration Manual, Release 8.0 View the Auto VoIP information: (Netgear Switch) # show auto-voip interface all Interface --------1/0/1 1/0/2 1/0/3 1/0/4 1/0/5 1/0/6 1/0/7 1/0/8 to all the interfaces in the device. Differentiated Services v1.0, October 2009 13-30 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 264
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ > Auto VoIP. A screen similar to the following displays. Figure as Enabled. A screen similar to the following displays. Figure 13-42 13-31 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 265
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. Click Apply. At the end of this configuration a screen similar to the following displays. Figure 13-43 Differentiated Services v1.0, October 2009 13-32 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 266
NETGEAR Managed Switches Software Administration Manual, Release 8.0 DiffServ for IPv6 Configuration Example This feature extends the existing QoS ACL and DiffServ functionality by providing support the IPv6 Class classicmpv6. (Netgear Switch) (Config)# class-map match-all classicmpv6 ipv6 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 267
and 1/0/3: (Netgear Switch) (Config)# interface 1/0/1 (Netgear Switch) (Interface 1/0/1)# service-policy in policyicmpv6 (Netgear Switch) (Interface 1/0/1)# exit (Netgear Switch) (Config)# interface 1/0/2 (Netgear Switch) (Interface 1/0/2)# service-policy in policyicmpv6 (Netgear Switch) (Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 268
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ > Advanced > IPv6 Class Configuration. A screen similar to the displays. Figure 13-47 2. Define matching criteria as protocol ICMPv6. 13-35 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 269
Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ > Advanced > IPv6 Class Configuration. A screen similar to the following displays. Figure 13-48 b. Click the class classicmpv6. A screen similar to the following displays. Figure 13-49 Differentiated Services v1 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 270
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. For the Protocol Type, select Other and enter 58. A screen similar to the following displays. the policy policyicmpv6 and associate the previously created class classicmpv6. 13-37 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 271
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select QoS > DiffServ > Advanced > Policy Configuration. A screen similar to to the one in Figure 13-54 displays. 4. Set the attribute as assign queue 6. Differentiated Services v1.0, October 2009 13-38 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 272
Manual, Release 8.0 a. From the main menu, select QoS > DiffServ > Advanced > Policy Configuration. A screen similar to the following displays. Figure 13-54 b. Click the Policy policyicmpv6 A screen similar to the following displays. Figure 13-55 13-39 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 273
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Select Assign Queue as 6.. Figure 13-56 d. Click Apply. 5. Attach the policy policyicmpv6 in the interface 1/0/1,1/0/2 and 1/0/3. a. From the main menu, select QoS > DiffServ > Advanced > Service Interface Configuration. A - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 274
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Select Policy Name as policyicmpv6. c. Click the check box for the interfaces 1/0/1, 1/0/2 and 1/0/3. A screen similar a screen similar to the following displays. Figure 13-59 13-41 v1.0, October 2009 Differentiated Services - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 275
mac-address-table igmpsnooping" on page 14-3 • "Configure the Switch with an External Multicast Router" on page 14-4 • "Configure the Switch with a Multicast Router Using Netgear Switch) #config (Netgear Switch) (Config)#ip igmpsnooping (Netgear Switch) (Config)#ip igmpsnooping interfacemode (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 276
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Switching > Multicast > is shown as CLI commands and as a Web interface procedure. CLI: Showing igmpsnooping (Netgear Switch) #show igmpsnooping? mrouter Press Enter to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 277
Managed Switches Software Administration Manual, Release 8.0 (Netgear Switch) #show igmpsnooping Admin Mode Multicast Snooping Configuration. A screen similar to the following displays. Figure 14-2 Show mac-address-table igmpsnooping The example is shown as CLI commands and as a Web interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 278
Manual, Release 8.0 CLI: Showing mac-address-table igmpsnooping (Netgear Switch) #show mac-address-table igmpsnooping ? Press Enter to execute the command. (Netgear Switch) #show mac-address 14-3 Configure the Switch with an External Multicast Router The example is shown as CLI commands and - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 279
snooped by the switch will be forwarded to the multicast router reachable from this interface. (Netgear Switch)(Interface 1/0/3)# ip igmp mrouter interface Web Interface: Configuring the Switch with an External Multicast Router To use the Web interface to configure the managed switch, proceed - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 280
snooped IGMP packets that come from VLAN ID () to the multicast router attached to this interface. (Netgear Switch)(Interface 1/0/3)# ip igmp mrouter 2 Web Interface: Configuring the Switch with a Multicast Router Using VLAN To use the Web interface to configure the managed switch, proceed - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 281
NETGEAR Managed Switches Software Administration Manual, Release 8.0 2. Under Multicast Router services such as IPTV, video streaming, and gaming are deployed, the video traffic would normally be flooded to all connected ports because such traffic packets usually have multicast Ethernet addresses - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 282
CLI Manual for more details about other IGMP querier command options. (Netgear switch) #vlan database (Netgear switch) (vlan)#ip igmp 1 (Netgear switch) (vlan)#ip igmpsnooping querier 1 (Netgear switch) (vlan)#exit (Netgear switch) #config (Netgear switch) (config)#ip igmpsnooping (Netgear switch - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 283
NETGEAR Managed Switches Software Administration Manual, Release 8.0 2. Enter the following information in the IGMP VLAN querier status, use the following command. (Netgear switch) #show ip igmpsnooping querier 1 Vlan ID 1 Admin Mode Active Query IP Address 10.10.10.1 Querier Interval 60 Query - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 284
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 14-8 2. Click Refresh. 14-10 v1.0, October 2009 IGMP Snooping and Querier - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 285
Snooping" on page 15-43 • "IP Source Guard" on page 15-50 Port Security MAC address will be forwarded • Supports both address are forwarded. - Static Locking - User manually specifies a list of static MAC addresses for a port. Dynamically locked addresses can be converted to statically locked addresses - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 286
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • When link goes down, all dynamically locked addresses are 'freed' • If a specific MAC address is to be set for a port, set the dynamic entries to 0, then only allow packets with a MAC address matching the MAC address in the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 287
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 15-1 b. Under Port Security Configuration, next to the Port Security Mode, select Enable radio button. c. Click Apply to save the settings. 2. Set dynamic - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 288
Manual, Release 8.0 Convert the Dynamic Address Learned from 1/0/1 to the Static Address The example is shown as CLI commands and as a Web interface procedure. CLI: Converting the Dynamic Address Learned from 1/0/1 to the Static Address (Netgear Switch)(Interface 1/0/1)#port-security mac-address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 289
Managed Switches Software Administration Manual, Release 8.0 4. Click Apply to save the settings. Create a Static Address The example is shown as CLI commands and as a Web interface procedure. CLI: Creating a Static Address (Netgear Switch) (Interface 1/0/1)#port-security mac-address 00:13:00:01 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 290
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Protected Ports This section describes how to set up protected ports on the switch. Some situations might require that traffic is prevented from being - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 291
a DHCP pool to allocated IP addresses to PCs. (Netgear Switch) (config)#service dhcp (Netgear Switch) (config)#ip dhcp pool pool-a (Netgear Switch) (Config-dhcp-pool)#dns-server 12.7.210.170 (Netgear Switch) (Config-dhcp-pool)#default-router 192.168.1.254 (Netgear Switch) (Config-dhcp-pool)#network - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 292
Switches Software Administration Manual, Release 8.0 Step 4: Enable IProuting and configure a default route. (Netgear Switch)(config)#ip routing (Netgear Switch)(config)#ip route 0.0.0.0 0.0.0.0 10.100.5.252 Step 5: Enable a protected port on 1/0/23 and 1/0/24. (Netgear Switch) (Config)#interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 293
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 15 Default Router Addresses. The DNS server address fields display. In the first router address field, enter 192.168.1.254. • Click on DNS Server Addresses. The router address fields display. In the first DNS server address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 294
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Click Add. 2. Configure a VLAN and include ports information in the VLAN Routing Wizard: • In the Vlan ID field, enter 192. • In the IP Address field, enter 192.168.1.254. • In the Network Mask field, enter 255.255.255.0. c. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 295
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 15-8 b. Enter the following information in the VLAN Routing Wizard: • In the Vlan ID field, enter 202. • In the IP Address field, enter 10.100.5.34. • In the Network Mask field, enter 255.255.255.0. c. Click Unit 1. The - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 296
default route for VLAN 202: a. From the main menu, select Routing > Routing Table > Basic > Route Configuration. A screen similar to the following displays. Figure 15-10 b. Under Configure Routes, select DefaultRoute in the Route Type field. c. Under Configure Routes, in the Next Hop IP Address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 297
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 15-11 b. Under Protected Ports Configuration, Click Unit 1. The ports display. • Click the gray box under ports 23. A flag appears in the box. • - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 298
(Netgear Switch) (Config)#interface 1/0/1 (Netgear Switch) (Interface 1/0/1)#routing (Netgear Switch) (Interface 1/0/1)#ip address 192.168.1.1 255.255.255.0 (Netgear Switch) (Config)#dot1x system-auth-control Create a username list dot1xList (Netgear Switch) (Config)#aaa authentication dot1x default - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 299
Mode, select the Enable radio button. c. Click Apply to save the settings. 2. Assign IP address 192.168.1.1/24 to the interface 1/0/1 a. From the main menu, select Routing > Advanced >IP Interface Configuration. A screen similar to the following displays. Security Management v1.0, October 2009 15 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 300
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 15-14 b. Under IP Interface Configuration, scroll down to interface 1/0/1 and select the checkbox for that interface. Now 1/0/1 appears in the Interface field at the top. c. Under the IP Interface Configuration, enter the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 301
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Select Enable in the Routing Mode field. d. Click Apply to save the settings. 4. Create an authentication name list. a. From the main menu, select Security > Management Security > Login> Authentication List. A screen similar to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 302
NETGEAR Managed Switches Software Administration Manual, Release the Enable radio button. c. Select dot1xList in the Login field. d. Click Apply to save settings. 7. similar to the following displays. Figure 15-19 b. In the Server Address, enter 10.100.5.17. c. Select Yes in the Secret Configured - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 303
NETGEAR Managed Switches Software Administration Manual, Release 8.0 e. Select Yes in the Primary Server field. f. Select Configuration. A screen similar to the following displays. Figure 15-20 b. In the Server Address, enter 10.100.5.17. c. Select Enable in the Accounting Mode field. d. Click - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 304
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Select Enable in the Accounting Mode field. d. Click Apply. Create a Guest VLAN The Guest VLAN feature allows a switch to provide a distinguished service to dot1x unaware clients (not rogue users who fail authentication). This - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 305
NETGEAR Managed Switches Software Administration Manual, Release 8.0 authenticated and associated with (Netgear Switch) (Config)#aaa authentication dot1x default radius (Netgear Switch) (Config)#dot1x system-auth-control (Netgear Switch) (Config)#radius server host auth 192.168.0.1 (Netgear Switch - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 306
Managed Switches Software Administration Manual, Release 8.0 Enable guest vlan on port 1/0/1 and 1/0/24. (Netgear Switch) #show dot1x Maximum Users 16 Unauthenticated VLAN ID 0 Session Timeout 0 Session Termination Action Default Web Interface: Creating a Guest VLAN To use the Web interface to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 307
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 15-23 b. In the VLAN ID field, enter 2000. c. Select Static in the VLAN Type field. d. Click Add. 2. Add ports to the VLAN - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 308
NETGEAR Managed Switches Software Administration Manual, Release 8.0 3. Setting force authorized mode on the port 1/0/6 and 1/0/12. a. From the main menu, select Security > Port Authentication > Advanced>Port Authentication. A screen similar to the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 309
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Next to the Administrative Mode, select the Enable radio button. c. Click Apply to save settings. 5. Configure dot1x authentication list. a. From the main menu, select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 310
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. In the Radius Server IP Address field, enter 192.168.0.1. c. Select Yes in the Secret Configured field. d. In the Secret field, enter 12345. e. Click Add. 7. Configure the Guest VLAN. a. From the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 311
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • If the VLAN assignment is reset ip configuration. Are you sure you want to continue? (y/n)y (Netgear Switch) #network parms 192.168.0.5 255.255.255.0 (Netgear Switch) #vlan database (Netgear Switch) (Vlan)#vlan 2000 (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 312
dot1x default radius Use the radius as the authenticator. (Netgear Switch) (Config)#authorization network radius Enable the switch to accept VLAN assignment by the radius server. (Netgear Switch) (Config)#radius server host auth 192.168.0.1 Set the Radius server IP address. (Netgear Switch - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 313
Software Administration Manual, Release 8.0 Force the 1/0/6 to be authorized for it connects to the RADIUS server. (Netgear Switch) # Action Default 8FC*OUFSGBDF7-"/"TTJHONFOUWJB3"%*64 To use the Web interface to do VLAN assignment via RADIUS, proceed as follows: 1. Assign IP address for - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 314
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 15-31 b. Next to the Current Network Configuration Protocol, select the None Radio button. c. In the IP Address, enter 192.168.0.5. d. In the Subnet Mask, enter 255.255.255.0. e. Click Apply. 2. Create VLAN 2000. a. From - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 315
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Select Static in the VLAN Type field. d. Click Add. 3. Setting force authorized mode on the port 1/0/6 and 1/0/12. a. From the main menu, select Security > - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 316
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 15-34 b. Next to the Administrative Mode, select the Enable radio button. c. Next to the VLAN Assignment Mode, select the Enable radio button. d. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 317
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > Management Security > Radius>Server Configuration. A screen similar to the following displays. Figure 15-36 b. In the Radius Server IP Address field, enter 192.168.0.1. c. Select Yes in the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 318
NETGEAR Managed Switches Software Administration Manual, Release 8.0 When Dynamic ARP Inspection is enabled, the switch drops ARP packet whose sender MAC address and sender IP address do not match an entry in the DHCP snooping bindings database. However it can be overcome through Static mappings. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 319
server is reached as trusted. (Netgear Switch) (Config)# interface 1/0/1 (Netgear Switch) (Interface 1/0/1)# ip dhcp snooping trust View the DHCP Snooping Binding table. (GSM7328S) #show ip dhcp snooping binding Total number of bindings: 1 MAC Address IP Address VLAN Interface Type Lease (Secs - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 320
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > Control > DHCP Snooping Global Configuration. A screen similar to the following displays. Figure 15-38 b. For the DHCP Snooping - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 321
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. In the VLAN Configuration table, set DHCP Snooping Mode as Enable. A screen similar to the following displays. Figure 15-40 3. Configure the port through - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 322
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. Click Apply. At the end of this configuration a screen similar to the following displays. Figure 15-42 4. View the DHCP Snooping Binding table. a. From - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 323
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > Control > Dynamic ARP Inspection > DAI VLAN Configuration. A screen similar to the following displays. Figure 15-44 b. Set the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 324
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. Click Apply. At the end of this configuration a screen similar to the following displays. Figure 15-46 Now all the ARP packets received on - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 325
Manual, Release 8.0 Configuring Static Mapping This script in this section shows how to configure static mapping. CLI: Configuring Static Mapping Create an ARP ACL. (Netgear e9 Configure ARP ACL used for the VLAN 1. (Netgear Switch) (Config)# ip arp inspection filter ArpFilter vlan 1 Now the ARP - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 326
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Click Add. At the end of this configuration DAI ACL Rule Configuration. b. Select ACL Name as ArpFilter. c. Enter Source IP Address as 192.168.10.2. d. Enter the Source MAC Address as 00:11:85:EE:54:E9. e. Click Add. At the end - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 327
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Click Apply. At the end of this configuration to filter harmful DHCP message and to build a bindings database of (MAC address, IP address, VLAN ID, port) tuples that are considered authorized. The network administrator enables - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 328
server is reached as trusted. (Netgear Switch) (Config)# interface 1/0/1 (Netgear Switch) (Interface 1/0/1)# ip dhcp snooping trust View the DHCP Snooping Binding table. (GSM7328S) #show ip dhcp snooping binding Total number of bindings: 1 MAC Address IP Address VLAN Interface Type Lease (Secs - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 329
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Click Apply. A screen similar to the one in Figure 15-53 displays. 2. Enable DHCP snooping in a VLAN. a. From the main menu, select Security > Control > - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 330
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > Control > DHCP Snooping Interface Configuration. A screen similar to the following displays. Figure 15-55 b. Select the checkbox for - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 331
DHCP Snooping Static Entry. (Netgear Switch) (Config)# ip dhcp snooping binding 00:11:11:11:11:11 vlan 1 192.168.10 .1 interface 1/0/2 View the binding database has the static entry. (GSM7328S) #show ip dhcp snooping binding Total number of bindings: 2 MAC Address IP Address VLAN Interface Type - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 332
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Entering Static Binding into the Binding Database Messages Control the maximum rate of DHCP messages. (Netgear Switch) (Interface 1/0/2)# ip dhcp snooping limit rate 5 15-48 v1.0, October 2009 Security Management - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 333
NETGEAR Managed Switches Software Administration Manual, Release 8.0 View the rate configured. (GSM7328S) #show ip dhcp snooping interfaces 1/0/2 Interface ---------- Trust State Rate Limit (pps) Burst Interval (seconds) 1/0/2 No 5 1 Web Interface: Configuring the Maxiumum Rate of - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 334
Manual, Release 8.0 IP Source Guard IP Source Guard uses the DHCP snooping bindings database. When IP Source Guard is enabled, the switch drops incoming packets that do not match a binding in the bindings database. IP Source Guard can be configured to enforce just the source IP address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 335
server is reached as trusted. (Netgear Switch) (Config)# interface 1/0/1 (Netgear Switch) (Interface 1/0/1)# ip dhcp snooping trust View the DHCP Snooping Binding table. (GSM7328S) #show ip dhcp snooping binding Total number of bindings: 1 MAC Address IP Address VLAN Interface Type Lease (Secs - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 336
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > Control > DHCP Snooping Global Configuration. A screen similar to the following displays. Figure 15-63 b. Select DHCP Snooping Mode - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 337
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. Click Apply. At the end of this configuration a screen similar to the following displays. Figure 15-65 3. Configure the port through which DHCP server - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 338
NETGEAR Managed Switches Software Administration Manual, Release 8.0 4. View the DHCP Snooping Binding table. From the main menu, select Security > Control > DHCP Snooping Binding Configuration. A screen similar to the following displays. Figure 15-68 5. Enable IP Source Guard in the interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 339
NETGEAR Managed Switches Software Administration Manual, Release 8.0 f. Click Add. At the end of this configuration a screen similar to the following displays. Figure 15-70 Security Management v1.0, October 2009 15-55 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 340
Time Protocol (SNTP) feature: • Used for synchronizing network resources • Adaptation of NTP • Provides synchronized network timestamp • Can be used in broadcast examples of the commands used in the SNTP feature. show sntp (Netgear Switch Routing) #show sntp ? client server Press Enter to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 341
Routing) #show sntp client Client Supported Modes: SNTP Version: Port: Client Mode: Unicast Poll Interval: Poll Timeout (seconds): Poll Retry: unicast broadcast 4 123 unicast 6 5 1 show sntp server (Netgear Switch Routing) #show sntp server Server IP Address: Server Type: Server Stratum: Server - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 342
Administration Manual, Release 8.0 CLI: Configuring SNTP NETGEAR switches default value is approximately one minute. After this period, issue the show command to confirm the time has been received. The time will be used in all logging messages. (Netgear Switch) #show sntp server Server IP Address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 343
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Configuring SNTP To use following information in the SNTP Server Configuration. • Select IPV4 in the Server Type field. • In the Address field, enter 208.14.208.19 • In the Port field, enter 123 • In the Priority - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 344
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 16-2 b. Enter the following Universal Time (UTC) by default. The following example shows how to set the time zone to Pacific Standard Time (PST) which is 8 hours behind GMT/UTC. (Netgear switch)(config)#clock timezone PST - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 345
Managed Switches Software Administration Manual, Release 8.0 Because Netgear may change IP addresses assigned to its time servers, it is best to access a SNTP server by DNS name instead of using a hard-coded IP address. The public time servers available are time-a, time-b, and time-c. To use this - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 346
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • In the Version field, enter 4 c. Click Add. 2. Configure the DNS server. a. From the main menu, select System > Management>DNS>DNS Configuration. A screen similar to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 347
provided: • "Traceroute" • "Configuration Scripting" on page 17-3 • "Pre-Login Banner" on page 17-5 • "Port Mirroring" on page 17-6 • "Dual 16 hops to reach its destination. CLI:Traceroute (Netgear Switch) #traceroute? Enter IP address. (Netgear Switch) #traceroute 216.109.118.74 ? - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 348
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Tracing route over a maximum of 20 hops 1 10.254. follows: 1. Configure the Traceroute. a. From the main menu, select Maintenance > Troubleshooting > Traceroute. A screen similar to the following displays. Figure 17-1 Use this - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 349
NETGEAR Managed Switches Software Administration Manual, Release 8.0 APPLY button, the switch will send three traceroute packets each hop, and the results will be displayed in the result table. b. Enter the following information in the Traceroute. In the IP Address field, enter 216.109.118.74. c. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 350
Managed Switches Software Administration Manual, Release 8.0 script (Netgear Switch) #script ? apply delete list show script(s)? (y/n) y 1 configuration script(s) deleted. script apply running-config.scr (Netgear Switch) #script apply running-config.scr Are you sure you want to apply - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 351
to start? (y/n) y File transfer operation completed successfully. Pre-Login Banner This section describes the Pre-Login Banner feature. Pre-Login Banner: • Allows you to create message screens when logging into the CLI Interface • By default, no Banner file exists • Can be uploaded or downloaded - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 352
that contains the banner to be displayed. Login Banner - Unauthorized access is punishable by law. 2. Transfer the file from the PC to the switch using TFTP (Netgear Switch Routing) #copy tftp://192.168.77.52/banner.txt nvram:clibanner Mode TFTP Set TFTP Server IP 192.168.77.52 TFTP Path TFTP - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 353
Software Administration Manual, Release 8.0 The example is shown as CLI commands and as a Web interface procedure. CLI: Specifying the Source (Mirrored) Ports and Destination (Probe) (Netgear Switch)#config (Netgear Switch)(Config)#monitor session 1 mode Enable mirror (Netgear Switch)(Config - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 354
NETGEAR Managed Switches Software Administration Manual when the firmware is being in their support for the problem, by using appropriate stacking commands. CLI: Downloading a Backup Image and Having It Active (Netgear Switch) #copy tftp://192.168.0.1/gsm73xxseps.stk image2 Mode TFTP Set Server IP - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 355
NETGEAR Managed Switches Software Administration Manual, Release 8.0 TFTP code transfer starting 101888 bytes File transfer operation completed successfully. (Netgear Switch) # (Netgear Switch) #show bootvar Image Descriptions image1 : default image image2 : Images currently available on - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 356
NETGEAR Managed Switches Software Administration Manual, Release 8.0 1. Download a backup image via tftp. a. Transfer Mode field. e. Select IPv4 in the Server Address Type field. f. In the Server Address field, enter 10.100.5.17(tftp server IP address). g. In the Remote File Name, enter gsm73xxse- - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 357
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Netgear Switch Routing) User:admin Password: (Netgear Switch Routing) >en Password: (Netgear Switch Routing) #show network IP Address 192.168.77.151 Subnet Mask 255.255.255.0 Default Gateway 192.168.77.127 Burned In MAC Address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 358
Software Administration Manual, Release 8.0 CLI: show telnet (Netgear Switch Routing)#show telnet Outbound Telnet Login Timeout (minutes)........ 5 Maximum Number of Outbound Telnet Sessions..... 5 Allow New Outbound Telnet Sessions Yes CLI: transport output telnet (Netgear Switch Routing - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 359
NETGEAR Managed Switches Software Administration Manual, Release 8.0 1. From the main menu, select Security > Access > Telnet. A screen similar to the following displays. Figure 17-5 2. Enter the following information in the Outbound Telnet. 3. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 360
NETGEAR Managed Switches Software Administration Manual, Release 8.0 1. From the main menu, select Security > Access > Telnet. A screen similar to the following displays. Figure 17-6 2. Enter the following information in the Outbound Telnet. • - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 361
Chapter 18 Syslog In this chapter, the following examples are provided: • "Show Logging" on page 18-2 • "Show Logging Buffered" on page 18-5 • "Show Logging Traplogs" on page 18-6 • "Show Logging Hosts" on page 18-7 • "Log Port Configuration" on page 18-8 The Syslog feature: • Allows you to store - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 362
Managed Switches Software Administration Manual, Release 8.0 Show Logging The example is shown as CLI commands and as a Web interface procedure. CLI: Show Logging (Netgear Switch Routing) #show logging Logging Client Local Port : CLI Command Logging : Console Logging : Console Logging - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 363
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Enter the following information in the Syslog Configuration. Next to the Admin Status, select the Enable radio button. c. Click Apply. 2. Configure the Command Log a. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 364
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 18-4 b. Enter the following information in the Console Log Configuration. Next to the Admin Status, click the Disable radio button. c. Click Apply. 4. Configure - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 365
Administration Manual, Release 8.0 b. Enter the following information in the Buffer Logs. Next to the Admin Status, click the Enable radio button. c. Click Apply. Show Logging Buffered The example is shown as CLI commands and as a Web interface procedure. CLI: Showing Logging Buffered (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 366
to execute the command. (Netgear Switch Routing) #show logging traplogs Number of Traps Since Last Reset 6 Trap Log Capacity 256 Unit: 3 Slot: 0 Port: 2 Cold Start: Unit: 0 Failed User Login: Unit: 1 User ID: admin Failed User Login: Unit: 1 User ID: \ Multiple Users: Unit: 0 Slot: 3 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 367
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Showing Logging Trap Logs From Logging Hosts (Netgear Switch Routing) #show logging hosts ? Press Enter to execute the command. (Netgear Switch Routing) #show logging hosts Index IP Address Severity Port - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 368
. CLI Command Logging Configuration. Console Logging Configuration. Enter IP Address for Logging Host Syslog Configuration. (Netgear Switch Routing) (Config)#logging host ? Enter Logging Host IP Address reconfigure Logging Host Reconfiguration remove Logging Host Removal - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 369
Managed Switches Software Administration Manual, Release 8.0 (Netgear Switch Routing) (Config)#logging host 192.168. execute the command. (Netgear Switch Routing) (Config)#logging host 192.168.21.253 4 1 (Netgear Switch Routing) #show logging hosts Index IP Address Severity Port Status 1 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 370
and recommended operating procedures to manage NETGEAR stackable managed switches running Release 4.x.x.x or newer. NETGEAR stackable managed switches include the following models: • FSM7226RS • FSM7250RS • FSM7328S • FSM7328PS • FSM7352S • FSM7352PS • GSM7328S • GSM7352S • GSM7328FS Note: The FSM - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 371
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Understanding Switch Stacks A switch stack is switch stack is identified in the network by its network IP address. The network IP address is assigned according to the MAC address of the stack master. Every stack member is uniquely - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 372
NETGEAR Managed Switches Software Administration Manual, Release 8.0 A standalone switch is a switch the switch stack divides, and you want the switch stacks to remain separate, change the IP address or addresses of the newly created switch stacks. • If you did not intend to partition the switch - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 373
NETGEAR Managed Switches Software Administration Manual, Release 8.0 use the regular Category 5 Ethernet 8 wire cable. Figure 19-1 Interconnect ports 51 and 52 as shown port 51 port 52 Figure 19-2 Stack Master - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 374
address A stack master retains its role unless one of these events occurs: • The stack master is removed from the switch stack • The stack master is reset been manually assigned a stack member number) ships with a default stack member number of 1. When it joins a switch stack, its default stack - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 375
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Switch Stack Offline Configuration You can is replaced with another switch, the stack applies either the preconfiguration or the default configuration to it. The events that occur when the switch stack compares the configuration - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 376
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Effects of Removing a Preconfigured Switch from a Switch an incompatible software image by using the copy xmodem | ymodem | zmodem | tftp://ip/filepath/filename command. It copies the software image from an existing stack member to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 377
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • You can connect to the stack master through the console port of the stack master only. • You can connect to the stack master by using a Telnet connection to the IP address of the stack. Switch Stack Configuration Scenarios Table - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 378
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Stacking Recommendations The purpose of this section is to collect notes on recommended procedures and expected behavior of stacked managed switches. Procedures addressed to the login prompt. If unit has the default configuration, - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 379
NETGEAR Managed Switches Software Administration Manual, Release 8.0 6. Power on It will be assigned a unit number (unit #2, if it has the default configuration). 8. Renumber this stack unit, if desired. See section "Renumber "Upgrading Firmware". Managing Switch Stacks v1.0, October 2009 19-10 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 380
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Replacing a Stack Member with a New Unit There are two possible situations here. First, if you replace a stack member of a certain model number with another - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 381
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Renumbering Stack Members To use the Web interface to renumber the stack number, proceed as follows: 1. Renumbering the stacking member's ID from 3 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 382
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Moving a Master to a Different Unit in the to verify that all units rejoined the stack. 3. It is recommended that the stack be reset with the reload command after moving the master. Web Interface: Moving a Master to a Different - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 383
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. Click the Apply. Note: If you move a master to a different unit, you may lose the connection to the switch because the IP address may be changed if the switch gets IP address Supported unit types are shown by the show supported - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 384
NETGEAR Managed Switches Software Administration Manual the units must be reset in order for the new code to start running. Migration of Configuration With a Firmware Upgrade In some boot menu and erase the configuration ("restore to factory defaults") 4. Continue with boot of operational code. 5. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 385
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Ports on the added unit should remain copy command. The newly added member should then be reset, and should reboot normally and join the stack. Web Interface: Upgrading Firmware To use the Web interface to upgrade a stack member - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 386
page 20-9 Add a New Community The example is shown as CLI commands and as a Web interface procedure. CLI: Adding a New Community (Netgear switch) #config (Netgear switch) (Config)#snmp-server community rw public@4 Web Interface: Adding a New Community To use the Web interface to add a new community - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 387
NETGEAR Managed Switches Software Administration Manual, Release 8.0 3. In the Client Address field, enter 0.0.0.0. 4. In the Client IP Mask field, enter 0.0.0.0. 5. Select the Read/Write in the Access Mode field. 6. Select the Enable in the Status field. 7. Click the Add. Enable SNMP Trap - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 388
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. In the Address field, enter 10.100.5.17. e. Select Enable in the Status field. f. Click the Add button. 2. Set the Link Up/Down flag. a. From the main menu, - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 389
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Configuring SNMP V3 1. Change the user password. If you set the authentication mode to md5, you must make the length of password longer than 8 characters. a. From the main menu, select Security > Management Security - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 390
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Select the admin in the User Name field. c. Next to . The sFlow monitoring system consists of a sFlow Agent (embedded in a switch or router or in a standalone probe) and a central sFlow Collector. The sFlow Agent uses sampling - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 391
.10.2 Figure 20-6 Switch/Router CLI: Configuring Statistical Packet-Based Sampling of Packet Flows with sFlow Configure the sFlow receiver (sFlow collector) IP address. In this example, sFlow samples will be sent to the destination address 192.168.10.2. (Netgear Switch) (Config)# sflow receiver - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 392
Software Administration Manual, Release 8.0 Here the max datagram size is default 1400. It can be modified to a value between 200 to 9116 using the command sflow receiver 1 maxdatagram . (GSM7328S) #show sflow receivers Receiver Owner Time out Max Datagram Port IP Address Index String - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 393
NETGEAR Managed Switches Software Administration Manual, Release 8.0 e. Enter Receiver Address as 192.168.10.2. A screen similar to the following displays. Figure 20-7 f. Click Apply. At the end of this configuration a screen similar to the following - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 394
NETGEAR Managed Switches Software Administration Manual, Release 8.0 e. Click Apply. At the end Netgear Switch) (Config)# interface 1/0/1 (Netgear Switch) (Interface 1/0/1)# sflow poller 1 (Netgear Switch) (Interface 1/0/1)# sflow poller interval 300 View the polling port configurations. (GSM7328S - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 395
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Enter the Poller Interval as 300. A screen similar to the following displays. Figure 20-11 d. Click Apply. SNMP v1.0, October 2009 20-10 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 396
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 21 DNS In this chapter, the following examples are provided: • "Specify Two DNS Servers" • "Manually Add a Host Name and an IP Address" on page 21-2 This section describes the Domain Name System (DNS) feature. The DNS - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 397
and an IP Address To use the CLI to manually add a host name and an IP address, enter the following CLI commands: (Netgear Switch)#config (Netgear Switch) (Config)#ip host www.netgear.com 206.82.202.46 (Netgear Switch) (Config)#ip domain-lookup (Netgear Switch) (Config)#ping www.netgear.com Send - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 398
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Manually Adding a Host Name and an IP Address To use the Web interface to manually add a host name and an IP address, proceed as follows: 1. From the main menu, select System > Management > DNS > Host Configuration. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 399
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 22 DHCP Server This section describes the DHCP server configuration. When a client sends a request to a DHCP server, the DHCP server assigns the IP address from address pools that are specified on the switch. The network in - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 400
NETGEAR Managed Switches Software Administration Manual, Release 8.0 1. From the main menu, select System > Services > DHCP Server > DHCP Server Configuration. A screen similar to the following displays. Figure 22-1 2. Next to Admin Mode, select the Enable radio button. 3. Click Apply to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 401
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 22-2 5. Under DHCP Pool Configuration, enter the following example shows how to create a DHCP server with an IP address pool that is making fixed IP to MAC address assignments. The example is shown as CLI commands and as a - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 402
a DHCP server with a with a manual pool, enter the following CLI commands: (Netgear Switch)#config (Netgear Switch) (Config)#service dhcp (Netgear Switch) (Config)#ip dhcp pool pool_manual (Netgear Switch) (Config)#client-name dhcpclient (Netgear Switch) (Config)#hardware-address 00:01:02:03:04:05 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 403
NETGEAR Managed Switches Software Administration Manual, Release 8.0 4. From the main menu, select System > Services > DHCP Server > DHCP • In the Hardware Address field, enter 00:01:02:03:04:05. • Select ethernet in the Hardware Type field. • In the Host Number field, enter 192.168.200.1. • In the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 404
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 23 Double VLANs This section from one customer domain to another customer domain. Custom VLAN IDs are preserved and a provider service VLAN ID is added to the traffic so that the traffic can pass the metro core in - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 405
VLAN on a VLAN Create a VLAN 200. (Netgear Switch)#vlan database (Netgear Switch) (Vlan)#vlan 200 (Netgear Switch) (Vlan)#exit Add interface 1/0/24 to VLAN 200, add pvid 200 to the port. (Netgear Switch) #config (Netgear Switch) (Config)#interface 1/0/24 (Netgear Switch) (Interface 1/0/24)#vlan pvid - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 406
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Switching > VLAN > Basic VLAN ID field, enter 200. • In the VLAN Name field, enter vlan200. • Select Static in the VLAN Type field. c. Click Add. 2. Add ports 24 and 48 to VLAN 200. a. From the main - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 407
NETGEAR Managed Switches Software Administration Manual, Release 8.0 similar to the following displays. Figure 23-3 b. Under VLAN Membership, select 200 in the VLAN ID field. c. Click Unit 1. The ports display: • Click the gray box under port 24 twice until U displays. The U specifies that the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 408
NETGEAR Managed Switches Software Administration Manual, Release 8.0 3. Change the Port VLAN ID (PVID) of port 24 to 200: a. From the main menu, the PVID (1 to 4093) field, enter 200. d. Click Apply to save the settings. 4. Configure port 48 as the provider service port: a. From the main menu, select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 409
NETGEAR Managed Switches Software Administration Manual, Release 8.0 screen similar to the following displays. Figure 23-5 b. Under DVLAN Configuration, scroll down to interface 1/0/48 and select the chechbox for that interface. Now 1/0/ - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 410
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 24 Private VLAN Groups The port in the group cannot forward its egress traffic to any other members in the same group. By default, the mode is "community" mode that each member port can forward traffic to other members in - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 411
Manual, Release 8.0 CLI: Creating a Private VLAN Group (Netgear Switch) # (Netgear Switch) #vlan data (Netgear Switch) (Vlan)#vlan 200 (Netgear Switch) (Vlan)#exit (Netgear Switch) #config (Netgear Switch) (Config)#interface 1/0/6 (Netgear Switch) (Interface 1/0/6)#vlan participation include 200 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 412
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Web Interface: Creating a Private VLAN Group To use the Web interface, proceed as follows: 1. Create a VLAN 200 in the VLAN Configuration. • In the VLAN ID field, enter 200. • In the VLAN Name field, enter VLAN200. • Select Static - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 413
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. In the VLAN Membership, select 200 in the VLAN ID field. c. Click the Unit 1. and select the checkbox for that interface. c. Under PVID Configuration, enter 200 in the PVID(1 to 4093) field. d. Under PVID Configuration, select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 414
NETGEAR Managed Switches Software Administration Manual, Release 8.0 VLAN > Private Group Configuration. A screen similar to the following displays. Figure 24-5 b. In the Group Name field, enter group1. c. In the Group ID field, - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 415
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > Traffic Control >Private Group VLAN > Private Group Configuration. A screen similar to the following displays. Figure 24-7 b. In the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 416
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 25 Spanning Tree Protocol In this chapter, the traffic, enabling load balancing, and reducing the number of Spanning-Tree instances required to support a large number of VLANs. Configure Classic STP (802.1d) The example is - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 417
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Switching > STP > STP Configuration. A screen similar to the following displays. Figure 25-1 b. Enter the following information in the STP - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 418
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Under CST Port Configuration, scroll down to interface 1/0/3 and select the checkbox for that interface. Now 1/0/3 appears in the Interface field at the top. c. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 419
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Next to the Force Protocol Version, select the IEEE 802.1w radio button. c. Click Apply. 2. Configure CST Port Configuration. a. From the main menu, select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 420
Switches Software Administration Manual, Release 8.0 CLI: Configuring Multiple STP (802.1s) (Netgear switch) (Config)# spanning-tree (Netgear switch) (Config)# spanning-tree forceversion 802.1s (Netgear switch) (Config)# spanning-tree mst instance 1 Create a mst instance 1 (Netgear switch) (Config - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 421
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Next to the Spanning Tree Admin Mode, select the Enable radio button. • Next to the Force Protocol Version, select the IEEE 802.1s radio - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 422
NETGEAR Managed Switches Software Administration Manual, Release 8.0 3. Configure MST Port. a. From the main menu, select Switching > STP > MST Port Status. A screen similar to the following displays. Figure 25-7 4. Under MST Port - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 423
GSM7328S_1 (Netgear Switch) #config (Netgear Switch) (Config)#ip routing (Netgear Switch) (Config)#ipv6 forwarding (Netgear Switch) (Config)#ipv6 unicast-routing (Netgear Switch) (Config)#interface 1/0/1 (Netgear Switch) (Interface 1/0/1)#routing (Netgear Switch) (Interface 1/0/1)#ip address 192.168 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 424
GSM7328S_2 (Netgear Switch) #config (Netgear Switch) (Config)#ip routing (Netgear Switch) (Config)#ipv6 forwarding (Netgear Switch) (Config)#ipv6 unicast-routing (Netgear Switch) (Config)#interface 1/0/13 (Netgear Switch) (Interface 1/0/13)#routing (Netgear Switch) (Interface 1/0/13)#ip address 192 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 425
Switches Software Administration Manual, Release 8.0 (Netgear Switch) (Config)#interface tunnel 0 (Netgear Switch) (Interface tunnel 0)#ipv6 enable (Netgear Switch) (Interface tunnel 0)#ipv6 address 2000::2/64 (Netgear Switch) (Interface tunnel 0)#tunnel mode ipv6ip (Netgear Switch) (Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 426
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IPv6 > checkbox for that interface. Now 1/0/1 appears in the Interface field at the top. • In the IP Address field, enter 192.168.1.1. • In the Subnet Mask field, enter 255.255.255.0. • Select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 427
Manual, Release 8.0 4. Create a 6-in-4 tunnel interface. a. From the main menu, select Routing > IPv6 >Advanced>Tunnel Configuration. A screen similar to the following displays. Figure 26-5 b. Select 0 in Tunnel Id field. c. Select 6-in-4-configured in the Mode field. d. In the Source Address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 428
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. In the IPv6 Prefix field, enter 2000::1. d. In the Length field, enter 64. e. Select Disable in EUI64 field. f. Click Add. On GSM7328S_2 To use the Web interface to create a tunnel, proceed as follows: 1. Enable IP routing on - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 429
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IPv6 checkbox for that interface. Now 1/0/1 appears in the Interface field at the top. • In the IP Address field, enter 192.168.1.2. • In the Subnet Mask field, enter 255.255.255.0. • Select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 430
Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IPv6 >Advanced>Tunnel Configuration. A screen similar to the following displays. Figure 26-10 b. Select 0 in the Tunnel Id field. c. Select 6-in-4-configured in the Mode field. d. In the Source Address field, enter - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 431
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. In the IPv6 Prefix field, enter 2000::2. d. In the Length field, enter 64. e. Select Disable in the EUI64 field. f. Click Add. Tunnel v1.0, October 2009 26-9 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 432
Assign IPv6 address to interface 1/0/1. (Netgear Switch) (Config)#interface 1/0/1 (Netgear Switch) (Interface 1/0/1)#ipv6 enable (Netgear Switch) (Interface 1/0/1)#ipv6 address 2000::2/64 (Netgear Switch) (Interface 1/0/1)#routing (Netgear Switch) (Interface 1/0/1)#exit (Netgear Switch) #ping - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 433
(Netgear Switch) #show ipv6 interface 1/0/1 IPv6 is enabled IPv6 Prefix is FE80::21E:2AFF:FED9:249B/128 2000::2/64 [TENT] Routing Mode Enabled Administrative Mode Enabled IPv6 Routing Operational Mode Enabled Bandwidth 1000000 kbps Interface Maximum Transmit Unit 1500 Router Duplicate Address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 434
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Next to the IPv6 Forwarding, select the Enable Radio button the IPv6 Mode field. d. Click Apply to save the settings. 3. Assign an IPv6 address to the routing interface. a. From the main menu, select Routing > IPv6 >Advanced> - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 435
ipv6 gateway 2001:1::2 (Netgear Switch) #show network Interface Status Always Up IP Address 0.0.0.0 Subnet Mask 0.0.0.0 Default Gateway 0.0.0.0 IPv6 Administrative Mode Enabled IPv6 Prefix is FE80::2FF:F9FF:FE70:485/64 IPv6 Prefix is 2001:1::1/64 IPv6 Default Router 2001:1::2 Burned In MAC - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 436
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 27-4 b. Next to the Admin Mode, select the Enable Radio button. c. In the IPv6 Prefix/Prefix Length field, enter 2001:1::1/64. d. Select False - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 437
to VLAN 500 and enable IPv6 routing. (Netgear Switch) (Config)#interface vlan 0/4/1 (Netgear Switch) (Interface 0/4/1)#routing (Netgear Switch) (Interface 0/4/1)#ipv6 enable (Netgear Switch) (Interface 0/4/1)#ipv6 address 2000::1/64 (Netgear Switch) (Interface 0/4/1)#exit Enable ipv6 forwarding and - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 438
(Netgear Switch) #show ipv6 interface 0/4/1 IPv6 is enabled IPv6 Prefix is FE80::21E:2AFF:FED9:249B/128 2000::1/64 Routing Mode Enabled Administrative Mode Enabled IPv6 Routing Operational Mode Enabled Bandwidth 10000 kbps Interface Maximum Transmit Unit 1500 Router Duplicate Address Detection - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 439
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. In the VLAN ID field, enter 500. c. Select Static in the VLAN Type field. d. Click Add. 2. Add ports to the VLAN 500. a. From the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 440
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Under PVID Configuration, scroll down to interface 1/0/1 and select the checkbox for 1/0/1. c. In the PVID Configuration enter 500 in the PVID(1 to 4093) field. d. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 441
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Click the tag VLANS, then logical VLAN interface 0/4/2 will be displayed. c. Select the checkbox for 0/4/2, and in the IPv6 Interface Configuration, select Enable in the IPv6 Mode field. d. Click Apply. 6. Assign an IPv6 address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 442
are used to deliver multicast packets from one source to multi-receivers. They facilitate better bandwidth utilization, and use less host and router processing, making them ideal for usage in application such as video/audio conferencing, whiteboard tools, stock distribution tickers, and so on. PIM - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 443
192.168.2.0/24 Subnet 192.168.1.0/24 Subnet 192.168.5.0/24 NETGEAR Managed Switches Software Administration Manual, Release 8.0 versions of PIM-DM. Version 2 does not use IGMP messages; instead, it uses a message that is encapsulated in IP packets with protocol number 103. In Version 2, the Hello - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 444
(Interface 1/0/1)#ip pimdm (Netgear Switch) (Interface 1/0/1)#exit (Netgear Switch) (Config)#interface 1/0/9 (Netgear Switch) (Interface 1/0/9)#routing (Netgear Switch) (Interface 1/0/9)#ip address (Netgear Switch) (Interface 1/0/9)#ip rip (Netgear Switch) (Interface 1/0/9)#ip pimdm (Netgear Switch - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 445
ip routing (Netgear Switch) (Config)#ip pimdm (Netgear Switch) (Config)#ip multicast (Netgear Switch) (Config)#interface 1/0/10 (Netgear Switch) (Interface 1/0/10)#routing (Netgear Switch) (Interface 1/0/10)#ip address (Netgear Switch) (Interface 1/0/10)#ip rip (Netgear Switch) (Interface 1/0/10)#ip - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 446
Manual, Release 8.0 (Netgear Switch) (Config)#ip multicast (Netgear Switch) (Config)#interface 1/0/21 (Netgear Switch) (Interface 1/0/21)#routing (Netgear Switch) (Interface 1/0/21)#ip address (Netgear Switch) (Interface 1/0/21)#ip rip (Netgear Switch) (Interface 1/0/21)#ip pimdm (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 447
NETGEAR Managed Switches Software Administration Manual, Release 8.0 (C) #show ip mcast mroute summary Multicast Route Table Summary Incoming Source IP Group IP Protocol Interface --------- 192.168.1.1 225.1.1.1 PIMDM 1/0/21 (D) #show ip mcast mroute summary Multicast Route Table - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 448
NETGEAR Managed Switches Software Administration Manual, Release 8.0 similar to the following displays. Figure 28-3 b. Under IP Interface field at the top. c. Enter the following information in the IP Interface Configuration. • In the IP address, enter 192.168.2.2. • In the Subnet Mask, enter - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 449
Software Administration Manual, Release 8.0 b. Under IP Interface Configuration, scroll down to interface 1/0/9 and select the checkbox for 1/0/9. 1/0/9 now appears in the Interface field at the top. c. Enter the following information in the IP Interface Configuration. • In the IP address, enter 192 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 450
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing >RIP >Advanced > Interface Configuration. A screen similar to the following displays. Figure 28-6 b. Select 1/0/1 in the Interface field. c. Next - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 451
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > RIP >Advanced > Interface Configuration. A screen similar to the following displays. Figure 28-8 b. Select 1/0/13 in the Interface field. c. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 452
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >PIM-DM->Global Configuration. A screen similar to the following displays. Figure 28-10 b. Next to the Admin - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 453
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Under PIM-DM Interface Configuration, scroll Configure 1/0/10 as a routing port and assign IP address to it. a. From the main menu, select Routing > IP >Advanced > IP Interface Configuration. A screen similar to the following - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 454
Administration Manual, Release 8.0 Figure 28-13 b. Under IP Interface Configuration, scroll down to interface 1/0/10 and select the checkbox for 1/0/ 10. Now 1/0/10 appears in the Interface field at the top. c. Enter the following information in the IP Interface Configuration. • In the IP address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 455
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • In the Subnet Mask, enter 255.255.255.0. • Select Enable in the Routing Mode field. d. Click Apply to save the settings. 4. Enable rip on - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 456
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >Global Configuration. A screen similar to the following displays. Figure 28-17 b. Next to the Admin Mode, select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 457
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > to config PIM-DM, proceed as follows: 1. Enable IP routing on the switch. a. From the main menu, select Routing >IP >Basic >IP configuration. A screen similar to the following displays. PIM - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 458
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 28-20 b. Next to the Routing Mode, select the Enable radio button. c. Click Apply. 2. Configure 1/0/21 as a routing port and assign IP address to it. a. From the main menu, select Routing > IP >Advanced > IP Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 459
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP >Advanced > IP Interface Configuration. A screen similar to the following displays. Figure 28-22 b. Under IP information in the IP Interface Configuration. • In the IP address, enter 192. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 460
NETGEAR Managed Switches Software Administration Manual, Release 8.0 5. Enable rip on the interface 1/0/22. a. From the main menu, select Routing > RIP >Advanced > Interface Configuration. A screen similar to the following displays. Figure 28- - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 461
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >PIM-DM->Global Configuration. A screen similar to the following displays. Figure 28-26 b. Next to the Admin - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 462
NETGEAR Managed Switches Software Administration Manual, Release 8.0 On Switch D: To use the Web interface to config PIM-DM, proceed as follows: 1. Enable IP routing on the switch. a. From the main menu, select Routing >IP >Basic >IP configuration. A screen similar to the following displays. Figure - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 463
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Enter the following information in the IP Interface Configuration. • In the IP address, enter 192.168.2.1. • In the Subnet Mask, enter 255.255.255.0. • Select Enable in the Routing Mode field. d. Click Apply to save the settings - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 464
Administration Manual, Release 8.0 Figure 28-31 b. Under IP Interface Configuration, scroll down to interface 1/0/24 and select the checkbox for 1/0/ 24. 1/0/24 now appears in the Interface field at the top. c. Enter the following information in the IP Interface Configuration. • In the IP address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 465
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > RIP >Advanced > Interface Configuration. A screen similar to the following displays. Figure 28-33 b. Select 1/0/22 in the Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 466
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >Global Configuration. A screen similar to the following displays. Figure 28-35 b. Next to the Admin Mode, select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 467
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >PIM-DM->Interface Configuration. A screen similar to the following displays. Figure 28-37 b. Under PIM-DM Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 468
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a constraint. PIM-SM uses shared trees by default and implements source-based trees for efficiency; it router with the highest priority is elected. If all the priorities are equal, then the candidate with the highest IP address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 469
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Source IP 192.168.1.1 Subnet 192.168.1.0/24 Switch A Port 1/0/13 Port 1/0/1 Port1/0/9 Port 1/0/10 192.168.6.0/24 Port 1/0/21 Switch C Subnet 192.168.4.0/24 Figure 28-40 Host IP 192.168.4.2 PIM v1.0, October 2009 28-28 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 470
(Interface 1/0/1)#ip pimsm (Netgear Switch) (Interface 1/0/1)#exit (Netgear Switch) (Config)#interface 1/0/9 (Netgear Switch) (Interface 1/0/9)#routing (Netgear Switch) (Interface 1/0/9)#ip address (Netgear Switch) (Interface 1/0/9)#ip rip (Netgear Switch) (Interface 1/0/9)#ip pimsm (Netgear Switch - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 471
as a bootstrap router (BSR). (Netgear Switch) (Config)#ip pimsm bsr-candidate interface 1/0/10 30 7 (Netgear Switch) (Config)#interface 1/0/10 (Netgear Switch) (Interface 1/0/10)#routing (Netgear Switch) (Interface 1/0/10)#ip address (Netgear Switch) (Interface 1/0/10)#ip rip (Netgear Switch - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 472
Software Administration Manual, Release 8.0 (Netgear Switch) (Config)#interface 1/0/22 (Netgear Switch) (Interface 1/0/22)#routing (Netgear Switch) (Interface 1/0/22)#ip address (Netgear Switch) (Interface 1/0/22)#ip rip (Netgear Switch) (Interface 1/0/22)#ip pimsm (Netgear Switch) (Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 473
NETGEAR Managed Switches Software Administration Manual, Release 8.0 (A) #show ip mcast mroute summary Multicast Route Table Summary Incoming Source IP Group IP Protocol Interface ----------- 192.168.1.1 225.1.1.1 PIMSM 1/0/13 Outgoing Interface List 1/0/1 (B) #show ip mcast - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 474
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 28-41 b. Next to the Routing Mode, select the Enable radio button. c. Click Apply. 2. Configure 1/0/1 as a routing port and assign IP address to it. a. From the main menu, select Routing > IP >Advanced > IP Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 475
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP >Advanced > IP Interface Configuration. A screen similar to the following displays. Figure 28-43 b. Under IP information in the IP Interface Configuration: • In the IP address, enter 192. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 476
Administration Manual, Release 8.0 Figure 28-44 b. Under IP Interface Configuration, scroll down to interface 1/0/13 and select the checkbox for 1/0/ 13. 1/0/13 now appears in the Interface field at the top. c. Enter the following information in the IP Interface Configuration. • In the IP address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 477
NETGEAR Managed Switches Software Administration Manual, Release 8.0 6. Enable rip on the interface 1/0/9. a. From the main menu, select Routing > RIP >Advanced > Interface Configuration. A screen similar to the following displays. Figure 28-46 b. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 478
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >Global Configuration. A screen similar to the following displays. Figure 28-48 b. Next to the Admin Mode, select - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 479
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > to config PIM-SM, proceed as follows: 1. Enable IP routing on the switch. a. From the main menu, select Routing >IP >Basic >IP configuration. A screen similar to the following displays. PIM - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 480
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 28-51 b. Next to the Routing Mode, select the Enable radio button. c. Click Apply. 2. Configure 1/0/10 as a routing port and assign IP address to it. a. From the main menu, select Routing > IP >Advanced > IP Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 481
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP >Advanced > IP Interface Configuration. A screen similar to the following displays. Figure 28-53 b. Under IP information in the IP Interface Configuration. • In the IP address, enter 192. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 482
NETGEAR Managed Switches Software Administration Manual, Release 8.0 5. Enable rip on the interface 1/0/11. a. From the main menu, select Routing > RIP >Advanced > Interface Configuration. A screen similar to the following displays. Figure 28- - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 483
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >PIM-SM->Global Configuration. A screen similar to the following displays. Figure 28-57 b. Next to the Admin - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 484
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. In the PIM-SM Interface Configuration, select Enable the following displays. Figure 28-59 b. Select 1/0/11 in the Interface field. c. In the Group IP, enter 225.1.1.1. d. In the Group Mask, enter 255.255.255.0. e. Click Add. 10. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 485
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 28-60 b. Select the 1/0/10 in the to config PIM-SM, proceed as follows: 1. Enable IP routing on the switch. a. From the main menu, select Routing >IP >Basic >IP configuration. A screen similar to the following displays. PIM - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 486
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 28-61 b. Next to the Routing Mode, select the Enable radio button. c. Click Apply. 2. Configure 1/0/21 as a routing port and assign IP address to it. a. From the main menu, select Routing > IP >Advanced > IP Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 487
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP >Advanced > IP Interface Configuration. A screen similar to the following displays. Figure 28-63 b. Under IP information in the IP Interface Configuration. • In the IP address, enter 192. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 488
NETGEAR Managed Switches Software Administration Manual, Release 8.0 5. Enable rip on the interface 1/0/22. a. From the main menu, select Routing > RIP >Advanced > Interface Configuration. A screen similar to the following displays. Figure 28- - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 489
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >PIM-SM->Global Configuration. A screen similar to the following displays. Figure 28-67 b. Next to the Admin - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 490
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >PIM-SM->Candidate RP Configuration. A screen similar to the following displays. Figure 28-69 b. Select 1/0/22 in the Interface field. c. In the Group IP, enter 225.1.1.1. d. In - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 491
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 28-70 b. Select the 1/0/21 in the to config PIM-SM, proceed as follows: 1. Enable IP routing on the switch. a. From the main menu, select Routing >IP >Basic >IP configuration. A screen similar to the following displays. PIM - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 492
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 28-71 b. Next to the Routing Mode, select the Enable radio button. c. Click Apply. 2. Configure 1/0/21 as a routing port and assign IP address to it. a. From the main menu, select Routing > IP >Advanced > IP Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 493
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP >Advanced > IP Interface Configuration. A screen similar to the following displays. Figure 28-73 b. Under IP information in the IP Interface Configuration. • In the IP address, enter 192. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 494
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Enter the following information in the IP Interface Configuration. • In the IP address, enter 192.168.4.1. • In the Subnet Mask, enter 255.255.255.0. • Select Enable in the Routing Mode field. d. Click Apply to save the settings - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 495
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. Click Apply. 7. Enable rip on the interface 1/0/24. a. From the main menu, select Routing > RIP >Advanced > Interface Configuration. A screen similar to the following displays. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 496
NETGEAR Managed Switches Software Administration Manual, Release 8.0 9. Enable PIM-SM globally. a. From the main menu, select Routing > Multicast >PIM-SM->Global Configuration. A screen similar to the following displays. Figure 28-79 b. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 497
NETGEAR Managed Switches Software Administration Manual, Release 8.0 11. Candidate RP Configuration. a. From the main menu, select Routing > Multicast >PIM-SM->Candidate RP Configuration. A screen similar to the following displays. Figure 28- - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 498
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 28-82 b. Select 1/0/22 in the Interface field. c. In the Hash Mask Length field, enter 30. d. In the Priority field, enter 3. e. Click Apply. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 499
NETGEAR Managed Switches Software Administration Manual, Release 8.0 14. Enable IGMP on the interface 1/0/24. a. From the main menu, select Routing > Multicast >IGMP->Interface Configuration. A screen similar to the following displays. Figure - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 500
Manual, Release 8.0 Chapter 29 DHCP L2 Relay DHCP Relay Agents eliminate the necessity of having a DHCP server on each physical network. Relay Agents populate the giaddr field and also append the Relay Agent Information option to the DHCP messages. DHCP servers use this option for IP address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 501
Manual, Release 8.0 CLI: DHCP L2 Relay (Netgear Switch)#vlan database (Netgear Switch)(Vlan)#vlan 200 (Netgear Switch)(Vlan)#exit Enable DHCP L2relay on the switch. (Netgear Switch) (Config)#dhcp l2relay (Netgear Switch) (Config)#dhcp l2relay vlan 200 Enable Option 82 Circuit ID field. (Netgear - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 502
Software Administration Manual, Release 8.0 Trust packets with option 82 received on port 1/0/6. (Netgear Switch) (Interface 1/0/6)# dhcp l2relay trust (Netgear Switch) (Interface 1/0/6)# vlan pvid 200 (Netgear Switch) (Interface 1/0/6)# vlan participation include 200 (Netgear Switch) (Interface - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 503
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 29-3 b. Select 200 in the VLAN ID field. c. Click the Unit 1. The Ports display. checkbox for 1/0/5 and 1/0/6. c. In the PVID Configuration, enter 200 in the PVID (1 to 4093) field. DHCP L2 Relay v1.0, October 2009 29-4 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 504
NETGEAR Managed Switches Software Administration Manual, Release 8.0 d. Click Apply to save the settings. 4. Enable DHCP L2 Relay on VLAN 200. a. From the main menu, select System > Services> DHCP L2 Relay > DHCP L2 Relay Configuration. A screen similar to the following displays. Figure 29-5 b. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 505
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Figure 29-6 b. Under DHCP L2 Relay Configuration, DHCP L2 Relay Trust on interface 1/0/6. a. From the main menu, select System > Services> DHCP L2 Relay > DHCP L2 Relay Interface Configuration. A screen similar to the following - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 506
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 30 MLD In this chapter, the following examples are provided: • "Configure MLD" on page 32-2 • "MLD Snooping" on page 32-5 Multicast Listener Discovery (MLD) protocol enables IPv6 routers to discover the presence of - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 507
A (Netgear Switch)#configure (Netgear Switch) (Config)#ipv6 router ospf (Netgear Switch) (Config-rtr)#router-id 1.1.1.1 (Netgear Switch) (Config)#exit (Netgear Switch) (Config)#ipv6 unicast-routing (Netgear Switch) (Config)#ipv6 pimdm (Netgear Switch) (Config)#ip routing (Netgear Switch) (Config)#ip - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 508
Managed Switches Software Administration Manual, Release 8.0 (Netgear Switch) (Config)#interface 1/0/13 (Netgear Switch) (Interface 1/0/13)#routing (Netgear Switch) (Interface 1/0/13)#ipv6 address 2001:2::1/64 (Netgear Switch) (Interface 1/0/13)#ipv6 enable (Netgear Switch) (Interface 1/0/13)#ipv6 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 509
Switch) (Interface 1/0/24)#ipv6 mld router (Netgear Switch) (Interface 1/0/24)#ipv6 pimdm (Netgear Switch) (Interface 1/0/24)#exit The MLD group information on switch B: (B) #show ipv6 mld groups ff32::1 Interface 71/1/24 Group Address FF32::1 Last Reporter FE80::200:4FF:FEE8:5EFC Up Time - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 510
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing >IP >Basic >IP configuration. A screen similar to the following displays. Figure 30-2 b. Next to the Routing Mode, select the Enable radio button. c. Click Apply. 2. Enable IPv6 Unicast - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 511
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP v6>Advanced > Interface Configuration. A screen similar to the following Modefield. d. Click Apply to save the settings. 4. Assign IPv6 address to 1/0/1. MLD v1.0, October 2009 30-6 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 512
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP v6>Advanced > Prefix Configuration. A screen similar to the following displays. Figure 30-5 b. Under IPv6 Interface Selection, select 1/0/1 in the Interface field. c. Enter the following - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 513
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP v6>Advanced > Prefix Configuration. A screen similar to the following displays. Figure 30-7 b. In the Router ID field, enter 1.1.1.1. c. Next to the Admin Mode, select the Enable radio - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 514
NETGEAR Managed Switches Software Administration Manual, Release 8.0 7. Enable OSPFv3 on the interface 1/0/1 and 1/0/13. a. From the main menu, select Routing > OSPFv3 >Advanced > Interface Configuration. A screen similar to the following displays. Figure - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 515
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Next to the Admin Mode, select the Enable radio button. c. Click Apply. 9. Enable PIM-DM globally. a. From the main menu, select Routing > Multicast >PIM- - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 516
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >PIM-DM->Interface Configuration. A screen Switch B: To use the Web interface to config MLD, proceed as follows: 1. Enable IP routing on the switch. 30-11 v1.0, October 2009 MLD - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 517
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing >IP >Basic >IP configuration. A screen similar to the following displays. Figure 30-12 b. Next to the Routing Mode, select the Enable radio button. c. Click Apply. 2. Enable IPv6 Unicast - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 518
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP v6>Advanced > Interface Configuration. A screen similar to the following Mode field. d. Click Apply to save the settings. 4. Assign IPv6 address to 1/0/21. 30-13 v1.0, October 2009 MLD - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 519
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP v6>Advanced > Prefix Configuration. A screen similar to the following displays. Figure 30-15 b. Under IPv6 Interface Selection, select 1/0/21 in the Interface field. c. Enter the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 520
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP v6>Advanced > Prefix Configuration. A screen similar to the following displays. Figure 30-17 b. In the Router ID field, enter 2.2.2.2. c. Next to the Admin Mode, select the Enable radio - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 521
NETGEAR Managed Switches Software Administration Manual, Release 8.0 7. Enable OSPFv3 on the interface 1/0/21 and 1/0/24. a. From the main menu, select Routing > OSPFv3 >Advanced > Interface Configuration. A screen similar to the following displays. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 522
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >PIM-DM->Global Configuration. A screen similar to the following displays. Figure 30-20 b. Next to the Admin - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 523
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. In the PIM-DM Interface Configuration, select Enable in the Admin Mode field. d. Click Apply to save the settings. 11. Enable MLD on the - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 524
NETGEAR Managed Switches Software Administration Manual, Release 8.0 forwarded to only those interfaces associated with IP multicast address. In IPv6, MLD snooping performs a packets. MLD is a protocol used by IPv6 multicast routers to discover the presence of multicast listeners (nodes wishing to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 525
Managed Switches Software Administration Manual, Release 8.0 CLI: MLD Snooping (Netgear Switch) #vlan da (Netgear Switch) (Vlan)#vlan 300 (Netgear Switch) (Vlan)#exit (Netgear Switch) #config (Netgear Switch) (Config)#interface 1/0/1 (Netgear Switch) (Interface 1/0/1)#vlan participation include - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 526
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Switching > VLAN >Basic > VLAN configuration. A screen similar to the following displays. Figure 30-24 b. In the VLAN Configuration, VLAN - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 527
NETGEAR Managed Switches Software Administration Manual, Release 8.0 e. Click Apply 3. Assign PVID to port 1/0/1 and 1/0/24. a. From the main menu, select Switching > VLAN> Advanced > Port PVID Configuraton. A screen similar to the following - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 528
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Click Apply. 5. Enable MLD Snooping on the VLAN 300. a. From the main menu, select Routing > Multicast >MLD Snooping > MLD VLAN Configuration. A screen similar to - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 529
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Chapter 31 DVMRP The Distance Vector Multicast Routing Protocol (DVMRP) is used for multicasting over IP networks without routing protocols to support multicast. The DVMRP is based on the RIP protocol but more complicated than RIP. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 530
13 and 1/0/21. (Netgear Switch) #config (Netgear Switch) (Config)#ip routing (Netgear Switch) (Config)#interface 1/0/1 (Netgear Switch) (Interface 1/0/1)#routing (Netgear Switch) (Interface 1/0/1)#ip address 192.168.1.1 255.255.255.0 (Netgear Switch) (Interface 1/0/1)#exit (Netgear Switch) (Config - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 531
) (Interface 1/0/13)#ip dvmrp (Netgear Switch) (Interface 1/0/13)#exit (Netgear Switch) (Config)#interface 1/0/21 (Netgear Switch) (Interface 1/0/21)#ip dvmrp (Netgear Switch) (Interface 1/0/21)#exit (Netgear Switch) #show ip dvmrp neighbor Interface 1/0/13 Neighbor IP Address 192.168.2.2 State - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 532
Software Administration Manual, Release 8.0 On Switch B Create the routing port 1/0/13 and 1/0/20. (Netgear Switch) #config (Netgear Switch) (Config)#ip routing (Netgear Switch) (Config)#interface 1/0/13 (Netgear Switch) (Interface 1/0/13)#routing (Netgear Switch) (Interface 1/0/13)#ip address 192 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 533
Switches Software Administration Manual, Release 8.0 (Netgear Switch) #show ip dvmrp neighbor Interface 1/0/13 Neighbor IP Address 192.168.2.1 State 0 Received Bad Packets 0 Received Bad Routes 0 Interface 1/0/20 Neighbor IP Address 192.168.4.2 State Active Up Time (hh:mm:ss 00:01:44 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 534
Manual, Release 8.0 On Switch C: Create the routing interface 1/0/11,1/0/3 and 1/0/24. (Netgear Switch) #config (Netgear Switch) (Config)#ip routing (Netgear Switch) (Config)#ip interface 1/0/11 (Netgear Switch) (Interface 1/0/11)#ip routing (Netgear Switch) (Interface 1/0/11)#ip address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 535
Software Administration Manual, Release 8.0 Enable IGMP mode on the interface 1/0/24. (Netgear Switch) (Config)#interface 1/0/24 (Netgear Switch) (Interface 1/0/24)#ip igmp (Netgear Switch) (Interface 1/0/24)#exit (Netgear Switch) #show ip dvmrp neighbor Interface 1/0/11 Neighbor IP Address 192 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 536
NETGEAR Managed Switches Software Administration Manual, Release 8.0 1. Enable IP routing on the switch. a. From the main menu, select Routing >IP >Basic >IP the top. c. Enter the following information in the IP Interface Configuration. • In the IP address, enter 192.168.1.1. • In the Subnet Mask, - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 537
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • Select Enable in the Routing Mode field. d. Click Apply to save the settings. 3. Configure 1/0/13 as a routing port and assign IP address to it. a. From the main menu, select Routing > IP >Advanced > IP Interface Configuration. A - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 538
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP >Advanced > IP Interface Configuration. A screen similar to the following displays. Figure 31-5 b. Under IP information in the IP Interface Configuration. • In the IP address, enter 192.168 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 539
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Next to the Admin Mode, select the Enable radio button. c. Click Apply. 6. Enable DVMRP on the switch. a. From the main menu, select Routing > Multicast > - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 540
NETGEAR Managed Switches Software Administration Manual, Release 8.0 b. Under IP >Basic >IP configuration. A screen similar to the following displays. Figure 31-9 b. Next to the Routing Mode, select the Enable radio button. c. Click Apply. 2. Configure 1/0/13 as a routing port and assign IP address - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 541
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > IP >Advanced > IP Interface Configuration. A screen similar to the following displays. Figure 31-10 b. Under IP information in the IP Interface Configuration. • In the IP address, enter 192. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 542
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Enter the following information in the IP Interface Configuration. • In the IP address, enter 192.168.4.1. • In the Subnet Mask, enter 255.255.255.0. • Select Enable in the Routing Mode field. d. Click Apply to save the settings - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 543
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >DVMRP>Global Configuration. A screen similar to the following displays. Figure 31-13 b. Next to the Admin Mode, - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 544
NETGEAR Managed Switches Software Administration Manual, Release 8.0 On Switch C: To use the Web interface to config DVMRP, proceed as follows: 1. Enable IP routing on the switch. a. From the main menu, select Routing >IP >Basic >IP configuration. A screen similar to the following displays. Figure - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 545
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • In the Subnet Mask, enter 255.255.255.0. • Select Enable in the Routing Mode field. d. Click Apply to save the settings. 3. Configure 1/0/3 as a routing port and assign IP address to it. a. From the main menu, select Routing > IP - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 546
Administration Manual, Release 8.0 Figure 31-18 b. Under IP Interface Configuration, scroll down to interface 1/0/24 and select the 1/0/24 checkbox. Now 1/0/24 appears in the Interface field at the top. c. Enter the following information in the IP Interface Configuration. • In the IP address, enter - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 547
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Routing > Multicast >DVMRP>Global Configuration. A screen similar to the following displays. Figure 31-20 b. Next to the Admin Mode, - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 548
NETGEAR Managed Switches Software Administration Manual, Release 8.0 c. Select Enable in the Interface Mode field. d. Click Apply to save the settings. 8. Enable IGMP on the switch. a. From the main menu, select Routing > - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 549
NETGEAR Managed Switches Software Administration Manual, Release the switch so that the unauthenticated clients can get an IP address and be able to resolve the hostname or domain names physical ports on the switch. It is not supported for VLAN interfaces, loopback interfaces or logical interfaces. - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 550
NETGEAR Managed Switches Software Administration Manual, Release 8.0 The clients connecting to the Captive Portal interface have three states; the "Unknown State", the "Unauthenticated State", and the "Authenticated" state. In the unknown - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 551
Managed Switches Software Administration Manual, Release 8.0 Enable captive portal instance 1 on port 1/0/1. (Netgear Switch) (Config-CP 1)#interface 1/0/1 Web Interface: Enabling Captive Portal To use the Web interface to configure the Captive Portal, proceed as follows: 1. Enable Captive Portal - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 552
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > Control >Captive Portal> CP Configuration. A screen similar to the following displays. Figure 32-2 b. Under Captive Portal Configuration, scroll - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 553
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Client Access, Authentication, and Control User verification can be configured to allow access for guest users; users that do not have assigned user names and passwords. User verification can also be configured to allow access for - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 554
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Local Authorization User/Group Configuration When using Local authentication, the administrator provides user identities for Captive Portal by adding unique user names and passwords to the Local User Database. This configuration is - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 555
NETGEAR Managed Switches Software Administration Manual, Release 8.0 a. From the main menu, select Security > Control >Captive Portal > CP Group Configuration. A screen similar to the following displays. Figure 32-5 b. Enter the following information - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 556
NETGEAR Managed Switches Software Administration Manual, Release 8.0 • In the User ID Field, enter 2. • In the User Name field, enter user1. • In the Password field, enter 12345678. • In the Confirm Password Integer (seconds) Optional Default None None 0 0 32-8 v1.0, October 2009 Captive Portal - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 557
NETGEAR Managed Switches Software Administration Manual, Release 8.0 Table 32-1. RADIUS Attributes for Configuring Captive Optional Default 0 Optional 0 CLI: Configuiring RADIUS as the Verification Mode (Netgear Switch ) (Config-CP 1)#radius-auth-server Default-RADIUS-Server (Netgear Switch - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 558
NETGEAR Managed Switches Software Administration Manual, Release 8.0 SSL Certificates A Captive Portal instance can be configured to use the HTTPS protocol during its user verification process. The connection method for HTTPS uses - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 559
DHCP server, dynamic mode 22-1 DiffServ edge device 13-1 interior node 13-1 IPv6 13-33 VoIP support 13-20 DNS 21-1 add a host name and IP address 21-2 specify two DNS servers 21-1 DVLAN 23-1 DVMRP 31-1 E Easy Setup Wizard 1-5 Ezconfig 1-10 G gaming 14-7 guest VLAN 15-20 v1.0, October 2009 Index-1 - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 560
NETGEAR Managed Switches Software Administration Manual, Release 8.0 I IGMP querier 14-7, 14-8 status 14-9 IGMP snooping 14-1, 14-8 14-2 external multicast router 14-4 multicast router using VLAN 14-6 show mac-address-table 14-3 show mac-address-table igmpsnooping 14-4 IGMPv3 14-1 in-band - Netgear GSM7224v2 | 7000 Series Managed Switch Administration Guide for Software - Page 561
NETGEAR Managed Switches Software Administration Manual -1 initial configuration 1-4 IP address 1-11 IP address assignment with auto install 19-7 stacking recommendations 19-9 upgrading firmware 19-15 syslog 18-1 T 3-2 double VLANs 23-1 guest VLAN 15-20 IP subnet based 3-16 IPv6 routing VLAN 27-6 MAC
202-10515-01
October 2009
NETGEAR
, Inc.
350 East Plumeria Drive
San Jose, CA 95134
NETGEAR Managed
Switches Software
Administration Manual,
Release 8.0