SonicOS 7.1 Switch Network

About Switch Network > Setting Up Ports
Table of Contents

Setting Up Ports

To configure specific ports

  1. Navigate to DEVICE > Switch Network > Overview.

  2. Do one of the following:

    • Click on the desired port in the Physical View.

      Editing port settings from physical view

    • Click on List View, select the desired port and then click the Edit port pencil icon.

      Editing port settings from list view

    The port setup dialog for the specific port is displayed at the right of the screen.

    Port settings - all

  3. Configure the following options for the port:

    PORT SETTINGS:

    • Status - Enable or disable by clicking the slider.
    • Port Description - Enter a description for this port.
    • Link speed - Default is Auto Negotiate. Selections also include 1000 Mbps Full Duplex, 100 Mbps Full Duplex, 100 Mbps Half Duplex, 10 Mbps Full Duplex, and 10 Mbps Half Duplex.
    • Portshield Interface - Set this option to portshield the Switch port to a firewall interface. Unassigned by default. Selections include Any and X0-Xn.

    • Dedicated portshield uplink - This option appears if PortShield Interface is set to a firewall interface in any zone. Enable or disable by clicking the slider.

      Dedicated portshield uplink option

    • VLAN Mode - This option appears if PortShield Interface is set to an interface that is configured with a VLAN Sub-Interface. Default is Access.

      Select Access if the port transmits data on a specific VLAN.

      Select Trunk for a port that can carry traffic for multiple VLANs. Port Trunking allows you to assign physical links to one logical link that functions as a single, higher-speed link, providing dramatically increased bandwidth. Use Port Trunking to bundle multiple connections and use the combined bandwidth as if it were a single larger “pipe”.

      Port settings with VLAN mode

    • Native VLAN - The Native VLAN field appears when Trunk is selected for VLAN mode. Enter a number between 1 and 4094 in the Native VLAN field to assign the port's Native VLAN (Port VLAN ID).

      The Native VLAN option allows you to specify the Switch Port VLAN ID for traffic that does not carry a VLAN tag, which can help with SonicWave provisioning. A packet received on a given Switch port is assigned that port’s Native VLAN ID and is then forwarded to the port that corresponds to the packet’s destination address. If the Native VLAN of the port that received the packet is different from the Native VLAN of the port that is to transmit the packet, the Switch will drop the packet.

      Native VLAN option in Port Settings

    • VLAN - The VLAN field appears in conjunction with VLAN mode. Select Unassigned or the number of a VLAN Sub-Interface associated with the firewall interface selected in PortShield Interface.

    POE SETTINGS: Ports on a PoE enabled Switch can provide power to connected devices with Power over Ethernet.

    • PoE - Enable or disable Power over Ethernet on this port by clicking the slider.
    • PoE power priority level - Default is Medium. Selections also include Critical, High and Low. If several devices are connected and they exceed the Switch PoE capacity, the priority level determines which ports get powered.
    • PoE limit type - Default is Auto Class, which uses a Device Discovery Protocol to discover attached devices and learn their classification. You can also select User Defined.

    • PoE power limit (0-30 W) - This field is disabled if Auto Class is selected above. When User Defined is selected, enter a value between 0 and 30 for the port power limit in watts.

      Each SonicWall Switch model has a different total power budget:

      • SWS12-8POE - 55 Watts (supports IEEE802.3 af only)
      • SWS12-10FPOE - 130 Watts (IEEE802.3 af and at)
      • SWS14-24FPOE - 410 Watts (IEEE802.3 af and at)
      • SWS14-48FPOE - 730 Watts (IEEE802.3 af and at)

    802.1X SETTINGS: IEEE 802.1X defines authentication controls for users or devices trying to connect to a port that accesses a LAN or WLAN.

    • Mode - Default is Force Authorized. Selections also include Auto and Force Unauthorized.
    • Guest VLAN - Enable or disable by clicking the slider. Default is disabled.
    • Radius VLAN Assign - Enable or disable by clicking the slider. The user's identity based on their credentials or certificate can be confirmed by a RADIUS server. The RADIUS server takes care of the VLAN assignment for the Switch port.

    ADVANCED SETTINGS:

    • STP - Enable or disable by clicking the slider. Spanning Tree Protocol (STP) must be enabled on the Switch before configuring port STP settings. STP prevents loops when you have redundant paths in your network.
    • Port isolation - Enable or disable by clicking the slider. Enable to isolate the port.
    • Port security max count - Default is 0, which disables port security. Range is 0-256. This is the maximum number of MAC addresses that can be learned on the port. Network security can be increased by limiting access on a specific port to users with specific MAC addresses.
    • B/W Ingress Rate (Kbps) - Default is 0, which disables ingress bandwidth control. Allowed values are multiples of 16 between 0 and 1,000,000.
    • B/W Egress Rate (Kbps) - Default is 0, which disables egress bandwidth control. Allowed values are multiples of 16 between 0 and 1,000,000.

    VOICE VLAN SETTINGS:

    • Voice VLAN state - Enable or disable by clicking the slider.
    • Voice VLAN CoS mode - Default is Source. Selections for the Class of Service mode include Source or All.

    QOS SETTINGS: Quality of Service allows certain traffic types, such as voice or video streaming, to be prioritized.

    • Trust - Enable or disable Trust mode for incoming packets by clicking the slider. Enable this to classify traffic based on the IEEE 802.1p standard (using the 8 CoS priority tags).
    • CoS - Select the CoS priority to set the priority for packets entering on this port. Default is 0. Range is 0-7 for Class of Service tags, with 0 (background) and 1 (best effort) the lowest priority and 7 the highest priority in the traffic forwarding queue.

    STORM CONTROL SETTINGS: Storm Control limits the amount of Broadcast, Unknown Multicast, and Unknown Unicast frames accepted and forwarded by the Switch. Storm Control can be enabled per port by defining the packet type and the rate of packet transmission. The Switch discards the frames when the rate exceeds the defined rate.

    • Broadcast Rate (Kbps) - Default is 0, which disables port broadcast. Allowed values are multiples of 16 between 0 and 1,000,000.
    • Unknown Multicast Rate (Kbps) - Default is 0, which disables port unknown multicast. Allowed values are multiples of 16 between 0 and 1,000,000.
    • Unknown Unicast Rate (Kbps) - Default is 0, which disables port unknown unicast. Allowed values are multiples of 16 between 0 and 1,000,000.
  4. Click Confirm to save and apply your changes, or click Cancel to exit the edit dialog without saving.