Cisco SF500-24 User Manual

Describes how to navigate the web-based switch configuration utility and potential browser restrictions.

Explains the default logout behavior and how to save configurations before logging out.

Provides links to commonly used pages for simplified device configuration.

Details how interfaces are denoted in the GUI by concatenating elements like type, unit, and slot numbers.

Describes features of the web-based switch configuration utility, including the Application Header and links.

Displays traffic statistics per port, including sent and received data dispersion.

Shows detailed information regarding errors in the physical layer (Layer 1) per port.

Explains RMON specification for proactive traffic monitoring, alarm generation, and event notification.

Configures global log parameters, including enabling logging and selecting severity levels for RAM and Flash logs.

Displays messages saved in RAM (cleared on reboot) and Flash memory (persistent across reboots).

Details system files like configuration, firmware, and boot code, and methods of file transfer.

Describes processes for upgrading or backing up firmware, boot code, and language files.

Explains how auto configuration passes information and enables devices to download configuration files.

Describes how stacks are managed, including standalone and stacked modes, and master/slave models.

Explains how unique unit IDs are assigned automatically or manually after topology discovery.

Details the priority factors used to select the master unit from master-enabled units.

Describes how the backup unit takes over if the master fails, and the synchronization process.

Indicates whether a device is part of a stack or operating standalone (Standalone, Native, Hybrid modes).

Provides information on managed models, port configurations, and PoE details for stackable managed devices.

Displays device status, hardware, firmware, PoE status, and other system details via the System Summary page.

Explains how to reboot the device, including immediate and scheduled reboots, and configuration saving.

Details TCAM allocation differences between models and how to view and modify router resources.

Covers methods for setting system time: manual, from PC, or via SNTP server.

Describes SNTP client modes: Broadcast Reception (passive) and Broadcast Transmission (active).

Explains how to select the system time source and configure time zone and DST settings.

Details results of integrated cable tests performed on copper cables using Virtual Cable Tester (VCT).

Shows operating conditions reported by SFP transceivers, including MSA-compatible SFPs.

Explains how to send a copy of network packets from ports or VLANs to a network monitoring connection.

Details how the device broadcasts Bonjour Discovery protocol packets to advertise its existence and services.

Explains LLDP and CDP as link layer protocols for advertising capabilities to neighbors.

Covers LLDP overview, properties, port settings, MED network policy, and port status configuration.

Shows LLDP local port status advertised on a port, including Chassis ID, System Name, and Port Description.

Outlines actions for port configuration, including Port Settings, LAG, LACP, and Green Ethernet.

Details global and per-port settings, including jumbo frames, port type, description, and administrative status.

Covers LAG overview, static/dynamic LAG workflow, LAG management, settings, and LACP configuration.

Describes Green Ethernet features for power saving, including Energy-Detect, Short-Reach, and EEE modes.

Explains Smartport feature for saving and sharing common configurations via CLI or Auto Smartport.

Lists supported Smartport types for attached devices and their relationship with Auto Smartport.

Defines Smartport macros as CLI command scripts for interface configuration and pairing with anti-macros.

Details how Auto Smartport automatically assigns Smartport types based on CDP/LLDP packets.

Provides common tasks for setting up Smartport and Auto Smartport, including global enablement and interface configuration.

Defines VLANs as logical groups of ports enabling communication regardless of physical LAN segment.

Explains how to create VLANs with unique VIDs and the effect of assigning ports to VLANs.

Details how to display and configure VLAN memberships for ports and LAGs, including Forbidden, Excluded, Tagged, Untagged options.

Covers voice VLAN deployment scenarios, dynamic modes (Telephony OUI, Auto Voice VLAN), and QoS propagation.

Describes STP versions (Classic, Rapid, Multiple) that protect Layer 2 domains from broadcast storms and prevent loops.

Sets STP status, operation mode (STP, RSTP, MSTP), BPDU handling, and bridge settings.

Configures STP on a per-port basis, including Edge Port, Root Guard, BPDU Guard, and Path Cost.

Enables faster STP convergence by configuring RSTP per port, including Point to Point status and roles.

Explains MSTP for separating STP port state between domains (VLANs) and defining global MSTP settings.

Distinguishes between static (user-configured, non-expiring) and dynamic (learned, aging) MAC addresses.

Assigns static MAC addresses to specific physical interfaces and VLANs, with options for permanent or timeout deletion.

Covers configuring aging intervals for dynamic MAC addresses and querying the dynamic address table.

Enables one-to-many information dissemination by forwarding data only to relevant ports, conserving bandwidth.

Configures Bridge Multicast filtering status and forwarding methods (MAC, IP, Source IP) per VLAN.

Supports forwarding Multicast traffic based on MAC group information, derived from IGMP/MLD packets or manual config.

Explains IGMP snooping for selective Multicast forwarding, supporting static VLANs and IGMP Querier functionality.

Details MLD protocol usage for Multicast sessions and supports MLDv1 and MLDv2 snooping.

Defines IPv4 interfaces, including static or dynamic IP address configuration and IP address assignment rules.

Enables configuring and viewing IPv4 static routes using the longest prefix match (LPM) algorithm.

Manages the ARP table for known devices, supporting static and dynamic addresses for IP communication.

Provides security by preventing false DHCP responses, logging addresses, and relaying DHCP packets to servers.

Enables configuring the device as a DHCPv4 server, allocating IPv4 addresses from user-defined pools.

Covers IPv6 network-layer protocol, address configuration, tunneling, and router advertisements.

Enables configuring and viewing static IPv6 routes, defining paths between network devices.

Describes Routing Information Protocol (RIP) version 2, a distance-vector protocol classifying routers as active or passive.

Explains RIP operation, including enabling RIP globally and per interface, offset configuration, and passive mode.

Details RIP message authentication methods: Plain text or password, and MD5 digest authentication.

Covers mandatory actions like enabling RIP globally and per interface, and optional actions like offset configuration.

Describes Virtual Router Redundancy Protocol (VRRP) for dynamic assignment of virtual router responsibility.

Details configurable elements like VRID, VRRP versions, virtual router IP addresses, and source IP address.

Explains VRRP priority for efficiently performing as a backup and the preemptive feature.

Outlines how to configure VRRP properties, add virtual routers, and set interface, VRID, description, and status.

Covers setting up user accounts, privilege levels, and password complexity rules for device access.

Establishes TACACS+ for centralized security, handling authentication, authorization, and accounting.

Describes RADIUS for centralized 802.1X or MAC-based network access control, covering authentication and accounting.

Explains configuring key chains for applications and protocols like RIP, used for authentication.

Assigns authentication methods (RADIUS, TACACS+, Local, None) for management access methods like SSH, Telnet, HTTP.

Details DoS attack types (SYN, Fragmentation) and prevention methods like SYN protection and Martian addresses.

Covers port-based access control using 802.1X standard for authentication and authorization of supplicants.

Explains SSH as a secure protocol for data exchange and SCP for secure file transfer (firmware, logs).

Details various methods for SSH client authentication: Passwords, Public/Private Keys, and Import Keys.

Enables SSH server authentication by defining trusted servers and managing public key fingerprints.

Covers SSH client authentication methods (password, public key) and supported algorithms.

Provides workflows for configuring SSH client, transferring data, importing keys, and changing passwords.

Guides through SSH user authentication setup via GUI, including password and public key methods.

Describes establishing SSH sessions using internally-generated or public key modes for secure access.

Provides workflows for logging into the device via SSH using default or user-created keys.

Explains enabling SSH server authentication by defining trusted servers and managing RSA/DSA keys.

Details SSD architecture for protecting sensitive data (passwords, keys) via encryption and access control.

Defines read permissions and default read modes for user sessions on management channels.

Sets parameters for SSD environment, controlling data encryption, configuration file security, and view permissions.

Provides additional protection for user-defined passphrases in text-based configuration files (Unrestricted, Restricted).

Describes device configuration files (Running, Startup, Mirror, Backup) and their management via text-based formats.

Enables auto configuration of target devices with encrypted sensitive data without manual passphrase pre-configuration.

Categorizes management channels (secure, insecure) and indicates parallel secure channels for SSD operations.

An ordered list of classification filters and actions (ACEs) to define traffic flows and control entry.

Filters traffic based on Layer 2 fields by checking all frames for MAC address matches.

Checks IPv4 packets using rules defined in ACLs, matching IP protocol, ports, and IP addresses.

Creates IPv6 ACLs to check pure IPv6-based traffic, matching IPv6 protocol, addresses, and ports.

Binds ACLs to interfaces, applying ACE rules to packets and matching them to a default rule.

Explains QoS for optimizing network performance through traffic classification, assignment to queues, and handling attributes.

Describes QoS modes: Basic (CoS/802.1p/DSCP trust), Advanced (per-flow QoS), and Disabled (best effort).

Covers general QoS configuration, including QoS mode, interface CoS priority, queue settings, and bandwidth limits.

Defines per-flow QoS using class maps, policers, and policies, matching ACLs for traffic flows.

Measures traffic rates against rules and enforces limits, using single or aggregate policers for traffic control.

Shows which policy profiles are bound to ports, filtering and applying QoS to ingress traffic based on policy flows.

Provides tools to manage policer statistics and view queue statistics for forwarded and dropped packets.

Describes SNMP agent support for v1, v2, v3, trap reporting, and recommended workflow for configuration.

Lists device model Object IDs (OIDs) for supported models, used in SNMP management.

Explains the Engine ID's role in uniquely identifying SNMPv3 entities and its configuration.

Defines user-created labels (views) for collections of MIB subtrees, specifying included or excluded objects.

Covers creating SNMPv3 groups to control user read/write privileges and security levels.

Defines SNMP users with login credentials, authentication methods, and associates them with groups and Engine IDs.

Manages access rights in SNMPv1/v2 using community names as shared passwords for authentication.

Configures whether SNMP notifications (traps or informs) are sent from the device and for which cases.

Specifies destinations for SNMP notifications (traps/informs) and configures notification attributes.

Enables configuring SNMP notification filters and Object IDs (OIDs) to filter notifications sent to the management station.