Welcome to the D-Link® Certified Specialist (DCS) Training course for D-Link switching products. Prerequisites: There are no prerequisites for this training.

1

This self-paced training course is divided into four modules. This is an introductory course designed for sales and support staff. When you complete this course, you will have a basic understanding of switching technologies, the D-Link switching products and solutions, basic customer applications and selling guidelines. Certification Exam: When you complete the course, please schedule a time to take the online exam.

2

This module is designed to ensure that the partner has a basic understanding of D-Link’s overall market positioning. The module also introduces the partner to the D-Link switching solutions portfolio, and provides examples of basic network deployments. In particular, the module highlights the “sweet spot” for D-Link switching solutions — the small and medium sized business market and our flagship Smart Switch portfolio.

3

Because customers care about the ability of a vendor to support them wherever they are located, at any stage of growth, and whatever their needs, it is important to know these facts and figures about D-Link:

•D-Link has been in business for over 25 years. We are a billion dollar company with over 2,500 employees. •We are a market leader in the design, manufacture and marketing of advanced networking, broadband, digital, and voice and data communications solutions. We provide these solutions to customers of all sizes: single office/home office (SOHO), small business, medium-size business, large enterprise and service providers. Our strategic focus and the area where we are growing the fastest is the small and medium size business (SMB/SME). In this market segment, •A major contributor to our success is our established and expanding network of over 4,500 authorized resellers, distributors, ITSPs and SIs delivering products to more than 67 countries. In fact, 98% of our employees are locally hired. •We have regional warehouses in 13 countries and Return Material Authorization (RMA) centers around the globe. This coverage allows us to deliver products to customers faster. •D-Link's international headquarters are located in Taipei, Taiwan. More than 190 global offices serve North America, Asia and Europe, including the North American headquarters in Fountain Valley, California. D-Link maintains strategic operations in Canada, the United Kingdom, Germany, France, Spain, Italy, Greece, Turkey, Sweden, Norway, the Netherlands, Denmark, Finland, Russia, Israel, the Middle East, South Africa, Chile, Australia, Japan, Vietnam, Singapore, China, India and other countries on five continents.

D-Link’s core competency is in Ethernet connectivity. We are the global leader in providing Ethernet switches from small, medium-sized business to large enterprise.

5

D-Link can support the customer in all areas of network connectivity with complete networking solutions. Wireless Networking D-Link provides greater value across a comprehensive range of wireless needs, delivering scalability, ease of management, seamless roaming and robust security in a self-healing solution. Network Switching D-Link can cost-effectively unify and secure a customer’s wired and wireless network with our switching solutions. Network Storage D-Link’s iSCSI storage area network (SAN) solutions surpass the performance and reliability of competitors at half the price. D-Link simplifies the difficult challenges of managing and growing storage, and supports virtualized servers. Network Security D-Link’s firewalls and switches work together with a defacto security policy mechanism to prevent network disruption and downtime from internal and external threats. D-Link’s ZoneDefense architecture positions the company as one of the only vendors to provide such a comprehensive security approach. IP surveillance D-Link’s flexible network camera solutions surpass the competition with our range of costeffective camera types, advanced features, searchable video storage solutions, standards-based solutions and, of course, the advantages of an end-to-end solution from D-Link. Professional Services D-Link also helps customers optimize their solutions with proven consulting, installation and ongoing support.

6

D-Link’s switching portfolio is one of the largest in the networking industry. In this presentation, we provide an overview of D-Link’s switching family, with special emphasis on switches for small and medium-sized (SMB) companies. As highlighted in the next slides, the SMB market segments offer strong sales opportunities, with D-Link’s combination of affordability and business-class capabilities for performance, scalability, security and manageability. D-Link has several switch categories, and has been a technology innovator in every category. D-Link’s leadership in Ethernet switching is based on many qualities and capabilities, including: • Extensive switching portfolio to meet a broad range of customer needs • High performance, affordable switching solutions • High availability • Green Ethernet switching

• Quality of service, usually referred to as QoS • Security • Manageability • Strong service and support organization

7

Unmanaged Switches D-Link unmanaged switches are ideal for deployment in a workgroup environment. D-Link offers both Fast Ethernet and Gigabit Ethernet Unmanaged Switches, and the company is particularly known for leading the industry in Green Ethernet technology in even its unmanaged switches, to conserve energy and decrease energy cost through the reduction of power consumption. Smart Switches

Traditionally, there are only two types of switches: managed switches and unmanaged switches. D-Link, however, provides another switch category – D-Link Smart Switches. These switches are designed for SMB customers who want to perform some management functions over the switch, but they are reluctant to learn the complex configuration of managed switches. D-Link Smart Switches offer great value for small and medium-sized businesses (SMBs) that need switch manageability without complexity and at a price close to unmanaged switches. Managed Switches D-Link Managed Switches are commonly used as entry level wiring closet switches for SMBs, and deployed at the edge of enterprise and Metropolitan Area Networks (MANs). This series provides a full range of business class switching solution from 10/100Mbps to Gigabit Ethernet, hardware configurations from 12 to 52 ports, Power over Ethernet (PoE), fiber options, stackability, comprehensive security and multicast features (a technique for one-to-many transmission of packets). Chassis Switches

8

The chassis switches offer scalable Layer 2 (L2) and Layer 3 (L3) switching with high port density, redundancy and load sharing, hot-swappable design, and power supplies. D-Link Chassis switches are alternatives to stackable L3 management switches, and they are ideal for enterprise, carrier and data center applications. Note: DES = Fast Ethernet switch; DGS = Gigabit Ethernet switch

8

D-Link Unmanaged Switches have advanced features that traditional unmanaged switches do not typically offer. In particular, D-Link Unmanaged Gigabit Switches offer unique features such as: Green Ethernet Green Ethernet technology is designed to conserve energy and decrease energy costs by reducing power consumption. D-Link has led the industry in introducing Green Ethernet technology in switches* Cable Diagnostic Function This function efficiently detects the cable condition and its common faults, and contributes to the overall reliability of the network. IEEE 802.1p QoS D-Link leads the industry in offering QoS (which ensures service quality for priority traffic) on an unmanaged switch. Jumbo Frame Jumbo Frame transmits data in fewer frames, which means lower overhead (i.e., traffic on the network), faster packet processing time and fewer interruptions. *Note: Please consult the specifications for each unmanaged switches to confirm if a switch supports Green Ethernet technology. Some older models do not.

9

Traditionally, there are only two types of switches: managed switches and unmanaged switches. DLink, however, provides another switch category – D-Link Smart Switches. These switches are designed for SMB customers who require some degree of switch management, but do not require a fully managed switch. Smart Switches are distinguished by their user-friendliness, reliability, security, a wide range of features and functions, and ease of management, including SmartConsole and Smart Wizard for configuration support. D-Link is the market leader and major innovator of Smart Switches and continues to lead the market with easy to use, affordable, feature-rich and reliable Ethernet switches. The D-Link Smart Series portfolio, including EasySmart, Smart and SmartPro, is our flagship switching products for the small and medium-sized business (SMB) market, the company’s sweet spot for switching sales. EasySmart Switches •

Provides easy setup configuration via D-Link Web-based management or user-friendly SmartConsole Utility • Use in place of an unmanaged switch to provide port expansion • QoS • Incorporates D-Link Green technology for more power savings, including Energy Efficient Ethernet (EEE) for reducing power consumption during idle periods • Small form factor and fan-less design allow for installation almost anywhere Smart Switches • Management and security similar to a managed switch, but without the complexity of a fully managed switch • Incorporates D-Link Green technology for more power savings, including Energy Efficient Ethernet (EEE) for reducing power consumption during idle periods • Easy access and simplified operation at an affordable price • QoS

10

• Access Control List (for enhanced security) SmartPro Switches • Ideal for customers who want L3 Static Routing, virtual stacking, higher port count, PoE support, and single IP Management without the complexity of a fully managed switch • Incorporates D-Link Green technology for more power savings, including Energy Efficient Ethernet (EEE) for reducing power consumption during idle periods • Fan-less technology (DGS-1500-20/28) emits less heat and noise • Smart Fan (DGS-1500-28P/52) has a thermal sense to adapt to environmental conditions

10

D-Link created EasySmart Switches, which are positioned between the unmanaged switches and the managed switches, to offer basic functionality at affordable prices. Targeted for small business customers, the D-Link EasySmart switches incorporate basic features for prioritizing and segregating traffic and managing bandwidth. With a web-based user interface and L2 functions, customers can benefit from its ease-of-use and low total cost of ownership. This switch series is designed for a growing business with more needs than an unmanaged switch can provide, such as a small business without an IT staff, or branch offices of a larger organization.

11

•

The Smart Switch family includes Fast Ethernet and Gigabit Ethernet switches for virtually every configuration requirement for SMBs. This is the latest generation of Gigabit switches for D-Link, and they deliver plus-and-play simplicity with exceptional price/performance and reliability to perfectly address the bandwidth-starved needs of workgroups and branch offices. The Smart Switch Gigabit Ethernet switch models feature the same capabilities of the Fast Ethernet models. Review the data sheets for each model for port capacity and configurations.

•

Innovative D-Link Safeguard Engine protects the switch against traffic flooding from virus attacks.

•

Equipped with a complete lineup of L2 features, including IGMP Snooping, Port Mirroring, Spanning Tree and Link Aggregation Control Protocol (LACP).

•

Management options include SNMP, Web Management, SmartConsole Utility, and compact Command Lines. The D-Link SmartConsole Utility or web-based management interface enables administrators to remotely control their network down to the port level. The SmartConsole Utility easily allows customers to discover multiple D-Link Smart Switches within the same L2 network segment. With this utility, users do not need to change the IP address of their PCs and it provides an easy initial setting of the Smart Switches. Switches with the same L2 network segment that are connected to the user’s local PC are displayed on screen for instant access. This allows extensive switch configuration settings and basic configuration of discovered devices, including password changes and firmware upgrades.

•

Incorporates Auto Voice VLAN and Differentiated Services Code Point (DSCP) QoS. IP phone voice traffic from an IP phone is automatically assigned to a VLAN, guaranteeing quality and security.

•

Network maintenance features include Loopback Detection and Cable Diagnostics. Loopback Detection is used to detect loops created by a specific port and automatically shut down the affected port. Cable Diagnostics are designed for network administrators to quickly examine the quality of the copper cables and determine the type of cable error.

•

Models equipped with Power over Ethernet (PoE), designated by a “P” in the model number, allow a customer to install and power wireless access points, network cameras and VoIP phones. PoE increases deployment flexibility (placement of equipment), while reducing deployment costs (by eliminating the need to run separate electrical wiring).

•

D-Link’s innovative fanless design provides continuous, reliable, silent, eco-friendly operation.

12

• D-Link’s DGS-1500 Series SmartPro switches are designed for SMBs that need functions such as L3Static Routing and Single IP Management (Virtual Stacking). This series integrates advanced management and security functions that are similar to those of a managed switch, but with less complexity. The SmartPo Series is designed for SMB customers who need L3 Static Routing and Single IP Management without upgrading to a managed switch. • L3 Static Routing supports inter-VLAN and static routing for improved efficiency. With static routing, IP routes are manually entered into a routing table, which allows for communication between different user groups in different VLAN segments. The switch can directly handle interVLAN routing using multiple interfaces, making the network run faster and more efficiently. Because the switches can manage internal routing, the network router can be assigned to handle external traffic routing only. • Virtual Stacking technology allows management of up to 32 devices. • The DGS-1500 Series Provides a painless transition from IPv4 to IPv6 services for management functions and helps customers protect their investments. • The switches incorporate D-Link Green 3.0 technology for more power savings, including Fan-less technology in the DGS-1500-20/28 and Smart Fan technology in the DGS-1500-28P/52. Fan-Less technology emits less heat and noise than fans found in competitive switches, making it suitable for environments (like offices) where quiet operation is desirable. Smart Fan technology can detect changes in the environmental temperature and change fan speeds automatically, saving energy and operating more quietly. • Auto Voice VLAN and Auto Surveillance VLAN ensures high voice/video quality

13

within a specific VLAN and IP surveillance within a specific VLAN.

13

The D-Link SmartPro Switch models incorporate more choices for management, security and VoIP and IP surveillance, making them suitable for a number of different customer applications, including:

SMB Core/Aggregation: With features such as L3 static routing and Virtual Stacking, the DGS-1500 Series is suitable for SMBs who have a limited budget but require L3 routing and single IP management features. Enterprise Access Switch: The DGS-1500 series supports many advanced security features, making it an ideal access switch for an enterprise network.

14

Highlights of the D-Link Managed Switch portfolio: •The DGS-3120 Series is suitable for core switch application in SMB, or edge switch application in the enterprise. With a new hardware design, it supports physical stacking, and provides great performance and complete L2/L3 features. The DES-3200 Series is an access layer switch with security and QoS features at an affordable price. •The DGS-3420 Series is a new generation of DGS-3400 series. With the new hardware design, it provides up to 40G uplink/stacking capability and advanced features. •The DES-3528/52 Series has enhanced features such as physical stacking, static route, security control, IPv6 (MLD snooping only) and Multicast support. •The DES-3810 is a new generation of DES-3800 series. It consists of generic Layer 3 routing switches which are equipped with many metro specific features to target on Metro / FTTB networks. •The DGS-3620 Series, the latest generation of the DGS-3600 series, supports IPv6 routing, up to 40G uplink/stacking capability, and has more advanced features to address today’s security, QoS and management needs. •The DGS-3600 Series is an ideal Layer 3 Gigabit core solution for medium-to-enterprise businesses. The products highlighted in bold — the DGS-3120 Series, DGS-3420 Series, and DGS-3620 Series — are covered in more depth in the following slides. They are D-Link’s next generation flagship products in the managed services portfolio.

15

Businesses are continually searching for cost-effective ways to manage large amounts of data within tight IT budgets without sacrificing performance or flexibility. These next generation managed switches from D-Link provide businesses with extensive security features, uncompromising performance, and ease of use, making them ideal solutions for bandwidth- intensive networks. As the newest series in D-Link's comprehensive switch portfolio, the D-Link DGS-3120, DGS-3420 and DGS-3620 managed switches enable SMBs (or even a large enterprise) to standardize on a robust solution that can serve as a departmental, aggregation or core switch.

16

The DGS-3120 Series is an advanced Gigabit L2 product family designed for the SMB market. The switches also have the feature set for small enterprise core switching applications, or satisfy the needs of bandwidth-intensive applications at the network edge. • These switches support physical stacking, multicast, enhanced security, and PoE, making them an ideal Gigabit access layer solution. • The DGS-3120 Series is embedded with two different software images. The Standard image includes QoS traffic shaping, L2 multicasting, and robust security features. The Enhanced Image supports ERPS, Ethernet OAM, Static Route, sFlow, and IPv6 features. • The DGS-3120 Series also features the latest generation chipset for lower consumption, and includes D-Link Green features such as time-based PoE.

17

The DGS-3420 series of next generation Layer 2+ Gigabit switches delivers performance, flexibility, security, multi-layer QoS, and accessibility along with redundant power solutions for SMBs and enterprises. With high Gigabit port densities, Gigabit SFP, 10-Gigabit SFP+ support and advanced software solutions, these switches can act as either departmental access layer switches or aggregation switches to form a multilevel network backbone with centralized high-speed servers. Note that the 10 Gigabit Ethernet support is not available on the DGS-3120. •Higher Capacity - Embedded 2 or 4 SFP+ ports without additional module - 16K MAC, 1K Routing Entries • Higher Flexibility - 4 10GE ports, 2 of them can be either stacking or uplink (the earlier generation DGS-3400 had 3 10GE ports and required an extra module) - SD card slot for portable configurations and firmware images - Support ingress/egress ACL, 802.3af PoE/802.3at PoE+ • Higher Reliability - External alarm connector • Green - Power saving, time-based PoE and smart fan design

18

The DGS-3620 switches are a next-generation Gigabit L3 family designed for high-performance core network applications. These switches support physical stacking via two of the new SFP+ ports, dynamic and multicast routing capability, enhanced security, and PoE, making them an ideal for the core of an medium enterprise network or the aggregation/edge layer of large enterprise networks.

19

The DGS-6600 Chassis Switch offers scalable Layer 2 and 3 switching in a 4slot form factor of chassis (DGS-6004). Up to 144 GE or 24 10GE port connections make this switch flexible enough to be deployed as a core switch in a medium-sized company, or an alternative to stackable switches for large enterprise (and even carrier networks). The DES-7200 Chassis Switches provide 6-slot (DES-7206) and 10-slot (DES7210) chassis with the high port density, redundant management cards and power supply. It supports 384 gigabit ports, 192 fiber ports or 32 10-Gigiabit ports. The DES-7200 Series is sold primarily into the large enterprise market and Metropolitan Area Networks (MANs).

20

•

The privatized zoo planned a major technology upgrade to connect 40 buildings spread out over the Zoo’s 106 acres. The building-to-building fiber design resulted in as many as six fiber connections coming into a single building. The city of Dallas donated existing Cisco switches for the core of the network.

•

Each of the 40 barns and buildings required a low port count switch with support for multiple SFPs, PoE to power IP phones, full management capabilities including SNMP, and Cisco compatibility.

•

There were significant budget concerns about the cost of Cisco SmartNet maintenance and the premium pricing for Cisco switches.

•

The best match was a D-Link Smart switch with 24x7 limited lifetime warranty and no ongoing maintenance fee.

•

While the systems integrator had used D-Link in previous projects, the company had never based such a large project strictly on D-Link switches. Testing confirmed compatibility with the VoIP system as well as D-Link’s quality, capabilities, and better performance within the Zoo’s budget constraints.

•

The network was successfully deployed on schedule: 40 D-Link switches networked, 196 phones installed, 170 shared PCs supporting 300 users connected, and two new servers brought online, despite delays in the laying of fiber. Every building was “lit” at the day and time scheduled.

•

Key competitive differentiators: •

Better price with more options

•

No ongoing maintenance contract costs

•

Better performance

21

•

The ability to meet a tight deadline

21

• The Grand Canyon Skywalk is a glass walkway shaped like a horse-shoe, which is suspended 4,000 feet above the Colorado River on the edge of the Grand Canyon. • The Grand Canyon Skywalk IT team wanted a video surveillance solution to monitor visitors and retail operations on the Skywalk. The site would need to be monitored remotely from the IT operations center in Las Vegas, Nevada, approximately 260 miles away. • The IT department needed to replace an analog closed circuit television (CCTV) system at the Las Vegas site. They also wanted more cameras, better coverage, and better picture quality for both the tourist location and their operations center. • DBN One Computer Consultants, a D-Link VAR, recommended D-Link IP surveillance cameras connected by D-Link Smart switches with PoE. • The Smart switches connect to a D-Link Managed switch at the Skywalk office. • The network has since grown to include monitoring for warehouse facilities, the data center and the tour company’s facilities. • Key competitive differentiators: • Better IP surveillance camera options • The ability to provide a complete solution, including switches • Scalability

22

This module covers some of the basics of switching technology to help ensure that the partner is comfortable with frequently used terms, as well as the protocols and technologies used in D-Link switches.

23

The Open Systems Interconnection (OSI) Basic Reference Model is an industrystandard description for communications and computer network protocol design. It consists of 7 layers representing different functions. Each layer serves the layer above it and served by the layer below it. However, it does not reflect real-world protocol architecture. The Application layer (the highest layer of the OSI model) interfaces directly to and performs common application services for the application processes; it also issues requests to the presentation layer. It provides services to user-defined application processes, and not to the end-user. The Presentation layer transforms the data to present a standard interface for the application layer. MIME encoding and data encryption are examples of data transformation executed at this layer. The Session layer controls the sessions between computers. The Transport layer provides transparent transfer of data between end-users and controls the reliability of a link through flow control, segmentation/de-segmentation and error correction. At the Network layer, variable length data sequences are transferred (with the appropriate QoS) from a source to a destination via one or more networks. The Data Link layer is the layer at which data is transferred between network entities. At this layer, errors are detected that may occur in the Physical layer. The Physical layer defines defines the relationship between a device and a physical medium, such as cable layout.

29

The TCP/IP model was developed before the OSI Reference Model by the Internet Engineering Task Force (IETF). According to the online knowledge base, www.networkdictionary.com, “TCP/IP architecture omits some features found under the OSI model, combines the features of some adjacent OSI layers and splits other layers apart. The 4-layer structure of TCP/IP is built as information is passed down from applications to the physical network layer. When data is sent, each layer treats all of the information it receives from the upper layer as data, adds control information (header) to the front of that data and then pass it to the lower layer. When data is received, the opposite procedure takes place as each layer processes and removes its header before passing the data to the upper layer.”

30

D-Link Unmanaged Switches use strict priority for scheduling using 802.1p QoS, a method for reserving bandwidth for traffic that requires more bandwidth or higher priority. Packets residing in the higher priority queues are transmitted first. Only when these queues are empty are packets of lower priority allowed to transmit. Higher priority packets always receive preference regardless of the number of lower priority packets in the buffer and regardless of the time elapsed since any lower priority packets have been transmitted. By default, the switch is configured to empty the buffer using strict priority.

31

Layer 2 (L2) and Layer 3 (L3) switching refers to layers 2 (data link layer) and 3 (network layer) of the OSI Model. L2 switches do not recognize IP addresses; they switch based on MAC addresses only. Basically this means that an L2 switch does not understand where a data packet originates or its destination. An L3 switch can actually read the destination IP address and, based on a routing table, send the packet to the correct destination. In the past, only routers were L3 devices. But more sophisticated switches, like D-Link’s Managed Switches, can perform intelligent packet routing.

32

Carrier Sense Multiple Access With Collision Detection (CSMA/CD) is a wellknown MAC layer control protocol for Ethernet. When a transmitting switch detects another signal while transmitting a frame, it will stop transmitting that frame, transmit a jam signal, and wait for a random time interval (known as "backoff delay”) before trying to send the frame again. Collision detection is used to improve CSMA performance by terminating transmission when a collision is detected. It reduces the probability of a second collision on retry.

33

L2 redundancy protocols, such as STP, RSTP, MSTP, can be used to create a network architecture without physical loops. These protocols can logically block the redundant paths and prevent network loops. Spanning Tree Protocol (RSTP) With Spanning Tree Protocol, if one of the connections fails the protocol will unblock the port and provide redundancy. Rapid Spanning Tree Protocol (RSTP) RSTP is the enhanced version of STP. It performs that same functions as STP with faster convergence time. When a link is down in a network with STP, it typically takes 30 to 50 seconds (depending on the type of failure) for the standby link to become active and the network to stabilize. With RSTP, the convergence time is about one second. Multiple Spanning Tree Protocol (MSTP) In a network where VLANs are deployed, MSTP can be used to build multiple spanning trees over different VLAN groups. Each spanning tree instance can have a topology independent of other spanning tree instances. This architecture

34

provides multiple active links for data traffic and enables load balancing.

34

A Virtual Local Area Network (VLAN) allows a physical network to be partitioned into multiple logical networks. It increases network performance by limiting broadcasts to a smaller and more manageable logical broadcast domain. The two most popular VLAN implementations are: • IEEE 802.1Q tagged VLAN • Port-based VLAN IEEE 802.1Q tag-based VLAN uses an extra tag in the MAC header to identify the VLAN membership of a frame across bridges. This tag is used for VLAN and QoS priority identification. The VLAN ID associates a frame with a specific VLAN, and provides the switch with information for processing a frame across the network. With port-based VLAN membership, the port is assigned to a specific VLAN independent of the user or system attached to the port. This means all users attached to the port will be members in the same VLAN.

35

Spanning Tree Protocol can resolve loop issues and avoid broadcast storms.

How does a loop occur? Multiple active paths between network nodes can cause a loop. When a loop occurs, MAC address tables used by the switch can fail because the same MAC address is seen on multiple ports. In addition, a broadcast storm can result from loops when broadcast packets are forwarded in an endless loop between switches. A broadcast storm can consume CPU resources and bandwidth.

36

• The Virtual Router Redundancy Protocol (VRRP) provides gateway (interface) failover, which increases the resiliency of an L3 network. • VRRP allows a group of L3 switches to form a single virtual L3 switch, which is known as a VRRP group, which has one master and one or more backup switches. If the master fails, the backup switch will become the master. • VRRP dynamically assigns responsibility for a virtual switch/router to a VRRP router on a LAN. • A virtual router identifier (VRID) and IP address are configured on each router. • A virtual MAC address is also created to associate it with a virtual router. • The VRRP router that controls the IP address associated with a virtual switch/router is the “master”, which is responsible for forwarding packets sent to its IP address. • The backup switch/router will assume the master role if it does not receive VRRP packets from the master after a set period of time.

37

How does an L3 switch or a router perform packet forwarding between different subnets? Either device will check its routing table: • If the destination IP is directly attached to its local interface, the interface will launch Address Resolution Protocol (ARP). • If the destination IP is in a remote network, the switch will forward the packet to the nearest gateway of that route. Routing can be classified into two categories: Static Routing and Dynamic Routing. Dynamic routing means routing information can be automatically exchanged between switches via routing protocols. Dynamic Routing Protocols can be classified into two different categories: IGP (Interior Gateway Protocol): • Routing protocol used within an autonomous IP network. • Well-known standard routing protocols are IS-IS, RIP, OSPF. EGP (Exterior Gateway Protocol): • Routing protocol used for determining reachable network between autonomous IP networks. • BGP is one of the most well-known EGPs.

38

A switch port can prioritize traffic based on an 802.1p tag. Generally, 802.1p tagged packets with higher value will be placed into queues with higher priority, while 802.1p tagged packets with lower value will be placed into queues with lower priority. The switch can reserve bandwidth for important applications that require more bandwidth, or it can prioritize packet delivery. The techniques to send out packets from different queues is called “scheduling.” D-Link supports two types of queue scheduling: Strict Priority and Weighted Round Robin (WRR). • Strict Priority Queuing is a rigid traffic prioritization scheme. If packet A has a higher priority than packet B, packet A will always send out before packet B. Packets of lower priority will only be processed when the queues of higher priority are empty. • With Weighted Round Robin (WRR) queuing, the number of packets sent from each priority queue depends on the assigned weight to each queue. WRR is used on congestion ports by giving weighted priority to high-priority traffic without starving low-priority traffic. Each queue repeated goes through a “round robin” and is guaranteed that its packets are sent according to the weight.

39

IEEE 802.1p is an extension of the IEEE 802.1Q (VLAN tagging) standard. The main difference is the prioritization field in 802.1p. 7: Used for network- or mission-critical traffic. 5 & 6: Used for delay-sensitive applications. 1-4: Used for controlled-load applications. 0 (default): Set automatically for best effort when no other value is set.

40

Simple Network Management Protocol (SNMP) is a standards-based, widely used network management protocol for gathering statistical data about network traffic and the behavior of network devices. Manager: An SNMP manager is an application program that contacts SNMP agents to query or modify the database of the agent, for example, the D-View 6.0 SNMP Network Management System. Agent: An SNMP agent is software that runs on network devices and maintains information about its configuration and current status in a database. MIB (Management Information Base): Information in the database is stored within the MIB, like a map with a hierarchical order of all the managed objects and details of how they are being accessed.

41

This module will review D-Link’s strengths in switching, and prepare the partner to speak to these strengths when talking to the customer.

42

D-Link product development is guided by “Life Cycle Awareness.” This philosophy helps D-Link continuously improve the environmental aspects of its products and processes in each phase of the product life cycle, from conceptual design through raw material acquisition until a product's end of life. D-Link is the first in the industry to launch Green Ethernet Technology. This technology decreases energy costs by reducing power consumption without sacrificing operational performance or functionality. Examples of D-Link Green innovations and leadership include: • Automatically powering down ports that have no link. • Controlling power output for different Ethernet cable lengths. For a traditional switch, power consumption remains constant even when the ports are not in use. In a typical workday scenario where PCs are used for 10 hours a day and powered off for 14 hours a day, using a D-Link’s Green Ethernet switch can save up to 25%* of the power. • Complying with California’s stringent CEC and Australia’s MEPS regulation, which require the use of more energy efficient power adapters.** • Complying with Restriction of Hazardous Substances (RoHS) directive that restrict the use of certain hazardous materials. • Complying with Waste Electrical and Electronic Equipment (WEEE) directives. *Assumes that cable length between switch and PCs is less than 20 meters; energy savings may vary depending on the product hardware versions. **External switching and semi-switching power adapter meet Energy Star certificate. For more information, please refer to Energy Star website at http://www.energystar.gov.

43

• The links of desktop-to-switches/desktops/servers are mostly idle. Typical utilization is less than 1%. Considerable power is consumed even at low utilization. Note: Idle means no data traffic over the Ethernet link. • Energy Efficient Ethernet (EEE) reduces power consumption during idle periods. • The 802.3az Task Force estimates a potential 75% power savings at the chipset level with EEE-capable technology. • D-Link has adopted the latest industry energy-saving standard EEE and implemented it in its switching portfolio.

Note: EEE is active in the 100BASE-TX (Full Duplex) and 1000Base-T modes. It is not active on fiber ports.

Unified Stack Management allows an entire stack to be managed through a single IP as a single entity. It provides the flexibility of easy management for all switches in the stack without multiple IP addresses. The stack can be managed through various methods, including: •

Command Line Interface (CLI)

•

Web UI

•

Telnet

•

Simple Network Management Protocol (SNMP)

45

Resilient Master Technology (RMT) keeps the configuration file, routing table and ACL rules into both master and backup switches to enhance the reliability of the whole stack. If the master switch fails or needs to be swapped out, another switch is automatically designated as the new master, and the rest of the stack can continue working without interruption in service. •

Allows the stack to continue operating in the event of a device failure

•

Switches can be hot-swapped and replaced without affecting the operation of other switches in the stack

•

Switches can be added and removed from the stack without affecting the operation of other switches in the stack

•

Assignment of a new master switch and stack recovery is automatic and immediate

• Cross Device Trunking (CDT) allows for an aggregated link created by bundling several physical ports to form a single logical channel for switches or hosts. • This bundling architecture is not limited to a single switch; it also supports logical bundling across switches for one or many links per switch. • Traffic will not be interrupted if a port or even a switch in the logical channel goes down. • CDT ensures network availability in the event that an uplink trunk device fails.

47

D-Link SmartRoute Technology distributes the routing tables from the master switch to all other switches in the stack. Each switch can route traffic locally, without requiring traffic to be forwarded to the master switch for routing. This reduces bandwidth consumption between switches in the stack and eases management of the master switch.

48

D-Link developed Single IP Management (SIM) technology. SIM enables single IP management of up to 32 switches using D-Link’s Virtual Stacking Architecture (VSA), The VSA software is embedded in the switch itself, eliminating the need of software installation. It is not limited to a specific switch model, cable, distance barrier or stacking method, and it has no single point of failure. The above diagram shows six switches, which can be managed via one IP address regardless of whether or not they are directly or indirectly connected. SIM technology is also referred to as virtual stacking or clustering technology.

49

SIM uses an intuitive network topology map. The network administrator can simply mouse-over a device to see information, such as connection status, port information, speed and duplex mode.

50

Network administrators need to defend against both external and internal security problems. D-Link supports several authentication methods as part of its End-to-End Security (E2ES) total security solution: • The IEEE 802.1X Authentication protocol defines client-server access control and authentication. It restricts unauthorized devices from connecting to a LAN through publicly accessible ports. The authentication server authenticates each client connected to a switch port before making available any services offered by the switch or the LAN (even before a client can get a DHCP address). • Host-Based 802.1X is one of D-Link’s advantages in 802.1X technology. Each client needs to provide a correct username / password to pass the authentication and access the network. • MAC-based Access Control is an authentication method that matches a client’s MAC address with the configured MAC address list in the local switch database or remote RADIUS server prior to an approval. It is an alternative to the 802.1X port-based access control method. MAC-based Access Control is almost transparent to endusers. It does not require username / password interaction. This makes it an ideal solution for organizations that do not have have the staff or expertise to manage more complex security technologies. • Web-Based Authentication (WAC) is another alternative to port-based access security. It is an authentication process that uses the HTTP protocol. The advantage of WAC is that it does not need to install or configure a client agent like 802.1X. WAC is a popular alternative to 802.1X because of its simplicity, especially compared to a gateway solution (usually a separate network appliance), which is more costly and

51

can introduce network bottlenecks.

51

D-Link E2ES covers:

Endpoint security: to protect the internal network from inside attacks. Gateway security (D-Link NetDefend IPS / UTM Firewall Family): to protect the internal network from outside attacks. • ICSA Labs certified • Integrated Firewall / VPN appliance with outstanding performance • Unified Threat Management • Intrusion Prevention Service (IPS) • Anti-Virus (AV) Protection

• Web Content Filtering (WCF) • Anti-Spam Joint Security with D-Link switches via D-Link ZoneDefense and Microsoft NAP. With the integration of Microsoft NAP technology, D-Link pushes network security to the client PC by performing a client health status check before accessing the network. It performs network restriction and remediation for noncompliant clients.

52

Benefits of User Authorization: Granular access control • Users get designated privileges with different access rights. • Guest are allowed to have limited network access on guest VLANs. • Users without permission will not impact normal traffic. Flexible bandwidth and QoS control • Various bandwidth allocation and prioritization can be set based on user identity.

53

Endpoint Security for Network Traffic Control is the most effective and proven approach to enable traffic control at the edge of the network to: • Stop malicious traffic flooding into the network • Block real time network worm outbreaks • Effectively prevent internal attack Traffic Segmentation provides a convenient way to segregate traffic between ports. It provides physical layer security without the need for VLANs or ACL. If VLANs are implemented instead of traffic segmentation, a L3 switch is required. With D-Link’s traffic segmentation, a L2 switch can perform port segregation, while allowing the segregated ports to access some specified shared ports. D-Link Access Control List (ACL) filters network packets based on multiple layers of information. All ACL lookups are done within the hardware. This means that network administrators can exercise granular control over applications without compromising performance because D-Link managed switches are fully equipped with L2-L7 ACL. Loopback Detection (LBD) is a compulsory feature for Metro Ethernet applications. Without LBD, a loop at an end-user home may affect and bring down the whole network.

54

D-Link Safeguard Engine™ is designed to increase overall serviceability, reliability and availability of D-Link Smart Switches and Managed Switches. D-Link Safeguard Engine automatically mitigates the impact of packet flooding into the switch’s CPU to protect it from malicious viruses or worm attacks. This feature is enabled by default in Smart Switches and disabled by default in Managed Switches.

55

802.1X Guest VLAN is used to implement a VLAN with limited access rights and features; all guest accounts or clients who are incompatible with 802.1X authentication will be directed to the guest VLAN when they try to access the switch. Upon initial entry to the switch, the client who tries to get services will be authenticated by the remote RADIUS server or local authentication on the switch before being placed in a fully operational VLAN. After successful authentication, and when the authenticator processes the VLAN placement information, this client will be accepted to the fully operational target VLAN and normal switch functions will be opened to the client. If the authenticator does not process the VLAN placement information, the client will be returned to its original VLAN. If the client fails authentication by the authenticator, it will be placed in the Guest VLAN where it has limited rights and access.

56

D-Link ZoneDefense is total security architecture that integrates security appliances and network switches. Traditional firewalls or Intrusion Detection System (IDS) appliances only provide a single point of defense to protect the network against virus attack. They do not communicate with the switches. ZoneDefense, however, allows D-Link IPS and UTM firewalls to coordinate with D-Link managed switches to effectively block virus outbreak in all subnets. ZoneDefense is triggered when a client generates abnormal network activity based on specific definable conditions (Threshold rules). Once it is triggered, the NetDefend firewalls will communicate with D-Link switches immediately to lock the switch port where the host(s) is / are connected. ZoneDefense can also detect all virus-infected clients. When the firewall detects that a host is infected by a virus, it will activate ZoneDefense. Once ZoneDefense is triggered, NetDefend firewalls will communicate with D-Link switches immediately to lock the switch port where the infected host is connected. D-Link ZoneDefense is patented in Taiwan and currently patent pending in the United States, China and EU countries.

57

D-View 6.0 is D-Link’s next generation of SNMP Network Management System (NMS) application, which manages all devices that support the SNMP protocol. D-View 6.0 provides an integrated platform for heterogeneous network environments. It provides a comprehensive set of tools for administrators to simplify the routine tasks of configuration, administration and monitoring. D-View 6.0 and its comprehensive plug-ins make D-Link the most competitive solution among the few vendors who provide one unified management platform. D-View 6.0 provides: •

Centralized management of D-Link’s end-to-end solutions.

•

The ability to manage heterogeneous devices in the network.

•

An integrated platform.

•

A key component of a total solution sale.

•

The ability to reduce time and effort for the network administrator.

•

The ability to speed up troubleshooting and response time to increase network availability.

Major features of D-View 6.0 include: •

Auto-Generation Topology Map

•

Batch Configuration

•

Fault / Event Management

•

Device Management

•

MIB Complier and MIB Browser

•

Differentiated User Access Rights

•

Customized alarms/notifications

Two versions of D-View 6.0 are available: the Professional and the Standard Editions. Management capabilities vary for each product. • The D-View 6.0 Standard Edition is designed for SMBs and small enterprises. It supports standalone architectures and manages networks of less than 1,000 nodes. • The D-View 6.0 Professional Edition is designed for large enterprises and carrier networks. It supports client-server architectures and manages networks of more than 1,000 nodes. Plug-In Packages for D-View 6 • E2ES Console Plug-In • Wireless Plug-In: Wireless Control Module (WCM)

Also known as the Wireless Control Module (WCM), this plug-in for D-View 6.0 provides a centralized platform to manage both D-Link’s wireless access points and unified switches. Note: WCM is not compatible with D-View 5.1. Management and reporting capabilities include:

Management • IP Address Configuration • Configuration File Update • Firmware Update • Web Management • Telnet • Password Configuration Reporting

• Association • Security • Utilization • Channel • Rogue • Syslog

60

Using Web GUI management, network administrators can securely manage DLink Smart Switches and D-Link Managed Switches from anywhere using a web browser (with proper username and password authentication). The main page (Device Information) of the GUI has been designed to display all the necessary information about a device at a glance, to enable the administrator to review the status of a device quickly and even modify some settings easily and directly. This improved GUI design also includes the D-Link Safeguard Engine status display on the top right hand corner of the main page.

61

D-Link SmartConsole Utility is a program for discovering multiple Smart Switches within the same L2 network segment. Network administrators can easily enable initial settings of multiple Smart Switches without the need to change IP addresses of PCs. The SmartConsole Utility displays: 1.

Utility Settings such as utility basic settings, log, trap and file.

2.

Device List of all discovered smart devices on the network. All devices in the Device List are monitored. Trap information can receive monitoring status information of the device.

3.

Device Configurations such as device basic configuration setting, password change, firmware upgrade, web access and DHCP refresh.

62

Upon completion of this module, the partner should be able to readily recognize sales opportunities and the right prospects. Partners should be able to talk confidently to customers about their business requirements, the products that would be appropriate for their needs, and the benefits of the solution.

63

D-Link switching solutions are suitable for virtually every industry. Many of these industries are price-sensitive, which is where D-Link is often the clear winner against other companies. More and more companies care about environmentally sensitive produces, where D-Link also shines with our Green technologies. Some companies will be looking for a complete solution, or the ability to integrate well with other companies — we offer this as well. D-Link is also a proven vendor, a technology innovator, and a company with a strong global presence and deep resources. Any and all of these advantages will help you sell D-Link to a wide variety of industries, including: Educational institutions Government agencies Other industries, including: •

Construction

•

Entertainment / Publishing

•

Financial Services

•

Healthcare / Medical Technology

•

Hospitality

•

Insurance / Legal

•

Manufacturing

•

Real Estate

•

Retail

•

High Tech

•

Telecommunications

To sell successfully, you need to speak with confidence to customers about solutions for their specific needs. Study the market or business arena your customers are in. Subscribe to key industry newsletters, read relevant trade publications, and stay current on all the latest trends. Find out as much as you can about: • The business or industry the organization is involved in — and the clients or customers it serves • Strategic jobs in the organization • Industry terminology and acronyms • Functions or departments within the organization • Customer and client satisfaction and retention goals • The industry, state and federal regulations it must comply with

65

D-Link switching solutions can help you address all of these issues for customers:

• Demand for L2 and L3 resilient design to avoid single points of failure in the network infrastructure that can lead to business losses. • Demand for network access control (security) measures to manage the identity of each network connection and prevent malicious traffic from disrupting the network. • QoS to ensure that critical network services such as VoIP and video conferencing are served with proper priority and service quality. • Easier device deployment and centralized management to save time and money.

66

67

68

69

70

71

D-Link offers two services packages to help customers minimize network downtime while decreasing total operating costs: D-Link On–Site support and DLink Secure–Link support.

The D-Link’s optional Network Services Program provides several options for on-site support, including: • 24x7 4-hour onsite support, providing around-the-clock telephone access and a 4-hour on-site technical response. • 9x5 next business day onsite support, providing business hours telephone access and next day on-site technical response. • 9x5 next business day advanced hardware replacement support, providing business hours telephone access with next business day door-to-door delivery of replacement parts and equipment. • If a product fails, D-Link dispatches a technician to swap out the defective product on location, install a replacement product, and ship back the defective product

•

D-Link’s Secure-Link Support is designed for networks with in-house IT specialists. It offers businesses an appropriate level of product support when response time and IT expertise are not significant obstacles in maintaining network uptime.

•

This support option provides extended warranty for five years beyond the product end-of-life (EOL) date. It also includes Next Business Day (NBD) advanced replacement on insured hardware.

•

D-Link will ship a replacement product NBD to a chosen location ready for installation.

Congratulations on completing D-Link’s Certified Sales Training (DCS) course for D-Link switching solutions. Next steps: Schedule the DCS D-Link switching certification exam from the DLink VIP Training and Certification page. Candidates who pass this exam will achieve DCS D-Link Switching Certification.

75