TL-SG3216 V1 User Guide
Page 3
... Switch...9 3.1 Login...9 3.2 Configuration ...9 Chapter 4 System ...11 4.1 System Info...11 4.1.1 System Summary 11 4.1.2 Device Description 13 4.1.3 System Time ...13 4.1.4 System IP...15 4.2 User Manage ...16 4.2.1 User Table...16 4.2.2 User Config ...16 4.3 System Tools ...18 4.3.1 Config Restore 18 4.3.2 Config Backup 18 4.3.3 Firmware Upgrade 19 4.3.4 System Reboot 20 4.3.5 System Reset 20 4.4 Access Security ...20 4.4.1 Access Control...
... Switch...9 3.1 Login...9 3.2 Configuration ...9 Chapter 4 System ...11 4.1 System Info...11 4.1.1 System Summary 11 4.1.2 Device Description 13 4.1.3 System Time ...13 4.1.4 System IP...15 4.2 User Manage ...16 4.2.1 User Table...16 4.2.2 User Config ...16 4.3 System Tools ...18 4.3.1 Config Restore 18 4.3.2 Config Backup 18 4.3.3 Firmware Upgrade 19 4.3.4 System Reboot 20 4.3.5 System Reset 20 4.4 Access Security ...20 4.4.1 Access Control...
TL-SG3216 V1 User Guide
Page 18
... diagram shows the working status of 16 10/100/1000Mbps RJ45 ports and 2 SFP ports of 1000Mbps. Indicates the 1000Mbps port is at the speed of the switch, including four submenus: System Info, User Manage, System Tools and Access Security. 4.1 System Info The System ... Time and System IP pages. 4.1.1 System Summary On this page you can view the port connection status and the system information. The ports labeled as SFP are 10/100/1000Mbps ports; the ports labeled as numbers are SFP ports. Chapter 4 System The System module is not connected to load the following page. ¾...
... diagram shows the working status of 16 10/100/1000Mbps RJ45 ports and 2 SFP ports of 1000Mbps. Indicates the 1000Mbps port is at the speed of the switch, including four submenus: System Info, User Manage, System Tools and Access Security. 4.1 System Info The System ... Time and System IP pages. 4.1.1 System Summary On this page you can view the port connection status and the system information. The ports labeled as SFP are 10/100/1000Mbps ports; the ports labeled as numbers are SFP ports. Chapter 4 System The System module is not connected to load the following page. ¾...
TL-SG3216 V1 User Guide
Page 56
...VLAN tag whereas the untagged packet refers to the packet without VLAN tag, and the priority-tagged packet refers to 802.1p priority. The link types of port including the following figure, a VLAN tag contains four fields, including TPID (Tag Protocol Identifier), Priority, CFI (Canonical Format Indicator), and ... section "QoS & QoS profile" for the switch to the default VLAN of different VLANs. The switch can identify the data link layer encapsulation of VLAN Tag (1) TPID: TPID is a 16-bit field, indicating that a 4-byte VLAN tag is same as the current VLAN ID.
...VLAN tag whereas the untagged packet refers to the packet without VLAN tag, and the priority-tagged packet refers to 802.1p priority. The link types of port including the following figure, a VLAN tag contains four fields, including TPID (Tag Protocol Identifier), Priority, CFI (Canonical Format Indicator), and ... section "QoS & QoS profile" for the switch to the default VLAN of different VLANs. The switch can identify the data link layer encapsulation of VLAN Tag (1) TPID: TPID is a 16-bit field, indicating that a 4-byte VLAN tag is same as the current VLAN ID.
TL-SG3216 V1 User Guide
Page 85
...the path costs of ports in the P2P link are displayed on this screen: ¾ Port Config Port Select: Select: Port: Status: Priority: ExtPath: IntPath: Edge Port: P2P Link: MCheck: STP Version: Port Role: Click the Select button to quick-select the corresponding port based on the port number you entered....the root port. Select the desired port for STP configuration. It is used to 240 divisible by 16. Displays the role of ports in the STP Instance. Figure 7-6 Port Config The following entries are root port or designated port, they can transit its state from this port will ...
...the path costs of ports in the P2P link are displayed on this screen: ¾ Port Config Port Select: Select: Port: Status: Priority: ExtPath: IntPath: Edge Port: P2P Link: MCheck: STP Version: Port Role: Click the Select button to quick-select the corresponding port based on the port number you entered....the root port. Select the desired port for STP configuration. It is used to 240 divisible by 16. Displays the role of ports in the STP Instance. Figure 7-6 Port Config The following entries are root port or designated port, they can transit its state from this port will ...
TL-SG3216 V1 User Guide
Page 162
...DoS Defend: Enable/Disable DoS Defend function. ¾ Defend Table Select: Select the entry to enable the corresponding Defend Type. Figure 11-16 DoS Defend The following further steps to ensure the network security. 1. It's recommended to install the system bulletins and backup the important information ...in terms of the ports of wireless LANs. It is suggested to inspect the physic environment of 802.1X Authentication 155 Tips: You are suggested to take ...
...DoS Defend: Enable/Disable DoS Defend function. ¾ Defend Table Select: Select the entry to enable the corresponding Defend Type. Figure 11-16 DoS Defend The following further steps to ensure the network security. 1. It's recommended to install the system bulletins and backup the important information ...in terms of the ports of wireless LANs. It is suggested to inspect the physic environment of 802.1X Authentication 155 Tips: You are suggested to take ...
TL-SG3216 V1 CLI Reference Guide
Page 3
CONTENTS Preface ...1 Chapter 1 Using the CLI 4 1.1 Accessing the CLI ...4 1.1.1 Logon by a console port 4 1.1.2 Logon by Telnet ...6 1.2 CLI Command Modes ...8 1.3 Security Levels ...10 1.4 Conventions ...11 1.4.1 Format Conventions 11 1.4.2 Special Characters 11 1.4.3 Parameter ...13 configure...13 exit ...13 end ...14 Chapter 3 IEEE 802.1Q VLAN Commands 15 vlan database ...15 vlan ...15 interface vlan ...16 description ...16 switchport type ...17 switchport allowed vlan...17 switchport pvid...18 switchport general egress-rule 18 show vlan ...19 show interface switchport ...19 Chapter...
CONTENTS Preface ...1 Chapter 1 Using the CLI 4 1.1 Accessing the CLI ...4 1.1.1 Logon by a console port 4 1.1.2 Logon by Telnet ...6 1.2 CLI Command Modes ...8 1.3 Security Levels ...10 1.4 Conventions ...11 1.4.1 Format Conventions 11 1.4.2 Special Characters 11 1.4.3 Parameter ...13 configure...13 exit ...13 end ...14 Chapter 3 IEEE 802.1Q VLAN Commands 15 vlan database ...15 vlan ...15 interface vlan ...16 description ...16 switchport type ...17 switchport allowed vlan...17 switchport pvid...18 switchport general egress-rule 18 show vlan ...19 show interface switchport ...19 Chapter...
TL-SG3216 V1 CLI Reference Guide
Page 7
...82 logging loghost ...83 show logging local-config ...83 show logging loghost ...84 show logging buffer level ...84 show logging flash level...85 Chapter 16 SSH Commands 86 ssh server enable ...86 ssh version ...86 ssh idle-timeout ...87 ssh max-client ...87 ssh download ...88 show ssh ...... ...89 ssl download key ...90 show ssl...90 Chapter 18 Address Commands 92 bridge address port-security 92 bridge address static ...93 bridge aging-time...93 bridge address filtering ...94 show bridge port-security ...95 show bridge address ...95 show bridge aging-time ...96 Chapter 19 System Commands...
...82 logging loghost ...83 show logging local-config ...83 show logging loghost ...84 show logging buffer level ...84 show logging flash level...85 Chapter 16 SSH Commands 86 ssh server enable ...86 ssh version ...86 ssh idle-timeout ...87 ssh max-client ...87 ssh download ...88 show ssh ...... ...89 ssl download key ...90 show ssl...90 Chapter 18 Address Commands 92 bridge address port-security 92 bridge address static ...93 bridge aging-time...93 bridge address filtering ...94 show bridge port-security ...95 show bridge address ...95 show bridge aging-time ...96 Chapter 19 System Commands...
TL-SG3216 V1 CLI Reference Guide
Page 13
...defend and detecting the DoS attack. Chapter 13: DoS Defend Command Provide information about the commands used for enthernet ports. Chapter 22: Port Mirror Commands Provide information about the commands used for configuring the IGMP Snooping (Internet Group Management Protocol Snooping). ...Chapter 25: IGMP Commands Provide information about the commands used for configuring the Port Mirror function. Chapter 16: SSH Commands Provide information about the commands used for protecting the switch from the ARP cheating or ARP Attack...
...defend and detecting the DoS attack. Chapter 13: DoS Defend Command Provide information about the commands used for enthernet ports. Chapter 22: Port Mirror Commands Provide information about the commands used for configuring the IGMP Snooping (Internet Group Management Protocol Snooping). ...Chapter 25: IGMP Commands Provide information about the commands used for configuring the Port Mirror function. Chapter 16: SSH Commands Provide information about the commands used for protecting the switch from the ARP cheating or ARP Attack...
TL-SG3216 V1 CLI Reference Guide
Page 38
... the Voice VLAN mode for identification which contains 16 characters at most. Port mode. mask-addr -- Syntax switchport voice-vlan mode { manual | auto } Parameter manual / auto -- The OUI address of the voice device. Command Mode Global Configuration Mode Example Create a Voice VLAN OUI descripted as TP-LINK Phone with the MAC address 00:00...
... the Voice VLAN mode for identification which contains 16 characters at most. Port mode. mask-addr -- Syntax switchport voice-vlan mode { manual | auto } Parameter manual / auto -- The OUI address of the voice device. Command Mode Global Configuration Mode Example Create a Voice VLAN OUI descripted as TP-LINK Phone with the MAC address 00:00...
TL-SG3216 V1 CLI Reference Guide
Page 58
... and Guest logging on as Admin, ranging from 1 to 16.The total number of Admin and Guest should be less than 16. Syntax 47 Example Enable the access-control of the ports 2, port4, port5, port6,and port10: TP-LINK(config)# user access-control port-based 2,4-6,10 user max-number Description The user max-number... the default timeout time, please use no user max-number Parameter admin-num --The maximum number of the users logging on as 5 and 3: TP-LINK(config)# user max-num 5 3 user idle-timeout Description The user idle-timeout command is used to configure the timeout time of the switch.
... and Guest logging on as Admin, ranging from 1 to 16.The total number of Admin and Guest should be less than 16. Syntax 47 Example Enable the access-control of the ports 2, port4, port5, port6,and port10: TP-LINK(config)# user access-control port-based 2,4-6,10 user max-number Description The user max-number... the default timeout time, please use no user max-number Parameter admin-num --The maximum number of the users logging on as 5 and 3: TP-LINK(config)# user max-num 5 3 user idle-timeout Description The user idle-timeout command is used to configure the timeout time of the switch.
TL-SG3216 V1 CLI Reference Guide
Page 90
... The show dot1x interface command is used to display the port configuration of 801.X. Command Mode Any configurartion Mode Example Display the port configuration of 801.X: TP-LINK(config)# show dot1x interface show radius authentication Description The show radius authentication command is used to 16. Syntax show radius authentication Command Mode 79 Syntax show dot1x...
... The show dot1x interface command is used to display the port configuration of 801.X. Command Mode Any configurartion Mode Example Display the port configuration of 801.X: TP-LINK(config)# show dot1x interface show radius authentication Description The show radius authentication command is used to 16. Syntax show radius authentication Command Mode 79 Syntax show dot1x...
TL-SG3216 V1 CLI Reference Guide
Page 104
... function for port1, select Static mode as 30: TP-LINK(config)# interface ethernet 1 TP-LINK(config-if)# bridge address port-security max-number 30 mode static status enable bridge address static Description The bridge address static command is used to 16. It ranges from 1 to bind the MAC address 00:...02:58:4f:6c:23, VLAN1 and Port1 together: TP-LINK(config)# ...
... function for port1, select Static mode as 30: TP-LINK(config)# interface ethernet 1 TP-LINK(config-if)# bridge address port-security max-number 30 mode static status enable bridge address static Description The bridge address static command is used to 16. It ranges from 1 to bind the MAC address 00:...02:58:4f:6c:23, VLAN1 and Port1 together: TP-LINK(config)# ...
TL-SG3216 V1 CLI Reference Guide
Page 106
00:1e:4b:04:01:5d: TP-LINK(config)# bridge address filtering 00:1e:4b:04:01:5d 1 show bridge port-security Description The show bridge port-security command is used to 16. Command Mode Any Configuration Mode Example Display the Port Security configuration of port2: TP-LINK(config)# show bridge port-security 2 show bridge address Description The show bridge...
00:1e:4b:04:01:5d: TP-LINK(config)# bridge address filtering 00:1e:4b:04:01:5d 1 show bridge port-security Description The show bridge port-security command is used to 16. Command Mode Any Configuration Mode Example Display the Port Security configuration of port2: TP-LINK(config)# show bridge port-security 2 show bridge address Description The show bridge...
TL-SG3216 V1 CLI Reference Guide
Page 115
... is used to 16. Command Mode User EXEC Mode and Privileged EXEC Mode Example Test the connectivity between the switch and the destination device is failed to establish: TP-LINK# tracert 192.168.0.131 20 loopback Description The loopback command is available or not. internal | external -- Syntax loopback {port} { internal | external } Parameter port -- There are...
... is used to 16. Command Mode User EXEC Mode and Privileged EXEC Mode Example Test the connectivity between the switch and the destination device is failed to establish: TP-LINK# tracert 192.168.0.131 20 loopback Description The loopback command is available or not. internal | external -- Syntax loopback {port} { internal | external } Parameter port -- There are...
TL-SG3216 V1 CLI Reference Guide
Page 118
... in the Interface Range Ethernet Mode is executed independently on one port. Example Enter the Interface Configuration Mode, add ports 1-3, 6-9 to the port-list and configure them: TP-LINK(config)# interface range ethernet 1-3,6-9 description Description The description command is used to 16 characters. To enable this port again, please use no shutdown command. To clear the description...
... in the Interface Range Ethernet Mode is executed independently on one port. Example Enter the Interface Configuration Mode, add ports 1-3, 6-9 to the port-list and configure them: TP-LINK(config)# interface range ethernet 1-3,6-9 description Description The description command is used to 16 characters. To enable this port again, please use no shutdown command. To clear the description...
TL-SG3216 V1 CLI Reference Guide
Page 125
... storm-control information of all Ethernet ports: TP-LINK(config)# show storm-control ethernet show port rate-limit Description The show port rate-limit [interface-num] 114 It ranges from 1 to display the storm-control information. By default, the storm-control information of all ports is displayed. By default, the statistic information of the port selected to 16.
... storm-control information of all Ethernet ports: TP-LINK(config)# show storm-control ethernet show port rate-limit Description The show port rate-limit [interface-num] 114 It ranges from 1 to display the storm-control information. By default, the storm-control information of all ports is displayed. By default, the statistic information of the port selected to 16.
TL-SG3216 V1 CLI Reference Guide
Page 126
By default, the rate-limit information of all Ethernet ports: TP-LINK(config)# show port rate-limit 115 It ranges from 1 to display the rate-limit information. The port-number of all ports is displayed. Command Mode Any Configuration Mode Example Display the rate-limit information of the port selected to 16. Parameter port - -
By default, the rate-limit information of all Ethernet ports: TP-LINK(config)# show port rate-limit 115 It ranges from 1 to display the rate-limit information. The port-number of all ports is displayed. Command Mode Any Configuration Mode Example Display the rate-limit information of the port selected to 16. Parameter port - -
TL-SG3216 V1 CLI Reference Guide
Page 131
... displayed. Syntax 120 By default, information of all the ports is used to display the configuration of DSCP Priority. The Ethernet port selected to display the configuration, ranging from 1 to 16. Command Mode Any Configuration Mode Example Display the configuration of QoS for port 5: TP-LINK# show qos port-based 5 show qos dot1p Description The show qos...
... displayed. Syntax 120 By default, information of all the ports is used to display the configuration of DSCP Priority. The Ethernet port selected to display the configuration, ranging from 1 to 16. Command Mode Any Configuration Mode Example Display the configuration of QoS for port 5: TP-LINK# show qos port-based 5 show qos dot1p Description The show qos...
TL-SG3216 V1 CLI Reference Guide
Page 141
... no acl policy action-add command. acl-id -- rate -- The data packets those match the corresponding ACL. DSCP ranges from 0 to 16. The Mirror Port of Stream Mirror, ranging form 1 to 63. The ACL for the policy. The rate of the data packets those match the corresponding ACL...packets those are two options, none and discard. By default, it is All Ports. mirror -- Out of Band disposal of QoS Remark. Command Mode Global Configuration Mode Example Add a Policy named policy1: TP-LINK(config)# acl policy policy-add policy1 acl policy action-add Description The acl ...
... no acl policy action-add command. acl-id -- rate -- The data packets those match the corresponding ACL. DSCP ranges from 0 to 16. The Mirror Port of Stream Mirror, ranging form 1 to 63. The ACL for the policy. The rate of the data packets those match the corresponding ACL...packets those are two options, none and discard. By default, it is All Ports. mirror -- Out of Band disposal of QoS Remark. Command Mode Global Configuration Mode Example Add a Policy named policy1: TP-LINK(config)# acl policy policy-add policy1 acl policy action-add Description The acl ...
TL-SG3216 V1 CLI Reference Guide
Page 142
...} {vlan-id} 131 is used to bind a policy to bind. Command Mode Global Configuration Mode Example Bind policy1 to Port 1,3-5: TP-LINK(config)# acl bind to-port policy1 1,3-5 acl bind to-vlan Description The acl bind to-vlan command is 1. The name of the...16. To cancel the bind relation, please use no policy to -port {policy-name} {port} Parameter policy-name -- The number of the policy desired to a port. For the data packets those match ACL 120 in the policy, if the rate beyond 1000kbps, will be discarded by the switch: TP-LINK(config)# acl policy policy-add policy1 TP-LINK...
...} {vlan-id} 131 is used to bind a policy to bind. Command Mode Global Configuration Mode Example Bind policy1 to Port 1,3-5: TP-LINK(config)# acl bind to-port policy1 1,3-5 acl bind to-vlan Description The acl bind to-vlan command is 1. The name of the...16. To cancel the bind relation, please use no policy to -port {policy-name} {port} Parameter policy-name -- The number of the policy desired to a port. For the data packets those match ACL 120 in the policy, if the rate beyond 1000kbps, will be discarded by the switch: TP-LINK(config)# acl policy policy-add policy1 TP-LINK...