Figure 49: Port Security Page

The Port Security Page contains the following fields:

Interface — Displays the Port or LAG name.

Interface Status — Indicates the host status. The possible field values are:

Unauthorized — Indicates that the port control is Force Unauthorized, the port link is down or the port control is Auto, but a client has not been authenticated via the port.

Not in Auto Mode — Indicates that the port control is Forced Authorized, and clients have full port access.

Single-host Lock — Indicates that the port control is Auto and a single client has been authenticated via the port.

Learning Mode — Defines the locked port type. The Learning Mode field is enabled only if Locked is selected in the Set Port field.The possible field values are:

Classic Lock — Locks the port using the classic lock mechanism. The port is immediately locked, regardless of the number of addresses that have already been learned.

Limited Dynamic Lock — Locks the port by deleting the current dynamic MAC addresses associated with the port. The port learns up to the maximum addresses allowed on the port. Both relearning and aging MAC addresses are enabled.

Max Entries — Specifies the number of MAC address that can be learned on the port. The Max Entries field is enabled only if Locked is selected in the Set Port field. In addition, the Limited Dynamic Lock mode is selected. The default is 1.

Action — Indicates the action to be applied to packets arriving on a locked port. The possible field values are:

Forward — Forwards packets from an unknown source without learning the MAC address.

Discard — Discards packets from any unlearned source. This is the default value.

Shutdown — Discards packets from any unlearned source and shuts down the port. The port remains shut down until reactivated, or until the device is reset.

Trap — Enables traps when a packet is received on a locked port. The possible field values are:

Checked — Enables traps.

Unchecked — Disables traps.

Trap Frequency (Sec.) — The amount of time (in seconds) between traps. The default value is 10 seconds To modify port security:

1.Click . The Port Security Settings Page opens:

Figure 50: Port Security Settings Page

2.Modify port security settings fields.

3.Click . The port security settings are saved, and the device is updated.

5.2.3.2 Enabling Storm Control

Storm control limits the amount of Multicast and Broadcast frames accepted and forwarded by the device. When Layer 2 frames are forwarded, Broadcast, and Multicast frames are flooded to all ports on the relevant VLAN. This occupies bandwidth, and loads all nodes on all ports.

3 7

Page 43 Page 45
Page 44
Image 44
TP-Link TL-SG3109, TL-SL3452, TL-SL3428 manual Enabling Storm Control, Click . The Port Security Settings Page opens
Page 43 Page 45

TL-SG3109, TL-SL3428, TL-SL3452 specifications

The TP-Link TL-SL3428 is a feature-rich Ethernet switch designed for small to medium-sized business environments. It is part of TP-Link’s JetStream series, which emphasizes reliability, performance, and robust management capabilities. Built with 28 10/100/1000 Mbps ports, the TL-SL3428 provides sufficient bandwidth to support a wide range of network applications.

One of the standout features of the TL-SL3428 is its support for Layer 2 management protocols. This allows for more granular control and optimized performance across network segments. The switch supports VLAN (Virtual Local Area Network) segmentation, which enhances network security and efficiency by isolating various types of traffic. This feature is particularly useful in larger organizations where different departments or teams may require separate network environments.

The TL-SL3428 also includes advanced QoS (Quality of Service) capabilities. This functionality prioritizes traffic based on predefined rules, which ensures that critical applications receive the necessary bandwidth to function optimally. With QoS implementation, users can experience minimized latency, leading to better performance in VoIP and video conferencing applications.

In terms of redundancy and reliability, the switch also supports Link Aggregation Control Protocol (LACP), enabling multiple connections to be combined for increased bandwidth and failover support. This feature significantly enhances network resilience, ensuring minimal downtime during failures.

Power over Ethernet (PoE) support is another important characteristic of the TL-SL3428. With PoE capabilities, this switch can deliver electrical power along with data over the same Ethernet cable, simplifying installation and reducing the need for additional wiring. This is especially advantageous for IP devices like cameras, access points, and VoIP phones.

Security features are abundant in the TL-SL3428 as well. It implements port security, storm control, and DHCP snooping, all of which contribute to a secure network infrastructure. The switch’s management capabilities can be accessed through a user-friendly web interface, making it easier for IT administrators to configure and monitor network activities.

Overall, the TP-Link TL-SL3428 is an exemplary choice for businesses looking to enhance their network performance with advanced management features, security protocols, and reliability. Its combination of speed, flexibility, and manageability make it a valuable tool for any growing organization.
Top Page Image Contents