Advanced Switch Configurations for Intel® Modular Server
Access the complete help file from Switch - Advanced Configuration from within the Intel® Modular Server GUI. Some of the most commonly viewed contents are posted here for your convenience.
Table of contents
Configuring ports
Aggregating ports
Defining LAG Members
Configuring LACP
Configuring virtual trunk group failover
Configuring VLANs
Defining VLAN properties
Defining VLAN membership
Defining VLAN interface settings
The Port Configuration Page contains fields for defining port parameters.
The Port Configuration Page contains the following fields:
- Interface-Displays the port number.
- PortType-Displays the port type. The possible field values are:
- 1000M-Copper-Indicates the port has a copper port connection.
- Port Status-Indicates whether the port is currently operational or non-operational. The possible field values are:
- Up-Indicates the port is currently operating.
- Down-Indicates the port is currently not operating.
- Port Speed-Displays the configured rate for the port. The port type determines what speed setting options are available. Port speeds can only be configured when auto negotiation is disabled. The possible field values are:
- 10-Indicates the port is currently operating at 10 Mbps.
- 100-Indicates the port is currently operating at 100 Mbps.
- 1000-Indicates the port is currently operating at 1000 Mbps.
- 10G-Indicates the port is currently operating at 10 Gbps.
- Duplex Mode-Displays the port duplex mode. This field is configurable only when auto negotiation is disabled, and the port speed is set to 10M or 100M. This field cannot be configured on LAGs. The possible field values are:
- Full-The interface supports transmission between the device and its link partner in both directions simultaneously.
- Half-The interface supports transmission between the device and the client in only one direction at a time.
- Auto Negotiation-Displays the auto negotiation status on the port. Auto negotiation is a protocol between two link partners that enables a port to advertise its transmission rate, duplex mode, and flow control abilities to its partner.
- Advertisement-Defines the auto negotiation setting the port advertises. The possible field values are:
- Max Capability-Indicates that all port speeds and duplex mode settings are accepted.
- 10 Half-Indicates that the port advertises for a 10 Mbps speed port and half duplex mode setting.
- 10 Full-Indicates that the port advertises for a 10 Mbps speed port and full duplex mode setting.
- 100 Half-Indicates that the port advertises for a 100 Mbps speed port and half duplex mode setting.
- 100 Full-Indicates that the port advertises for a 100 Mbps speed port and full duplex mode setting.
- 1000 Full-Indicates that the port advertises for a 1000 Mbps speed port and full duplex mode setting.
- Back Pressure-Displays the back pressure mode on the Port. Back pressure mode is used with half duplex mode to disable ports from receiving messages.
- Flow Control-Displays the flow control status on the port. Operates when the port is in full duplex mode. The possible field values are:
- Enable-Enables the flow control.
- Disable-Disables the flow control.
- Auto-Negotiation-Detects the flow control and automatically configures the highest performance mode.
- MDI/MDIX-Displays the MDI/MDIX status on the port. Hubs and switches are deliberately wired opposite the way end stations are wired, so that when a hub or switch is connected to an end station, a straight through Ethernet cable can be used, and the pairs are matched up properly. When two hubs or switches are connected to each other, or two end stations are connected to each other, a crossover cable is used to ensure that the correct pairs are connected. The possible field values are:
- MDIX (Media Dependent Interface with Crossover)-Use for hubs and switches.
- MDI (Media Dependent Interface)-Use for end stations.
- AUTO-Use to automatically detect the cable type.
- PVE-Defines the port as a Private VLAN Edge (PVE) port. PVE is configured on the port level and indicates that all traffic received on the port will be redirected to an uplink port. The PVE associated Uplinks ports are defined on the Port Configuration Settings Page.
- LAG-Indicates whether the port is part of a Link Aggregation Group (LAG).
In addition the fields appearing on the Port Configuration Page, the Port Configuration Settings Page contains the following fields:
- Description-Provides a user-defined port description.
- Admin Status-Displays the port operational status. Changes to the port state are active only after the device is reset. The possible field values are:
- Up-Indicates that the port is currently operating.
- Down-Indicates that the port is currently not operating.
- Current Port Status-Displays the current status of the port.
- Reactivate Suspended Port-Reactivates a port if the port has been disabled through the locked port security option.
- Operational Status-Indicates the port operational status. Possible field values are:
- Suspended-Indicates the port is currently active, and is not receiving or transmitting traffic.
- Active-Indicates the port is currently active and is receiving and transmitting traffic.
- Disable-Indicates the port is currently disabled, and is not receiving or transmitting traffic.
- Admin Speed-Displays the configured rate for the port. The port type determines what speed setting options are available.
- Current Port Speed-Displays the actual synchronized port speed (bps).
- Admin Duplex-Indicates port duplex mode can be either Full or Half. Full indicates that the interface supports transmission between the device and its link partner in both directions simultaneously. Half indicates that the interface supports transmission between the device and the client in only one direction at a time.
- Current Duplex Mode-Displays the currently configured port duplex mode.
Link Aggregation optimizes port usage by linking a group of ports together to form a single LAG. Aggregating ports multiplies the bandwidth between the devices, increases port flexibility, and provides link redundancy.
The device supports both static LAGs and Link Aggregation Control Protocol (LACP) LAGs. LACP LAGs negotiate aggregating port links with other LACP ports located on a different device. If the other device ports are also LACP ports, the devices establish a LAG between them. Ensure the following:
- All ports within a LAG must be the same media type.
- A VLAN is not configured on the port.
- The port is not assigned to a different LAG.
- The port is in full-duplex mode.
- All ports in the LAG have the same ingress filtering and tagged modes.
- All ports in the LAG have the same flow control modes.
- All ports in the LAG have the same priority.
- All ports in the LAG have the same transceiver type.
- The device supports up to 10 LAGs, and eight ports in each LAG.
- Ports can be configured as LACP ports only if the ports are not part of a previously configured LAG.
- Ports added to a LAG lose their individual port configuration. When ports are removed from the LAG, the original port configuration is applied to the ports.
- LAGs can be configured only on external ports.
The LAG Membership Page contains fields for configuring parameters for configured LAGs. The device supports up to eight ports per LAG, and ten LAGs per system. LAGs can be configured only on external ports.
The LAG Membership Page contains the following fields:
- LAG-Displays the ports which can be assigned to the LAG.
- Name-Indicates the LAG name.
- Link State-Displays the status of the link.
- Member-Displays the ports which are currently configured to the LAG.
In addition the fields appearing on the LAG Membership Page, the LAG Membership Settings Page contains the following fields:
- LACP-Enables LACP on the selected LAG.
LAG ports can contain different media types if the ports are operating at the same speed. Aggregated links can be set up manually or automatically established by enabling LACP on the relevant links. Aggregate ports can be linked into link-aggregation port-groups. Each group is comprised of ports with the same speed. The LACP Parameters Page contains fields for configuring LACP LAGs.
The LACP Parameters Page contains the following fields:
- LACP System Priority-Specifies system priority value. The field range is 1-65535. The field default is 1.
- Port-Displays the port number to which timeout and priority values are assigned.
- Port-Priority-Displays the LACP priority value for the port. The field range is 1-65535. The field default is 1.
- LACP Timeout-Displays the administrative LACP timeout. The possible field values are:
- Long-Specifies the long timeout value.
- Short-Specifies the short timeout value.
Configuring virtual trunk group failover
The Trunk Group Fail Over Page enables a network administrator to define a Virtual Trunk Group Failover feature. The Trunk Group Failover increases network stability by ensuring that if a trunk group fails, a different trunk begins to forward the failed trunk’s traffic. A Virtual Trunk Group Failover is comprised of user defined port groups that include:
- Uplink Ports-Connects the switch and external network to the associated internal ports and server NIC.
- Associated Ports-Associated with an Uplink port. Uplinks ports forward host traffic associated ports to the external network. Although an associated port typically connects to a Device. External switch ports can also be an Associated port. For example, a server connected to an external switch port as well as to a dependent group of ports on an Uplink port that forwards traffic to the external network.
Ensure the following when configuring Virtual Trunk Groups:
- The minimum number of Virtual Trunk Groups is one, whereas the maximum is 12.
- A port cannot be a member of more than one Virtual Trunk Group.
- Virtual Trunk Group Failover is globally enabled.
- The Virtual Trunk Group Failover feature cannot be defined on LAGs. However, individual ports within a LAG can be added to a Virtual Trunk Group.
- One Virtual Trunk group can have one or more Uplink ports, and one or more Associated ports.
- Only one Uplink port within the Virtual Trunk Group is required to go up in order for all the associated ports to go up.
- The Associated ports are deactivated within 500ms from the time that the last Uplink port in the Virtual Trunk group fails. The Associated ports reactivate within 500ms whenever a single Uplink port within the group is restored.
- Before the administrator shuts downs an Associated port, the administrator must exclude the Associated port from any Virtual Failover group.
- The Associated ports which have been shut down administratively cannot be added to any failover group by the administrator.
- Failover groups can be configured any time regardless of the feature state.
- When Virtual Trunk Group Failover is disabled, all Associated ports disabled by the Virtual Trunk Group Failover feature are re-enabled.
- When Virtual Trunk Group Failover is enabled, all configured failover groups are scanned to update the Associated port status.
- A log message is generated and sent to the system log and stored when an Associated port goes UP or Down.
The Trunk Group Fail Over Page contains the following fields:
- Group Failover Status-Enables the Trunk Group Failover feature on the device. The possible field values are:
- Enable-Enables Trunk Group Failover on the device.
- Disable-Disables Trunk Group Failover on the device.
- Group-Displays the Trunk Group number.
- Group State-Indicates the Trunk Group state. The possible field values are:
- Up-Indicates the group state is active.
- Down-Indicates the group state is inactive.
- Port-Displays the port added to the specific Trunk Group.
- Type-Displays the port type. The possible field values are:
- Uplink-Ports that connect the switch and external network to the associated internal ports and server NIC.
- Associated-Ports that are associated with an Uplink port.
- Port State-Indicates the port state within the Trunk Group. The possible field values are:
- Up-Indicates the port is in the Up state.
- Down-Indicates the port is in the Down state.
VLANs are logical subgroups with a Local Area Network (LAN) which combine user stations and network devices into a single unit, regardless of the physical LAN segment to which they are attached. VLANs allow network traffic to flow more efficiently within subgroups. VLANs use software to reduce the amount of time it takes for network changes, additions, and moves to be implemented.
VLANs have no minimum number of ports since they are software-based and not defined by physical attributes.
VLANs function at Layer 2. Since VLANs isolate traffic within the VLAN, a Layer 3 router working at a protocol level is required to allow traffic flow between VLANs. Layer 3 routers identify segments and coordinate with VLANs. VLANs are Broadcast and Multicast domains. Broadcast and Multicast traffic is transmitted only in the VLAN in which the traffic is generated.
VLAN tagging provides a method of transferring VLAN information between VLAN groups. VLAN tagging attaches a 4-byte tag to packet headers. The VLAN tag indicates to which VLAN the packets belong. VLAN tags are attached to the VLAN by either the end station or the network device. VLAN tags also contain VLAN network priority information.
Combining VLANs and Generic Attribute Registration Protocol (GARP) allows network managers to define network nodes into Broadcast domains.
The VLAN Properties Page provides information and global parameters for configuring and working with VLANs. The VLAN Properties Page contains the following fields:
- Delete-Deletes VLANs. The possible field values are:
- Checked-Deletes the selected VLAN.
- Unchecked-Maintains VLANs.
- VLAN ID-Displays the VLAN ID.
- VLAN Name-Displays the user-defined VLAN name.
- Type-Displays the VLAN type. The possible field values are:
- Dynamic-Indicates the VLAN was dynamically created through GARP.
- Static-Indicates the VLAN is user-defined.
- Default-Indicates the VLAN is the default VLAN.
- Back-Allows you to view the previous page in a table.
- Next-Allows you to view the next page in a table when there are more than 20 entries.
The VLAN Membership Page contains a table that maps VLAN parameters to ports/LAGs. Interfaces are assigned VLAN membership by toggling through the Port Control settings.
The VLAN Membership Page contains the following fields:
- VLAN ID-Displays the user-defined VLAN ID.
- VLAN Name-Displays the name of the VLAN
- VLAN Type-Indicates the VLAN type. The possible field values are:
- Dynamic-Indicates the VLAN was dynamically created through GARP.
- Static-Indicates the VLAN is user-defined.
- Default-Indicates the VLAN is the default VLAN.
- Ports-Indicates the port membership.
- LAGs-Indicates the LAG membership.
- Interface-Displays the VLAN interfaces.
- Interface Status-Indicates the port status. The possible field values are:
- Excluded-Excludes the interface from the VLAN. However, the interface can be added to the VLAN through GARP.
- Forbidden-Denies the interface VLAN membership, even if GARP indicates the port is to be added.
- Tagged-Indicates the interface is a tagged member of a VLAN. All packets forwarded by the interface are tagged. The packets contain VLAN information.
- Untagged-Indicates the interface is an untagged VLAN member. Packets forwarded by the interface are untagged.
- Interface Mode-Displays the interface mode. The possible field values are:
- General-Indicates the port belongs to VLANs, and each VLAN is user-defined as tagged or untagged (full IEEE802.1q mode). This is the default value.
- Trunk-Indicates the port belongs to VLANs in which all VLANs are tagged, except for one VLAN that can be untagged.
- Access-Indicates a port belongs to a single untagged VLAN. When a port is in Access mode, the packet types which are accepted on the port cannot be designated. Ingress filtering cannot be enabled or disabled on an access port.
Defining VLAN interface settings
The Interface Settings Page contains fields for managing ports/LAGs that are part of a VLAN. The Port Default VLAN ID (PVID) is configured on the Interface Settings Page. All untagged packets arriving at the device are tagged with the port PVID.
The Interface Settings Page contains the following fields:
- Ports-Indicates the port membership.
- LAGs-Indicates the LAG membership.
- Interface-Displays the interface number included in the VLAN.
- Interface VLAN Mode-Displays the interface mode. The possible values are:
- General-Indicates the interface belongs to VLANs, and each VLAN is user-defined as tagged or untagged (full IEEE802.1q mode).
- Access-Indicates an interface belongs to a single untagged VLAN. When an interface is in Access mode, the packet types which are accepted on the port cannot be designated. Ingress filtering cannot be enabled or disabled on an access port.
- Trunk-Indicates the interface belongs to VLANs in which all VLANs are tagged, except for one VLAN that can be untagged.
- PVID-Assigns a VLAN ID to untagged packets. The possible values are 1-4094 except VLAN 4080. VLAN 4095 is defined as per standard and industry practice as the Discard VLAN. Packets classified to the Discard VLAN are dropped.
- Frame Type-Specifies the packet type accepted on the interface. The possible field values are:
- Admit All-Both tagged and untagged packets are accepted on the interface.
- Admit Tag Only-Only tagged packets are accepted on the interface.
- Ingress Filtering-Indicates whether ingress filtering is enabled on the interface. The possible field values are:
- Enable-Enables ingress filtering on the interface. Ingress filtering discards packets that are defined to VLANs of which the specific port is not a member.
- Disable-Disables ingress filtering on the interface.
- Reserved VLAN-Indicates the VLAN selected by the user to be the reserved VLAN if not in use by the system.
In addition the fields appearing on the Interface Settings Page, the VLAN Interface Settings Page contains the following fields:
- Current Reserved VLAN-Displays the current reserved VLAN on the interface.
- Reserve VLAN for Internal Use-Indicates the VLAN selected by the user to be the reserved VLAN if not in use by the system.