Cisco Sg3008 Manual
Have a look at the manual Cisco Sg3008 Manual online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 53 Cisco manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
Administration: File Management Upgrade/Backup Firmware/Language Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 41 4 Select one of the following Save Actions: •Upgrade—Specifies that the file type on the device is to be replaced with a new version of that file type located on a TFTP server. •Backup—Specifies that a copy of the file type is to be saved to a file on another device. Enter the following fields: •File Type—Select the destination file type. Only valid file types are shown. (The file types are described in the Files and File Types section). •SCP Server Definition—Select whether to specify the SCP server by IP address or by domain name. •IP Version—Select whether an IPv4 or an IPv6 address is used. •IPv6 Address Type—Select the IPv6 address type (if used). The options are: -Link Local—The IPv6 address uniquely identifies hosts on a single network link. A link local address has a prefix of FE80, is not routable, and can be used for communication only on the local network. Only one link local address is supported. If a link local address exists on the interface, this entry replaces the address in the configuration. -Global—The IPv6 address is a global Unicast IPv6 type that is visible and reachable from other networks. •Link-Local Interface—Select the link local interface from the list. •SCP Server IP Address/Name—Enter the IP address or domain name of the SCP server. •(For Upgrade) Source File Name—Enter the name of the source file. •(For Backup) Destination File Name—Enter the name of the backup file. STEP 6Click Apply. If the files, passwords and server addresses are correct, one of the following may happen: •If SSH server authentication is enabled (in the SSH Server Authentication page), and the SCP server is trusted, the operation succeeds. If the SCP server is not trusted, the operation fails and an error is displayed.
Administration: File Management Active Image 42 Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 4 •If SSH server authentication is not enabled, the operation succeeds for any SCP server. Active Image There are two firmware images stored on the device. One of the images is identified as the active image and other image is identified as the inactive image. The device boots from the image you set as the active image. You can change the image identified as the inactive image to the active image. (You can reboot the device by using the process described in the Management Interface section). To select the active image: STEP 1Click Administration > File Management > Active Image. The page displays the following: •Active Image—Displays the image file that is currently active on the device. •Active Image Version Number—Displays the firmware version of the active image. •Active Image After Reboot—Displays the image that is active after reboot. •Active Image Version Number After Reboot—Displays the firmware version of the active image as it be after reboot. STEP 2Select the image from the Active Image After Reboot menu to identify the firmware image that is used as the active image after the device is rebooted. The Active Image Version Number After Reboot displays the firmware version of the active image that is used after the device is rebooted. STEP 3Click Apply. The active image selection is updated.
Administration: File Management Download/Backup Configuration/Log Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 43 4 Download/Backup Configuration/Log The Download/Backup Configuration/Log page enables: •Backing up configuration files or logs from the device to an external device. •Restoring configuration files from an external device to the device. When restoring a configuration file to the Running Configuration, the imported file adds any configuration commands that did not exist in the old file and over writes any parameter values in the existing configuration commands. When restoring a configuration file to the Startup Configuration or a backup configuration file, the new file replaces the previous file. When restoring to Startup Configuration, the device must be rebooted for the restored Startup Configuration to be used as the Running Configuration. You can reboot the device by using the process described in the Management Interface section. Configuration File Backwards Compatibility When restoring configuration files from an external device to the device, the following compatibility issues might arise: •Change the System Mode—If the System mode is contained in a configuration file that is downloaded to the device, and the files System mode matches the current System mode, this information is ignored. Otherwise, if the System mode is changed, the following cases are possible: -If the configuration file is downloaded onto the device (using the Download/Backup Configuration/Log page), the operation is aborted, and a message is displayed indicating that the System mode must be changed in the System Settings page. -If the configuration file is downloaded during an automatic configuration process, the Startup Configuration file is deleted and the device reboots automatically in the new System mode. The device is configured with an empty configuration file. See Auto Configuration via DHCP.
Administration: File Management Download/Backup Configuration/Log 44 Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 4 Downloading or Backing-up a Configuration or Log File To backup or restore the system configuration file: STEP 1Click Administration > File Management > Download/Backup Configuration/ Log. STEP 2Select the Transfer Method. STEP 3If you selected via TFTP, enter the parameters. Otherwise, skip to STEP 4. Select either Download or Backup as the Save Action. Download Save Action—Specifies that the file on another device replaces a file type on the device. Enter the following fields: a.Server Definition—Select whether to specify the TFTP server by IP address or by domain name. b.IP Version—Select whether an IPv4 or an IPv6 address is used. NOTEIf the server is selected by name in the Server Definition, there is no need to select the IP Version related options. c.IPv6 Address Type—Select the IPv6 address type (if used). The options are: -Link Local—The IPv6 address uniquely identifies hosts on a single network link. A link local address has a prefix of FE80, is not routable, and can be used for communication only on the local network. Only one link local address is supported. If a link local address exists on the interface, this entry replaces the address in the configuration. -Global—The IPv6 address is a global Unicast IPV6 type that is visible and reachable from other networks. d.Link-Local Interface—Select the link local interface from the list. e.TFTP Server—Enter the IP address of the TFTP server. f.Source File Name—Enter the source file name. File names cannot contain slashes ( or /), cannot start with a period (.), and must include between 1 and 160 characters. (Valid characters: A-Z, a-z, 0-9, “.”, “-”, “_”). g.Destination File Type—Enter the destination configuration file type. Only valid file types are displayed. (The file types are described in the Files and File Types section).
Administration: File Management Download/Backup Configuration/Log Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 45 4 Backup Save Action—Specifies that a file type is to be copied to a file on another device. Enter the following fields: a.Server Definition—Select whether to specify the TFTP server by IP address or by domain name. b.IP Version—Select whether an IPv4 or an IPv6 address is used. c.IPv6 Address Type—Select the IPv6 address type (if used). The options are: •Link Local—The IPv6 address uniquely identifies hosts on a single network link. A link local address has a prefix of FE80, is not routable, and can be used for communication only on the local network. Only one link local address is supported. If a link local address exists on the interface, this entry replaces the address in the configuration. •Global—The IPv6 address is a global Unicast IPV6 type that is visible and reachable from other networks. d.Link-Local Interface—Select the link local interface from the list. e.TFTP Server IP Address/Name—Enter the IP address or domain name of the TFTP server. f.Source File Type—Enter the source configuration file type. Only valid file types are displayed. (The file types are described in the Files and File Types section). g.Sensitive Data—Select how sensitive data should be included in the backup file. The following options are available: -Exclude—Do not include sensitive data in the backup. -Encr ypted—Include sensitive data in the backup in its encrypted form. -Plaintex t—Include sensitive data in the backup in its plaintext form. NOTEThe available sensitive data options are determined by the current user SSD rules. For details, refer to Secure Sensitive Data Management > SSD Rules page. h.Destination File Name—Enter the destination file name. File names cannot contain slashes ( or /), the leading letter of the file name must not be a period (.), and the file name must be between 1 and 160 characters. (Valid characters: A-Z, a-z, 0-9, “.”, “-”, “_”). i. Click Apply. The file is upgraded or backed up.
Administration: File Management Download/Backup Configuration/Log 46 Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 4 STEP 4If you selected via HTTP/HTTPS, enter the parameters as described in this step. Select the Save Action. If Save Action is Download (replacing the file on the device with a new version from another device), do the following. Otherwise, go to the next procedure in this step. a.Source File Name—Click Browse to select a file or enter the path and source file name to be used in the transfer. b.Destination File Type—Select the configuration file type. Only valid file types are displayed. (The file types are described in the Files and File Types section). c. Click Apply. The file is transferred from the other device to the device. If Save Action is Backup (copying a file to another device), do the following: a.Source File Type—Select the configuration file type. Only valid file types are displayed. (The file types are described in the Files and File Types section). b.Sensitive Data—Select how sensitive data should be included in the backup file. The following options are available: -Exclude—Do not include sensitive data in the backup. -Encr ypted—Include sensitive data in the backup in its encrypted form. -Plaintex t—Include sensitive data in the backup in its plaintext form. NOTEThe available sensitive data options are determined by the current user SSD rules. For details, refer to Secure Sensitive Data Management > SSD Rules page. c. Click Apply. The file is upgraded or backed up. STEP 5If you selected via SCP (Over SSH), see SSH Client Configuration Through the GUI for instructions. Then enter the following fields: •Remote SSH Server Authentication—To enable SSH server authentication (it is disabled by default), click Edit, which takes you to the SSH Server Authentication page to configure this, and return to this page. Use the SSH Server Authentication page to select an SSH user authentication method (password or public/private key), set a username and password on the device, if the password method is selected, and generate an RSA or DSA key if required.
Administration: File Management Download/Backup Configuration/Log Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 47 4 SSH Client Authentication—Client authentication can be done in one of the following ways : •Use SSH Client—Sets permanent SSH user credentials. Click System Credentials to go to the SSH User Authentication page where the user/ password can be set once for all future use. •Use SSH Client One-Time Credentials—Enter the following: -Username—Enter a username for this copy action. -Password—Enter a password for this copy. •SCP Server Definition—Select whether to specify the TFTP server by IP address or by domain name. •IP Version—Select whether an IPv4 or an IPv6 address is used. •IPv6 Address Type—Select the IPv6 address type (if used). The options are: -Link Local—The IPv6 address uniquely identifies hosts on a single network link. A link local address has a prefix of FE80, is not routable, and can be used for communication only on the local network. Only one link local address is supported. If a link local address exists on the interface, this entry replaces the address in the configuration. -Global—The IPv6 address is a global Unicast IPV6 type that is visible and reachable from other networks. •Link-Local Interface—Select the link local interface from the list. •SCP Server IP Address/Name—Enter the IP address or domain name of the TFTP server. If Save Action is Download (replacing the file on the device with a new version from another device), enter the following fields. •Source File Name—Enter the name of the source file. •Destination File Type—Select the configuration file type. Only valid file types are displayed. (The file types are described in the Files and File Types section).
Administration: File Management Configuration Files Properties 48 Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 4 If Save Action is Backup (copying a file to another device), enter the following fields (in addition to those fields listed above): •Source File Type—Select the configuration file type. Only valid file types are displayed. (The file types are described in the Files and File Types section). •Sensitive Data—Select how sensitive data should be included in the backup file. The following options are available: -Exclude—Do not include sensitive data in the backup. -Encr ypted—Include sensitive data in the backup in its encrypted form. -Plaintex t—Include sensitive data in the backup in its plaintext form. NOTEThe available sensitive data options are determined by the current user SSD rules. For details, refer to Secure Sensitive Data Management > SSD Rules page. •Destination File Name—Name of file being copied to. STEP 6Click Apply. The file is upgraded or backed up. Configuration Files Properties The Configuration Files Properties page allows you to see when various system configuration files were created. It also enables deleting the Startup Configuration and Backup Configuration files. You cannot delete the other configuration file types. ITo set whether mirror configuration files will be created, clear configuration files and see when configuration files were created: STEP 1Click Administration > File Management > Configuration Files Properties. This page displays the following fields: •Configuration File Name—Type of system file. •Creation Time—Date and time that file was modified. STEP 2If required, disable Auto Mirror Configuration. This disables the automatic creation of mirror configuration files. When disabling this feature, the mirror
Administration: File Management Copy/Save Configuration Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 49 4 configuration file, if it exists, is deleted. See System Files for a description of mirror files and why you might not want to automatically create mirror configuration files. STEP 3If required, select either the Startup Configuration, Backup Configuration or both and click Clear Files to delete these files. Copy/Save Configuration When you click Apply on any window, changes that you made to the device configuration settings are stored only in the Running Configuration. To preserve the parameters in the Running Configuration, the Running Configuration must be copied to another configuration type or saved on another device. ! CAUTIONUnless the Running Configuration is copied to the Startup Configuration or another configuration file, all changes made since the last time the file was copied are lost when the device is rebooted. The following combinations of copying internal file types are allowed: •From the Running Configuration to the Startup Configuration or Backup Configuration. •From the Startup Configuration to the Running Configuration, Startup Configuration or Backup Configuration. •From the Backup Configuration to the Running Configuration, Startup Configuration or Backup Configuration. •From the Mirror Configuration to the Running Configuration, Startup Configuration or Backup Configuration. To copy one type of configuration file to another type of configuration file: STEP 1Click Administration > File Management > Copy/Save Configuration. STEP 2Select the Source File Name to be copied. Only valid file types are displayed (described in the Files and File Types section). STEP 3Select the Destination File Name to be overwritten by the source file.
Administration: File Management Auto Configuration via DHCP 50 Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version) 4 •If you are backing up a configuration file, select one of the following formats for the backup file. -Exclude—Sensitive data is not included in the backup file. -Encrypted—Sensitive data is included in the backup file in encrypted form. -Plaintext—Sensitive data is included in the backup file in plain text. NOTEThe available sensitive data options are determined by the current user SSD rules. For details, refer to Secure Sensitive Data Management > SSD Rules page. STEP 4The Save Icon Blinking field indicates whether an icon blinks when there is unsaved data. To disable/enable this feature, click Disable/Enable Save Icon Blinking. STEP 5Click Apply. The file is copied. Auto Configuration via DHCP DHCP auto configuration enables passing configuration information to hosts on a TCP/IP network. Based on this protocol, the Auto Configuration feature enables a device to download configuration files from a TFTP/SCP server. To use this feature, the device must be configured as a DHCPv4 client in which case auto configuration from a DHCPv4 server is supported and/or a DHCPv6 client in which case auto configuration from a DHCPv6 server is supported. By default, the device is enabled as a DHCP client when the Auto Configuration via DHCP feature is enabled. The Auto Configuration process also supports downloading a configuration file that includes sensitive information, such as RADIUS server keys and SSH/SSL keys, by using the Secured Copy Protocol (SCP) and the Secure Sensitive Data (SSD) feature (See Security: Secure Sensitive Data Management).