REV2.0.0 1910010781
TL-SG3424P JetStream L2 Managed PoE Switch
Copyright & Trademarks FCC Statement
Safety Information
Contents
Gvrp
VII
Viii
177
220
Package Contents
Intended Readers
About this Guide
Conventions
Overview of This Guide
System Switching Vlan Spanning Tree Multicast
QoS PoE ACL Network Security Snmp
Return to Contents
Overview of the Switch
Main Features
Introduction
Appearance Description
Front Panel
¾ LEDs
Status Indication
LED
Rear Panel
Login to the Switch
Login
Configuration
Return to Contents
System Info
System
System Summary
¾ Port Status
Type
Port
Speed
Status
Device Description
System Time
¾ Device Description
Daylight Saving Time
Predefined Mode
¾ DST Config
Recurring Mode
Date Mode
System IP
¾ IP Config
User Config
User Management
User Table
¾ User Info
User ID, Name, Access Level and status Operation
User Status
¾ User Table
Config Backup
Config Restore
¾ Config Restore
System Tools
¾ Config Backup
Firmware Upgrade
System Reboot
Access Security
System Reset
Access Control
¾ Session Config
¾ Access Control Config
IP Address&Mask
MAC Address
¾ Access User Number
SSL Config
¾ Global Config
SSH Config
¾ Certificate Download
¾ Key Download
Idle Timeout
Protocol
Max Connect
Key Type
¾ Configuration Procedure
Download
¾ Network Requirements
Application Example 2 for SSH
Page
Return to Contents
Port Config
Switching
Port
Port Select
Description
Port Mirror
Speed and Duplex
Flow Control
Mirroring
Group
Mode
Mirrored Port
¾ Mirrored Port
Port Security
Ingress
Egress
¾ Port Security
Max Learned MAC
Learned Num
Port Isolation
¾ Port Isolation Config
Loopback Detection
¾ Port Isolation List
Forward Portlist Display the forwardlist
Operation Mode
LAG
Interval It’s 3 seconds
LAG Table
LAG Table
¾ LAG Table
Static LAG
Group Number
Member
Member Port
Lacp Config
¾ Lacp Config
10 Lacp Config
Traffic Monitor
Admin Key
Traffic Summary
Port Priority
Packets Tx
Packets Rx
Octets Rx
Octets Tx
Traffic Statistics
MAC Address
Type Configuration Way Aging out
Bound
Address and the port
Relationship
Address Table
¾ Search Option
Static Address
¾ Address Table
Displays the corresponding Vlan ID of the MAC address
¾ Static Address Table
¾ Create Static Address
Dynamic Address
¾ Dynamic Address Table
¾ Aging Config
Bind
Filtering Address
¾ Filtering Address Table
¾ Create Filtering Address
Vlan
¾ Link Types of ports
802.1Q Vlan
¾ Pvid
¾ Vlan Table
Vlan Config
Vlan ID Select:
Select:
Enter the ID number of Vlan
¾ Vlan Config
Is valid or not
¾ Vlan Members
Port Displays the port number
¾ Vlan Port Config
¾ Vlan of Port
Required. On the VLAN→802.1Q VLAN→Port Config page, set
Vlan Description
Step Operation Description
Optional. On the VLAN→802.1Q VLAN→VLAN Config
Required. On the VLAN→802.1Q VLAN→VLAN Config
Protocol Vlan
¾ MAC Vlan Table
MAC Select
¾ Encapsulation Format of Ethernet Data
802.3 raw 802.2 LLC Snap Protocol
Protocol Group
Protocol Group Table
Vlan packets are processed in the following way
¾ Protocol Group Table
¾ Protocol Group Config
Protocol Template
¾ Protocol Group Member
Required. On the VLAN→802.1Q VLAN→Port Config
¾ Create Protocol Template
¾ Protocol Template Table
Application Example for 802.1Q Vlan
¾ Network Diagram
Required. On the VLAN→Protocol VLAN→Protocol
Optional. On the VLAN→Protocol VLAN→Protocol Vlan
Required. On VLAN→802.1Q VLAN→VLAN Config page, create a
Required. On VLAN→802.1Q VLAN→Port Config page, configure
Application Example for MAC Vlan
Operation Description
¾ Network Diagram ¾ Configuration Procedure
Application Example for Protocol Vlan
Required. On VLAN→Protocol VLAN→Protocol Template
On VLAN→Protocol VLAN→Protocol Group page, create protocol
Gvrp
¾ Gvrp
Gvrp
Registration Mode
Configuration Procedure
¾ STP Elements
Spanning Tree
¾ STP Timers
¾ Bpdu Comparing Principle in STP mode
¾ STP Generation
Tips :
Step Operation
¾ Mstp Elements
¾ Rstp Elements
¾ Port Roles
¾ Port States
STP Config
STP Config
Version
Forward Delay
Hello Time
Max Age
STP Summary
STP Summary
Port Config
ExtPath
Priority
IntPath
Edge Port
Region Config
Mstp Instance
Port Status
¾ Region Config
Instance Config
¾ Instance Table
Instance Port Config
Instance
Clear
Instance ID
Path Cost
Port Role
Port Protect
STP Security
¾ TC Protect
¾ Bpdu Protect
¾ Bpdu Filter
Root Protect
Loop Protect
TC Protect
Bpdu Protect
TC Protect
Application Example for STP Function
On Spanning Tree→STP Config→STP Config
On Spanning Tree→STP Config→Port Config
On Spanning Tree→MSTP Instance→Instance
Configure Switch D
¾ Suggestion for Configuration
¾ Multicast Overview
Multicast
¾ Multicast Address
¾ Multicast Address Table
Multicast IP Port
¾ Igmp Snooping
Igmp Snooping
¾ Igmp Snooping Process
¾ Igmp Messages
¾ Igmp Snooping Fundamentals
Snooping Config
Description Displays Igmp Snooping status Member
¾ Igmp Snooping Status
Fast Leave
Igmp Snooping
Member Port Time
Router Port Time
Leave Time
Static Router Port
Multicast→IGMP Snooping→VLAN Config
Snooping→Snooping Config and Port Config
Multicast Vlan
Multicast→IGMP
Vlan
¾ Multicast Vlan
Multicast→IGMP Snooping→Multicast Vlan
On the Multicast→IGMP Snooping→Snooping Config
Snooping→Snooping Config
Snooping→Port Config
Multicast IP
Multicast IP Table
Static Multicast IP
IP-Range
Multicast Filter
¾ Create Static Multicast
¾ Static Multicast IP Table
IP Range ID
Port Filter
Start Multicast IP
End Multicast IP
Action Mode
¾ Port Filter Config
Filter
Bound IP-Range ID
Packet Statistics
Multicast→Multicast Filter→IP-Range
Multicast→Multicast Filter→Port Filter
¾ Igmp Statistics
¾ Priority Mode
QoS
¾ QoS
¾ Schedule Mode
117
DiffServ
¾ Port Priority Config
Port Priority
Displays the LAG number which the port belongs to
¾ Dscp Priority Config
Required. On QoS→DiffServ→Schedule Mode
Dscp Priority
Required. On QoS→DiffServ→Port Priority
3 802.1P/CoS mapping
¾ Priority Level
Required. On QoS→DiffServ→DSCP Priority
Schedule Mode
¾ Priority and CoS-mapping Config
¾ Schedule Mode Config
Rate Limit
Bandwidth Control
Storm Control
¾ Rate Limit Config
Ingress Rate Kbps
Egress RateKbps
Port Broadcast Rate bps
¾ Storm Control Config
Multicast Rate
Bps
¾ Port Voice Vlan Mode
Voice Vlan
Number OUI Address Vendor
Security Packet Type Processing Mode
¾ Security Mode of Voice Vlan
12 Global Configuration
Global Config
13 Port Config
Port Mode
OUI Config
Mask
Required. On VLAN→802.1Q VLAN→Port Config page, click
PoE
PoE Config
¾ Composition
¾ Advantage
PoE Config
PoE Status
PoE Priority
PoE Profile
Time-Range Summary
PoE Time-Range
¾ PoE Profile
Profile Name
PoE Time-Range Create
Index
PoE Holiday Config
End Time
Delete
ACL
Time-Range
¾ Time-Range Table
Time-Range Create
Holiday
Index Displays the index of the time-slice Start Time
Holiday Config
ACL Config
ACL Create
ACL Summary
¾ Rule Table
¾ Create ACL
Rule ID
MAC ACL
EtherType
User Priority
Standard-IP ACL
Extend-IP ACL
¾ Create Standard-IP ACL
IP Protocol
¾ Create Extend-IP ACL
TCP Flag :
IP ToS
Policy Config
Policy Summary
Policy Create
Action Create
¾ Create Policy
¾ Create Action
Policy Binding
Binding Table
¾ Policy Bind Table
Port Binding
¾ Port-Bind Config
Vlan Binding
Direction Displays the binding direction
Application Example for ACL
¾ VLAN-Bind Config
Enter the ID of the Vlan you want to bind
¾ VLAN-Bind Table
On ACL→ACL Config→ACL Create page, create ACL
On ACL→ACL Config→Standard-IP ACL page, select ACL
IP-MAC Binding
Network Security
Manual Binding
Enter the Vlan ID
¾ Manual Binding Option
Protect Type Select the Protect Type for the entry
¾ Manual Binding Table
ARP Scanning
Start IP Address
Dhcp Snooping
End IP Address
Scan
¾ Dhcp Working Principle
Network diagram for DHCP-snooping implementation
¾ Option
¾ Dhcp Cheating Attack
Dhcp Cheating Attack Implementation Procedure
¾ Dhcp Snooping Config
¾ Option 82 Config
¾ Port Config Port Select
Customization Circuit ID Remote ID
ARP Inspection
¾ Imitating Gateway
¾ Cheating Gateway
¾ Cheating Terminal Hosts
10 ARP Attack Cheating Gateway
¾ Man-In-The-Middle Attack
¾ ARP Flooding Attack
ARP Detect
¾ ARP Detect
¾ Trusted Port
ARP Defend
Required. On the Network Security→IP-MAC
Network Security→ARP
¾ ARP Defend
Defend
Current Speed
DoS Defend
ARP Statistics
¾ Illegal ARP Packet
DoS Attack Type Description
¾ Architecture of 802.1X Authentication
¾ Configure
12.4
¾ Defend Table
¾ The Mechanism of an 802.1X Authentication System
¾ 802.1X Authentication Procedure
19 PAP Authentication Procedure
¾ Guest Vlan
¾ 802.1X Timer
802.1X
Authentication Method
Guest Vlan
Guest Vlan ID
Supplicant Timeout
Server Timeout
Retry Times
¾ Authentication Config
Control Mode
Radius Server
Control Type
On the Network Security→802.1X→Global Config
Required. On the Network Security→802.1X→Radius
Required. On the Network Security→802.1X→Port
¾ Snmp Overview
Snmp
¾ Snmp Management Frame
¾ Snmp Versions
¾ MIB Introduction
¾ Snmp Configuration Outline
Snmp Config
¾ Local Engine
¾ Remote Engine
View Name
Snmp View
MIB Object ID
View Type
Snmp Group
¾ Group Config
Snmp User
Auth Password
Auth Mode
Privacy Mode
Privacy Password
¾ Community Config
Access
Snmp Community
Required. On the SNMP→SNMP Config→SNMP
Required. On the SNMP→SNMP Config→Global
MIB View
¾ Community Table
Notification
On the SNMP→SNMP Config→SNMP
UDP Port
Timeout
User
Retry
¾ Notification Table
Rmon
¾ Rmon Group
Rmon Group Function
Event Config
History Control
¾ History Control Table
¾ Event Table
Alarm Config
Variable
Alarm Type
Sample Type
Rising Threshold
194
¾ Lldpdu Format
Lldp
TLV type TLV Name Description Usage
¾ TLV
Organizationally Specific TLV
Basic Management TLV
Power Via MDI TLV
Configuration/Status TLV
Port Description TLV
System Capabilities TLV
Lldp
Basic Config
Lldp Port Config
¾ Lldp Port Config
Device Info
Local Info
Details
Neighbor Info
¾ Local Info
¾ Neighbor Info
¾ Global Statistics
Device Statistics
Transmit Total
Errors
Receive Total
Discards
¾ LLDP-MED Parameters Config
Extended Power-Via-MDI TLV
Location Identification TLV
Inventory TLV
LLDP-MED Port Configuration
¾ LLDP-MED Port Config
¾ Location Identification Parameters
¾ Included TLVs
Emergency
Civic Address
LLDP-MED Local Information
LLDP-MED Neighbor Information
¾ Cluster Role
Cluster
¾ Introduction to Cluster
15.1 NDP
¾ Neighbor
NDP Summary
Aging Time
Error NDP Packets
Send NDP Packets
Receive NDP Packets
Detail :
NDP Config
Disable
Enable
Ntdp
Device Table
Ntdp Summary
Ntdp Summary
Port Displays the port number of the switch
Ntdp Hop Delay
Ntdp Config
Ntdp Interval Time
Ntdp Hops
Cluster Summary
Cluster
¾ Global
Cluster
¾ Global Config Cluster
Cluster Config
¾ Role Change
¾ Current Role
Application Example for Cluster Function
14 Cluster Configuration for Individual Switch
On Cluster→NTDP→NTDP Config page, enable
On Cluster→NDP→NDP Config page, enable NDP
On Cluster→Cluster→Cluster Topology
On Cluster→Cluster→Member Config page, select
Maintenance
System Monitor
CPU Monitor
Memory Monitor
16.2 Log
¾ Log Info
Log Table
Time
Module
Local Log
¾ Local Log Config
Remote Log
Log Buffer
Backup Log
¾ Log Host
Host IP
Error
Device Diagnostics
Cable Test
Pair
Network Diagnostics
Loopback
Ping
Tracert
¾ Ping Config
¾ Tracert Config
Appendix a Specifications
Figure B-2
Appendix B Configuring the PCs
Now
Appendix C Load Software Using FTP
Hardware Installation
Configure the Hyper Terminal
239
Figure C-5 Port Settings
Download Firmware via bootUtil menu
Are you want to upgrade the firmwareY/N y
TP-LINK upgrade You can only use the port 1 to upgrade
User
TP-LINK start Start
Appendix D 802.1X Client Software
Installation Guide
244
245
Figure D-7 InstallShield Wizard Complete
Uninstall Software
Figure D-11 Uninstall Complete
Configuration
248
Figure D-16 Connection Status
FAQ
Appendix E Glossary
Generic Multicast Registration Protocol Gmrp
Multicast Switching
Group Attribute Registration Protocol Garp
Ieee 802.1D
Remote Authentication Dial-in User Service Radius
Port Authentication
Layer
Link Aggregation
Simple Network Management Protocol Snmp
Secure Shell SSH
Simple Network Time Protocol Sntp
Spanning Tree Algorithm STA