TP-Link TL-SL3428, TL-SL3452 manual Configuring Authentication Methods, Defining Access Profiles

Page 4

4.3 Viewing Flash Logs

18

4.4 Defining System Log Servers

19

Section 5. Configuring Device Security

21

5.1 Configuring Management Security

21

5.1.1

Configuring Authentication Methods

21

5.1.1.1

Defining Access Profiles

21

5.1.1.2

Defining Profile Rules

23

5.1.1.3

Defining Authentication Profiles

24

5.1.1.4

Mapping Authentication Profiles

25

5.1.1.5 Defining TACACS+ Host Settings

27

5.1.1.6 Defining RADIUS Server Settings

28

5.1.2

Configuring Passwords

30

5.1.2.1

Defining Local Users

30

5.1.2.2

Defining Line Passwords

31

5.1.2.3

Defining Enable Passwords

31

5.2 Configuring Network Security

31

5.2.1

Network Security Overview

32

5.2.1.1

Port-Based Authentication

32

5.2.1.2

Advanced Port-Based Authentication

32

5.2.2

Defining Network Authentication Properties

32

5.2.2.1

Defining Port Authentication Properties

33

5.2.2.2

Configuring Multiple Hosts

34

5.2.2.3

Defining Authentication Hosts

35

5.2.3

Configuring Traffic Control

36

5.2.3.1

Managing Port Security

36

5.2.3.2

Enabling Storm Control

37

Section 6. Defining IP Addresses

39

6.1 Defining IP Addressing

39

6.1.1

Defining IP Addresses

39

6.1.2 Defining the Default Gateway

40

6.1.3

Defining DHCP Addresses

40

6.1.4

Defining ARP

41

6.2 Defining Domain Name System

42

6.2.1

Defining DNS Servers

42

6.2.2

Configuring Host Mapping

43

Page 3 Page 5
Image 4
Page 3 Page 5
Contents Embedded Web System User Guide Copyright & Trademarks FCC Statement Table of Contents Configuring Authentication Methods Defining Access ProfilesDefining Authentication Profiles Mapping Authentication ProfilesConfiguring Garp Configuring the Classic STP Defining STP PropertiesConfiguring Multicast Forwarding Defining GvrpBasic QoS Mode Advanced QoS ModeConfiguration Download Configuration UploadViewing Statistics GlossaryPreface Guide OverviewIntended Audience Getting Started Starting the TP-Link Embedded Web InterfaceClick . The TP-Link Embedded Web Interface Home Page opens Understanding the TP-Link Embedded Web InterfaceInterface Components Using the TP-Link Embedded Web Interface Management Buttons TP-Link Web Interface Configuration Management ButtonsDevice Representation TP-Link Web Interface Information ButtonsUsing Screen and Table Options Deleting Configuration InformationAdding Configuration Information Modifying Configuration InformationResetting the Device Click System General Reset. The Reset Page opensLogging Off from the Device Click . a confirmation message is displayedDefining Device Information System DescriptionSetting the System Time Configuring Daylight Savings TimeSystem Information Time Recurring Daylight SavingsDefine the Date, Local Time and Time Zone Offset fields Configuring Sntp Sntp OverviewPolling for Unicast Time Information Polling for Anycast Time InformationConfiguring Sntp Authentication Defining Sntp Global SettingsSntp Properties Page contains the following fields To configure Sntp authentication Sntp Authentication Page contains the following fieldsCheck the Enable Sntp Authentication checkbox Click . The Add Sntp Authentication Page opensDefining Sntp Interface Settings Click . The Sntp Server is added, and the device is updatedSntp Servers Page contains the following fields Click . The Add Sntp Server Page opensSntp Interface Settings Page contains the following fields Check the Receive Server Updates optionClick . The Add Sntp Interface Page opens Select the InterfaceConfiguring System Logs Defining General Log PropertiesFollowing table lists the log severity levels System Log Severity LevelsViewing Flash Logs Viewing Memory Logs Severity To view Flash memory logs Defining System Log ServersClick . The Add Syslog Server Page opens Click . The Log server is defined and the device is updated Add Syslog ServerConfiguring Device Security Configuring Management SecurityConfiguring Authentication Methods Defining Access ProfilesAccess Profile Click . The Add Access Profile Page opensDefining Profile Rules Profile RulesClick . The Profile Rule Settings Page opens Defining Authentication ProfilesAuthentication Profiles Page provides the following Mapping Authentication Profiles Click . The Add Authentication Profile Page opensClick . The Authentication Profile Settings Page opens Define the Profile Method and enter the Profile Name fieldsAuthentication Mapping Authentication Mapping Page contains the following fieldsDefining TACACS+ Host Settings To define TACACS+ authentication settingsSession is permitted Define the Console, Telnet, and Secure Telnet SSH fieldsDefining Radius Server Settings Click . The TACACS+ Host Settings Page opensClick . The Add TACACS+ Host Page opens Select TACACS+ server entryRadius Click . The Add Radius Server Page opensConfiguring Passwords Click . The Radius Server Settings Page opensDefining Local Users Click . The Add Local User Page opensConfiguring Network Security Defining Line PasswordsDefining Enable Passwords Line Password Page contains the following fieldsDefining Network Authentication Properties Port-Based AuthenticationAdvanced Port-Based Authentication Network Security OverviewDefining Port Authentication Properties Port Authentication Page contains the following fieldsConfiguring Multiple Hosts Click . The Port Authentication Settings Page opensClick . The Multiple Host Settings Page opens Defining Authentication HostsTo define authenticated users Configuring Traffic Control Managing Port SecurityClick . The Port Security Settings Page opens Enabling Storm ControlStorm Control Cast B, cast M tbd Cast M, cast tbd Cast tbdDefining IP Addresses Defining IP AddressingDefining IP Addresses Click . The Add IP Interface Page opensDefining the Default Gateway Click . The IP Interface Settings Page opensEnter the name of the User Defined Default Gateway Defining Dhcp AddressesTo define ARP Defining ARPARP Page contains the following fields Defining Domain Name System Defining DNS ServersDNS Server Page contains the following fields  Type Displays the IP address type. The possibleConfiguring Host Mapping Host Mapping Page contains the following fieldsAdd DNS Host Enter the Host Name and IP AddressConfiguring Interfaces Configuring PortsInterface Configuration Settings Click . The parameters are saved, and the device is updatedConfiguring LAGs Click . The LAG Membership Settings Page opensDefining LAG Members To define LAG membersConfiguring Lacp LAG Membership Settings Page contains the following fieldsClick . The Lacp Parameters Settings Page opens Lacp Parameters Page contains the following fieldsDefine the Port Priority and Lacp Timeout settings Configuring VLANsDefining Vlan Properties Modify the Vlan Name and Disable Authentication fields Defining Vlan MembershipVlan Member Properties Page contains the following fields Click . The Vlan properties are savedDefining Vlan Interface Settings Vlan Interface Settings Page contains the following fieldsTo define Vlan membership Vlan Member Membership Page contains the following fieldsClick . The Vlan / LAG Interface Settings Page opens Configuring GarpDefining Garp Garp Parameters Page contains the following fields Defining GvrpTo define Gvrp on the device Gvrp Parameters Configuring Static Addresses Forwarding Database Static AddressesConfiguring Dynamic Forwarding Addresses Click . The Add Forwarding Database Page opensTo define the dynamic forwarding addresses  Clear Table Clears the Current Address TableSelect the Interface, the MAC Address, and the Vlan ID Select an Address Table Sort KeyConfiguring the Classic STP Defining STP PropertiesClick System Bridging Info Spanning Tree STP Properties. The STP Properties Page opensDefining STP Interface Settings Complete the Spanning Tree State and Bridge Settings fieldsClick . The STP Interface Settings Page opens STP Interface Settings Page contains the following fieldsClick the STP enable checkbox Define the fields Configuring the Rapid STP RstpClick . The Rstp Settings Page opens Configuring the Multiple STPDefining Mstp Properties Click . The device information is updated Configuring Mstp InstancesDefine the Region Name, Revision and Max Hops fields Configuring Mstp Vlan Instances Configuring Mstp Interface SettingsMstp Vlan Instance Configuration Page opens Mstp Interface Settings Page contains the following fieldsMstp Interface Settings Modify the Port Priority and Path CostConfiguring Multicast Forwarding Igmp Snooping Page contains the following fieldsClick the Enable Igmp Snooping Status checkbox Click . The Multicast Global Parameters Settings Page opensDefining Multicast Bridging Groups To define multicast groupsIgmp Port/LAG Members Table Control Settings Click . The Multicast Group Settings Page opensMulticast group statically in the Current Row Join a Multicast groupPort is not attached to a Multicast router or switch Defining Multicast Forward All ParametersMulticast Forward All Page contains the following fields ForbiddenSnmp Snmp v1 and v2cDefining Snmp Security Define the Local Engine ID and Use Default fields Defining Snmp Global ParametersDefining Snmp Views Snmp Security Views Page contains the following fieldsDefining Snmp Group Profiles Click . The Add Snmp View Page opensDefining Snmp Group Members Click . The Snmp Group Profile Settings Page opensClick . The Add Snmp Group Profile Page opens Click . The Snmp Group Membership Settings Page opens Addition to the fields in the Snmp Security GroupMembership Page, The Add Snmp Group Membership Contains the following fieldsDefining Snmp Communities Snmp Communities Basic TableSnmp Communities Advanced Table Snmp Security Communities Page is divided intoConfiguring Snmp Notification Settings Device is updated To modify Snmp Group Membership settingsDefining Snmp Notification Properties Defining Notification FiltersSnmp Notification FiIter Page contains the following fields Defining Notification ReceiversClick . The Add Snmp Notification Filter Page opens SNMPv3 Notification Recipient SNMPv1,2c Notification RecipientSnmp Notification Receiver Page c is divided into Click . The Snmp Notification Receiver Settings Page opens Click . The Add Snmp Notification Receiver Page opensQuality of Service Overview Configuring Quality of ServiceMapping to Queues Following table contains the VPT to Queue default settings VPT Default Mapping TableDscp Default Mapping Table QoS ModesEnabling Quality of Service Enabling Quality of ServiceBasic QoS Mode Advanced QoS ModeCoS Settings Defining QueuesMapping Queues Mapping CoS Values to QueuesMapping QoS Values to Queues  SchedulingDscp to Queue Managing System Files Downloading System FilesDownload Type To download system filesConfiguration Download Uploading System FilesFirmware Download Upload TypeConfiguration Upload Activating Image FilesCopying System Files Software Image UploadSelect Copy Configuration Select Restore Configuration Factory DefaultsPerforming Device Diagnostics Configuring Port MirroringTo modify port mirroring settings Click . The Port Mirroring Settings Page opensViewing Integrated Cable Tests Click the Remove checkbox for selected item, and clickViewing Optical Transceivers Optical Transceivers Page contains the following fieldsViewing Statistics Viewing Interface StatisticsViewing Device Interface Statistics Interface Statistics Page contains the following fieldsViewing Etherlike Statistics Open the Interface StatisticsClick . The interface statistics counters are cleared Etherlike Statistics Page contains the following fieldsViewing Gvrp Statistics Open the Etherlike StatisticsManaging Rmon Statistics Viewing EAP StatisticsOpen the Gvrp Statistics Click . The Gvrp interface statistics counters are clearedViewing Rmon Statistics  Configuring Rmon History  Defining Rmon AlarmsRmon Statistics Page contains the following fields Configuring Rmon History Defining Rmon History ControlOpen the Rmon Statistics Rmon History Control Page contains the following fieldsViewing the Rmon History Table Rmon History Table Page contains the following fieldsConfiguring Rmon Events Defining Rmon Events ControlRmon Events Control Page contains the following fields Click . The Add Rmon Event User Page opensViewing the Rmon Events Logs Defining Rmon AlarmsClick System Statistics Rmon Events. To modify an Rmon alarm user Click . The Add Rmon Alarm User Page opensClick . The Edit Rmon Alarm User Page opens 103 Glossary Boot Version BootPClass of Service BackplaneDuplex Mode ClientCollision Combo PortEthernet FlappingFlow Control FragmentIeee 802.1d Ieee 802.1pEEE 802.1q Image FileAuthenticates the origin of the communication Limited geographical areaProcess Processing, as there is more information to processNode PacketPolicing PortRJ-11 Connector RJ-45 ConnectorRunning Configuration Stand-alone ModeSubnet Mask TelnetTrap Trunking71035590
Related manuals
Manual 32 pages 61.46 Kb Manual 32 pages 10.85 Kb

TL-SG3109, TL-SL3428, TL-SL3452 specifications

The TP-Link TL-SL3428 is a feature-rich Ethernet switch designed for small to medium-sized business environments. It is part of TP-Link’s JetStream series, which emphasizes reliability, performance, and robust management capabilities. Built with 28 10/100/1000 Mbps ports, the TL-SL3428 provides sufficient bandwidth to support a wide range of network applications.

One of the standout features of the TL-SL3428 is its support for Layer 2 management protocols. This allows for more granular control and optimized performance across network segments. The switch supports VLAN (Virtual Local Area Network) segmentation, which enhances network security and efficiency by isolating various types of traffic. This feature is particularly useful in larger organizations where different departments or teams may require separate network environments.

The TL-SL3428 also includes advanced QoS (Quality of Service) capabilities. This functionality prioritizes traffic based on predefined rules, which ensures that critical applications receive the necessary bandwidth to function optimally. With QoS implementation, users can experience minimized latency, leading to better performance in VoIP and video conferencing applications.

In terms of redundancy and reliability, the switch also supports Link Aggregation Control Protocol (LACP), enabling multiple connections to be combined for increased bandwidth and failover support. This feature significantly enhances network resilience, ensuring minimal downtime during failures.

Power over Ethernet (PoE) support is another important characteristic of the TL-SL3428. With PoE capabilities, this switch can deliver electrical power along with data over the same Ethernet cable, simplifying installation and reducing the need for additional wiring. This is especially advantageous for IP devices like cameras, access points, and VoIP phones.

Security features are abundant in the TL-SL3428 as well. It implements port security, storm control, and DHCP snooping, all of which contribute to a secure network infrastructure. The switch’s management capabilities can be accessed through a user-friendly web interface, making it easier for IT administrators to configure and monitor network activities.

Overall, the TP-Link TL-SL3428 is an exemplary choice for businesses looking to enhance their network performance with advanced management features, security protocols, and reliability. Its combination of speed, flexibility, and manageability make it a valuable tool for any growing organization.
Top Page Image Contents