ADMINISTRATION GUIDE Cisco Small Business 300 Series Managed Switch Administration Guide

ADMINISTRATION GUIDE Cisco Small Business 300 Series Managed Switch Administration Guide 10/100 Switches SF 300-08, SF 302-08, SF 302-08MP, SF 302-08P, SF 300-24, SF 300-24P, SF 300-48, SF 300-48P Gigabit Switches SG 300-10, SG 300-10MP, SG 300-10P, SG 300-20, SG 300-28, SG 300-28P, SG 300-52

Contents Chapter 1: Getting Started 1 Starting the Web-based Switch Configuration Utility 1 Launching the Configuration Utility 2 Logging In 2 Password Expiration 3 Logging Out 3 Quick Start Switch Configuration 4 Window Navigation 6 Application Header 6 Management Buttons 7 Chapter 2: Viewing Statistics 10 Viewing Ethernet Interface 10 Viewing Etherlike Statistics 12 Viewing GVRP Statistics 13 Viewing 802.1X EAP Statistics 14 Viewing TCAM Utilization 15 Managing RMON Statistics 17 Viewing RMON Statistics 17 Configuring RMON History 19 Viewing the RMON History Table 20 Defining RMON Events Control 21 Viewing the RMON Events Logs 22 Defining RMON Alarms 23 Chapter 3: Managing System Logs 25 Setting System Log Settings 25 Setting Remote Logging Settings 27 Viewing Memory Logs 28 RAM Memory 28 Flash Memory 29 Cisco Small Business 300 Series Managed Switch Administration Guide 2

Contents Chapter 4: Managing System Files 30 Upgrade/Backup Firmware/Language 33 Uploading a New Firmware or Language File 33 Selecting the Active Image 36 Downloading or Backing-up a Configuration or Log 37 Displaying Configuration File Properties 39 Copying or Saving Switch Configuration File Types 40 Setting DHCP Auto Configuration 41 Chapter 5: General Administrative Information and Operations 43 System Information 43 Displaying the System Summary 43 Configuring the System Settings 45 Switch Models 46 Rebooting the Switch 47 Monitoring the Fan Status and Temperature 49 Defining Idle Session Timeout 49 Chapter 6: System Time 50 System Time Options 51 Configuring System Time 52 Setting SNTP 54 Defining SNTP Authentication 56 Chapter 7: Managing Device Diagnostics 58 Testing Copper Ports 58 Displaying Optical Module Status 61 Configuring Port and VLAN Mirroring 62 Viewing CPU Utilization 64 Cisco Small Business 300 Series Managed Switch Administration Guide 3

Contents Chapter 8: Configuring Discovery 65 Configuring Bonjour Discovery 65 Bonjour for a System in Layer 2 Mode 65 Bonjour for a System in Layer 3 Mode 66 Configuring LLDP 67 Setting LLDP Properties 68 Editing LLDP Port Settings 69 LLDP MED Protocol 71 Setting LLDP MED Network Policy 72 Configuring LLDP MED Port Settings 73 Displaying LLDP Port Status 74 Displaying LLDP Local Information 76 Displaying LLDP Neighbors Information 79 Accessing LLDP Statistics 83 LLDP Overloading 84 Chapter 9: Port Management 87 Port Management Workflow 87 Setting the Basic Port Configuration 88 Configuring Link Aggregation 92 Static and Dynamic LAG Workflow 93 Defining LAG Management 94 Defining Member Ports in a LAG 94 Configuring LAG Settings 95 Configuring LACP 97 Setting Port LACP Parameter Settings 98 Green Ethernet 99 Setting Global Green Ethernet Properties 100 Setting per Port Green Ethernet Properties 101 Cisco Small Business 300 Series Managed Switch Administration Guide 4

Contents Chapter 10: Managing Power-over-Ethernet Devices 103 PoE on the Switch 103 PoE Features 103 PoE Operation 104 PoE Configuration Considerations 105 Configuring PoE Properties 105 Configuring the PoE Power, Priority, and Class 107 Chapter 11: VLAN Management 109 VLANs 109 Configuring Default VLAN Settings 112 Creating VLANs 113 Configuring VLAN Interface Settings 115 Defining VLAN Membership 117 Configuring Port to VLAN 117 Configuring VLAN to Port 118 Viewing VLAN Membership 119 GVRP Settings 120 Defining GVRP Settings 120 VLAN GROUPS 121 Assigning MAC-based VLAN Groups 121 Assigning VLAN Group ID to VLAN Per Interface 122 Voice VLAN 123 Voice VLAN Options 124 Voice VLAN Constraints 125 Configuring Voice VLAN Properties 126 Configuring Telephony OUI 127 Chapter 12: Configuring the Spanning Tree Protocol 129 STP Flavors 129 Configuring STP Status and Global Settings 131 Cisco Small Business 300 Series Managed Switch Administration Guide 5

Contents Defining Spanning Tree Interface Settings 132 Configuring Rapid Spanning Tree Settings 134 Multiple Spanning Tree 136 Defining MSTP Properties 137 Mapping VLANs to a MST Instance 138 Defining MST Instance Settings 139 Defining MSTP Interface Settings 140 Chapter 13: Managing MAC Address Tables 143 Configuring Static MAC Addresses 143 Dynamic MAC Addresses 144 Configuring Dynamic MAC Address Parameters 145 Querying Dynamic Addresses 145 Defining Reserved MAC Addresses 146 Chapter 14: Configuring Multicast Forwarding 148 Multicast Forwarding 148 Typical Multicast Setup 149 Multicast Operation 150 Multicast Registration 150 Multicast Address Properties 151 Defining Multicast Properties 152 MAC Group Address 153 IP Multicast Group Address 156 IGMP Snooping 158 MLD Snooping 161 IGMP/MLD IP Multicast Group 163 Multicast Router Port 164 Defining Forward All Multicast 165 Defining Unregistered Multicast Settings 166 Cisco Small Business 300 Series Managed Switch Administration Guide 6

Contents Chapter 15: Configuring IP Information 168 Management and IP Interfaces 168 Managing IPv6 170 IP Addressing 170 Defining IPv6 Global Configuration 175 Defining an IPv6 Interface 175 Defining IPv6 Addresses 177 Defining an IPv6 Default Router List 178 Configuring IPv6 Tunnels 179 Defining IPv6 Neighbors Information 181 Viewing IPv6 Route Tables 184 Defining IPv4 Static Routing 185 Enabling ARP Proxy 186 Defining UDP Relay 186 DHCP Relay 187 Defining DHCP Relay Properties 188 Defining DHCP Relay Interfaces 189 Configuring ARP 190 Domain Name Systems 191 Defining DNS Servers 192 Mapping DNS Hosts 193 Chapter 16: Configuring Security 195 Defining Users 196 Setting User Accounts 196 Setting Password Complexity Rules 197 TACACS+ Configuration 198 Configuring Default TACACS+ Parameters 199 Adding a TACACS+ Server 199 Configuring RADIUS Parameters 200 Adding a RADIUS Server 201 Cisco Small Business 300 Series Managed Switch Administration Guide 7

Contents Management Access Authentication 203 Access Profiles 204 Displaying, Adding, or Activating an Access Profile 206 Defining Profile Rules 208 Configuring TCP/UDP Services 210 Defining Storm Control 211 Configuring Port Security 212 802.1X 214 802.1X Parameters Workflow 218 Defining 802.1X Properties 219 Configuring Unauthenticated VLANs 220 Defining 802.1X Port Authentication 220 Defining Host and Session Authentication 224 Viewing Authenticated Hosts 226 Defining Time Ranges 226 Defining a Recurring Range 228 Denial of Service Prevention 228 Denial of Service Security Suite Settings 229 Chapter 17: Access Control 235 Access Control Lists 235 Defining MAC-based ACLs 238 Adding Rules to a MAC-based ACL 238 IPv4-based ACLs 239 Defining an IPv4-based ACL 240 Adding Rules (ACEs) to an IPv4-Based ACL 240 IPv6-based ACLs 244 Defining an IPv6-based ACL 244 Defining ACL Binding 247 Cisco Small Business 300 Series Managed Switch Administration Guide 8

Contents Chapter 18: Configuring Quality of Service 249 QoS Features and Components 249 QoS Modes 250 QoS Workflow 251 Configuring QoS 252 Displaying QoS Properties 252 Modifying Interface Default CoS Value 253 Configuring QoS Queues 254 Mapping CoS/802.1p to a Queue 255 Mapping DSCP to Queue 257 Configuring Bandwidth 258 Configuring Egress Shaping per Queue 259 Configuring VLAN Rate Limit 260 TCP Congestion Avoidance 261 QoS Basic Mode 261 Workflow to Configure Basic QoS Mode 261 Configuring Global Settings 262 Interface QoS Settings 263 QoS Advanced Mode 263 Workflow to Configure Advanced QoS Mode 265 Configuring Out-of-Profile DSCP Remarking 265 Defining Class Mapping 267 QoS Policers 268 Defining Aggregate Policers 269 Configuring a Policy 270 Policy Class Maps 271 Policy Binding 273 Managing QoS Statistics 273 Viewing Policer Statistics 273 Viewing Queues Statistics 275 Cisco Small Business 300 Series Managed Switch Administration Guide 9

Contents Chapter 19: Configuring SNMP 277 SNMP Versions and Workflow 277 SNMP v1 and v2 277 SNMP v3 278 SNMP Workflow 279 Supported MIBs 279 Model OIDs 282 SNMP Engine ID 283 Configuring SNMP Views 284 Creating SNMP Groups 286 Managing SNMP Users 288 Defining SNMP Communities 290 Defining Trap Settings 292 Notification Recipients 292 Defining SNMPv1,2 Notification Recipients 293 Defining SNMPv3 Notification Recipients 294 SNMP Notification Filters 296 Chapter 20: Console Menu Interface 298 Connecting By Using a Terminal Emulation Application 298 Communicating by Using a Serial Cable Connection 299 Communicating By Using a TCP/IP Connection 300 Connecting By Using Telnet 301 Console Configuration Menu Navigation 302 Console Interface Main Menu 303 System Configuration Menu 303 System Information 304 Management Settings 304 Username & Password Settings 306 Security Settings 307 VLAN Management 307 Cisco Small Business 300 Series Managed Switch Administration Guide 10

Contents IP Configuration 308 IPv6 Address Configuration 309 Network Configuration 311 File Management 313 Port Status 315 Port Configuration 315 System Mode 316 Help 316 Logout 316 Cisco Small Business 300 Series Managed Switch Administration Guide 11

1 Getting Started This chapter provides an introduction to the user interface, and includes the following topics: Starting the Web-based Switch Configuration Utility Quick Start Switch Configuration Window Navigation Starting the Web-based Switch Configuration Utility This section describes how to navigate the web-based switch configuration utility. Browsers have the following restrictions: If you are using Internet Explorer 6, you cannot directly use an IPv6 address to access the switch. You can, however, use the DNS (Domain Name System) server to create a domain name that contains the IPv6 address, and then use that domain name in the address bar in place of the IPv6 address. If you have multiple IPv6 interfaces on your management station, use the IPv6 global address instead of IPv6 link local address to access the switch from your browser. Launching the Configuration Utility To open the user interface: STEP 1 STEP 2 Open a Web browser. Enter the IP address of the switch you are configuring in the address bar on the browser, and then press Enter. The Login Page opens. Cisco Small Business 300 Series Managed Switch Administration Guide 1

Getting Started Starting the Web-based Switch Configuration Utility 1 NOTE When the switch is using the factory default IP address, its power LED flashes continuously. When the switch is using a DHCP assigned IP address or an administrator configured static IP address, the power LED is on solid. Logging In The default username is cisco and the default password is cisco. The first time that you log in with the default username and password, you are required to enter a new password. To log in to the device configuration utility: STEP 1 STEP 2 STEP 3 STEP 4 Enter the username/password. The factory default username/password is cisco/ cisco. The password can contain up to 32 ASCII characters. Password-complexity rules are described in the Setting Password Complexity Rules section of the Configuring Security chapter. If you are not using English, select the desired language from the Language dropdown menu. To add a new language to the switch or update a current one, refer to the Upgrade/Backup Firmware/Language section. If this is the first time that you logged on with the default user ID (cisco) and the default password (cisco) or your password has expired, the Change Password Page opens. See Password Expiration for additional information. Enter the new username/password and click Apply. When the login attempt is successful, the Getting Started Page opens. If you entered an incorrect username or password, an error message is displayed and the Login Page remains displayed on the window. Select Don t show this page on startup to prevent the Getting Started Page page from being displayed each time that you logon to the system. If you select this option, the System Summary Page is opened instead of the Getting Started Page. Cisco Small Business 300 Series Managed Switch Administration Guide 2

Getting Started Starting the Web-based Switch Configuration Utility 1 Password Expiration The New Password Page is displayed: The first time you access the switch with the default username cisco and password cisco. This page forces you to replace the factory default password. When the password expires, this page forces you to select a new password. Logging Out By default, the application logs out after ten minutes of inactivity. You can change this default value as described in the Defining Idle Session Timeout section in the General Administrative Information and Operations chapter.! CAUTION Unless the Running Configuration is copied to the Startup Configuration, all changes made since the last time the file was saved are lost if the switch is rebooted. We recommend that you save the Running Configuration to the Startup Configuration before logging off to preserve any changes you made during this session. A red X icon displayed to the left of the Save application link indicates that Running Configuration changes have been made that have not yet been saved to the Startup Configuration file. When you click Save, the Copy/Save Configuration Page is displayed. Save the Running Configuration file by copying it to the Startup Configuration file. After this save, the red X icon and the Save application link are no longer displayed. To logout, click Logout in the top right corner of any page. The system logs out of the switch. When a timeout occurs or you intentionally log out of the system, a message is displayed and the Login Page opens, with a message indicating the logged-out state. After you log in, the application returns to the initial page. The initial page displayed depends on the Do not show this page on startup option in the Getting Started Page. If you did not select this option, the initial page is the Getting Started Page. If you did select this option, the initial page is the System Summary Page. Cisco Small Business 300 Series Managed Switch Administration Guide 3

Getting Started Quick Start Switch Configuration 1 Quick Start Switch Configuration To simplify switch configuration through quick navigation, the Getting Started Page provides links to the most commonly used pages. Links on the Getting Started Page Category Link Name (on the Page) Linked Page Initial Setup Change Device IP Address IPv4 Interface Page Switch Status Quick Access Create VLAN Configure Port Settings System Summary Port Statistics RMON Statistics View Log Change Device Password Upgrade Device Software Backup Device Configuration Create MAC Based ACL Create IP Based ACL Configure QoS Configure Port Mirroring Create VLAN Page Port Settings Page System Summary Page Interface Page Statistics Page RAM Memory Page User Accounts Page Upgrade/Backup Firmware/ Language Download/Backup Configuration/Log Page MAC Based ACL Page IPv4 Based ACL Page QoS Properties Page Port and VLAN Mirroring Page Cisco Small Business 300 Series Managed Switch Administration Guide 4

Getting Started Window Navigation 1 Window Navigation This section describes the features of the web-based switch configuration utility. Application Header The Application Header is displayed on every page. It provides the following application links: Application Links Application Link Name Description A red X icon displayed to the left of the Save application link indicates that Running Configuration changes have been made that have not yet been saved to the Startup Configuration file. Click Save to display the Copy/Save Configuration Page. Save the Running Configuration file type by copying it to the Startup Configuration file type on the switch. After this save, the red X icon and the Save application link are no longer displayed. When the switch is rebooted, it copies the Startup Configuration file type to the Running Configuration and sets the switch parameters according to the data in the Running Configuration. User Logout About Help Click to display the name of the user logged on to the switch. The default username is cisco. (The default password is cisco.) Click to logout of the web-based switch configuration utility. Click to display the switch name and switch version number. Click to display the online help. Cisco Small Business 300 Series Managed Switch Administration Guide 5

Getting Started Window Navigation 1 Application Links (Continued) Application Link Name Language Menu Description Select a language or load a new language file into the switch. If the language required is displayed in the menu, select it. If it is not displayed, select Add new language. For more information about adding a new language, refer to the Upgrade/Backup Firmware/Language. The Syslog Alert Status icon is displayed when a SYSLOG message, above the critical severity level, is logged. Click the icon to open the RAM Memory Page. After you access this page, the Syslog Alert Status icon is no longer displayed. To display the page when there is not an active SYSLOG message, follow the Status and Statistics > View Log > RAM Memory Page path. Management Buttons The following table describes the commonly-used buttons that appear on various pages in the system. Management Buttons Button Name Description Navigate the table by using the right and left arrow icons when there are more than 50 entries in a table. Indicates a mandatory field. Add Click to display the related Add page and add an entry to a table. Enter the information and click Apply to save it to the Running Configuration. Click Close to return to the main page. Click Save to display the Copy/Save Configuration Page and save the Running Configuration to the Startup Configuration file type on the switch. Cisco Small Business 300 Series Managed Switch Administration Guide 6

Getting Started Window Navigation 1 Management Buttons (Continued) Button Name Apply Cancel Clear All Interfaces Counters Clear Interface Counters Clear Logs Clear Table Close Copy Settings Description Click to apply changes to the Running Configuration on the switch. If the swtich is rebooted, the Running Configuration is lost, unless it is saved to the Startup Configuration file type or another file type. Click Save to display the Copy/ Save Configuration Page and save the Running Configuration to the Startup Configuration file type on the switch. Click to reset changes made on the page. Click to clear the statistic counters for all interfaces. Click to clear the statistic counters for the selected interface. Clears log files. Clears table entries. Returns to main page. If there are changes that were not applied to the Running Configuration, a message is displayed. A table typically contains one or more entries containing configuration settings. Instead of modifying each entry individually, it is possible to modify one entry and then copy it to multiple entries, as described below: 1. Select the entry to be copied. Click Copy Settings to display the popup. 2. Enter the destination entry numbers in the to field. 3. Click Apply to save the changes and click Close to return to the main page. Delete Details Select the entry in the table to be deleted and click Delete to remove entries from a table. The entry is deleted. Click to display the details associated with the entry selected on the main page. Cisco Small Business 300 Series Managed Switch Administration Guide 7

Getting Started Window Navigation 1 Management Buttons (Continued) Button Name Edit Description Select the entry and click Edit to open the entries for editing. The Edit page opens, and the entry can be modified. 1. Click Apply to save the changes to the Running Configuration. 2. Click Close to return to the main page. Go Test Enter the query filtering criteria and click Go. The results are displayed on the page. Click Test to perform the related tests. Cisco Small Business 300 Series Managed Switch Administration Guide 8

2 Viewing Statistics This chapter describes how to view switch statistics. It contains the following sections: Viewing Ethernet Interface Viewing Etherlike Statistics Viewing GVRP Statistics Viewing 802.1X EAP Statistics Viewing TCAM Utilization Managing RMON Statistics Viewing Ethernet Interface The Interface Page displays traffic statistics per port. The refresh rate of the information can be selected. This page is useful for analyzing the amount of traffic that is both sent and received and its dispersion (Unicast, Multicast, and Broadcast). Cisco Small Business 300 Series Managed Switch Administration Guide 9

Viewing Statistics Viewing Ethernet Interface 2 To display Ethernet statistics: STEP 1 STEP 2 Click Status and Statistics > Interface. The Interface Page opens. Enter the parameters. Interface Select the type of interface and specific interface for which Ethernet statistics are to be displayed. Refresh Rate Select the time period that passes before the interface Ethernet statistics are refreshed. The available options are: - No Refresh Statistics are not refreshed. - 15 Sec Statistics are refreshed every 15 seconds. - 30 Sec Statistics are refreshed every 30 seconds. - 60 Sec Statistics are refreshed every 60 seconds. The Receive Statistics area displays information about incoming packets. Total Bytes (Octets) Octets received, including bad packets and FCS octets, but excluding framing bits. Unicast Packets Good Unicast packets received. Multicast Packets Good Multicast packets received. Broadcast Packets Good Broadcast packets received. Packets with Errors Packets with errors received. The Transmit Statistics area displays information about outgoing packets. Total Bytes (Octets) Octets transmitted, including bad packets and FCS octets, but excluding framing bits. Unicast Packets Good Unicast packets transmitted. Multicast Packets Good Multicast packets transmitted. Broadcast Packets Good Broadcast packets transmitted. To clear statistics counters: Click Clear Interface Counters to clear counters for the interface displayed. Click Clear All Interface Counters to clear counters for all interfaces. Cisco Small Business 300 Series Managed Switch Administration Guide 10

Viewing Statistics Viewing Etherlike Statistics 2 Viewing Etherlike Statistics The Etherlike Page displays statistics per port according to the Etherlike MIB standard definition. The refresh rate of the information can be selected. This page provides more detailed information regarding errors in the physical layer (Layer 1), which might disrupt traffic. To view Etherlike Statistics: STEP 1 STEP 2 Click Status and Statistics > Etherlike. The Etherlike Page opens. Enter the parameters. Interface Select the type of interface and specific interface for which Ethernet statistics are to be displayed. Refresh Rate Select the amount of time that passes before the Etherlike statistics are refreshed. The fields are displayed for the selected interface. Frame Check Sequence (FCS) Errors Received frames that failed the CRC (cyclic redundancy checks). Single Collision Frames The number of frames involved in a single collision, but were successfully transmitted. Late Collisions Collisions that have been detected after the first 512 bits of data. Excessive Collisions Number of transmissions due to excessive collisions. Oversize Packets Packets greater than 1518 octets received. Internal MAC Receive Errors Frames rejected because of receiver errors. Received Pause Frames Received flow control pause frames. Transmitted Pause Frames Flow control pause frames transmitted from the selected interface. Cisco Small Business 300 Series Managed Switch Administration Guide 11

Viewing Statistics Viewing GVRP Statistics 2 To clear statistics counters: Click Clear Interface Counters to clear the selected interface s Etherlike statistics counters. Click Clear All Interface Counters to clear the Etherlike statistics counters of all interfaces. Viewing GVRP Statistics The GVRP Page displays information regarding GARP VLAN Registration Protocol (GVRP, also known as MVRP (Multiple VLAN Registration Protocol)) frames that were sent or received from a port. GVRP is a standards-based Layer 2 network protocol, for automatic configuration of VLAN information on switches. It was defined in the 802.1ak amendment to 802.1Q-2005. GVRP statistics for a port are only displayed if GVRP is enabled globally and on the port. This is done in the GVRP Page. To view GVRP statistics: STEP 1 STEP 2 Click Status and Statistics > GVRP. The GVRP Page opens. Enter the parameters. Interface Select the interface and specific interface for which GVRP statistics are to be displayed. Refresh Rate Select the time period that passes before the GVRP statistics page is refreshed. The Attribute Counter block displays the counters for various types of packets per interface. Join Empty Number of GVRP Join Empty packets received/transmitted. Empty Number of GVRP empty packets received/transmitted. Leave Empty Number of GVRP Leave Empty packets received/ transmitted. Join In Number of GVRP Join In packets received/transmitted. Leave In Number of GVRP Leave In packets received/transmitted. Cisco Small Business 300 Series Managed Switch Administration Guide 12

Viewing Statistics Viewing 802.1X EAP Statistics 2 Leave All Number of GVRP Leave All packets received/transmitted. The GVRP Error Statistics section displays the GVRP error counters. Invalid Protocol ID Invalid protocol ID errors. Invalid Attribute Type Invalid attribute ID errors. Invalid Attribute Value Invalid attribute value errors. Invalid Attribute Length Invalid attribute length errors. Invalid Event Invalid events. To clear the counters, click Clear Interface Counters. The GVRP statistics counters are cleared. Viewing 802.1X EAP Statistics The 802.1x EAP Page displays detailed information regarding the EAP (Extensible Authentication Protocol) frames that were sent or received. To configure the 802.1X feature, see the 802.1X Properties Page. To view the EAP Statistics: STEP 1 STEP 2 STEP 3 Click Status and Statistics > 802.1X EAP. The 802.1x EAP Page opens. Select the Port that is polled for statistics. Select the time period (Refresh Rate) that passes before the EAP statistics are refreshed. The values are displayed for the selected interface. EAPOL Frames Received Valid EAPOL frames received on the port. EAPOL Frames Transmitted Valid EAPOL frames transmitted by the port. EAPOL Start Frames Received EAPOL Start frames received on the port. EAPOL Logoff Frames Received EAPOL Logoff frames received on the port. EAP Response/ID Frames Received EAP Resp/ID frames received on the port. Cisco Small Business 300 Series Managed Switch Administration Guide 13

Viewing Statistics Viewing TCAM Utilization 2 EAP Response Frames Received EAP Response frames received by the port (other than Resp/ID frames). EAP Request/ID Frames Transmitted EAP Req/ID frames transmitted by the port. EAP Request Frames Transmitted EAP Request frames transmitted by the port. Invalid EAPOL Frames Received Unrecognized EAPOL frames received on this port. EAP Length Error Frames Received EAPOL frames with an invalid Packet Body Length received on this port. Last EAPOL Frame Version Protocol version number attached to the most recently received EAPOL frame. Last EAPOL Frame Source Source MAC address attached to the most recently received EAPOL frame. Viewing TCAM Utilization The switch architecture uses a TCAM (Ternary Content Addressable Memory) to support an extensive data search in a short period of time. TCAM holds the rules produced by other processes, such as ACLs (Access Control Lists) or QoS. The maximum number of TCAM rules that can be allocated by all processes is 512. Some processes allocate rules upon their initiation. Additionally, processes that initialize during system boot use some of their rules during the startup process. To view TCAM utilization, click Status and Statistics > TCAM Utilization. The TCAM Utilization Page opens, displaying the percentage of TCAM utilization in the system. This page displays TCAM Utilization, the percentage of TCAM resources used. The TCAM Rules Per Process table lists all processes that can allocate TCAM rules. Each process has its specific allocation policy. Cisco Small Business 300 Series Managed Switch Administration Guide 14

Viewing Statistics Viewing TCAM Utilization 2 TCAM Rules Per Process Process Per Port/ Per Switch Allocation on Activation Process Upper Limit TCAM Rules Used Up Per User Entry Comments QoS Advanced Mode Rules Access Control Rules Protocol Based VLAN Port 6/device No limit 1 or 2 TCAM entries per rule. Port 6/device No limit 1 or 2 TCAM entries per rule. Port 0 No limit 1 or 2 Rules are duplicated for MAC-based VLANs. MAC Based VLAN Port 0 No limit No limit Rules are duplicated for MAC-based VLANs. DHCP Snooping Switch 2/device No limit 8 TCAM entries per DHCP Snooping rule IP Source Guard Port 0 No limit 1 TCAM entry per IP Source Guard entry ARP Inspection Switch 2/device 128 4 TCAM entries per ARP Inspection rule VLAN Rate Limiting Both 0 255 1 Global rule per VLAN Rate Limit. An additional rule is created for each Permit rule on the interface. Cisco Small Business 300 Series Managed Switch Administration Guide 15

Viewing Statistics Managing RMON Statistics 2 Managing RMON Statistics RMON (Remote Networking Monitoring) is an SNMP specification that enables an SNMP agent in the switch to proactively monitor traffic statistics over a given period and send traps to an SNMP manager. The local SNMP agent compares actual, real-time counters against predefined thresholds and generates alarms, without the need for polling by a central SNMP management platform. This is an effective mechanism for proactive management, provided that you have right thresholds set relative to your network s base line. RMON decreases the traffic between the manager and the switch because the SNMP manager does not have to frequently poll the switch for information, and enables the manager to get timely status reports because the switch reports events as they occur. With this feature, you can perform the following actions: View statistics (counter values) as they are currently, meaning since the last time they were cleared. You can also collect the values of these counters over a period of time, and then view the table of collected data, where each collected set is a single line of the History tab. Define interesting changes in counter values, such as reached a certain number of late collisions (defines the alarm), and then define what action to perform when this event occurs (log, trap, or log and trap). Viewing RMON Statistics The Statistics Page displays detailed information regarding packet sizes and some information regarding physical layer errors. The information shown is according to the RMON standard. To view the RMON statistics: STEP 1 STEP 2 STEP 3 Click RMON > Statistics. The Statistics Page opens. Select the Interface for which Ethernet statistics are to be displayed. Select the Refresh Rate, the time period that passes before the interface statistics are refreshed. Cisco Small Business 300 Series Managed Switch Administration Guide 16