Коммутаторы локальных сетей D-Link.v4.12 PDF

:
D-Link

, 2006
D-Link
.
.......................................................................................................................5
: ....5
. ...............................................6
.....................................................................................................7
..................................................7
..............................8
IEEE 802.3x ...................................9
.................................................................................................................9
OSI .........................................................................10
.............................................................12
...........................................12
......................................................................13
........................................................................................14
...............................................................15
xStack..............................................................................................................19
. Single IP Management .....................................23
, ............................25
......................................................25
..................................................................................................26
..........................................................................................................27
..............................................................................28
............................29
........................................................................................30
..............................................................31
........................................................................................................................31
...................................................................................................32
..................................................................................................................32
D-LINK ............................................................................................................................33
...........................................................................................34
............................................................................35
..................................................................................................37
................................................................................................39
, ....................39
.....................................................................................................39
.............................................................41
..................................................................................43
..............................................................................................43
.............................................................................45
Web- ..............................49
..................................................50
VLAN ........................................................................................51
VLAN..................................................................................................................................51
VLAN .........................................................................................................52
2
D-Link
VLAN MAC- ............................................................................................53
VLAN IEEE 802.1Q.........................................................54
IEEE 802.1Q ..............................................................................................55
VLAN 802.1Q ..........................................................................55
IEEE 802.1Q VLAN ....................................................................................................56
Port VLAN ID ..........................................................................................................................57
Tagged Untagged .............................................................................................................60
.................................................................................62
VLAN CLI.......................................................................63
VLAN............................................................................................................65
1. VLAN
..........................................................................................................................67
2. VLAN
........................................................................................................................69
..............71
CLI ...........................75
1. .....................................................................76
2.
IEEE 802.3ad ................................................................................................78
SPANNING TREE PROTOCOL (IEEE 802.1D).................................................................................81
........................................................................................................................81
.........................................................................................81
.....................................................................................81
......................................................................................................82
STP................................................................................................................86
Rapid Spanning Tree Protocol (IEEE 802.1w)...............................................................91
IEEE 802.1w .................................................................................................94
/..................................................97
..................................................................................98
IEEE 802.1d/IEEE 802.1w ................................................................99
.......................................................................................100
STP 802.1d RSTP 802.1w ..........................................100
STP CLI.................................................101
(QOS) ...........................................................................................................103
(IEEE 802.1).....................................................103
CLI.....106
......................................................................................108
CLI.............108
....................................................................................................110
Port Security ................................................110
Port Security CLI .................................................................111
.................................................................................................................112
Traffic Segmentation CLI...............................113
IEEE 802.1 ..............................................................................................................114
.......................................................................................................................114
.....................................................................................116
IEEE 802.1 .........................................................117
IEEE 802.1 CLI................................................118
ACCESS CONTROL LISTS (ACL).....................................................................................................121
.........................................................................121
3
D-Link
( Web-) ...........121
Access Control Lists (ACL) CLI....................126
........................................................................................128
.........................................................................................................133
..........................................................................133
- .................................................................................133
..................................................................................134
IGMP v1.............................................................................................................134
IGMP v2.............................................................................................................135
2 ...........................................135
IGMP- snooping CLI.........................................138
: ...............................................................................................................................141
. .....................................................................142
. ..........................................................................................143
D-Link

.
,
.
,
-
,
.
, .
,
,
.
, 3- ,
VLAN .
, .

:

,
.
VLAN (Virtual Local Area
Network) ,
5
D-Link

, .

,
.
, Fast Ethernet, Gigabit Ethernet.

1990-
,
.

() ,

.
,
.

. ,

( ,
).
,
.

,

.

:
,
.

, .
.
.
:
;
;
.
D-Link
,
.
6
D-Link

.

,

.
,
.

(transparent bridge) IEEE 802.1,
Ethernet.

-
. , 1
1, ,
(forwarding database).
. , ,
, -
(content-addressable memory, CAM). ,
, .
.
, ,
. , ,
.
: ISO/OSI
D-Link
.
,
- -
. , -
, ,
, .
, , ,
.
(flooding).

,
.
(broadcast)
, .
-
,
,
, .
(broadcast storm).
,
.
(filtering) , -
.
, .

:
.
- , ,

1.
,
- - .
,
. ,
,

. ,
, ,

2.
(collision domain) Ethernet,

, .
2
.
.
D-Link
IEEE 802.3x

, .
(, ) (, )
.
- -,
.
, ,
, -
(. 3).
3 IEEE 802.3x

- Ethernet
. -
()
/.
,
-
.

.
(store-and-forward)

. (
, 64 1518 ),
. ,
.
, ,
.
- ,
.
9
:

,
.
D-Link
(cut-through)
( 6
) ,
. ,
. :
(fast-forward switching)
,
, .
.
, , ,
.
(fragment-free switching)
, .
,
64 . , , 64
. ,
, , .

.
OSI

OSI, ,
. 2 (Layer 2 Switch),
2 3 (Layer 3 Switch)
.
2 ,

OSI.
2
. 2- ,
OSI.
2- .
, .

, Application-Specific Integrated Circuits (ASIC).
, ,
.
2 2-
.
.
(
),
, ,
.
2- ,
.
10
D-Link
(broadcast)
, .
, ,
3- OSI .
2 3 (
3- )
, -. 3-

( 2) ( 3) OSI .
, ( 2)
( 3) . 3

.
3-
:

( , IP)

3-
IP- .
3-

,

,
ASIC.
.
D-Link
3- Fast Ethernet Gigabit
Ethernet. xStack DGS-3324SR, DGS3324SRi, DXS-3326GSR, DXS-3350SR DES-3352SR,
DGS-3312SR, DES-6500 .
4-
3, (,
Telnet FTP). D-Link 4-
( , )

, .

2, 3 4.
:
- /
IP- / (3-)

/
.
11
D-Link

,
, . ,
, .

,
.
MAC- .

.

.
ASIC,
( ) . ,
(), , , RISC .
ASIC 2 ASIC,
( ) ASIC,
.

/
ASIC , , - .
3 :
(cross-bar);
(shared memory);
.

.

(cross-bar) -
,
. ,
,

.
- ,
.

( ).
. ,
cross-bar ,

12
D-Link
.
, cross-bar

.

(shared memory switch)
.
. ,
, 5
,

.
13
D-Link

(backplane)
,
. 6 -
, ASIC. ,
,
.

, ,
N
* 2 /
( N , Cpi -
, i- )

. ,
, ,
,
.
.

,
(non-blocking) -
.
14
D-Link
;
;
,
.

. 8 50
10,100,1000/,
.
Fast Ethernet D-Link DES-1005D, DES1008D, DES-1018DG, DES-1024DG, DES-1010G, DES-1016D, DES-1024D .
7 DES-1018DG
8 DES-1226G

.
- ,

.
hot swap,
, ,
.

.
2 3 D-Link
:
2 DES-1200M, DES-6000, DES-7000
3 DES-6300, DES-6500.
15
D-Link
9 3 DES-6500

. ,
, ,
,
, . ,
.
D-Link
:
Fast Ethernet 2/3-
DES-3x26S;
Fast Ethernet 2/3-
DES-35xx 38
Single IP Management (SIM);

Fast/Gigabit Ethernet 3-
SIM xStack DES-3352SR, DGS-3324SR, DGS3324SRi, DXS-3326GSR, DXS-3350SR, DGS-34xx DGS-36xx.

.
,
- ,
.
,
DGS-3324SR DES-3226S.
16
D-Link
10 DGS-3324SR
11 DES-3226S

(
), 10.
12 8 4
17
D-Link
,
.
13
DES-3226S DES-3326S 12 xStack
DGS-3324SR.
:
, ,

.
-.
,
:
, ..
-
. (
DES-3326S/3226S,
2- ,
);
,
- .
D-Link
Gigabit Ethernet 3- D-Link DGS-3312SR DGS-3324SRi,
- .
DEM-540, DGS-3312SR
12 2- DES3226S, 288 10/100 / Fast Ethernet 12
Gigabit Ethernet, .
, , DGS-3312SR
,
, 2-
,
3- .
13 DGS-3312SR ( ) DES-3226S
18
D-Link
xStack
3 DGS-3324SR/DGS-3324SRi
DXS-3326GSR/DXS-3350SR
10-Gigabit Ethernet

xStack.
xStack
, ,
.

xStack.
8 4
(. 14). ,

. ,
(8->9->10->11->12->1->2->3->4).
14
xStack ,
(8->7>6->5->4).
19
D-Link
15 xStack
(. 15) , 8
, ,
4. ,

, .
, xStack
.
(Full
Redundancy Mechanism),
,
8->9->10->11->12->1->2->3->4 (. 16)
20
D-Link
16 StackTM
( 6)
StackTM DGS-3324SR, DGS-3324SRi, DXS3326GSR DXS-3350SR

10 / .
,
20 /.
17
21

40 /.
D-Link

18 StackTM
12 DGS3324SR, DXS-3326GSR DXS-3350SR 336 Gigabit

Ethernet.
StackTM
- DGS-3324SRi.
6 DGS-3324SR, DXS-3326GSR
DXS-3350SR
120 /.
, -, 312 Gigabit
Ethernet 12 10 Gigabit Ethernet.
19 - DGS-3324Sri ( )
22
. Single IP Management

,
,
.
D-Link Single IP Management (SIM).
DES-3526, DES-3550, DGS3312SR xStack.
Single IP Management (SIM) -
IP .
32- ,
Ethernet.
20 Single IP Management
SIM :
,
;
IP- ;

, ;
, .
,
, SIM
7- 12- . SIM-
32 , Single IP
ManagementTM3. ,
, 2-
( ).
SIM-
. ,
, Fast
3
Single IP ManagementTM (SIM) SIM-.

SIM- ,
D-Link
Ethernet, Gigabit Ethernet 10 Gigabit Ethernet
(10GBE)
, .
, .

Ethernet .
24
D-Link
,

.
, :
;
;
;
.
, ,
. :
;
() ;
;
;
.

-
.
,
.
(filtering) ,
:
;

;
,
;

-
.
(forwarding) ,
:
;

;

.
,
.
,
25
D-Link
, ,
Ethernet
, 64 ( )
46 .
,

,

.
( ),
.
,
,
Ethernet, Fast Ethernet ..

,
,
, ,
,
.
,
.
,

.
, , ,
, -
,
.

. ,
5 40 ,
- 50 200 ( ).

MAC-,
.
, .
- ,
,
, , 4 4
. D-Link
26
D-Link
4 8.
8
16, , 16 32
.

.
,
,
- .
,

, .
,
.
, ,
, .

,
.
.
,

, ,
. ,

,
.

(
50-100)
. .
,
,
.
(Flow control).
,
,
.
.
.
27
D-Link

.
D-Link
,
, ,
QoS

SNMP, D-Link D-View.

D-Link.
Flash-
, ,
8-16 .
,
.
Flash- ,

, .

NV-RAM, .
28
D-Link

.
,
, .

.
,
,
, ,
. D-Link
D-View.
21 RMON
22
29
D-Link

,
:
,
-
,
.

.
,
.
,
,
.
;
,
-
,

,
,
;
,

(

). ,
.

;

,
.
30
D-Link
23

:
;
;
.
.
.
OSI,
.
OSI ,
.
, ,
, ,
.

. ,
, .
,
, , .
,

.
31
D-Link

,
, .
,

:

,
;
;
(, 100Base-TX
1000Base-T);

.

.
/ .
:
( )
;
();
;

32
D-Link
D-Link

D-Link.
D-Link

.
,
.
, .
.
:
DES (D-Link Ethernet Switch) - D-Link 10/100
;
DGS (D-Link Gigabit Switch) - D-Link 1000
,
X-Stack;
DXS (D-Link X-Stack Switch) - D-Link 1000
X-Stack 10;
DEM (D-Link Ethernet Module) - GBIC SFP
DXS;
DPS (D-Link Power Switch) -
.
- , :
10 ;
12 ;
13 -
;
15 -
;
21 2-
;
32 2- ;
33 3- ;
35 2-
Single IP Management;
38 - 3-
Single IP Management;
65 3-
Single IP Management.
.
:
D (Desktop) - ;
F FX FL (Fiber) - 100Base-FX ;
G or SX (Gigabit) - 1000Base-T
1000Base-SX;
R (RackMount) - 19" (
),
( );
33
D-Link
M (Module) - ;
S (Stack) - ;
TG (Twisted Pair and GBIC) - UTP/STP GBIC ;
T or TX or TP- Twisted Pair - UTP/STP 10
10/100 1000 .
, DGS-3324SR :
DGS -
33 -
24 - 24
SR - ,
.

.

.
D-Link
:
DES-1005D/1008D/1016D/1024D
5/8/16/24- 10/100BASE-TX,
, .
24 DES-1008D
DES-1018DG/1024DG
, 16 22
10/100BASE-TX 2 1000BASE-T.
Gigabit Ethernet

5.
25 DES-1024DG
DGS-1005D/08D/16D/24D Gigabit
Ethernet , 5/8/16/24 1000BASE-T
.
34
D-Link
26 DGS-1016D
DES-1226G DGS-12xxT Fast Gigabit

Ethernet, 10/100 /
10/100/1000 /
.
DES-3226S/3326S/3326SR 2- 3-
24 10/100BASE-TX 1
Fast Gigabit Ethernet.
,
.
DES-3526 DES-3550 Fast Ethernet 2-
Single IP Management (SIM).
24 48 10/100BASE-TX 2
1000BASE-T/SFP Gigabit Ethernet
. DES-3500
SIM,
3- ,
27 DES-3526 DES-3550

.
D-Link:
DES-3226S/3326S/3326SR,
DES-3250TG,
DES-3350SR
, ,
24 48 10/100BASE-TX 2 10/100/1000/.
DES-3226S/3326S
312
10/100BASE-TX 13 Gigabit
Ethernet.
DGS-3312SR Gigabit Ethernet 3 ,

35
D-Link
. 4 1000BASE-T/Mini GBIC (SFP) 2 .
DGS-3312SR 12 DES-3226S
, 288 10/100BASE-TX 12
Gigabit Ethernet, .
28 DGS-3312SR
DGS-3224TGR Gigabit Ethernet 2- ,

. 20 10/100/1000BASE-T 4
10/100/1000BASE-T /Mini GBIC (SFP)
. ,
, VLAN
,

.
48/
DGS-3324SR Gigabit Ethernet 3-
xStack,

. 20
1000BASE-T, 4 - 1000BASE-T/Mini GBIC (SFP)
, 2 10
/ .
88/.
DGS-3324SRi Gigabit Ethernet 3-
xStack 168
/. - ,
. DGS-3324SRi
16 1000BASE-T, 8
- 1000BASE-T/Mini GBIC (SFP) 6
10 / .
DXS-3326GSR Gigabit Ethernet 3-
20 Mini GBIC (SFP), 4 - 1000BASE-T/ Mini GBIC (SFP)
2 10 / ,
1
DEM-420X 2- 10GE XFP. Mini GBIC
.
(128/), 10 /
DXS36
D-Link
3326GSR ,
.
DXS-3350SR Gigabit Ethernet 3-
176 /.
44 SFP, 4 - 1000BASE-T/SFP, 2
10 / 1
DEM-420X 2- 10GE XFP.
,
( mini-GBIC)
DXS-3350SR
.

Metro Ethernet

29 DXS-3350SR

.
:
DGS-3324SR,
DGS-3324SRi,
DXS-3326GSR,
DXS-3350SR
Gigabit Ethernet 3-
.
DES-6000/6300
() 2- 3- ,
,
.
10/100/1000/,
.
16 , 128
10/100BaseTX.
DES-6500 ()
,
c
. DES-6500 9
,
, .
,
. DES-6500
2- 3- ,
37
D-Link
,
. DES-6500
160 /.
30 D-Link
38
D-Link
.

, Web- ,
(CLI), Telnet, SNMP, TFTP .
D-Link DES-3226S, DES-3326SR, DES3526, DES-3324SR, .

. D-Link DxS-10xx.

,
SNMP Telnet. DES-1226G DGS1216T/1224T.

Web,
, Web, .
).
,

,
, D-Link
.

,
.

, ,
.
,
. (
), Ethernet ( Telnet
Web-).
.
Ethernet,
IP-.
Ethernet Ethernet
,
UTP 5, 5 6 Gigabit Ethernet.

D-Link
39
D-Link
(MDI/MDI-X),
( ).
31

UTP 5, 5, 6 ,
.
.
32 ( -Uplink)

. ,
.
, ,
,
. , ,

( / ). (

).
40
D-Link

D-Link ,

RS-232, ,
.
Out-of-Band . ,
(
Ethernet).
,
.

(, HyperTerminal Windows).
,
, :
Baud rate:
Data width:
Parity:
Stop bits:
Flow Control:
9,600
8 bits
none
1
none

( ,

CLI):
33
, , DHS-3226
(. 34).
,

.
34
41
D-Link
, Ctrl+R , .

,
.
D-Link ,
Enter.
, DES-3800:admin#.
.
35 CLI
42
D-Link

CLI. ,
, ,
, . ?
Enter ,
.
36 ?
? ,
. ,
config, :
DES-3800:admin#config
? ( + ?) Enter.
.
TAB,
.
43
D-Link
37 config
44
D-Link

1.
.

.
.
, :
Admin User. Admin
.

CLI:
DES-3800:admin#create account admin/user <username>
( / , )
:
Enter a case-sensitive new password:
Enter the new password again for confirmation:
0 15 .

Success.

Admin (Username) dlink:
38
,
:
DES-3800:admin# config account <username>
39 dlink
:
45
D-Link
DES-3800:admin# show account
40
, delete account
<username>.
41 dlink
.
D-Link!
2. IP-.

web- Telnet, IP-
, . IP-
DHCP BOOTP
, CLI:
DES-3800:admin# config ipif System dhcp
DES-3800:admin# config ipif System ipaddress xxx.xxx.xxx.xxx/yy
xxx.xxx.xxx.xxx IP-, yy CIDR ,
/24 /30), System- .
42 IP-
46
D-Link
3. .
D-Link
().
,
.
D-Link
config ports.
10/,
, 1 3 (.
43).
43
show ports < >

.
show ports.
44 "show ports" 1-5 8
4.
NVRAM. save.
45 NVRAM
5. reboot.
46
47
D-Link

reset.
47
6. .
(
) show switch.
48
48
D-Link
Web-
D-Link Web
,
(GUI),
-, .
Web-

, ,
..
TCP/IP
80.
,
,
:
IP- ,
:
DES-3800:admin #config ipif System ipaddress xxx.xxx.xxx.xxx/yy ,
xxx.xxx.xxx.xxx IP-, yyy.yyy.yyy.yyy
IP-
:
DES-3800:admin#show ipif
Web-,
IP- ,
(. 49)
49 Web-
49
D-Link
, ,

, ,
, ,
.
, ,
.
, :
VLAN;
Spanning Tree IEEE 802.1d, 802.1w, 802.1s;
IEEE 802.3ad LACP
Ethernet;
IEEE 802.3ad LACP;
QoS;
,
IEEE 802.1 Port Security;
;
SNMP .
50
D-Link
VLAN
.
, ,
.
( "-")
, (
). ,
. ,
ARP, BOOTP DHCP,
,
- .

, . ,
(
) -
(Virtual LAN, VLAN).
,
, ,
. ,
MAC- ,
. ,
, ,
. ,

,
.
VLAN :
. VLAN

, ;
VLAN
, ,
;
VLAN ,
, ,

.
VLAN
VLAN:
VLAN
VLAN MAC-.
VLAN
IEEE 802.1Q
51
D-Link
VLAN
VLAN ,
VLAN, ,
. , ,
, VLAN.
.
50 VLAN
VLAN :
.

, ,
, VLAN
.
.

- , VLAN,
VLAN (VLAN ID) .

, VLAN (, VLAN )
(VLAN )
VLAN.
, VLAN ,
.
VLAN.
,
, (
ISO/OSI). VLAN
,
, IP
(. 51).
52
D-Link
51 VLAN ,
, VLAN
.
,
.
: ,
VLAN
3.
VLAN MAC-
-.

.

, .
-
, ,
-
.
MAC-,
( ),

-
MAC-
- , VLAN
1000 . , MAC-
,
, .
53
D-Link
52 VLAN -
VLAN IEEE 802.1Q

. VLAN
,

.
IEEE 802.1Q
Ethernet, VLAN .
, VLAN
, .
:

VLAN ,
, IEEE
802.1Q. VLAN
802.1Q-
.
(Spanning
Tree) . Spanning Tree
,
,

.
.

, ,
54
D-Link
,
. Spanning Tree
, ,
.
VLAN 802.1Q
VLAN
, .
,
, - .
.
, VLAN,
. ,
VLAN, ,
.
IEEE 802.1Q.
, VLAN
,
,
.
IEEE 802.1Q
Tagging ( )
IEEE 802.1Q VLAN .
Untagging 802.1Q VLAN
.
Ingress port ( ) - ,
,
VLAN.
Egress port ( ) ,

, ,
.
tagged untagged.
untagging()
VLAN, Ethernet.
tagging() VLAN
, IEEE 802.1Q,
Spanning Tree.
VLAN 802.1Q
3
:

VLAN;
-
;
55
D-Link
- ,
.
53 IEEE 802.1Q
IEEE 802.1Q VLAN

Ethernet IEEE 802.1Q (.
56
D-Link
54). Ethernet . 2
08100 ,
IEEE 802.1Q/802.1p. 2
:
3
( 0 7, 7- ),
IEEE 802.1;
1 Canonical Format Indicator (CFI),
(Token Ring, FDDI),
Ethernet;
12-
VLAN
VLAN
ID
(VID),
, VLAN .
VID 12 , 4096
VLAN.
4 .
.
54 Ethernet
,
Cyclic Redundancy Check
(CRC).
Port VLAN ID
( IEEE 802.1Q VID)
, IEEE
802.1Q, VLAN.
VLAN (
, -
IEEE 802.1Q).
IEEE 802.1Q.
tag-unaware ( ).
,
IEEE
802.1Q,
tag-aware
( ).
57
D-Link
IEEE 802.1Q VLAN VLAN
MAC-.
Port VLAN ID (PVID) - VLAN- . ,
PVID ,
,
( ). PVID
, , PVID ,
.
PVID VLAN
(, VLAN
). , VLAN
( ).
IEEE 802.1Q ,
PVID.
VLAN, VLAN PVID = 1.
, , ,
PVID
VID .
PVID VID,
, VLAN.
PVID ,
. PVID , VLAN
,
.
VID, Ethernet.
VID , , VID ,
. VID ,
. , VLAN,
, ,
VLAN .
PVID VID
, ,
, .
58
D-Link
(.
55): 1 VLAN 1
PVID=1. , 3
( ), ,
, , 3 VLAN 1,
, VLAN.
3 VLAN 1,
. , 1
VLAN 1, .. PVID=1. 3, PVID=3
VLAN 1, VLAN,
VLAN 1, , PVID 1.
59
D-Link
55 VLAN 802.1Q

, ,
,
?
,
.
,
.
Tagged Untagged
, IEEE 802.1Q,
tagged () untagged
().
, tagged, VID,
VLAN .
,
, VLAN.
VLAN
, IEEE 802.1Q,
.
, untagged, 802.1Q
. VLAN 802.1Q,
. ,
VLAN (,
PVID ). untagging
,
IEEE 802.1Q, , .
56
60
D-Link
57
58 ,
61
D-Link
59 ,

,
VLAN,
ingress port ( ).

VLAN
.
VLAN,
, VLAN. ,
. , ,
VLAN. , .
VLAN,
.
VLAN,
VID,
PVID ( - tagged).
,
VLAN ( VID). , .

.
ingress filtering ( )

, VLAN,
.
62
D-Link
VLAN CLI
VLAN VID = 1,
DEFAULT_VLAN.
DEFAULT_VLAN. VLAN
VLAN ( DEFAULT_VLAN)
, VLAN.
CLI ,
, (.
1).
1 VLAN
create vlan
delete vlan
config vlan
config vlan
config gvrp
enable gvrp
disable gvrp
show vlan
show gvrp
enable
double_vlan
disable
double_vlan
create
double_vlan
config
double_vlan
show
double_vlan
delete
double_vlan
<vlan_name 32>
tag <vlanid 1-4094>
advertisement
<vlan_name 32>
<vlan_name 32>
add [tagged|untagged|forbidden]
advertisement [enable|disable]
<vlan_name 32>
delete <portlist>
<portlist> | all
state [enable | disable] ingress_checking
[enable | disable]
acceptable_frame
[tagged_only | admit_all]
pvid <vlanid 1-4094>}
<vlan_name 32>
<portlist>
VLAN
VLAN
VLAN

VLAN
GVRP
GVRP
GVRP
VLAN

GVRP
QinQ VLAN
QinQ VLAN
<vlan_name 32>
spvid <vlanid 1-4094>
tpid <hex 0x0-0xffff>
<vlan_name>
add [uplink | access]
delete <portlist>
tpid <hex 0x0-0xffff>
<vlan_name>
<vlan_name>
QinQ VLAN
QinQ VLAN
QinQ
VLAN
QinQ VLAN
1. 1-5 DEFAULT_VLAN config vlan default

delete 1-5
60 VLAN
63
D-Link
2. VLAN .
VLAN v1 VID
2 create vlan v1 tag 2
61 VLAN
3. VLAN.
1 5 VLAN v1
config vlan v1 add tagged 1-5
62 VLAN
4. VLAN .
63 VLAN
, 1-5
, Member ports,
,
Current Tagged ports.
64
D-Link
VLAN
,
-,
D-Link 2- Asymmetric VLAN.
,
VLAN 802.1Q
( )
, .
VLAN 2-
.
.
, VLAN ,
(.
64).
, ,
.
65
D-Link
64 VLAN
IEEE 802.1Q VLAN(

VLAN) VLAN ,
.
VLAN
,
VLAN-. VLAN ,
. ,
( ) .
, , VLAN, ,
, ,
, (PVID).
VLAN IGMP Snooping .
VLAN, PVID
, VLAN .
, VLAN . VLAN
.
VLAN
CLI (. 2).
2 Asymmetric VLAN
enable asymmetric_vlan
disable asymmetric_vlan
show asymmetric_vlan

VLAN. PVID
, VLAN
.
VLAN.
Asymmetric VLAN
Asymmetric VLAN
66
D-Link
1. VLAN

65 VLAN
VLAN V1: 1-8, untagged

-
VLAN2 ( )
VLAN3 ( )
:
1. VLAN V2 V3
VLAN V1;
2. VLAN V2 V3 -
;
3. V2 V3 .
1. VLAN
enable asymmetric_vlan
67
D-Link
66 Asymmetric VLAN
2. VLAN
show asymmetric_vlan
67 Asymmetric VLAN
3. VLAN V2 V3 .
DES-3226S#create vlan v2 tag 2
Command: create vlan v2 tag 2
Success.
Success.
4. VLAN.
1 16 VLAN V2, 1-8 1724 VLAN V3. .
DES-3226S#config vlan v2 add untagged 1-16
Command: config vlan v2 add untagged 1-16
Success.
DES-3226S#config vlan v3 add untagged 1-8,17-24
Command: config vlan v3 add untagged 1-8,17-24
Success.
5. GVRP (Group VLAN Registration Protocol)

VLAN.
DES-3226S# config gvrp 1-8 pvid 1
Command: config gvrp 1-8 pvid 1
Success.
Command: disable asymmetric_vlan
Success.
Command: config gvrp 17-24 pvid 3
Success.
68
D-Link
2. VLAN

68 VLAN
VLAN V1: 1 1-4, 2 1-4, untagged

-
1 5-8, 2 5-8, tagged

VLAN V2: 1 9-16, 2 9-16, untagged
VLAN2 ( )
VLAN V3: 1 17-24, 2 17-24,
untagged
VLAN3 ( )
:
1. VLAN V2 V3
- VLAN V1;
2. V2 V3 .
69
D-Link
, ).
1. VLAN .
DES-3226S#enable asymmetric_vlan
Command: enable asymmetric_vlan
Success.
2. VLAN .
DES-3226S# show asymmetric_vlan
Command: show asymmetric_vlan
Asymmetric Vlan : Enabled
3. VLAN V2 V3 .
Success.
Success.
4. 5-8 DEFAULT_VLAN.
DES-3226S#config vlan default add tagged 5-8
Command: config vlan default add tagged 5-8
Success.
5. VLAN V2 V3 .
1-4 9-16 VLAN V2, 1-4
17-24 VLAN V3. .
DES-3226S# config vlan v2 add untagged 1-4,9-16
Success.
DES-3226S#config vlan v3 add untagged 1-4,17-24
Success.
6. 5-8 VLAN V2 V3. .

DES-3226S#config vlan v2 add tagged 5-8
Command: config vlan v2 add tagged 5-8
Success.
DES-3226S#config vlan v3 add tagged 5-8
Command: config vlan v3 add tagged 5-8
Success.
70
D-Link

.

:

Spanning Tree;

,

.
.
(Port Trunking) -
(
Link Aggregation).
.
STP (Spanning Tree
),
,
. ,
,
.
69
71
D-Link

. .

, ,
,
. ,
.

.
,
OSI. ,

, -
, -
, .

,
.

.

, ..
. D-Link 6
:
mac_source - ;
mac_destination - ;
mac_source_dest - - ;
ip_source IP- ;
ip_destination IP- ;
ip_source_dest IP- .
72
D-Link
70
mac_source_dest

, -
.

, -,
, .
.

( 1 ),
.
D-Link DES-3226S, DES3526, DES-3350SR, DGS-3324SR
: .
( ),
.
IEEE 802.3ad,
(Link
Aggregation Control Protocol) ,
. ,
LACP
. ,
,
. LACP
73
D-Link
.
,
LACP,

- .
LACP .
IEEE 802.3ad Ethernet-,
, ,
Gigabit Ethernet ( 8
).
74
D-Link
CLI
,
Ethernet (. 3).
3 Link Aggregation
create
link_aggregation
delete
link_aggregation
config
link_aggregation
config
link_aggregation
algorithm
show
link_aggregation
config lacp_ports
show lacp_ports
group_id <value>
{type[lacp/static]}
group_id <value>
group_id <value>
master_port <port>
ports <portlist>
state [enabled|disabled]
mac_source
mac_destination
mac_source_dest
ip_source
ip_destination
ip_source_dest
group_id <value 1-32>
algorithm
<portlist> mode [active|passive]
{<portlist>}

LACP

LACP
75
D-Link
1.
71 C
1.
create link_aggregation group_id 2 type static.
72
2. ,

-
config link_aggregation algorithm mac_source
73
3. . 2, 4, 6 8
1, 2
config link_aggregation group_id 1 master_port 2 ports 2,4,6,8 state
enable
74
76
D-Link
4.
show link_aggregation
75
5. 1 2 .
6. . 1, 3,
5 7 1, 3
config link_aggregation group_id 1
master_port 1 ports 1,3,5,7 state enable
76 B
77
D-Link
2.
IEEE 802.3ad4
77
1. 2- ( )
create link_aggregation
group 1 type LACP
78
2. ,
-
config link_aggregation algorithm mac_source_dest
79
3. . 1-4
1, 5-8 2
4
LACP, IEEE
802.3ad.
78
D-Link
config link_aggregation group_id 1 master_port 1 ports 1-4 state
enable
80
4. 1-8
lacp_port 1-8 mode active
Active config
81
5.
show link_aggregation
82
6. LACP
show lacp_port 1-8
79
D-Link
83
7.
create link_aggregation group 1 type LACP
84
8. .
1-4 1 1, 1
config link_aggregation group_id 1 master_port 1 ports 1-4
state enable
85 B C
Passive,
.
!
1. LACP,
LACP. LACP,
Static, .
2. IEEE 802.3ad
, ,
802.3ad
Static.
80
D-Link
Spanning Tree Protocol (IEEE 802.1d)

,
, Spanning Tree Protocol (STP)
. ,
. Ethernet,
, . ,

, , Ethernet.

, .
,

.
, , ,
, :
;
;
.

. , ,
1, .
,

.
86

,

.
,
81
D-Link
. ,
, .

,
.
. ,
.

STP STA (Spanning Tree Algorithm).
STA

.
, STP
.
- Spanning Tree (
).

.
STP.
STA ,
. 8- , 2 : 2- , 6
- .
, ,
-.
,
.

(root switch), .

. , ,
, 32768 (8000h). ,
-. ,
. ,
(
),
,
.
STP (root port)
.
,
.
STP .

(designated port). ,

. ,
82
D-Link

(designated bridge) .
,
, .
.
, .
.

.
,
,
, .
, ,
.

.
STA
(Path Cost)
.

. 4
IEEE
802.1d.
4 IEEE 802.1d
4 /
10 /
16 /
100 /
1 /
10 /
250
100
62
19
4
2
100-1000
50-600
40-400
10-60
3-10
1-5
1-65535
1-65535
1-65535
1-65535
1-65535
1-65535
.

, ,
- BPDU (Bridge Protocol Data Unit).
BPDU ,
:
,
;
-
( );
;
BPDU
, , Ethernet.
BPDU
( 1-4). (
) , BPDU
83
D-Link
(Max Age),
.
87 BPDU
BPDU (. 87):
STA - 2 .
STA,
;
STP 1 ;
BPDU - 1 . BPDU BPDU,
,
, BPDU
,
,
,
- , ,
;
- 1 .
, -
;
- 8 ;
84
D-Link
- 2 ;
- 8 ;
- 2 ;
- 2 . 0.5
, .
BPDU ,
;
- 2 . BPDU
, ,
;
hello ( ),
BPDU ;
- 2 .
.
,

.
88 BPDU
BPDU (. 88)
:
STA - 2 ;
STP 1 ;
BPDU - 1
.
85
D-Link
STP
3 , (.
89). ,
. , - LAN1
.
,
, , . B
. ,

. , A .
,
. STP
B.
86
D-Link
89 Spanning Tree
,
. BPDU (
hello),
, 0,
,
BPDU.
BPDU,
, ,
BPDU,

. ,
BPDU, ,
.

.
,
- ,
.
87
D-Link
(.
89).
A ( ) BPDU,
0. B
BPDU, Port 1 (4) ,
BPDU (0). B 4
BPDU 4 Port 3 Port 2.
C BPDU B,
23 (4 + 19). C
BPDU Port 1.
BPDU 0 C 4 (
Port 1 4). C
. C Port 1 ,
. C
4
.

Port 1 4.
88
D-Link
90 Spanning Tree
,
.
,

. , ,
.
,
STP

.
,
.
Port 1 ( 4).
, Port 1
. Port 1 ( 4).
, Port
2 . Port 3 Port 2
, 23. STP
.
(20)
(30), Port 2 . Port
89
D-Link
3 (.
90)
,
:
91 STP
1. ;
90
2.
3.
4.
5.
D-Link
;
;
;
.
Blocking - (
) .
BPDU.
.
Listening () -
, BPDU.
,
BPDU , (,
). ,
,

.
Learning ()
.
.
STA, BPDU
. ,
,

.
Forwarding () -

.
BPDU.
Disable () .
STP,
.
Blocking.

BPDU,

.
( 20 )
BPDU,
.
D-Link Rapid STP (IEEE
802.1w), STP
( 1 ).
Rapid Spanning Tree Protocol (IEEE 802.1w)
D-Link
Spanning Tree Protocol, Rapid Spanning
Tree Protocol (RSTP), IEEE 802.1w ,
IEEE 802.1d STP. RSTP ,
STP,
.
91
D-Link
IEEE 802.1w Rapid Spanning Tree Protocol (RSTP)
IEEE 802.1d STP.
STP,
, , 3- ,
Ethernet.
STP 802.1d RSTP 802.1w
,
. RSTP
Disabled, Blocking Listening, STP
Discarding (),
.
92 STP 802.1d RSTP 802.1w
5 STP RSTP
STP

-?
DISABLE
DISABLE
BLOCKING
Disabled
Enabled
Enabled
RSTP
Discarding
Discarding
Discarding
LISTENING
Enabled
Discarding
LEARNING
Enabled
Learning
FORWARDING
Enabled
Forwarding
(Disabled)
(Disabled)
(Alternate,
Backup)
(Root,
Designated)
(Root,
Designated)
(Root,
Designated)
RSTP
. :
(Root Port);
(Designated Port);
(Alternate Port);
(Backup Port).
,
( )
.
92
D-Link
93
, BPDU
, .
94

.
RSTP 2 (Alternate)
(Backup), STP
.

.
93
D-Link
95
,
.
,
( ).
96
.
, RSTP,
,
. ,
.
, RSTP :
(edge port) - (point-to-point , P2P).
(Edge)
,
, .
, .
,
,
, .

, BPDU.
P2P , ,
. RSTP
94
D-Link
, ,
2, , .
IEEE 802.1w
(Root)
BPDU.
BPDU, .
(sync).
97
,

(forwarding).
95
D-Link
98
.
BPDU,
.

.
.
(
).
,
.
,
D.
96
D-Link
99
1 D . ,
BPDU
.
,
. RSTP (acknowledgement),

.
(listening) (learning).
97
D-Link
/
100
in-sync,
:

discarding );
.
101
98
D-Link

1.
RSTP
. ,
,
STP (IEEE 802.1d). RSTP
, :
TC While
hello
, ;
-,
;
TC While , BPDU,
, .
, BPDU .
2.
BPDU ,
:
-
, ,
;
TC While
BPDU
(RSTP
TCN BPDU, ,
-).
102
BPDU
.
99
D-Link
IEEE 802.1d/IEEE 802.1w

RSTP ,
STP
,
BPDU IEEE 802.1d. ,

(

) .
,
RSTP.
, ,
. ,
(Migration delay timer),
hello. ,
(STP RSTP) , .
, ,
BPDU. ,
BPDU ,
,
.
, , (. 103)
RSTP.
. ,
STP. 802.1d
BPDU RSTP ,

BPDU IEEE 802.1d.
103
BPDU
, 802.1d.
, BPDU
(.
104).
100
D-Link
104
, ,
, STP
, RSTP
,
, .
,
, .
IEEE 802.1d,
TCN BPDU ,
.

IEEE 802.1d IEEE 802.1w
(MessageAge). IEEE
802.1d
MessageAge
,
1
. IEEE 802.1w,
1/16 MaxAge 1,
(MaxAge
).
:
((MessageAge+HelloTime)>=MaxAge)
, MaxAge 20 Hellotime
2, 18 (Bridge hop)
, ,
, 37.
STP 802.1d RSTP 802.1w
:
STP 802.1d: 30 .
RSTP 802.1w: 5 .
:
STP 802.1d: 7
RSTP 802.1w: 18 (37 )
101
D-Link
STP CLI
STP Rapid STP
CLI (. 6).
6 STP RSTP
config stp
config stp ports
enable stp
disable stp
show stp
show stp ports
maxage <value>
hellotime <value>
forwarddelay <value>
priority <value>
fdpdu [enable|disable]
txholdcount <1-10>
version [rstp|stp]
<portlist>
cost <value>
priority <value>
migrate [yes|no]
edge [true|false]
p2p [true|false|auto]
state [enable|disable]
<portlist>
STP

STP
STP
STP
STP
1. STP () enable
stp
105 STP
2. STP :
(path cost) 19, (priority) 16, (state)
enabled 1-5 config stp ports 1-5 cost 19
priority 16 state enabled
106 STP
3. STP : maxage 18
hellotime 4 config stp maxage 18 hellotime 4
107 STP
102
D-Link
4. STP .
108 STP
6. STP show stp ports
109
103
D-Link
(QoS)
(IEEE 802.1)

, .
,
.
, ,
.
,
,
,
10 .

,

.

,
,

, /
:
(best effort service).

.
Qos
.
(differentiated service).

.

QoS ( ,
, ).
CoS (Class of Service).

.
,
.
.
,
.
(guaranteed
service).

.

. ,
Frame Relay RSVP TCP/IP.
,
.
104
D-Link

.
,
, Ethernet ,
-
. -
.
,
. ,
-
, , .

IEEE 802.1.
IEEE 802.1Q.

Ethernet, .
,
, 3 .
IEEE 802.1,
.

, ,
.
IEEE
802.1,
.
,
,
CoS, , ,
. .
(packet classification) ,

.
D-Link
. ,
:
IEEE 802.1;
TOS, IP-
(DSCP);
I-;
TCP/UDP.

,
CoS (, DES-3226S 4 CoS
, DES-3828 8 ). ,
,

, , ,
(Weighted Round Robin, WRR).

CoS (. 110). 1 2
105
D-Link
Q0, 0 3
Q1, 4 5
Q2, 6 7
Q3.
,
0, Q1.
- Q0
1 2.
( P0 P1 Q0, P2 P3 Q1)
,
Q0.

. D-Link 2
: (Strict Priority
Queuing) (Weighted Round Robin).
, ,
.
, .

WRR ,
.

,
, .
: 0 255. : 0
255 ( 16 ).
110
106
D-Link
CLI

CLI (. 7).
7 IEEE 802.1p
config
scheduling
show scheduling
config 802.1p
user_priority
show 802.1p
user_priority
config 802.1p
default_priority
show 802.1p
default_priority
<class_id 0-3>
max_packet <value 0-255>
max_latency <value 0-255>
<priority 0-7>
<class_id 0-3>
<portlist>
all
<priority 0-7>
<portlist>
IEEE 802.1p
,
.

,

.
IEEE 802.1,
1. .
Q0
100 150 config scheduling 0
max_packet 100 max_latency 150
111 Q0
2. show
scheduling.
112
3. 1
Q3 config 802.1p user_priority 1 3
107
D-Link
113
4.
show 802.1p user_priority
114
5. .
,
1-5 ,
5 config 802.1p default_priority 1-5 5
115 1-5 5
6. ,
1-10 show 802.1p default_priority 1-10
116
108
D-Link

,
.
117
CLI

CLI (. 8).
8 Traffic control
config
bandwidth_control
show
bandwidth_control
<portlist>
rx_rate
no_limit
<value 64-1024000>
tx_rate
no_limit
<value 64-1024000>
<portlist>
1. 1 8 , 1
/ config bandwidth_control 1-8 tx_rate 1000
118
109
D-Link
2.
show bandwidth_control
119
110
D-Link

Port Security
,
MAC- ,
MAC-.

,
-.
-,
,
MAC-,
, .
-, MAC-
,
MAC--,
. D-Link
-, 256 .
MAC, MAC- , ,
.
,
,
. , MAC- (
, )
, ,
.

,
111
D-Link
Port Security CLI

Port Security
CLI (. 9) .
9 Port Security
config port_security
ports
clear
port_security_entry
[<portlist>| all ]
{admin_state [enable | disable]
|max_learning_addr <max_lock_no 0-10>
lock_address_mode[Permanent|
DeleteOnTimeout|DeleteOnReset]}
vlan_name <vlan_name 32> mac_address
<macaddr> port <port>
Show port_security
{ports <portlist>}
portlist
VLAN, MAC
.
1. Port Security 1-5,

- 5
-
.
DES-3226S#config port_security ports
lock_address_mode DeleteOnTimeout
Command: config port_security ports
lock_address_mode DeleteOnTimeout
1-5
1-5
admin_state
admin_state
enable
enable
max_learning_addr
max_learning_addr
Success.
2. Port Security.
DES-3226S#show port_security ports 1-24
Command: show port_security ports 1-24
Port#
---1
2
3
4
5
Admin State Max. Learning Addr. Lock Address Mode

----------- ------------------- ----------------Disabled
1
DeleteOnTimeout
Disabled
1
DeleteOnTimeout
Disabled
1
DeleteOnTimeout
Disabled
1
DeleteOnTimeout
Disabled
1
DeleteOnTimeout
3. Port Security .
DES-3226S#clear port_security_entry port 1-5
Command: clear port_security_entry port 1-5
Success.
112
D-Link

2.
,
,
,
.
.
VLAN,
120 Traffic Segmentation
(. 120). (PC2 - PC24)

uplink,
. :
ETTH (Ethernet To The Home) ;
.
113
D-Link
Traffic Segmentation CLI

CLI (. 10).
Traffic
Segmentation
10 Traffic Segmentation
config
traffic_segmentation
show
traffic_segmentation
<portlist>
forward_list
null
<portlist>
<portlist>
1. 1 10 ,
11 15.
DES-3226S# config traffic_segmentation 1-10 forward_list 11-15
Command: config traffic_segmentation 1-10 forward_list 11-15
Success.
2. ,
.
DES-3226S#show traffic_segmentation
Command: show traffic_segmentation
Traffic Segmentation Table
Port Forward Portlist
--------------------1
11-15
2
11-15
..
10
11-15
11
11-26
12
11-26
.
114
D-Link
IEEE 802.1
IEEE 802.1
/ ,

(. 121). (RADIUS)
, ,
,
.
, ,
IEEE 802.1
Extensible Authentication Protocol over LAN (EAPOL) ,
. ,
.
121 IEEE 802.1x

802.1 ,
.
122 ()
,

.
802.1x, , Microsoft Windows XP.
115
D-Link
123

.

. RADIUS /,
RADIUS.
,
.
124
( (authenticator))
,
.
,
,
, .
RADIUS, EAP
.
,
.
, EAPOL-start,
.
,
,
.
116
D-Link
,
.

. ,
,
(One-Time-Password, OTP) RADIUS.
125
802.1 , :
802.1x MAC-
/,
MAC-, .
, MAC-;
802.1x , ,
, ,
, .

,
.
.

IEEE 802.1. ,
, .
117
D-Link
,
IEEE 802.1.
, IEEE 802.1,
IEEE 802.1,
. , ,

.
, IEEE 802.1
, IEEE 802.1,
, EAPOL-start. ,
.
, , ,
, .
, IEEE 802.1,
,
.
,
, .
,
.
,
-
.
, EAPOLlogoff, .
(up)
(down), EAPOL-logoff,
.
IEEE 802.1
IEEE 802.1 :
(Trunk port);
EtherChannel , IEEE 802.1
, EtherChannel.
118
D-Link
IEEE 802.1 CLI

: IEEE
802.1x, ( IEEE 802.1x Window XP).
Radius: Windows NT, Windows 2000 Server Radius Server Service,
.
:
IEEE 802.1x ;
IEEE 802.1x ;
Radius.
IEEE 802.1x CLI
(. 11).
11 IEEE 802.1
enable 802.1x
disable 802.1x
show 802.1x
config 802.1x
capability
config 802.1x
auth_parameter
config 802.1x
auth_mode
[auth_state |
auth_configuration]
{ports <portlist>}
ports <portlist>|all
authenticator
none
ports <portlist>|all
default
direction [both|in]
port_control
[force_unauth|auto|force_auth]
quiet_period <sec 0-65535>
tx_period <sec 1-65535>
supp_timeout <sec 1-65535>
server_timeout <sec 1-65535>
max_req <value 1-10>
reauth_period <sec 1-65535>
enable_reauth [enable|disable]
[port_based |mac_based]
config 802.1x init
config 802.1x init [port_based ports

[<portlist|all>]
|mac_based
ports
[<portlist>|all]
{mac_address <macaddr>}]
config 802.1x
reauth
[port_based
ports
[<portlist|all>]
|mac_based
ports [<portlist>|all] {mac_address
<macaddr>}]
IEEE
802.1
IEEE 802.1

IEEE
802.1x
IEEE 802.1

:
IEEE 802.1x
.
Default -
IEEE 802.1x
IEEE 802.1x:

-
IEEE
802.1x
119
D-Link
config radius add
config
delete
radius
config radius
<server_index 1-3>
<server_ip>
key <passwd 32>
default
auth_port <udp_port_number>
acct_port <udp_port_number>
<server_index 1-3>
<server_index 1-3>
ipaddress <server_ip>
key <passwd 32>
auth_port <udp_port_number>
acct_port <udp_port_number>
show radius

RADIUS

RADIUS.

RADIUS.
RADIUS
1. IEEE 802.1x .
DES-3226S#enable 802.1x
Command: enable 802.1x
Success.
2. IEEE 802.1 1-5

.
DES-3226S#show 802.1x auth_state ports 1-5
Command: show 802.1x auth_state ports 1-5
Port
-----1
2
3
4
5
Auth PAE State Backend State Port Status

------------------------------------ForceAuth
Success
Authorized
ForceAuth
Success
Authorized
ForceAuth
Success
Authorized
ForceAuth
Success
Authorized
ForceAuth
Success
Authorized
3. IEEE 802.1.
DES-3226S#show 802.1x auth_configuration ports 1
Command: show 802.1x auth_configuration ports 1
802.1X : Enabled
Authentication Mode : Port_based
Authentication Protocol : Radius_Eap
Port number : 1
Capability : None
AdminCrlDir : Both
OpenCrlDir : Both
Port Control : Auto
QuietPeriod : 60 sec
TxPeriod : 30 sec
SuppTimeout : 30 sec
ServerTimeout : 30 sec
MaxReq : 2 times
ReAuthPeriod : 3600 sec
120
D-Link
ReAuthenticate : Disabled
4. IEEE 802.1x 1 10.

DES-3226S#config 802.1x capability ports 1 10 authenticator
Command: config 802.1x capability ports 1-10 authenticator
Success.
5. IEEE 802.1 .
DES-3226S#config 802.1x auth_mode port_based
Command: config 802.1x auth_mode port_based
Success.
6. IEEE 802.1
1-18.
DES-3226S#config 802.1x reauth mac_based ports 1-18
Command: config 802.1x reauth mac_based ports 1-18
Success.
7. Radius:
DES-3226S#config radius add 1 10.48.74.121 key dlink default
Command: config radius add 1 10.48.74.121 key dlink default
Success.
121
D-Link
Access Control Lists (ACL)

(Access Control Lists)
.
, , .

, , , ,
.

, (ACL)
.
D-Link
: Ethernet IP.
- , VLAN,
IP-, .
,
(Profile ID). ,
, . ,
, .
, ,
.

:
: Ethernet IP;
;
, ,
Access Profile Mask ;
Access Profile Rule .

, . , ,
DES-3226S 10
, 50 (50
10 ), DES3526 9 800 .
( Web-)
2 :
-
, IP
.
: ,

( ).
1: (Access Profile Mask)
122
D-Link
1. Web- .
Advanced Setup/ Access Profile Mask Setting.
2. New
Access Profile Mask Setting. .
,
.
, .
126
127 MAC
123
D-Link
128 IP
3. :
) (Profile ID):

, Auto Assign.
1 255;
) (Access Profile): Ethernet
IP.
(. ). Ethernet, ,
2-
. IP, , IP
;
) VLAN: , ,
VLAN

.
Ethernet:
4. MAC (Source MAC Mask):
MAC MAC MAC
.
5. MAC (Destination MAC Mask):
MAC MAC
MAC .
6. 802.1p: , ,
IEEE 802.1p

.
7. Ethernet Type: ,
Ethernet .
124
D-Link
IP:
4. IP (Source IP Mask):
IP - IP IP .
5. IP (Destination IP Mask):
IP - IP IP
.
6. DSCP: , ,
DiffServ Code Point (DSCP)

.
7. Protocol: ,

(ICMP, IGMP, TCP, UDP) .
TCP UDP
. ,
, .
Source Port Mask Ox TCP/UDP
(hex 0x0-0xffff).
Destination Port Mask Ox TCP/UDP
(hex 0x0-0xffff).
8. Permit/Deny ( ).
Permit , ,
.
Deny , ,
.
2: .
129

Edit Rule.
C ,
New. , , ,
Delete.
125
D-Link

.
130
, ,
IEEE 802.1p , .
priority
. 0, 7.
126
D-Link
Access Control Lists (ACL) CLI

ACL CLI (.
12).
12 ACL
create
access_profile
delete
access_profile
config
access_profile
profile_id
<value
1-255>
ethernet
vlan
source_mac <macmask>
destination_mac <macmask>
802.1p
ethernet_type
ip
vlan
source_ip_mask <netmask>
destination_ip_mask <netmask>
dscp
icmp type code
igmp type
tcp
src_port_mask <hex 0x0-0xffff>
dst_port_mask <hex 0x0-0xffff>
udp
udp src_port_mask <hex 0x0-0xffff>
dst_port_mask <hex 0x0-0xffff>
protocol_id
user_mask <hex 0x0-0xffffffff>
permit
deny
profile_id <value 1-255>}
Profile_id <value 1-255>
access_profile
profile_id <value 1-255>
add access_id <value 1-255>
ethernet
vlan <vlan_name 32>
source_mac <macaddr>
destination_mac <macaddr>
802.1p <value 0-7>
ethernet_type <hex 0x0-0xffff>
ip
vlan <vlan_name 32>
source_ip <ipaddr>
destination_ip <ipaddr>
dscp <value>
icmp
type <value 0-255>
code <value 0-255>
igmp
type <value 0-255>
tcp
src_port <value 0-65535>
dst_port <value 0-65535>
udp
src_port <value 0-65535>
dst_port <value 0-65535>
protocol_id <value 0-255>

.
,
create
access_profile,
,

.
127
D-Link
user_define <hex 0x0-0xffffffff>
priority <value 0-7>
replace_priority
replace_dscp <value 0-63>
delete <value 1-255>

show access_profile.
DES-3226S# show access_profile
Access Profile Table
Access Profile ID:1
Mode : Deny
TYPE : IP
==============================================
======
MASK Option Source IP MASK
255.255.255.0
-------------------- ---------------------Access ID
-------------------- ---------------------1
10.42.73.0
128
D-Link
Internet
DES-3226S

131 1

-.

.
-:
: 00-50-ba-00-00-19
PC1:
: 00-50-ba-6b-18-c8
( )
( CLI).
:
MAC- = MAC-
= , (
,
)
MAC- = , .
,
:
# 00-50-ba-6b-18-c8
129
D-Link
DES-3226S# create access_profile ethernet source_mac FF-FF-FF-FF-FF-FF destination_mac FFFF-FF-FF-FF-FF permit profile_id 10
DES-3226S# config access_profile profile_id 10 add access_id 11 ethernet source_mac 00-50-ba6b-18-c8 destination_mac 00-50-ba-00-00-19
#
DES-3226S#create access_profile ethernet destination_mac FF-FF-FF-FF-FF-FF deny profile_id 20
DES-3226S# config access_profile profile_id 20 add access_id 21 ethernet destination_mac 0050-ba-00-00-19
130
D-Link
2.

-. .
-:
: 00-50-ba-00-00-19
PC1:
: 00-50-ba-6b-18-c8
( )
:
MAC- = MAC-
= , (
,
)
,
:
# MAC 00-50-ba-6b-18-c8 .
DES-3226S#create access_profile ethernet source_mac FF-FF-FF-FF-FF-FF destination_mac FFFF-FF-FF-FF-FF deny profile_id 10
DES-3226S#config access_profile profile_id 10 add access_id 11 ethernet

source_mac 00-50-ba-6b-18-c8 destination_mac 00-50-ba-00-00-19
#
( ,
.)
131
D-Link
3.

IP-.

.
Internet
.1 - .63
.64-.254
132 3
-:
IP= 192.168.1.254/32
: 192.168.1.0/24

192.168.1.1 - 192.168.1.63 ( 192.168.1.0/26)

:
DestIP=192.168.1.254/32 SrcIP=192.168.1.0/26,
DestIP=192.168.1.254/32 SrcIP=192.168.1.0/24,
,
:
#
192.168.1.63 192.168.1.254
192.168.1.1
DES-3226S#create access_profile ip destination_ip_mask 255.255.255.255 source_ip_mask

255.255.255.192 permit profile_id 10
DES-3226S#config access_profile profile_id 10 add access_id 11 ip destination_ip 192.168.1.254
source_ip 192.168.1.0
192.168.1.1192.168.1.253 192.168.1.254
DES-3226S#create
access_profile
ip
destination_ip_mask
255.255.255.255
source_ip_mask 255.255.255.0 deny profile_id 20
DES-3226S# onfig access_profile profile_id 20 add access_id 21 ip destination_ip 192.168.1.254
soruce_ip 192.168.1.0
# ,
132
D-Link
4 ( 3- ).
.
1(192.168.1.x) 2, 3, 4.
2, 3, 4 .
DES-3326S
Net4:
192.168.4.x
Gateway:
192.168.4.1
Net3:
192.168.3.x
Gateway:
192.168.3.1
Net2:
192.168.2.x
Gateway:
192.168.2.1
Net1:
192.168.1.x
Gateway:
192.168.1.1
84 4.
:
1. Dest. IP=192.168.1.x,
2. Src. IP=192.168.1.x,
3. DestIP=192.168.2.x SrcIP=192.168.2.x,
4. DestIP=192.168.3.x SrcIP=192.168.3.x,
5. DestIP=192.168.4.x SrcIP=192.168.4.x,
6.
:
# 192.168.1.x
10
DES-3226S#create access_profile ip destination_ip_mask 255.255.255.0 permit profile_id
DES-3226S#config access_profile profile_id 10 add access_id 11 ip destination_ip

192.168.1.0
# 192.168.1.x
DES-3226S#create access_profile ip source_ip_mask 255.255.255.0 permit profile_id 20
DES-3226S#config access_profile profile_id 20 add access_id 21 ip source_ip 192.168.1.0
#
192.168.2.x.
192.168.2.x,
192.168.3.x
DES-3226S#create access_profile ip source_ip_mask 255.255.255.0 destination_ip_mask

255.255.255.0 permit profile_id 30
destination_ip 192.168.2.0
#### ,
# .
DES-3226S#create access_profile ip source_ip_mask 0.0.0.0 deny profile_id 40

133
D-Link

(Multicast)
,
.

, , .
,
.

IP- .
:
. ,
, ( )
IGMP. IP,
,
.

IP-,

.
IANA (Internet Assigned
Numbers Authority,
). IP-
D.
,
224.0.0.0 239.255.255.255.
IANA IP 224.0.0.0224.0.0.255 .
.
224.0.1.0-224.0.1.255 ,

.
-
,
-
-
-
. ,
.
IP -
IP .
24 . 01-00-05
Ethernet. 24
- .
-, 25- ( )
134
D-Link
0, 23 IP- 23
- (. 133).

01005E
0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 1 0 1 1 1 1 0 0
24- -
OUI ( )
D
23
1 1 1 0 x x x x x y y y y y y y y y y y y y y y y y y y y y y y
5 -
23
133 IP- Ethernet
5 1- IP, .
- 32 .

,
.
.
IGMP (Internet Group Management Protocol)

. ,
IGMP- .
IGMP IGMP-
, ,
.
IGMP v1
1 IGMP IGMP-:
;
.
IGMP-,
,
. IGMP-,
, ,
.
IGMP-,
.
135
D-Link
IGMP v2
2 IGMP IGMP-:
;
1;
2;
.
IGMP 2 IGMP 1.
.

.
, , ,
. ,
. ,
, IGMP 1.
.
134 IGMP.
,
2
2-
,
- . ,
-
, .
,
,
.
136
D-Link
135
VLAN
.
,
.
IGMP- (IGMP-snooping). IGMP-

IGMP-, ,
3- .
IGMP- ,

. IGMP-
, .
IGMP-
, 2-
. , IGMP-,
,
.
IGMP-
.

, IGMP- .
137
D-Link
136 IGMP-snooping
138
D-Link
IGMP- snooping CLI
IGMP-snooping CLI
(. 13).
13 IGMP-Snooping
config
igmp_snooping
config
igmp_snooping
querier
<vlan_name 32>
all
host_timeout <sec 1-16711450>
router_timeout <sec 1-16711450>
leave_timer <sec 1-16711450>
robustness_variable <value 1-255>
last_member_query_interval <sec 1-25>
<vlan_name 32>
all
query_interval <sec 1-65535>
max_response_time <sec 1-25>
robustness_variable <value 1-255>
last_member_query_interval <sec 1-25>
config router_ports
<vlan_name 32> [add|delete]

<portlist>
enable igmp
snooping
forward_mcrouter_only
disable igmp
snooping
show igmp
snooping
vlan <vlan_name 32>
show igmp
snooping group
vlan <vlan_name 32>
show router ports
vlan <vlan_name 32>

static
dynamic
IGMPsnooping
.
,
..
IGMPsnooping .
forward_mcrouter_only
,

.
,

IP
IGMPsnooping .
IGMP-snooping
IGMPsnooping
139
D-Link
1. IGMP-snooping.
DES-3226S#config igmp_snooping default host_timeout 250 state enable
Command: config igmp_snooping default host_timeout 250 state enable
Success.
host_timeout <sec> - ,

. 260
.
2. IGMP-snooping querier .
DES-3226S#config igmp_snooping querier default query_interval 125 state enable
Command: config igmp_snooping querier default query_interval 125 state enable
Success.
3. IGMP-snooping .
DES-3226S#enable igmp_snooping
Command: enable igmp_snooping
Success.
4. .
DES-3226S#config router_ports default add 1-10
Command: config router_ports default add 1-10
Success.
5. IGMP-snooping .
DES-3226S#show igmp_snooping
Command: show igmp_snooping
IGMP Snooping Global State : Disabled
Multicast router Only : Disabled
VLAN Name : default
Query Interval : 125
Max Response Time : 10
Robustness Value : 2
Last Member Query Interval : 1
Host Timeout : 260
Route Timeout : 260
Leave Timer : 2
Querier State : Disabled
Querier Router Behavior : Non-Querier
State : Disabled
VLAN Name : vlan2
Query Interval : 125
Max Response Time : 10
Robustness Value : 2
Last Member Query Interval : 1
140
D-Link
Host Timeout : 260
Route Timeout : 260
Leave Timer : 2
Querier State : Disabled
Querier Router Behavior : Non-Querier
State : Disabled
Total Entries: 2
141
D-Link
:
1. D-Link DES-3526, DES-3828
.
2. D-Link.
3. . , , . .. ,
.. . :, 2000.
4. , 3- .: .
. .: , 2002.
5. IP.: . . .
.: , 2003.
6. . http://www.routers.ru
142
D-Link
. .

(. 14).
CLI ,
.
14 CLI
< >
,
.
[ ]

. .
|

, .
{ }
143
D-Link
1
10Base-F IEEE 802.3 Ethernet
.
10Base-T
(" ").
IEEE 802.3i Ethernet

100Base-T IEEE 802.3us Ethernet

100 /
(" ").
100Base-TX IEEE 802.3u Ethernet
100 / 2-
5.
100Base-FX IEEE 802.3u Ethernet
100 / FDDI TP-PMD
PMD ( ).
10Gbase-ER 10G Ethernet,
10 /
40 (25 )
1550 .
10Gbase-LR 10G Ethernet,
10 /
10 (6 )
1310 .
10Gbase-SR 10G Ethernet,
10 /
300 (990 )
850 .
A
Access method . ,
.
CSMA/CD (Ethernet) (Token Ring).
Address . ,
,
.
144
D-Link
Address mask . ,
Internet .
32 Inetrnet
. .
Address
resolution
(Network Layer)
(media-specific) . . ARP.
Agent . SNMP
.
- - ,
.
Aggregate link .
.
Application Layer . OSI,
,
.
ARP(Address Resolution Protocol) .
Internet,
Internet () .
ARP
, IP-.
B
Backbone , ,

.
Backplane .
,
.
Bandwidth ,
, .
().
Bridge . ,
.
OSI .
BPDU(Bridge Protocol Data Unit)
. (Spanning Tree
Protocol),
.
145
D-Link
Broadcast . ,
, .
Ethernet.
Bus topology
. ,
(
),
.
C
Channel . []
. : link, line, circuit
facility
Chassis .
, .
.
CLI Command Line Interface , .

.
Client .
), .
Collision . Ethernet,
.
.
Collision domain . Ethernet,
,
.
CoS(Class
of
Service)
. ,
,
.
ToS.
Crossover . (
)
.
CSMA/CD(Carrier sense multiple access/collision detection)
. , ,
, .
,
146
D-Link
.
,
. , ,

. CSMA/CD Ethernet IEEE 802.3.
Cut-through packet switching .

, ,

, .
,
.
.
D
Data Link Layer . 2 OSI,
.
, ,
, ,
. IEEE :
LLC.
Designated bridge . ,
.
DHCP(Dynamic Host Configuration Protocol)
.
IP-.
E
EMI(Electromagnetic interference) .
, -

.
Encapsulation . ,
,
(protocol data unit - PDU ) . Internet ,
(IP), -
(TCP), .
Ethernet (),
IEEE . IEEE 802.3. Ethernet
10 / CSMA/CD.
147
D-Link
Ethernet 10Base-T. Ethernet
Fast Ethernet (100 /) Gigabit Ethernet (1000 /).
Ethernet address Ethernet. 48- ,

( Ethernet) .
12 .
ETTH (Ethernet to the Home) ETTH
, Ethernet.
Ethernet

.
F
Fault management . ISO
.
,
.
Fault tolerance .
.
,
, ..
Fiber optic cable . ,
.
Filtering .

( , ) .
, .
Flooding . ,
,
.
Flow control . ,

.
Forwarding table .
,
, .
Frame .

. MAC ,
.
,
148
D-Link
.
, , ,
.
Full duplex .
- - .
G
GUI(Graphical User Interface) .
,
,
() .
H
Half Duplex .
.
, , .
I
IEEE(Institute of Electrical and Electronic Engineers)
.
, 1963
.
802 . 802
(Technical
Committee for Computer Communications), 1980
.
IEEE ANSI ISO.
IEEE 802 IEEE 802. IEEE,
.
Ethernet, Token Ring, Wireless LAN.
IEEE 802.3 IEEE CSMA/CD.
IGMP(Internet Group Management Protocol)
. , IP-
.
IP(Internet Protocol) IP- . TCP/IP,
RFC 791 .
.
149
D-Link
IP.
.
IP address IP-. IP - 32 (4 )
, STD 5 (RFC 791)
TCP/IP. IP-
(network portion) (host portion) -
.
IP- .
IPv6 128- ,
.
L
LAN(Local Area Network)
.
, .
, ,
,
.
LLC(Logical Link Control)
. ,
IEEE. , , ,
-. LLC-
IEEE 802.2. IEEE 802.2
.
M
MAC(Media Access Control)

. , IEEE.
- .
MAC address -. ,
,
.
,
. -
6 , IEEE. -
.
MAC
address
learning
-.
, -
150
D-Link
.
,
.
.
. -
IEEE 802.1.
MIB(Management Information Base) .

, ,
SNMP.
MIB-
SNMP (, D-Link D -View)
GUI-. MIB-
() () .
MTU(Maximum Transmission Unit)
. ( ) ,
.
Multicast .
.
(Destination address field).
Multicast address . ,
.
Multicast group .
IP-, IP-.
Multicast router . ,
IGMP-
. , ,
IGMP- ,
.
,
.
N
Network .
1. ( ).
2. , ,
,
.
Network Address . ,
, .
(protocol address).
151
D-Link
Network Layer . 3 OSI,

, OSI.
Node . , ,
.
NVRAM NonVolatile RAM,
P
Packet . , ,
, .
. 3
: (
, ..), ,
. 3 ()
OSI.
PDU(Protocol Data Unit) . OSI
.
Physical Layer . 1 OSI.
, ,
,
.
Ping (Packet INternet Groper) . ICMP . ,
IP-.
Port density . .
Port security .
.
Proxy ARP(Proxy Address Resolution Protocol)

. ARP,
(, ) ARP
.
Q
QoS(Quality
of
Service) .
,
.
152
D-Link
R
RADIUS(Remote Authentication Dial-In User Service)
. IETF,
,
.
Redundancy . ,
. ,
.
Redundant system . , ,
,
, ,
.
Reliability .
.
, .
RMON(Remote MONitoring) .
MIB-, RFC 1271,
. RMON
,
. ,
.
Router . ,

.
.
Routing .
.
RS-232
EIA
25-
, (DTE)
(DCE) .
S
Segment .
1. , ,
.
2. LAN ,
.
153
D-Link
3. , TCP
.
Session Layer . 5 OSI,

.
SNMP(Simple Network Management Protocol)
. ,
TCP/IP. SNMP
, ,
, .
SOHO(Small Office, Home Office) .

.
Spanning Tree
.
STA(Spanning Tree Algorithm)

. ,
. STA.
STP(Spanning Tree Protocol) .
,

.
BPDU
.
Store and forward packet switching
. ,
. CRC
. , ,
(, )
.
(cut-through packet switching).
Switch
.
,
.
OSI.
Switched LAN . .
T
Tag . , .
154
D-Link
TCP(Transmission Control Protocol) .
,
. TCP
/IP.
TCP/IP(Transmission Control Protocol/Internet Protocol)

/ Internet .
, 1970- .
.
Telnet
TCP/IP. Telnet
,
.
TFTP(Trivial File Transfer Protocol)
. FTP,
.
Throughput
,
, ,
.
Traffic segmentation . ,
2.
Transport Layer . 4 OSI,
.
Trap . (alarm message),
, ,
.
, ,
.
Trunk .
, .
U
UDP (User Datagram Protocol) .
, .
TCP/IP. UDP
.
155
D-Link
V
VLAN(Virtual LAN) . ,
), ,
,
. VLAN .
156

Коммутаторы локальных сетей D-Link.v4.12 PDF

Загружено:

Сведения о документе

Оригинальное название

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

Коммутаторы локальных сетей D-Link.v4.12 PDF

Загружено:

Авторское право:

Доступные форматы

:

, Fast Ethernet, Gigabit Ethernet.

(collision domain) Ethernet,

StackTM DGS-3324SR, DGS-3324SRi, DXS3326GSR DXS-3350SR

12 DGS3324SR, DXS-3326GSR DXS-3350SR 336 Gigabit

Single IP ManagementTM (SIM) SIM-.

DES-1226G DGS-12xxT Fast Gigabit

DGS-3224TGR Gigabit Ethernet 2- ,

UTP 5, 5 6 Gigabit Ethernet.

DES-3800:admin# show account

show ports < >

44 "show ports" 1-5 8

VLAN IEEE 802.1Q

IEEE 802.1Q VLAN

1. 1-5 DEFAULT_VLAN config vlan default

IEEE 802.1Q VLAN(

VLAN V1: 1-8, untagged

5. GVRP (Group VLAN Registration Protocol)

VLAN V1: 1 1-4, 2 1-4, untagged

6. 5-8 VLAN V2 V3. .

config link_aggregation algorithm mac_source

Spanning Tree Protocol (IEEE 802.1d)

92 STP 802.1d RSTP 802.1w

IEEE 802.1d/IEEE 802.1w

BPDU IEEE 802.1d. ,

config stp ports

6. STP show stp ports

Port Security CLI

1. Port Security 1-5,

Admin State Max. Learning Addr. Lock Address Mode

120 Traffic Segmentation

(. 120). (PC2 - PC24)

Traffic Segmentation CLI

121 IEEE 802.1x

(One-Time-Password, OTP) RADIUS.

IEEE 802.1 CLI

config 802.1x init

config 802.1x init [port_based ports

2. IEEE 802.1 1-5

Auth PAE State Backend State Port Status

4. IEEE 802.1x 1 10.

Access Control Lists (ACL)

Access Control Lists (ACL) CLI

DES-3226S#config access_profile profile_id 10 add access_id 11 ethernet

DES-3226S#create access_profile ip destination_ip_mask 255.255.255.255 source_ip_mask

DES-3226S#create access_profile ip destination_ip_mask 255.255.255.0 permit profile_id

DES-3226S#config access_profile profile_id 10 add access_id 11 ip destination_ip

DES-3226S#create access_profile ip source_ip_mask 255.255.255.0 destination_ip_mask

DES-3226S#create access_profile ip source_ip_mask 0.0.0.0 deny profile_id 40

<vlan_name 32> [add|delete]

vlan <vlan_name 32>

vlan <vlan_name 32>

show router ports

vlan <vlan_name 32>

IEEE 802.3i Ethernet

100Base-T IEEE 802.3us Ethernet

Cut-through packet switching .

Ethernet address Ethernet. 48- ,

MIB(Management Information Base) .

Network Layer . 3 OSI,

Proxy ARP(Proxy Address Resolution Protocol)

Session Layer . 5 OSI,

STA(Spanning Tree Algorithm)