Hirschmann GUI Graphical User Interface Industrial ETHERNET (Gigabit-)Switch RS20/RS30/RS40, MS20/MS30

IP based port security → Port security → Configuration selection "IP based" port allows IP addresses: enter up to 10 IPs; relies on ARP to resolve MAC, ensuring that the terminal device is online

Violation action setting security ->Port security ->Select "trapOnly" (alert), "portDisable" (disable port), or "autoDisable" (reset according to diagnostic configuration) from the port table

2. CLI operation commands

Example of Function Command (Mode)

Enable MAC based port security global configuration mode: port sec mode MAC based-

Binding MAC address to port interface configuration mode: port sec allowed mac add<mac>interface 1/1 → port sec allowed mac add 00:11:22:33:44:55 (binding MAC to port 1/1)

Binding IP address to port interface configuration mode: port sec allowed ip add<ip>interface 1/1 → port sec allowed ip add 192.168.1.200 (binding IP to port 1/1)

Set violation action interface configuration mode: port sec action<action>interface 1/1 → port sec action portDisable (disable port 1/1 when violating)

View port security status privilege execution mode: show port sec port<slot/port>show port sec port 1/1 (view the security configuration of port 1/1)

QoS/Priority Configuration

1. GUI operation steps

Key settings for functional operation path

Global Trust Mode QoS/Priority → Select "trustDot1p" (Trust VLAN Priority) or "trustIpDscp" (Trust IP DSCP) globally; Set the priority of management messages to 6-7 (to ensure the management channel)

Port priority QoS/priority → Port configuration Port priority is set to 0-7 (with 7 being the highest), automatically mapped to 4 traffic classes

802.1D/p mapping QoS/priority → 802.1D/p mapping VLAN priority 0-7 to traffic class 0-3 (e.g. priority 6 → traffic class 3, adapted to voice services)

2. CLI operation commands

Example of Function Command (Mode)

Set global trust mode Global configuration mode: classofservice trust<mode>classofservice trust trustDot1p (trust VLAN priority)

Configure port priority interface configuration mode: VLAN priority<priority>interface 1/1 → VLAN priority 7 (port 1/1 priority is set to 7)

Configure DSCP mapping global configuration mode: classofservice ip-dscp-mapping <<dscp> <trafficclass> classofservice ip-dscp-mapping 46 3（DSCP 46 → Traffic category 3, adapted to EF business)

View QoS configuration privilege execution mode: show classofservice trust displays the current trust mode and mapping rules

Time synchronization configuration (SNTP/PTP)

1. SNTP configuration

Operation method steps/command key parameters

GUI time → SNTP configuration enables SNTP client; Enter the NTP server address for the main server IP; Request interval of 30 seconds (default); Set the broadcast to 'On'

CLI global configuration mode: sntp operation on → sntp client server primary<ip>sntp operation on → sntp client server primary 210.72.145.44 (configure national time service center server)

2. PTP configuration (IEEE 1588)

Operation method steps/command key parameters

GUI time → PTP → global mode selection "v2 binary lock"; Synchronization threshold of 30ns (default); Enable PTP transmission and reception on the port

CLI global configuration mode: ptp mode v2 binary lock → ptp port<slot/port>enable ptp mode v2 binary lock → ptp port 1/1 enable (port 1/1 enables PTP)

Diagnostic tool (port mirroring/logging)

1. Port mirroring configuration

Operation method steps/command key parameters

GUI diagnosis ->Port image source port selection - Select the ports to be monitored (up to 8); Select the monitoring port (idle port) as the destination port; Set the operation to 'On'

CLI global configuration mode: monitor session 1 source interface<slot/port>→ monitor session 1 destination interface<slot/port>→ monitor session 1 mode enable monitor session 1 source interface 1/1-1/8 → monitor session 1 destination interface 1/9 → monitor session 1 mode enable (monitor port traffic from 1/1-1/8 to 1/9)

2. Log viewing

Operation method steps/command instructions

GUI diagnosis → Syslog/diagnosis → Trap log to view system event and alarm logs; Support exporting to PC

CLI privileged execution mode: show logging traplogs displays all Trap logs (including timestamps and event descriptions)