Protocol, Idle Timeout, Max Connect | TP-Link TL-SG3216 instruction

information in a remote management being leaked.

Comprising server and client, SSH has two versions, V1 and V2 which are not compatible with each other. In the communication, SSH server and client can auto-negotiate the SSH version and the encryption algorithm. After getting a successful negotiation, the client sends authentication request to the server for login, and then the two can communicate with each other after successful authentication. This switch supports SSH server and you can log on to the switch via SSH connection using SSH client software.

SSH key can be downloaded into the switch. If the key is successfully downloaded, the certificate authentication will be preferred for SSH access to the switch.

Choose the menu System→Access Seurity→SSH Config to load the following page.

Figure 4-16 SSH Config

The following entries are displayed on this screen:

¾Global Config

SSH:	Select Enable/Disable SSH function.
Protocol V1:	Select Enable/Disable SSH V1 to be the supported protocol.
Protocol V2:	Select Enable/Disable SSH V2 to be the supported protocol.
Idle Timeout:	Specify the idle timeout time. The system will automatically
	release the connection when the time is up. The default time is
	500 seconds.
Max Connect:	Specify the maximum number of the connections to the SSH
	server. No new connection will be established when the number of
	the connections reaches the maximum number you set. The
	default value is 5.

¾Key Download

24

Image 31

TP-Link TL-SG3216 manual Protocol, Idle Timeout, Max Connect

Contents

TL-SG3216/TL-SG3424 JetStream L2 Lite Managed Switch Copyright & Trademarks Contents Gvrp 100 VII NDP Package Contents Overview of This Guide About this GuideIntended Readers Conventions System Switching Vlan Spanning Tree Multicast QoS ACL Network Security Snmp Cluster Return to Contents Main Features Overview of the SwitchIntroduction Front Panel Appearance Description¾ LEDs Name Status Indication Rear Panel Login Login to the SwitchConfiguration Return to Contents ¾ Port Status SystemSystem Info System Summary Status PortType Rate System Time Device Description¾ Device Description PC’S Clock Current SystemGet GMT Synchronize With System IP ¾ IP Config User Manage User ConfigUser Table ¾ User Table User ID, Name, Access Level and status Operation¾ User Info User Status System Tools Config RestoreConfig Backup ¾ Config Restore ¾ Config Backup Firmware Upgrade Access Control Access SecuritySystem Reboot System Reset MAC Address ¾ Access Control Config¾ Session Config IP Address&Mask ¾ Access User Number SSL Config ¾ Key Download SSH Config¾ Global Config ¾ Certificate Download Protocol Idle TimeoutMax Connect ¾ Network Requirements ¾ Configuration ProcedureKey Type Download Application Example 2 for SSH Page Return to Contents Port Select SwitchingPort Config Port Flow Control Port MirrorDescription Speed and Duplex Mode Mirror ModeGroup Mirroring ¾ Port Security Port Security Max Learned MAC LAGLearned Num Group Number LAG TableAggregate Arithmetic ¾ LAG Table Detail Information Static LAG ¾ LAG Config Lacp ConfigLAG will delete this LAG Port Priority ¾ Lacp ConfigAdmin Key System Priority Traffic Summary Traffic Monitor¾ Auto Refresh Traffic Statistics MAC Address Port Address TableBound MAC address Way ¾ Address Table ¾ Search Option ¾ Create Static Address MAC Address Displays the MAC address learned by the switchStatic Address Displays the corresponding Vlan ID of the MAC address ¾ Static Address Table Dynamic Address ¾ Dynamic Address Table ¾ Aging Config Bind Filtering Address ¾ Filtering Address Table ¾ Create Filtering Address Vlan ¾ Link Types of ports 802.1Q Vlan ¾ Pvid Description ： Vlan Config¾ Vlan Table Vlan ID Select ¾ Vlan Members ¾ Vlan ConfigEnter the ID number of Vlan Is valid or not Port Displays the port number ¾ Vlan Port Config Vlan Description Required. On the VLAN→802.1Q VLAN→Port Config page, setRequired. On the VLAN→802.1Q VLAN→VLAN Config ¾ Vlan of Port MAC Vlan VLAN→VLAN Config Step Operation Description Protocol Vlan¾ MAC Vlan Table MAC Select ¾ Encapsulation Format of Ethernet Data ¾ The Procedure for the Switch to Identify Packet Protocol Vlan packets are processed in the following way ¾ The Implementation of Protocol VlanEncapsulation 802.3 raw 802.2 LLC Snap Protocol Protocol Group Protocol Group Table¾ Protocol Group Table Protocol Template ¾ Protocol Group Config¾ Protocol Group Member Application Example for 802.1Q Vlan Required. On VLAN→802.1Q VLAN→Port Config page, configure ¾ Network Diagram ¾ Configuration ProcedureRequired. On VLAN→802.1Q VLAN→VLAN Config page, create a Application Example for MAC Vlan Application Example for Protocol Vlan ¾ Network Diagram Required. On VLAN→Protocol VLAN→Protocol Template On VLAN→Protocol VLAN→Protocol Group page, create protocol Gvrp ¾ Gvrp Select Port Status Registration Mode ¾ Port Config Configuration Procedure ¾ STP Elements Spanning Tree ¾ Bpdu Comparing Principle in STP mode ¾ STP Timers¾ STP Generation Tips ： Step Operation ¾ Mstp Elements ¾ Rstp Elements ¾ Port Roles ¾ Port States STP Config STP Config Max Age Forward DelayVersion Hello Time STP Summary Port Config Edge Port PriorityExtPath IntPath Mstp Instance Region ConfigPort Status ¾ Region Config Instance Config Clear Instance Port Config¾ Instance Table Instance Path Cost Instance IDPort Role Port Protect STP Security ¾ Bpdu Protect ¾ TC Protect¾ Bpdu Filter Bpdu Protect Loop ProtectRoot Protect TC Protect TC Protect Application Example for STP Function On Spanning Tree→STP Config→Port Config On Spanning Tree→STP Config→STP ConfigOn Spanning Tree→MSTP Instance→Instance Configure Switch D ¾ Suggestion for Configuration ¾ Multicast Overview Multicast¾ Multicast Address Multicast IP Port ¾ Multicast Address Table ¾ Igmp Messages Igmp Snooping¾ Igmp Snooping ¾ Igmp Snooping Process ¾ Igmp Snooping Fundamentals Snooping Config Description Displays Igmp Snooping status Member ¾ Igmp Snooping Status Fast Leave Igmp Snooping Static Router Port Router Port TimeMember Port Time Leave Time Displays the Vlan ID Snooping→Snooping Config and Port ConfigMulticast→IGMP Snooping→VLAN Config Multicast Vlan ¾ Multicast Vlan Vlan On the Multicast→IGMP Snooping→Snooping ConfigMulticast→IGMP Snooping→Multicast Vlan Multicast IP ¾ Configuration Procedure Step Operation DescriptionSnooping→Port Config Snooping→Snooping Config Static Multicast IP Multicast IP Table ¾ Create Static Multicast Multicast Filter¾ Static Multicast IP Table End Multicast IP IP-RangeIP Range ID Start Multicast IP Filter ¾ Port Filter ConfigAction Mode Port Filter Multicast→Multicast Filter→IP-Range Packet StatisticsPorts taking up too much bandwidth Displays the LAG number which the port belongs to ¾ Igmp Statistics QoS ¾ Priority Mode¾ QoS 802.1Q frame ¾ Schedule Mode SP-Mode DiffServ ¾ Port Priority ConfigPort Priority Required. On QoS→DiffServ→Port Priority Schedule ModeRequired. On QoS→DiffServ→Schedule Mode ¾ Schedule Mode Config Dscp Priority 3 802.1P Priority¾ Priority Level Required. On QoS→DiffServ→DSCP Priority ¾ Dscp Priority Config Bandwidth Control ¾ Rate Limit ConfigRate Limit Storm Control ¾ Storm Control Config Mulitcast Rate Voice VlanBroadcast Rate Bps TAG ¾ Security Mode of Voice Vlan Security Packet Type Processing Mode Global ConfigEnter the Vlan ID of the voice Vlan Select the desired port for voice Vlan configuration. It is OUI Config Displays the OUI address of the voice device Configuration Procedure of Voice Vlan Index ACLTime-Range Time-Range Summary Time-Range Create ¾ Holiday Table ACL ConfigHoliday Config ¾ Create Holiday ¾ Create ACL ACL SummaryACL Create ¾ Rule Table EtherType MAC ACL¾ Create MAC ACL Rule ID Time-Range Standard-IP ACLExtend-IP ACL ¾ Create Standard-IP ACL IP Protocol ¾ Create Extend-IP ACLTCP Flag ： Policy Summary Policy Config ¾ Create Action Policy CreateAction Create ¾ Create Policy Binding Table Policy Binding Vlan Binding Port BindingDirection Displays the binding direction ¾ VLAN-Bind Table ¾ VLAN-Bind ConfigApplication Example for ACL Enter the ID of the Vlan you want to bind On ACL→ACL Config→ACL Create page, create ACL On ACL→ACL Config→Standard-IP ACL page, select ACL IP-MAC Binding Network Security Manual Binding ¾ Manual Binding Table ¾ Manual Binding OptionEnter the Vlan ID Protect Type Select the Protect Type for the entry ARP Scanning Scan Dhcp SnoopingStart IP Address End IP Address ¾ Dhcp Working Principle Network diagram for DHCP-snooping implementation ¾ Option ¾ Dhcp Cheating Attack Dhcp Cheating Attack Implementation Procedure ¾ Dhcp Snooping Config ¾ Port Config Port Select ¾ Option 82 ConfigCustomization Circuit ID Remote ID ¾ Imitating Gateway ARP Inspection¾ Cheating Gateway ¾ Cheating Terminal Hosts 10 ARP Attack Cheating Gateway ¾ Man-In-The-Middle Attack ¾ ARP Flooding Attack ¾ ARP Detect ARP Detect¾ Trusted Port Required. On the Network Security→IP-MAC ARP DefendNetwork Security→ARP Speed ARP Statistics¾ ARP Defend Defend ¾ Illegal ARP Packet DoS Defend DoS Attack Type Description ¾ Defend Table ¾ Configure¾ Architecture of 802.1X Authentication 11.4 ¾ The Mechanism of an 802.1X Authentication System ¾ 802.1X Authentication Procedure ¾ 802.1X Timer ¾ Guest Vlan Guest Vlan ID Authentication Method802.1X Guest Vlan Server Timeout Supplicant TimeoutRetry Times Authorized Control ModeRadius Server Control Type Required. On the Network Security→802.1X→Radius On the Network Security→802.1X→Global ConfigRequired. On the Network Security→802.1X→Port ¾ Snmp Versions Snmp¾ Snmp Overview ¾ Snmp Management Frame ¾ MIB Introduction ¾ Snmp Configuration Outline ¾ Local Engine Snmp Config¾ Remote Engine View Name Snmp ViewMIB Object ID View Type Snmp Group ¾ Group Config ¾ Group Table Snmp User Privacy Password Auth ModeAuth Password Privacy Mode Access ¾ Community ConfigSnmp Community ¾ Community Table Required. On the SNMP→SNMP Config→GlobalRequired. On the SNMP→SNMP Config→SNMP MIB View Notification On the SNMP→SNMP Config→SNMP Retry TimeoutUDP Port User ¾ Rmon Group RmonRmon Group Function History Control Event Config¾ History Control Table ¾ Event Table Alarm Config Rising Event VariableSample Type Rising Threshold 179 ¾ Cluster Role Cluster Neighbor Info 13.1 NDP¾ Introduction to Cluster ¾ Neighbor NDP Summary¾ Neighbor Info NDP ¾ Port Status Displays the port number of the switch ¾ Global Cofig NDP ConfigEnable Disable Cluster Name NtdpDevice Table Device MAC Collect Topology Ntdp SummaryHops Neighbor Info Port Displays the port number of the switch Ntdp Config Ntdp Hops Ntdp Hop DelayNtdp Port Delay Ntdp Interval Time Cluster ClusterCluster Summary ¾ Global ¾ Global Config Cluster Cluster Config ¾ Role Change ¾ Current Role Application Example for Cluster Function On Cluster→NTDP→NTDP Config page, enable On Cluster→NDP→NDP Config page, enable NDP 194 System Monitor MaintenanceCPU Monitor Memory Monitor 14.2 Log Local Log Log Table Log File ¾ Local Log ConfigRemote Log Log Buffer ¾ Log Host Backup LogHost IP Pair ErrorDevice Diagnose Cable Test Ping Switch is availableNetwork Diagnose Loopback Tracert ¾ Ping Config 10 Tracert Following entries are displayed on this screen ¾ Tracert Config Appendix a Specifications Appendix B Configuring the PCs 207 Now Hardware Installation Appendix C Load Software using FTPConfigure the Hyper Terminal 210 Figure C-5 Port Settings Download Firmware via bootUtil menu Are you want to upgrade the firmwareY/N y TP-LINK upgrade You can only use the port 1 to upgrade User TP-LINK start Start Appendix D 802.1X Client Software Installation Guide 215 216 Figure D-7 InstallShield Wizard Complete Uninstall Software Figure D-11 Uninstall Complete Configuration 219 Figure D-16 Connection Status FAQ 221 Appendix E Glossary Ieee 802.1Q Multicast SwitchingGroup Attribute Registration Protocol Garp Ieee 802.1D Link Aggregation Control Protocol Lacp Port AuthenticationRemote Authentication Dial-in User Service Radius Link Aggregation Telnet Simple Network Management Protocol SnmpSimple Network Time Protocol Sntp Spanning Tree Algorithm STA