REV2.0.0 1910010781
TL-SG3424P JetStream L2 Managed PoE Switch
Copyright & Trademarks FCC Statement
Safety Information
Contents
Gvrp
VII
Viii
177
220
Package Contents
Overview of This Guide
About this Guide
Intended Readers
Conventions
System Switching Vlan Spanning Tree Multicast
QoS PoE ACL Network Security Snmp
Return to Contents
Main Features
Overview of the Switch
Introduction
Front Panel
Appearance Description
¾ LEDs
Status Indication
LED
Rear Panel
Login
Login to the Switch
Configuration
Return to Contents
¾ Port Status
System
System Info
System Summary
Status
Port
Type
Speed
System Time
Device Description
¾ Device Description
Daylight Saving Time
Date Mode
¾ DST Config
Predefined Mode
Recurring Mode
System IP
¾ IP Config
User Management
User Config
User Table
¾ User Table
User ID, Name, Access Level and status Operation
¾ User Info
User Status
System Tools
Config Restore
Config Backup
¾ Config Restore
¾ Config Backup
Firmware Upgrade
Access Control
Access Security
System Reboot
System Reset
MAC Address
¾ Access Control Config
¾ Session Config
IP Address&Mask
¾ Access User Number
SSL Config
¾ Key Download
SSH Config
¾ Global Config
¾ Certificate Download
Protocol
Idle Timeout
Max Connect
¾ Network Requirements
¾ Configuration Procedure
Key Type
Download
Application Example 2 for SSH
Page
Return to Contents
Port Select
Switching
Port Config
Port
Flow Control
Port Mirror
Description
Speed and Duplex
Mirrored Port
Group
Mirroring
Mode
Egress
Port Security
¾ Mirrored Port
Ingress
Max Learned MAC
¾ Port Security
Learned Num
Port Isolation
¾ Port Isolation Config
¾ Port Isolation List
Loopback Detection
Forward Portlist Display the forwardlist
LAG
Operation Mode
Interval It’s 3 seconds
LAG Table
LAG Table
Member
Static LAG
¾ LAG Table
Group Number
Member Port
Lacp Config
¾ Lacp Config
10 Lacp Config
Port Priority
Admin Key
Traffic Monitor
Traffic Summary
Octets Tx
Packets Rx
Packets Tx
Octets Rx
Traffic Statistics
Address and the port
Type Configuration Way Aging out
MAC Address
Bound
Relationship
Address Table
Displays the corresponding Vlan ID of the MAC address
Static Address
¾ Search Option
¾ Address Table
¾ Static Address Table
¾ Create Static Address
Dynamic Address
¾ Dynamic Address Table
¾ Aging Config
Bind
Filtering Address
¾ Filtering Address Table
¾ Create Filtering Address
Vlan
¾ Link Types of ports
802.1Q Vlan
¾ Pvid
Select:
Vlan Config
¾ Vlan Table
Vlan ID Select:
¾ Vlan Members
¾ Vlan Config
Enter the ID number of Vlan
Is valid or not
Port Displays the port number
¾ Vlan Port Config
Step Operation Description
Required. On the VLAN→802.1Q VLAN→Port Config page, set
¾ Vlan of Port
Vlan Description
Optional. On the VLAN→802.1Q VLAN→VLAN Config
Required. On the VLAN→802.1Q VLAN→VLAN Config
¾ MAC Vlan Table
Protocol Vlan
MAC Select
¾ Encapsulation Format of Ethernet Data
802.3 raw 802.2 LLC Snap Protocol
¾ Protocol Group Table
Protocol Group Table
Protocol Group
Vlan packets are processed in the following way
Protocol Template
¾ Protocol Group Config
¾ Protocol Group Member
¾ Create Protocol Template
Required. On the VLAN→802.1Q VLAN→Port Config
¾ Protocol Template Table
Optional. On the VLAN→Protocol VLAN→Protocol Vlan
¾ Network Diagram
Application Example for 802.1Q Vlan
Required. On the VLAN→Protocol VLAN→Protocol
Operation Description
Required. On VLAN→802.1Q VLAN→Port Config page, configure
Required. On VLAN→802.1Q VLAN→VLAN Config page, create a
Application Example for MAC Vlan
¾ Network Diagram ¾ Configuration Procedure
Application Example for Protocol Vlan
Required. On VLAN→Protocol VLAN→Protocol Template
On VLAN→Protocol VLAN→Protocol Group page, create protocol
Gvrp
¾ Gvrp
Gvrp
Registration Mode
Configuration Procedure
¾ STP Elements
Spanning Tree
¾ Bpdu Comparing Principle in STP mode
¾ STP Timers
¾ STP Generation
Tips :
Step Operation
¾ Mstp Elements
¾ Rstp Elements
¾ Port Roles
¾ Port States
STP Config
STP Config
Max Age
Forward Delay
Version
Hello Time
STP Summary
STP Summary
Port Config
Edge Port
Priority
ExtPath
IntPath
Mstp Instance
Region Config
Port Status
¾ Region Config
Instance Config
Clear
Instance Port Config
¾ Instance Table
Instance
Path Cost
Instance ID
Port Role
Port Protect
STP Security
¾ Bpdu Protect
¾ TC Protect
¾ Bpdu Filter
Bpdu Protect
Loop Protect
Root Protect
TC Protect
TC Protect
Application Example for STP Function
On Spanning Tree→STP Config→Port Config
On Spanning Tree→STP Config→STP Config
On Spanning Tree→MSTP Instance→Instance
Configure Switch D
¾ Suggestion for Configuration
¾ Multicast Overview
Multicast
¾ Multicast Address Table
¾ Multicast Address
Multicast IP Port
¾ Igmp Messages
Igmp Snooping
¾ Igmp Snooping
¾ Igmp Snooping Process
¾ Igmp Snooping Fundamentals
Snooping Config
Description Displays Igmp Snooping status Member
¾ Igmp Snooping Status
Fast Leave
Igmp Snooping
Static Router Port
Router Port Time
Member Port Time
Leave Time
Multicast→IGMP
Snooping→Snooping Config and Port Config
Multicast→IGMP Snooping→VLAN Config
Multicast Vlan
Vlan
¾ Multicast Vlan
Multicast→IGMP Snooping→Multicast Vlan
On the Multicast→IGMP Snooping→Snooping Config
Multicast IP Table
Snooping→Port Config
Snooping→Snooping Config
Multicast IP
Static Multicast IP
¾ Static Multicast IP Table
Multicast Filter
IP-Range
¾ Create Static Multicast
End Multicast IP
Port Filter
IP Range ID
Start Multicast IP
Bound IP-Range ID
¾ Port Filter Config
Action Mode
Filter
Multicast→Multicast Filter→IP-Range
Packet Statistics
Multicast→Multicast Filter→Port Filter
¾ Igmp Statistics
QoS
¾ Priority Mode
¾ QoS
¾ Schedule Mode
117
Displays the LAG number which the port belongs to
¾ Port Priority Config
DiffServ
Port Priority
Required. On QoS→DiffServ→Port Priority
Required. On QoS→DiffServ→Schedule Mode
¾ Dscp Priority Config
Dscp Priority
¾ Priority Level
3 802.1P/CoS mapping
Required. On QoS→DiffServ→DSCP Priority
¾ Priority and CoS-mapping Config
Schedule Mode
¾ Schedule Mode Config
Rate Limit
Bandwidth Control
Egress RateKbps
¾ Rate Limit Config
Storm Control
Ingress Rate Kbps
Bps
¾ Storm Control Config
Port Broadcast Rate bps
Multicast Rate
Voice Vlan
¾ Port Voice Vlan Mode
Number OUI Address Vendor
Security Packet Type Processing Mode
¾ Security Mode of Voice Vlan
12 Global Configuration
Global Config
13 Port Config
Port Mode
OUI Config
Mask
Required. On VLAN→802.1Q VLAN→Port Config page, click
¾ Advantage
PoE Config
PoE
¾ Composition
PoE Status
PoE Config
PoE Priority
PoE Profile
Profile Name
PoE Time-Range
Time-Range Summary
¾ PoE Profile
PoE Time-Range Create
Delete
PoE Holiday Config
Index
End Time
Time-Range
ACL
¾ Time-Range Table
Holiday
Time-Range Create
Index Displays the index of the time-slice Start Time
Holiday Config
ACL Config
¾ Create ACL
ACL Summary
ACL Create
¾ Rule Table
User Priority
MAC ACL
Rule ID
EtherType
Extend-IP ACL
Standard-IP ACL
¾ Create Standard-IP ACL
IP ToS
¾ Create Extend-IP ACL
IP Protocol
TCP Flag :
Policy Summary
Policy Config
Policy Create
¾ Create Policy
Action Create
¾ Create Action
Binding Table
Policy Binding
¾ Policy Bind Table
Direction Displays the binding direction
¾ Port-Bind Config
Port Binding
Vlan Binding
¾ VLAN-Bind Table
¾ VLAN-Bind Config
Application Example for ACL
Enter the ID of the Vlan you want to bind
On ACL→ACL Config→ACL Create page, create ACL
On ACL→ACL Config→Standard-IP ACL page, select ACL
IP-MAC Binding
Network Security
Manual Binding
¾ Manual Binding Table
¾ Manual Binding Option
Enter the Vlan ID
Protect Type Select the Protect Type for the entry
ARP Scanning
Scan
Dhcp Snooping
Start IP Address
End IP Address
¾ Dhcp Working Principle
Network diagram for DHCP-snooping implementation
¾ Option
¾ Dhcp Cheating Attack
Dhcp Cheating Attack Implementation Procedure
¾ Dhcp Snooping Config
¾ Port Config Port Select
¾ Option 82 Config
Customization Circuit ID Remote ID
¾ Imitating Gateway
ARP Inspection
¾ Cheating Gateway
¾ Cheating Terminal Hosts
10 ARP Attack Cheating Gateway
¾ Man-In-The-Middle Attack
¾ ARP Flooding Attack
¾ ARP Detect
ARP Detect
¾ Trusted Port
Required. On the Network Security→IP-MAC
ARP Defend
Network Security→ARP
Defend
¾ ARP Defend
Current Speed
ARP Statistics
DoS Defend
¾ Illegal ARP Packet
DoS Attack Type Description
¾ Defend Table
¾ Configure
¾ Architecture of 802.1X Authentication
12.4
¾ The Mechanism of an 802.1X Authentication System
¾ 802.1X Authentication Procedure
19 PAP Authentication Procedure
¾ Guest Vlan
¾ 802.1X Timer
Guest Vlan ID
Authentication Method
802.1X
Guest Vlan
Server Timeout
Supplicant Timeout
Retry Times
Control Type
Control Mode
¾ Authentication Config
Radius Server
Required. On the Network Security→802.1X→Radius
On the Network Security→802.1X→Global Config
Required. On the Network Security→802.1X→Port
¾ Snmp Versions
Snmp
¾ Snmp Overview
¾ Snmp Management Frame
¾ MIB Introduction
¾ Snmp Configuration Outline
¾ Local Engine
Snmp Config
¾ Remote Engine
View Type
Snmp View
View Name
MIB Object ID
Snmp Group
¾ Group Config
Snmp User
Privacy Password
Auth Mode
Auth Password
Privacy Mode
Access
¾ Community Config
Snmp Community
¾ Community Table
Required. On the SNMP→SNMP Config→Global
Required. On the SNMP→SNMP Config→SNMP
MIB View
Notification
On the SNMP→SNMP Config→SNMP
Retry
Timeout
UDP Port
User
Rmon Group Function
Rmon
¾ Notification Table
¾ Rmon Group
History Control
Event Config
¾ History Control Table
¾ Event Table
Alarm Config
Rising Threshold
Alarm Type
Variable
Sample Type
194
¾ Lldpdu Format
Lldp
TLV type TLV Name Description Usage
¾ TLV
Organizationally Specific TLV
Basic Management TLV
System Capabilities TLV
Configuration/Status TLV
Power Via MDI TLV
Port Description TLV
Lldp
Basic Config
Lldp Port Config
¾ Lldp Port Config
Local Info
Device Info
Details
¾ Local Info
Neighbor Info
¾ Neighbor Info
¾ Global Statistics
Device Statistics
Discards
Errors
Transmit Total
Receive Total
Inventory TLV
Extended Power-Via-MDI TLV
¾ LLDP-MED Parameters Config
Location Identification TLV
LLDP-MED Port Configuration
¾ LLDP-MED Port Config
Civic Address
¾ Included TLVs
¾ Location Identification Parameters
Emergency
LLDP-MED Local Information
LLDP-MED Neighbor Information
¾ Cluster Role
Cluster
¾ Introduction to Cluster
15.1 NDP
¾ Neighbor
NDP Summary
Receive NDP Packets
Error NDP Packets
Aging Time
Send NDP Packets
Detail :
NDP Config
Device Table
Enable
Disable
Ntdp
Ntdp Summary
Ntdp Summary
Port Displays the port number of the switch
Ntdp Hops
Ntdp Config
Ntdp Hop Delay
Ntdp Interval Time
Cluster
Cluster
Cluster Summary
¾ Global
¾ Global Config Cluster
Cluster Config
¾ Role Change
¾ Current Role
Application Example for Cluster Function
14 Cluster Configuration for Individual Switch
On Cluster→NTDP→NTDP Config page, enable
On Cluster→NDP→NDP Config page, enable NDP
On Cluster→Cluster→Cluster Topology
On Cluster→Cluster→Member Config page, select
System Monitor
Maintenance
CPU Monitor
Memory Monitor
16.2 Log
Module
Log Table
¾ Log Info
Time
Log Buffer
¾ Local Log Config
Local Log
Remote Log
¾ Log Host
Backup Log
Host IP
Pair
Device Diagnostics
Error
Cable Test
Loopback
Network Diagnostics
Ping
Tracert
¾ Ping Config
¾ Tracert Config
Appendix a Specifications
Figure B-2
Appendix B Configuring the PCs
Now
Hardware Installation
Appendix C Load Software Using FTP
Configure the Hyper Terminal
239
Figure C-5 Port Settings
Download Firmware via bootUtil menu
Are you want to upgrade the firmwareY/N y
TP-LINK upgrade You can only use the port 1 to upgrade
User
TP-LINK start Start
Appendix D 802.1X Client Software
Installation Guide
244
245
Figure D-7 InstallShield Wizard Complete
Uninstall Software
Figure D-11 Uninstall Complete
Configuration
248
Figure D-16 Connection Status
FAQ
Appendix E Glossary
Ieee 802.1D
Multicast Switching
Generic Multicast Registration Protocol Gmrp
Group Attribute Registration Protocol Garp
Link Aggregation
Port Authentication
Remote Authentication Dial-in User Service Radius
Layer
Spanning Tree Algorithm STA
Secure Shell SSH
Simple Network Management Protocol Snmp
Simple Network Time Protocol Sntp