Aruba Instant On Help Center

You are here: Web Help > Viewing and Updating Inventory > Switch Details

Switch Details

To view the Switch Details page, follow these steps:

Click the Inventory() tile on the Aruba Instant On home page or click the Site Health() banner and then click on Show inventory.
Click the () arrow next to a switch in the Inventory list. The Device details page of the switch is displayed.

The Device details page of the switch contains the following sections:

Identification
Connectivity
Ports
Networks
Link Aggregation
Actions
Tools

Identification

Displays the device information such as device name, SKU, PoE power usage, uplink connectivity, and the IP address.

Device name

The device name is displayed in read/write mode. You can change the name of the device, if required. The maximum number of characters supported is 32.

Connectivity

Displays the details of uplink connection. When the switch is connected to a network device on the uplink port, a link to the device details page of the device is displayed.

Local network IP

Displays the local network IP of the switch.

Power over Ethernet (PoE)

The Power over Ethernet section provides the following information:

Total budget—The total power in watts that can be provided by the switch.
Power consumption—The amount of power in watts currently being consumed by the connected PoE devices.

Connectivity

LAN IP

Configure the IP assignment for the Instant On switch. You can configure either one of the following options:

The Instant On switch will reboot to apply the configuration changes.

Automatic (Default) — The Instant On switch will inherit the IP address assigned by the DHCP in the network.
Static — Specify a static IP address for the Instant On switch by entering the following network parameters:
- LAN IP — Enter the IP address for the switch.
- Subnet mask — Enter the subnet mask.
- Default gateway — Enter the IP address of the default gateway.
- DNS server — Enter the IP address of the DNS server.

Routing

Configure routing on the Instant On switch. Routing is disabled by default. To configure routing for the switch perform the following steps:

To enable routing on a switch, select the Allow routing between networks checkbox. To disable routing, deselect the checkbox.
When Allow routing between networks is selected, icon is displayed next to networks that can be routed. If the icon is not visible, it implies that routing is turned off for the network.
To configure routing for a network, select the network to view the routing options:
1. Select the Allow routing checkbox to turn on routing. To turn off routing, deselect the checkbox.
2. Configure either of the following options to assign an IP for the network:
  - Automatic (default) — The network will receive IP address from a DHCP server.
  - Static — Define the IP address assignment for the network by entering the following network parameters:
    - Network IP address — Enter the IP address for the network.
    - Subnet mask — Enter the subnet mask for the network.
Click on Save to apply configuration changes. The routing configuration is applied after the Instant On switch reboots.

A minimum of two wired networks must be configured in the site to perform routing.

The Instant On switch must be online to configure routing.

Routing can be performed by only one Instant On switch in a site.

Jumbo Frames

Jumbo frames improve data transmission efficiency by reducing the number of frames and overheads for switches to process. Configuring jumbo frames is supported on all Instant On switches and can be enabled on each switch individually.

The following procedure allows you to configure jumbo frames on an Instant On switch:

Under Jumbo frames, select the Jumbo frames checkbox.
Click Save.
The Instant On switch reboots automatically to apply the changes.

Ports

The ports are visually represented on the page in the same manner as the actual physical ports on the device. Each port is numbered according to the port number on the switch and displays its current status. Select a port to open the port configuration. When a port is selected the following options are displayed:

Name of the port in read and write mode
Active — Select the checkbox to enable the port. To disable the port, unselect the checkbox. Clients and devices are allowed to draw power and connect to the port when it is set to Active. This setting is available for PoE ports with or without connected site devices.

Authentication and Security

The Authentication and Security section consists of the following options:

These settings are available only for PoE or non-PoE ports that do not have any clients or devices connected to it.

No authentication (default)—Instant On devices and clients can connect to the port without authenticating. This is the default setting.
Port-based—All Instant On devices and clients connected to the port are authorized after the initial 802.1x RADIUS authentication is successful.
Client-based—Requires each Instant On device or client connecting to the port to separately authenticate to the 802.1x RADIUS server to gain access. You can also enable the 802.1X+MAC authentication toggle-switch () to consider MAC authentication as the secondary option in case the RADIUS authentication is unsuccessful.

The Port-based and Client-based authentication methods, require configuration of RADIUS settings to determine how authentication behaves across all access controlled ports. The 802.1x RADIUS authentication parameters are listed in the table below with their descriptions:

Parameters	Description
Primary RADIUS Server	Configure the following parameters for the Primary RADIUS Server. If you are using the Instant On mobile app, tap More RADIUS parameters to view the below settings: Server IP address or domain name—Enter the IP address or fully qualified domain name of the RADIUS server. Shared secret—Enter a shared key for communicating with the external RADIUS server. Server timeout—Specify a timeout value in seconds. The value determines the timeout for a RADIUS request. The Instant On device attempts to send the request several times (as configured in the Retry count) before the user gets disconnected. For example, if the Timeout is 5 seconds, Retry counter is 3, user is disconnected after 20 seconds. The default value is 5 seconds. Retry count—Specify a number between 1 and 5. Retry count indicates the maximum number of authentication requests that are sent to the server group, and the default value is 3 requests. Authentication port—Enter the authentication port number of the external RADIUS server within the range of 1–65535. The default port number is 1812.
Secondary RADIUS Server	Serves as a backup server to the primary RADIUS server. To configure a Secondary RADIUS Server, select the checkbox) and update the RADIUS server details. The available parameters are the same as that of the RADIUS server.
Send RADIUS Accounting	To Send RADIUS Accounting requests, select the checkbox.

Parameters

Description

Primary RADIUS Server

Configure the following parameters for the Primary RADIUS Server. If you are using the Instant On mobile app, tap More RADIUS parameters to view the below settings:

Server IP address or domain name—Enter the IP address or fully qualified domain name of the RADIUS server.
Shared secret—Enter a shared key for communicating with the external RADIUS server.
Server timeout—Specify a timeout value in seconds. The value determines the timeout for a RADIUS request. The Instant On device attempts to send the request several times (as configured in the Retry count) before the user gets disconnected. For example, if the Timeout is 5 seconds, Retry counter is 3, user is disconnected after 20 seconds. The default value is 5 seconds.
Retry count—Specify a number between 1 and 5. Retry count indicates the maximum number of authentication requests that are sent to the server group, and the default value is 3 requests.
Authentication port—Enter the authentication port number of the external RADIUS server within the range of 1–65535. The default port number is 1812.

Secondary RADIUS Server

Serves as a backup server to the primary RADIUS server. To configure a Secondary RADIUS Server, select the checkbox) and update the RADIUS server details. The available parameters are the same as that of the RADIUS server.

Send RADIUS Accounting

To Send RADIUS Accounting requests, select the checkbox.

Security protections—Enable this setting when untrusted devices are connected to the port. This setting in combination with Network Security configuration is used to prevent DHCP and ARP attacks on the wired network. For more information, see Network Security.

Included networks

Select one of the following options:

Untagged—This is the default setting. The port will receive and send traffic from the default network without using a VLAN tag. To custom map the port to an untagged VLAN, click the Untagged network drop-down list and select a network from the list. Only one untagged network can be assigned to a port at a given time.
Tagged—To custom map the port to a tagged VLAN, select the checkboxes against the networks listed under Tagged networks. A maximum of 22 tagged networks can be mapped to a port at a given time.

Clients and devices connected to this port

Lock— Allows you to lock the port and stop new devices from joining the port. When a port is locked, all clients connected to the port are allow-listed and granted access to the port while new clients are blocked. The port must be unlocked for allowing new devices to connect. This option is unavailable on ports in which Instant On devices are connected. This option is displayed when clients and devices are connected to the port.
To lock a port on an Instant On switch, select the Lock checkbox. Deselect the Lock checkbox to unlock the port.
The maximum number of ports that can be locked in an Instant On switch is 10.
The maximum number of client that can be locked per port is 10.

Show— Allows you to view devices connected to port sorted by network. By default, All Networks is selected. To filter the clients and devices connected to a specific network, select a network from the Show drop-down list. The clients and infrastructure devices directly connected to the port are displayed as a link that takes you to the client details page. The indirectly connected clients are displayed by their MAC address.

link aggregation.

Transceiver Details

Instant On switches are capable of detecting an SFP transceiver. When a transceiver is connected to a switch, the details of the transceiver are displayed under the Ports tab of the switch details page. The details of the transceiver may not always be displayed completely, if the transceiver used is unsupported or provided by a third-party. It is possible that the transceiver details are displayed even if the port state is up, down, loop detected, or link flapping.

The following transceiver details are displayed under the Ports tab:

Line No	Transceiver Details
Line 1	Name of the Vendor
Line 2	Type of transceiver
Line 3	Serial number of the transceiver.
Line 4	Model number of the transceiver.

If the switch port to which the transceiver is connected is offline, an informative message is displayed stating The link is down, or the transceiver is not functioning.
Instant On supported transceivers are recommended for optimal performance. Please refer to the Instant On product datasheets for supported transceiver list and Aruba Instant On Transceiver Guide for additional detail. Unsupported transceivers are not guaranteed for proper operation and may experience function limitation. Information displayed for unsupported transceivers may be limited and inaccurate.

Power Management

Power management options allow you to configure PoE supply to devices connected to the switch. These options are unavailable for ports that are part of LACP.

Power supply policy — Select either one of the following options to configure a power supply policy for the port:
- Usage(default) — The power allocated to the port is based on usage and is unrestricted.
- Class — The power allocated to the port is based on the PoE standard of the device. The power class of devices are categorized as follows:
  Class
  Maximum Power from PSE
  Class 0
  15.4 Watts
  Class 1
  4 Watts
  Class 2
  7 Watts
  Class 3
  15.4 Watts
  Class 4
  30 Watts
  Class 5
  45 Watts
  Class 6
  60 Watts

Class	Maximum Power from PSE
Class 0	15.4 Watts
Class 1	4 Watts
Class 2	7 Watts
Class 3	15.4 Watts
Class 4	30 Watts
Class 5	45 Watts
Class 6	60 Watts

Port Priority — Assigns a priority level to the ports. When there is a budget constraint for delivering PoE power at the switch, power is delivered to the connected devices based on the port priority. The power is delivered in the following order: Critical > High > Low. Under Port Priority, assign any one of the following priority level to the port:
- Low (default) — Configures the port as a low priority port.
- High — Configures the port as a high priority port.
- Critical — Configures the port as a critical priority port.
- When two ports belonging to the same priority are demanding power, the port with the least port number is given priority. Example: When port 2 and 5 are assigned Critical class and the switch has a power budget constraint, device on port 2 will receive full power and the remaining power budget will be allocated to the device on port 5.
- PoE priority cannot be configured for Instant On devices. By default, Instant On devices are configured with Usage mode and Critical for Port Priority.

Use site power schedule — Select this checkbox to either enable or disable power schedule on the port. If enabled, the PoE supply to the port is determined by the power schedule defined. To change the power schedule, click on Edit site power schedule. For more information on configuring Power Schedule, see Power Schedule.

Networks

After creating your network, you have the option to map the network to a VLAN port which, either allows traffic from all networks or only for a specific network. Each port in the Instant On switch can be assigned a separate VLAN ID and configured to manage the network traffic.

To assign network to a port, click on Selected network drop-down list and choose the network you want to map to the port.

Link Aggregation

Link aggregation configuration depends on the number of ports available on the switch. Instant On currently supports switches with the following number of ports:

Table 1: Switch Ports Aggregation
Number of Ports per Switch	Number of LAG Supported	Number of LAG members supported
8 ports	4 trunks	4 trunk members
24 ports	8 trunks	4 trunk members
48 ports	16 trunks	8 trunk members

The following procedure describes how to add a link aggregation group on the switch:

Click the () arrow next to a switch in the Inventory list and select the Link Aggregation tab.
Click the + Add link aggregation link. The following configuration options are displayed:

Active—Select this option to enable the LACP ports. It indicates that the port members of the link aggregation are available for devices to connect. Unselect the checkbox to disable the LACP ports.
Name—Provide a custom name for the Link aggregation in the text field.
Port members—Click on the respective ports you want to add as members for the link aggregation. The selected port members are displayed below separated by commas.
Delete—Click on delete to delete the Link Aggregation.

Aggregation mode

Select one of the following aggregation modes:

Static (default)—This option is selected by default. It indicates simple aggregation of ports with no active link detection or failover.
LACP—Selecting this option indicates dynamic detection and automatic failover when connected to other LACP (802.3ad) capable switches. This mode will allow only one user defined network through the aggregated link. This option will pass the management VLAN network as untagged and all other networks as tagged.

Select one of the following options:

Untagged—This is the default setting. The port will receive and send traffic from the default network without using a VLAN tag. To custom map the port to an untagged VLAN, click the Untagged network drop-down list and select a network from the list. Only one untagged network can be assigned to a port at a given time.
Tagged—To custom map the port to a tagged VLAN, select the checkboxes against the networks listed under Tagged networks. A maximum of 22 tagged networks can be mapped to a port at a given time.

Clients and devices connected on this link aggregation

Show— Allows you to view devices connected to port sorted by network. By default, All Networks is selected. To filter the clients and devices connected to a specific network, select a network from the Show drop-down list. The clients and infrastructure devices directly connected to the port are displayed as a link that takes you to the client details page. The indirectly connected clients are displayed by their MAC address.

Actions

The Actions tab displays the following options:

Locate
Network Tests
Restart
Switch to Local Management
Replace Device
Remove from Inventory

Locate

Instant On allows you to locate your device when there are many devices in the site.

To locate your device, follow these steps:

Click the Inventory () tile on the Instant On web application home page or click the Site Health banner and then click on Show inventory. The Inventory page is displayed.
Click the () arrow next to a switch in the Inventory list and then click on Actions tab.
Slide the Activate lights toggle switch to right () to turn on the locator light in the device. The locator light will be active for 30 minutes after you turn on the toggle switch. The light is turned off by default.

Network Tests

The Network tests option is used to test the reachability of an Instant On device. To perform a network test, you need to select a Source device on which the commands will be executed, and a Destination to be reached.

To run a network test on an Instant On switch, follow these steps:

Click the Inventory () tile on the Instant On web application home page or click the Site Health banner and then click on Show inventory. The Inventory page is displayed.
Click the () arrow next to a switch in the Inventory list and then click on Actions tab.
Click the Connectivity tests tab beside Network tests. The Connectivity test screen is displayed.
Under Source, select an Instant On device from the drop-down list.
Only active devices of a site can be selected in this field. It could be a Switch or an AP.
Under Destination, enter the hostname or IP address of the device to which the source device should connect.
Click Start connection test.

The table below shows the possible test results from the network tests:

Connectivity Rating	Roundtrip Time	Test Results Format
Good	All network tests passed with a latency of less than 150 milliseconds.	Line 1: Fast connectivity to <host / IP address> Expandable row: More details
Fair	Some network tests passed with a latency between 150 and 400 milliseconds.	Line 1: Intermittent connectivity to IP address Line 2: <IP address> Line 3: Slow connectivity to <host / IP address> Line 4: <hostname / IP address> Expandable row: More details
Poor	Ping network passed with a latency greater than 400 milliseconds.	Line 1: Unable to reach IP address Line 2: <IP address> Line 3: Very slow connectivity to <host / IP address> Line 4: <hostname / IP address> Expandable row: More details

Connectivity Rating

Roundtrip Time

Test Results Format

Good

All network tests passed with a latency of less than 150 milliseconds.

Line 1: Fast connectivity to <host / IP address>

Expandable row: More details

Fair

Some network tests passed with a latency between 150 and 400 milliseconds.

Line 1: Intermittent connectivity to IP address

Line 2: <IP address>

Line 3: Slow connectivity to <host / IP address>

Line 4: <hostname / IP address>

Expandable row: More details

Poor

Ping network passed with a latency greater than 400 milliseconds.

Line 1: Unable to reach IP address

Line 2: <IP address>

Line 3: Very slow connectivity to <host / IP address>

Line 4: <hostname / IP address>

Expandable row: More details

Restart

To restart the device, follow these steps:

Click the Inventory() tile on the Aruba Instant On home page or click the Site Health() banner and then click on Show inventory.
Click the () arrow next to an AP in the Inventory list and then click Actions tab.
Click Restart.

Switch to Local Management

The Switch to local management option allows you to change the switch management from cloud to local mode. When this option is selected, the switch will be removed from the site and the existing configuration will be stored on the switch. For more information, see Local Management for Switches.

Replace Device

Follow these steps to replace a failed Instant On switch with another Instant On switch, while maintaining the specific device configurations:

This option is visible only when the Instant On switch is offline.

It is recommended to replace the failed switch with a working switch of the exact same model to ensure all device configurations are successfully transferred to the replaced switch.

Click the Inventory tile () on the Aruba Instant On home page or click the Site Health banner () and then click on Show inventory.
Select the failed switch you want to replace from the inventory by clicking the arrow () next to the switch name.
Click the Actions tab.
Click the Search tab next to Replace device.
The standalone Instant On switches connected to the network are displayed.
Select a switch from the list and click Replace.
Click Finish.

Remove from Inventory

Follow these steps to remove a switch which is still online:

Click the Inventory() tile on the Aruba Instant On home page or click the Site Health() banner and then click on Show inventory.
Select the switch you want to remove from the inventory by clicking the () arrow next to the device name.
In the Actions tab, click Remove next to Remove from inventory.
Click Remove from the popup window to remove the switch from the inventory.

Follow these steps to remove a Switch which is offline:

Click the Inventory() tile on the Aruba Instant On home page or click the Site Health() banner and then click on Show inventory.
Select the switch you want to remove from the inventory by clicking the () arrow next to the switch name.
In the Actions tab, a rectangular bar appears below the device name when an alert is triggered. The color of the rectangular alert bar will appear according to the alert type.
Click the Alerts link. You will be directed to the Alert Details page which provides more information about the unusual activity. The Advanced menu does not appear on the title bar when the status is down.
If the Instant On device is removed from the network, you can choose to remove the device from the inventory by clicking Remove next to Remove from inventory in the Actions tab. A pop-up box appears on the screen requesting your confirmation.
Click Remove to delete the device from the inventory.

Tools

The Tools tab currently provides an option to configure port mirroring on the Instant On switch.

Port Mirroring

The Instant On switches have the ability to trace the packets sent and received from a port, by mirroring the data and sending it to a destination port. This feature is useful to troubleshoot network issues. Only one port mirroring session can be configured for each Instant On switch. If a site has multiple switches, there can be multiple port mirroring sessions active at the same time on different devices. When a port mirroring session is active, a destination port cannot be selected as a member of a Link aggregation group.

When configuring port mirroring, avoid oversubscribing the destination port to prevent the loss of mirrored data.

To configure a port mirroring session on a port, follow these steps:

Click the Inventory() tile on the Aruba Instant On home page or click the Site Health() banner and then click on Show inventory.
Select the switch from the inventory by clicking the () arrow next to the switch name.
Click Tools.
Under Port mirroring, select a switch port from the drop-down list, to which the traffic should be mirrored. This setting is configured as the destination port. The destination can be any port on the switch, except for the following:
- The uplink port
- A port where the Instant On device is connected.
- A port that is configured as part of a trunk.
- A port that uses 802.1x
Under Source, select one of the following options:
1. Network—Select one of the available networks from the drop-down list.
2. Ports—Select the port(s) to be used as the source port(s).
You can select up to eight ports as a source port.
Select one of the following as the Traffic direction:
1. Transmit and receive
2. Transmit
3. Receive
Tap Start mirroring to initiate the mirroring of the packets sent from the source to the destination.
To stop the mirroring, tap Stop mirroring at anytime.

/*]]>*/

Send Feedback