- Table of Contents
-
- H3C S3100-52P Operation Manual-Release 1602(V1.01)
- 00-1Cover
- 00-2Product Overview
- 01-CLI Operation
- 02-Login Operation
- 03-Configuration File Management Operation
- 04-VLAN Operation
- 05-IP Address and Performance Operation
- 06-Voice VLAN Operation
- 07-GVRP Operation
- 08-Port Basic Configuration Operation
- 09-Link Aggregation Operation
- 10-Port Isolation Operation
- 11-Port Security-Port Binding Operation
- 12-DLDP Operation
- 13-MAC Address Table Management Operation
- 14-MSTP Operation
- 15-Static Route Operation
- 16-Multicast Operation
- 17-802.1x and System Guard Operation
- 18-AAA Operation
- 19-Web Authentication Operation
- 20-MAC Address Authentication Operation
- 21-ARP Operation
- 22-DHCP Operation
- 23-ACL Operation
- 24-QoS-QoS Profile Operation
- 25-Mirroring Operation
- 26-Stack-Cluster Operation
- 27-SNMP-RMON Operation
- 28-NTP Operation
- 29-SSH Operation
- 30-File System Management Operation
- 31-FTP-SFTP-TFTP Operation
- 32-Information Center Operation
- 33-System Maintenance and Debugging Operation
- 34-VLAN-VPN Operation
- 35-HWPing Operation
- 36-IPv6 Management Operation
- 37-DNS Operation
- 38-Smart Link-Monitor Link Operation
- 39-Appendix
- Related Documents
-
Title | Size | Download |
---|---|---|
00-2Product Overview | 188.09 KB |
Chapter 1 Obtaining the Documentation
Chapter 2 Correspondence Between Documentation and Software
Chapter 4 Networking Applications
4.1 Broadband Ethernet Access for Residential Communities
4.2 Application for Connecting Branches or Small- to Medium-Sized Enterprises
4.3 Application in Large Enterprise and Campus Networks
Chapter 1 Obtaining the Documentation
Hangzhou H3C Technologies Co., Ltd. (hereafter referred to as H3C) provides various ways for you to obtain product documents and new feature releases in a convenient and timely manner. The documentations are available with:
l CD-ROMs shipped with the devices
l H3C website
l Software release notes
1.1 CD-ROM
H3C delivers a CD-ROM together with each device. The CD-ROM contains a complete set of electronic documents of the product, including operation manuals and command manuals. After installing the reader program provided by the CD-ROM, you can search for the desired contents in a convenient way through the reader interface.
The contents in the manual are subject to update on an irregular basis due to product version upgrade or some other reasons. Therefore, the contents in the CD-ROM may not be the latest version. This manual serves the purpose of user guide only. Unless otherwise noted, all the information in the document set does not claim or imply any warranty. For the latest software documentation, go to the H3C website.
1.2 H3C Website
Perform the following steps to query and download the product documentation from the H3C website.
Table 1-1 Acquire product documentation from the H3C website
How to apply for an account |
Access the homepage of H3C at http:// www.h3c.com and click the Registration link at the top right. In the displayed page, provide your information and click Submit. |
How to get documentation |
Approach 1: In the homepage of H3C at http:// www.h3c.com, select Technical Support & Document > Technical Documents from the navigation menu at the top. Then select a product for its documents. Approach 2: In the homepage of H3C at http:// www.h3c.com, select Support > Technical Documents. Then select a product for its documents. |
1.3 Software Release Notes
With software upgrade, new software features may be added. You can acquire the information about the newly added software features through software release notes.
Chapter 2 Correspondence Between Documentation and Software
2.1 Software Version
H3C S3100-52P Ethernet Switch Operation Manual-Release 1602 and H3C S3100-52P Ethernet Switch Command Manual-Release 1602 are for the software version of Release1602 of the S3100-52P product.
l Compared with Release 1500, many new features are added in Release 1602. For details, refer to Table 2-1.
l Compared with Release 1500, a feature is removed from Release 1602. For details, refer to Table 2-2.
l Compared with Release 1500, two features are modified in Release 1602. For details, refer to Table 2-3.
Table 2-1 Added features in Release 1602
Added feature in Release 1602 |
Manual |
01-CLI |
|
Copyright information is displayed when a Telnet user logs in |
02-Login |
Banner information is displayed when a user logs in through Web |
|
Auto-negotiation rate configuration for the current port |
08-Port Basic Configuration |
Packet traffic threshold configuration for ports |
|
Display of the statistics of discarded packets on ports |
|
Configuration of the delay time of sending state-change traps for the current port |
|
Inter-device port isolation |
10-Port Isolation |
New port security modes: macAddressAndUserLoginSecure and macAddressAndUserLoginSecureExt |
11-Port Security-Port Binding |
Destination MAC address update |
13-MAC Address Table Management |
STP maintainability |
14-MSTP |
802.1d-compliant traps |
|
Support of IGMPv3 Snooping |
16-Multicast Protocol |
Support of suppressing flooding of unknown multicast traffic in the VLAN |
|
Support of static member port configuration |
|
Support of static router port configuration |
|
Support of VLAN tag configuration for query messages |
|
Online user handshake |
17-802.1x and System-Guard |
Support of 802.1x re-authentication configuration |
|
Support of 802.1x re-authentication timeout configuration |
|
Quick deployment of EAD |
|
Support of domain delimiter configuration |
18-AAA |
Support of HWTACACS scheme configuration for ISP domain user level switching |
|
Setting of MAC address format of the Calling-Station-Id (Type 31) field in RADIUS packets |
|
Web authentication |
19-Web Authentication |
Support of fixed password configuration when a MAC address is used as a user name |
20-MAC Address Authentication |
Enhanced MAC authentication functions |
|
ARP attack detection |
21-ARP |
ARP packet rate limiting |
|
Support of Option 82 in DHCP Snooping |
22-DHCP |
IP filtering |
|
DHCP packet rate limiting |
|
Applying ACLs to VLANs |
23-ACL |
Configuration of inner VLAN information for Layer 2 ACLs |
|
VLAN mapping |
24-QoS-QoS Profile |
Configuration of burst traffic for port rate limiting and traffic policing |
|
Configuration of priority remarking in VLANs |
|
Redirecting traffic to an aggregation port group and removing the outer VLAN tag after the traffic is redirected to the uplink port or the aggregation port group |
|
Burst function |
|
Creating a MIB view with the mask of a MIB subtree |
27-SNMP-RMON |
Encrypting a plain-text password |
|
Adding interface description and interface type in linkUp/linkDown Trap message |
|
Support of the DSA asymmetric key algorithm |
29-SSH |
Banner information of the FTP server |
31-FTP-SFTP-TFTP |
Displaying timestamp with the UTC time zone |
32-Information Center |
Configuration of real-time monitoring of system running status |
33-System Maintenance and Debugging |
Hot patching |
|
Viewing and diagnosing hot-pluggable transceivers |
|
Selective QinQ |
34-VLAN-VPN |
Support of multiple types of protocol packets for BPDU Tunneling |
|
Customizing tunnel packet MAC addresses |
|
Eight test types are added in HWPing, including DHCP test, FTP test, HTTP test, DNS test, SNMP test, Jitter test, TCP test, and UDP test |
35-HWping |
Maximum number of history records that can be saved |
|
IPv6 management |
36-IPv6 Management |
Smart Link |
38-Smart Link-Monitor Link |
Monitor Link |
Table 2-2 Deleted feature from Release 1602
Deleted feature |
Manual |
CLI language mode setting |
33-System Maintenance and Debugging |
Table 2-3 Modified features in Release 1602
Modified feature |
Manual |
Support of up to 128 characters in a domain name, compared with the original 24 characters |
18-AAA |
Sequence of selecting Web files |
30-File System Management |
2.2 Manual List
Manual name |
H3C S3100-52P Ethernet Switch Installation Manual |
H3C S3100-52P Ethernet Switch Operation Manual-Release 1602 |
H3C S3100-52P Ethernet Switch Command Manual-Release 1602 |
Chapter 3 Product Overview
3.1 Preface
H3C S3100-52P Ethernet switch is a Layer 2 wire speed Ethernet switch developed by H3C independently. It is the intelligent and manageable switch designed for network environments where high performance, high port density, and ease of installation are required.
3.2 Switch Models
Table 3-1 lists the H3C S3100-52P Ethernet Switch model.
Table 3-1 Models in the S3100-52P
Model |
Power supply unit (PSU) |
Number of service ports |
Number of 100 Mbps ports |
Number of 1,000 Mbps uplink ports |
Console port |
H3C S3100-52P |
AC-input |
52 |
48 10/100 Mbps ports(electrical) |
4 Gigabit (SFP) ports |
1 |
3.3 Software Features
S3100-52P Ethernet Switch has abundant software features and can meet the requirements of different applications. Table 3-2 summarizes the features provided by each module.
Table 3-2 Service features of the S3100-52P
Part |
Features |
1 CLI |
l CLI l Hierarchically grouped commands l CLI online help |
2 Login |
l Logging into a switch through the Console port l Logging into a switch through an Ethernet port by using Telnet or SSH l Logging into a switch through the Console port by using modem l Logging into a switch through Web or NMS l Controlling user login using ACL |
3 Configuration File Management |
Saving, restoring, and deleting the configuration file |
4 VLAN |
l IEEE 802.1Q-compliant VLAN l Port-based VLAN l Protocol-based VLAN |
5 IP Address and Performance |
l Configuring an IP address for a switch l Configuring the TCP attributes for a switch |
6 Voice VLAN |
Voice VLAN |
7 GVRP |
GARP VLAN registration protocol (GVRP) |
8 Port Basic Configuration |
l Configuring port auto-negotiation rate l Limiting traffic on a port l Setting broadcast storm suppression globally l Loopback detection supported l Cable test |
9 Link Aggregation |
Link aggregation control protocol (LACP) |
10 Port Isolation |
Port isolation group |
11 Port Security-Port Binding |
l Multiple security modes l MAC address-to-IP address-to-port binding |
12 DLDP |
Device link detection protocol (DLDP) |
13 MAC Address Table Managemen |
l Manually configuring dynamic, static, and black hole MAC addresses l Configuring the aging time for MAC addresses l MAC address learning limit |
14 MSTP |
l STP/RSTP/MSTP l The following guard functions are available on an MSTP-enabled switch: BPDU guard, root guard, loop guard, TC-BPDU attack guard, and BPDU drop l Digest snooping l Rapid transition l VLAN-VPN TUNNEL l H3C-proprietary MSTP path cost standard |
15 Static Route |
Static route |
16 Multicast |
Internet group management protocol snooping (IGMP Snooping) |
17802.1x and System Guard |
l 802.1X authentication l Guest VLAN l Quick deployment of EAD l Huawei authentication bypass protocol (HABP) l System guard |
18 AAA |
l Authentication, authorization, and accounting (AAA) l Remote authentication dial-In user service (RADIUS) l Huawei terminal access controller access control system (HWTACACS) |
19 Web Authentication |
Web authentication |
20 MAC Address Authentication |
l MAC address authentication l Enhanced MAC address authentication |
21 ARP |
l Gratuitous ARP l Manually configuring ARP entries l ARP attack detection l ARP packet rate limiting |
22 DHCP |
l DHCP client/BOOTP client l DHCP Snooping l Using Option82 in DHCP Snooping l DHCP packet rate limitation |
23 ACL |
l Basic ACLs l Advanced ACLs l Layer 2 ACLs l User-defined ACLs l Applying ACLs on ports l Applying ACLs to VLANs |
24 QoS-QoS Profile |
l Quality of Service (QoS) l QoS profile |
25 Mirroring |
l Traffic mirroring l Local port mirroring l Remote port mirroring |
26 Stack-Cluster |
l Stack l Huawei group management protocol (HGMP) v2 l Neighbor discovery protocol (NDP) l Neighbor topology discovery protocol (NTDP) |
27 SNMP-RMON |
l Simple network management protocol (SNMP) v3, compatible with SNMP v1/v2 l Support of Trap parameters configuration l Remote monitoring (RMON) |
28 NTP |
Network time protocol (NTP) |
29 SSH Terminal Service |
Secure shell (SSH) v2.0, compatible with SSHv1.5 |
30 File System Management |
l File system configuration l File attribute configuration |
31 FTP-SFTP-TFTP |
l Operating as an FTP server/FTP client l Operating as an SFTP server/SFTP client l Operating as a TFTP client |
32 Information Center |
l System logs l Hierarchical alarms l Debugging information output |
33 System Maintenance and Debugging |
l Loading Boot ROM and software in multiple ways l Basic system configuration and debugging l Network connectivity test l Device management |
34 VLAN-VPN |
l VLAN VPN (QinQ) l Selective QinQ l BPDU Tunnel l Configuring VLAN VPN interior-layer priority replication l Configuring TPID value |
35 HWPing |
l Operating as a HWPing server/HWPing client l Nine test types, including ICMP test, DHCP test, FTP test, HTTP test, DNS test, SNMP test, jitter test, TCP test, and UDP test |
36 IPv6 Management |
l IPv6 management l IPv6 static route l IPv6 DNS |
37 DNS |
IPv4 Domain Name System (DNS) |
38 Smart Link-Monitor Link |
l Smart Link l Monitor Link |
Chapter 4 Networking Applications
You can deploy S3100-52P Ethernet switch on many types of networks, such as enterprise networks and broadband access networks. Following are several typical networking applications.
4.1 Broadband Ethernet Access for Residential Communities
On the broadband access network of a residential community, an S3100-52P Ethernet switch is located in the center. It is downlinked to S3100 series switches to reach the Ethernet users and uplinked to a core Layer 3 switch through a GE extension module to connect to the MAN backbone.
Figure 4-1 Connecting community Ethernet to MAN using S3100-52P Ethernet switch
4.2 Application for Connecting Branches or Small- to Medium-Sized Enterprises
For small-to medium-sized enterprises or branches of a large enterprise, S3100-52P Ethernet switch can serve as a downstream device connected to the backbone switch, and can be connected to the headquarters or other branches through Layer 3 switches or routers. As the enterprise size increases, the network also can expand by subtending the S3100-52P Ethernet switch.
Figure 4-2 S3100-52P Ethernet switch application in branch network of midsize/large enterprise
4.3 Application in Large Enterprise and Campus Networks
In a large enterprise or campus network, the S3100-52P Ethernet switch can operate on the access layer. They are uplinked to layer 3 switches, S3600 Series or S5600 Series for example; and uplinked to a layer 3 switch. These switches together provide a network-wide intranet solution that covers Gigabit-to-backbone and 100 Mbps-to-desktop.
Figure 4-3 S3100-52P Ethernet switch application in large enterprise and campus network