REV2.0.0 1910010781
TL-SG3424P JetStream L2 Managed PoE Switch
Copyright & Trademarks FCC Statement
Safety Information
Contents
Gvrp
VII
Viii
177
220
Package Contents
Intended Readers
About this Guide
Conventions
Overview of This Guide
System Switching Vlan Spanning Tree Multicast
QoS PoE ACL Network Security Snmp
Return to Contents
Main Features
Overview of the Switch
Introduction
Front Panel
Appearance Description
¾ LEDs
Status Indication
LED
Rear Panel
Login
Login to the Switch
Configuration
Return to Contents
System Info
System
System Summary
¾ Port Status
Type
Port
Speed
Status
System Time
Device Description
¾ Device Description
Daylight Saving Time
Predefined Mode
¾ DST Config
Recurring Mode
Date Mode
System IP
¾ IP Config
User Management
User Config
User Table
¾ User Info
User ID, Name, Access Level and status Operation
User Status
¾ User Table
Config Backup
Config Restore
¾ Config Restore
System Tools
¾ Config Backup
Firmware Upgrade
System Reboot
Access Security
System Reset
Access Control
¾ Session Config
¾ Access Control Config
IP Address&Mask
MAC Address
¾ Access User Number
SSL Config
¾ Global Config
SSH Config
¾ Certificate Download
¾ Key Download
Protocol
Idle Timeout
Max Connect
Key Type
¾ Configuration Procedure
Download
¾ Network Requirements
Application Example 2 for SSH
Page
Return to Contents
Port Config
Switching
Port
Port Select
Description
Port Mirror
Speed and Duplex
Flow Control
Mirroring
Group
Mode
Mirrored Port
¾ Mirrored Port
Port Security
Ingress
Egress
Max Learned MAC
¾ Port Security
Learned Num
Port Isolation
¾ Port Isolation Config
¾ Port Isolation List
Loopback Detection
Forward Portlist Display the forwardlist
LAG
Operation Mode
Interval It’s 3 seconds
LAG Table
LAG Table
¾ LAG Table
Static LAG
Group Number
Member
Member Port
Lacp Config
¾ Lacp Config
10 Lacp Config
Traffic Monitor
Admin Key
Traffic Summary
Port Priority
Packets Tx
Packets Rx
Octets Rx
Octets Tx
Traffic Statistics
MAC Address
Type Configuration Way Aging out
Bound
Address and the port
Relationship
Address Table
¾ Search Option
Static Address
¾ Address Table
Displays the corresponding Vlan ID of the MAC address
¾ Static Address Table
¾ Create Static Address
Dynamic Address
¾ Dynamic Address Table
¾ Aging Config
Bind
Filtering Address
¾ Filtering Address Table
¾ Create Filtering Address
Vlan
¾ Link Types of ports
802.1Q Vlan
¾ Pvid
¾ Vlan Table
Vlan Config
Vlan ID Select:
Select:
Enter the ID number of Vlan
¾ Vlan Config
Is valid or not
¾ Vlan Members
Port Displays the port number
¾ Vlan Port Config
¾ Vlan of Port
Required. On the VLAN→802.1Q VLAN→Port Config page, set
Vlan Description
Step Operation Description
Optional. On the VLAN→802.1Q VLAN→VLAN Config
Required. On the VLAN→802.1Q VLAN→VLAN Config
¾ MAC Vlan Table
Protocol Vlan
MAC Select
¾ Encapsulation Format of Ethernet Data
802.3 raw 802.2 LLC Snap Protocol
Protocol Group
Protocol Group Table
Vlan packets are processed in the following way
¾ Protocol Group Table
Protocol Template
¾ Protocol Group Config
¾ Protocol Group Member
¾ Create Protocol Template
Required. On the VLAN→802.1Q VLAN→Port Config
¾ Protocol Template Table
Application Example for 802.1Q Vlan
¾ Network Diagram
Required. On the VLAN→Protocol VLAN→Protocol
Optional. On the VLAN→Protocol VLAN→Protocol Vlan
Required. On VLAN→802.1Q VLAN→VLAN Config page, create a
Required. On VLAN→802.1Q VLAN→Port Config page, configure
Application Example for MAC Vlan
Operation Description
¾ Network Diagram ¾ Configuration Procedure
Application Example for Protocol Vlan
Required. On VLAN→Protocol VLAN→Protocol Template
On VLAN→Protocol VLAN→Protocol Group page, create protocol
Gvrp
¾ Gvrp
Gvrp
Registration Mode
Configuration Procedure
¾ STP Elements
Spanning Tree
¾ Bpdu Comparing Principle in STP mode
¾ STP Timers
¾ STP Generation
Tips :
Step Operation
¾ Mstp Elements
¾ Rstp Elements
¾ Port Roles
¾ Port States
STP Config
STP Config
Version
Forward Delay
Hello Time
Max Age
STP Summary
STP Summary
Port Config
ExtPath
Priority
IntPath
Edge Port
Mstp Instance
Region Config
Port Status
¾ Region Config
Instance Config
¾ Instance Table
Instance Port Config
Instance
Clear
Path Cost
Instance ID
Port Role
Port Protect
STP Security
¾ Bpdu Protect
¾ TC Protect
¾ Bpdu Filter
Root Protect
Loop Protect
TC Protect
Bpdu Protect
TC Protect
Application Example for STP Function
On Spanning Tree→STP Config→Port Config
On Spanning Tree→STP Config→STP Config
On Spanning Tree→MSTP Instance→Instance
Configure Switch D
¾ Suggestion for Configuration
¾ Multicast Overview
Multicast
¾ Multicast Address Table
¾ Multicast Address
Multicast IP Port
¾ Igmp Snooping
Igmp Snooping
¾ Igmp Snooping Process
¾ Igmp Messages
¾ Igmp Snooping Fundamentals
Snooping Config
Description Displays Igmp Snooping status Member
¾ Igmp Snooping Status
Fast Leave
Igmp Snooping
Member Port Time
Router Port Time
Leave Time
Static Router Port
Multicast→IGMP Snooping→VLAN Config
Snooping→Snooping Config and Port Config
Multicast Vlan
Multicast→IGMP
Vlan
¾ Multicast Vlan
Multicast→IGMP Snooping→Multicast Vlan
On the Multicast→IGMP Snooping→Snooping Config
Snooping→Snooping Config
Snooping→Port Config
Multicast IP
Multicast IP Table
Static Multicast IP
IP-Range
Multicast Filter
¾ Create Static Multicast
¾ Static Multicast IP Table
IP Range ID
Port Filter
Start Multicast IP
End Multicast IP
Action Mode
¾ Port Filter Config
Filter
Bound IP-Range ID
Multicast→Multicast Filter→IP-Range
Packet Statistics
Multicast→Multicast Filter→Port Filter
¾ Igmp Statistics
QoS
¾ Priority Mode
¾ QoS
¾ Schedule Mode
117
DiffServ
¾ Port Priority Config
Port Priority
Displays the LAG number which the port belongs to
¾ Dscp Priority Config
Required. On QoS→DiffServ→Schedule Mode
Dscp Priority
Required. On QoS→DiffServ→Port Priority
¾ Priority Level
3 802.1P/CoS mapping
Required. On QoS→DiffServ→DSCP Priority
¾ Priority and CoS-mapping Config
Schedule Mode
¾ Schedule Mode Config
Rate Limit
Bandwidth Control
Storm Control
¾ Rate Limit Config
Ingress Rate Kbps
Egress RateKbps
Port Broadcast Rate bps
¾ Storm Control Config
Multicast Rate
Bps
Voice Vlan
¾ Port Voice Vlan Mode
Number OUI Address Vendor
Security Packet Type Processing Mode
¾ Security Mode of Voice Vlan
12 Global Configuration
Global Config
13 Port Config
Port Mode
OUI Config
Mask
Required. On VLAN→802.1Q VLAN→Port Config page, click
PoE
PoE Config
¾ Composition
¾ Advantage
PoE Status
PoE Config
PoE Priority
PoE Profile
Time-Range Summary
PoE Time-Range
¾ PoE Profile
Profile Name
PoE Time-Range Create
Index
PoE Holiday Config
End Time
Delete
Time-Range
ACL
¾ Time-Range Table
Holiday
Time-Range Create
Index Displays the index of the time-slice Start Time
Holiday Config
ACL Config
ACL Create
ACL Summary
¾ Rule Table
¾ Create ACL
Rule ID
MAC ACL
EtherType
User Priority
Extend-IP ACL
Standard-IP ACL
¾ Create Standard-IP ACL
IP Protocol
¾ Create Extend-IP ACL
TCP Flag :
IP ToS
Policy Summary
Policy Config
Policy Create
¾ Create Policy
Action Create
¾ Create Action
Binding Table
Policy Binding
¾ Policy Bind Table
Port Binding
¾ Port-Bind Config
Vlan Binding
Direction Displays the binding direction
Application Example for ACL
¾ VLAN-Bind Config
Enter the ID of the Vlan you want to bind
¾ VLAN-Bind Table
On ACL→ACL Config→ACL Create page, create ACL
On ACL→ACL Config→Standard-IP ACL page, select ACL
IP-MAC Binding
Network Security
Manual Binding
Enter the Vlan ID
¾ Manual Binding Option
Protect Type Select the Protect Type for the entry
¾ Manual Binding Table
ARP Scanning
Start IP Address
Dhcp Snooping
End IP Address
Scan
¾ Dhcp Working Principle
Network diagram for DHCP-snooping implementation
¾ Option
¾ Dhcp Cheating Attack
Dhcp Cheating Attack Implementation Procedure
¾ Dhcp Snooping Config
¾ Port Config Port Select
¾ Option 82 Config
Customization Circuit ID Remote ID
¾ Imitating Gateway
ARP Inspection
¾ Cheating Gateway
¾ Cheating Terminal Hosts
10 ARP Attack Cheating Gateway
¾ Man-In-The-Middle Attack
¾ ARP Flooding Attack
¾ ARP Detect
ARP Detect
¾ Trusted Port
Required. On the Network Security→IP-MAC
ARP Defend
Network Security→ARP
Defend
¾ ARP Defend
Current Speed
ARP Statistics
DoS Defend
¾ Illegal ARP Packet
DoS Attack Type Description
¾ Architecture of 802.1X Authentication
¾ Configure
12.4
¾ Defend Table
¾ The Mechanism of an 802.1X Authentication System
¾ 802.1X Authentication Procedure
19 PAP Authentication Procedure
¾ Guest Vlan
¾ 802.1X Timer
802.1X
Authentication Method
Guest Vlan
Guest Vlan ID
Server Timeout
Supplicant Timeout
Retry Times
¾ Authentication Config
Control Mode
Radius Server
Control Type
Required. On the Network Security→802.1X→Radius
On the Network Security→802.1X→Global Config
Required. On the Network Security→802.1X→Port
¾ Snmp Overview
Snmp
¾ Snmp Management Frame
¾ Snmp Versions
¾ MIB Introduction
¾ Snmp Configuration Outline
¾ Local Engine
Snmp Config
¾ Remote Engine
View Name
Snmp View
MIB Object ID
View Type
Snmp Group
¾ Group Config
Snmp User
Auth Password
Auth Mode
Privacy Mode
Privacy Password
Access
¾ Community Config
Snmp Community
Required. On the SNMP→SNMP Config→SNMP
Required. On the SNMP→SNMP Config→Global
MIB View
¾ Community Table
Notification
On the SNMP→SNMP Config→SNMP
UDP Port
Timeout
User
Retry
¾ Notification Table
Rmon
¾ Rmon Group
Rmon Group Function
History Control
Event Config
¾ History Control Table
¾ Event Table
Alarm Config
Variable
Alarm Type
Sample Type
Rising Threshold
194
¾ Lldpdu Format
Lldp
TLV type TLV Name Description Usage
¾ TLV
Organizationally Specific TLV
Basic Management TLV
Power Via MDI TLV
Configuration/Status TLV
Port Description TLV
System Capabilities TLV
Lldp
Basic Config
Lldp Port Config
¾ Lldp Port Config
Local Info
Device Info
Details
¾ Local Info
Neighbor Info
¾ Neighbor Info
¾ Global Statistics
Device Statistics
Transmit Total
Errors
Receive Total
Discards
¾ LLDP-MED Parameters Config
Extended Power-Via-MDI TLV
Location Identification TLV
Inventory TLV
LLDP-MED Port Configuration
¾ LLDP-MED Port Config
¾ Location Identification Parameters
¾ Included TLVs
Emergency
Civic Address
LLDP-MED Local Information
LLDP-MED Neighbor Information
¾ Cluster Role
Cluster
¾ Introduction to Cluster
15.1 NDP
¾ Neighbor
NDP Summary
Aging Time
Error NDP Packets
Send NDP Packets
Receive NDP Packets
Detail :
NDP Config
Disable
Enable
Ntdp
Device Table
Ntdp Summary
Ntdp Summary
Port Displays the port number of the switch
Ntdp Hop Delay
Ntdp Config
Ntdp Interval Time
Ntdp Hops
Cluster Summary
Cluster
¾ Global
Cluster
¾ Global Config Cluster
Cluster Config
¾ Role Change
¾ Current Role
Application Example for Cluster Function
14 Cluster Configuration for Individual Switch
On Cluster→NTDP→NTDP Config page, enable
On Cluster→NDP→NDP Config page, enable NDP
On Cluster→Cluster→Cluster Topology
On Cluster→Cluster→Member Config page, select
System Monitor
Maintenance
CPU Monitor
Memory Monitor
16.2 Log
¾ Log Info
Log Table
Time
Module
Local Log
¾ Local Log Config
Remote Log
Log Buffer
¾ Log Host
Backup Log
Host IP
Error
Device Diagnostics
Cable Test
Pair
Loopback
Network Diagnostics
Ping
Tracert
¾ Ping Config
¾ Tracert Config
Appendix a Specifications
Figure B-2
Appendix B Configuring the PCs
Now
Hardware Installation
Appendix C Load Software Using FTP
Configure the Hyper Terminal
239
Figure C-5 Port Settings
Download Firmware via bootUtil menu
Are you want to upgrade the firmwareY/N y
TP-LINK upgrade You can only use the port 1 to upgrade
User
TP-LINK start Start
Appendix D 802.1X Client Software
Installation Guide
244
245
Figure D-7 InstallShield Wizard Complete
Uninstall Software
Figure D-11 Uninstall Complete
Configuration
248
Figure D-16 Connection Status
FAQ
Appendix E Glossary
Generic Multicast Registration Protocol Gmrp
Multicast Switching
Group Attribute Registration Protocol Garp
Ieee 802.1D
Remote Authentication Dial-in User Service Radius
Port Authentication
Layer
Link Aggregation
Simple Network Management Protocol Snmp
Secure Shell SSH
Simple Network Time Protocol Sntp
Spanning Tree Algorithm STA