Manuale d’uso / di manutenzione del prodotto TL-SG2216 del fabbricante TP-Link
Vai alla pagina of 183
TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452 Gigabit Smart Switch REV1.2.0 1910010909.
COPYRIGHT & TRADEMARKS S pecifications ar e subject to change without notice. is a registered trademark of TP-LINK TECHNOLOGIES CO., L TD. Other brands and product names are trademarks or registered trademarks of t heir respective holders.
IV Safety Information When product has power button, the power button is one of the way to shut off the product; When there is no power button, the only way to co mpletely shut off power is to disconnect the product or the power adapter from the power source.
CONTENTS Package Contents .......................................................................................................................... 1 Chapter 1 ..........................................................................................
5.1.1 ....................................................................................................... 31 Port Config 5.1.2 ........................................................................................................ 32 Port Mirror 5.
8.1.1 .............................................................................................. 84 Snooping Config 8.1.2 ....................................................................................................... 85 Port Config 8.1.3 .
10.3.2 ................................................................................................... 1 19 Port Binding 10.3.3 ................................................................................................. 1 19 VLAN Binding 10.
VII 14.1 ......................................................................................................... 160 System Monitor 14.1.1 .................................................................................................. 160 CPU Monitor 14.
Package Content s The following items should be found in your box: One Gigabit Smart Switch One power cord Two mounting brackets and other fittings Installation Guide Resource CD f.
Chapter 1 About this Guide This User Guide contains in formation for setup and manage ment of TL-SG2216/TL-SG2424 /TL-SG2424P/TL-SG2452 Gigabit Smart Switch. Pleas e read this guide carefully befor e operation. 1.1 Intended Readers This Guide is intended for network managers fam iliar with IT concepts and network terminologies.
Chapter Introduction Chapter 4 System This module is used to configure system properties of the switch. Here mainly introduces: System Info: Configure the description, system time and network parameters of the switch.
Chapter Introduction Chapter 9 QoS This module is used to configure QoS function to provide different quality of service for va rious network applications and requirements. Here mainly introduces: Diff Se rv: Co nf igu re priorities, port prio rity , 802.
Chapter Introduction Chapter 14 Maintenance This module is used to assemble the commonly used system tools to manage the switch. Here mainly introduces: System Monitor: Monitor the me mory and CPU of the switch. Log: View configuration pa rameters on the switch.
Chapter 2 Introduction Thanks for choosing the TL-SG2216/TL-SG242 4/TL-SG2424P/TL-SG2452 Gigabit Smart Switch! 2.1 Overview of the Switch Designed for workgroups and departments, TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452 from TP-LINK provides wire-spe ed performance and full set of la yer 2 management features.
The front p anel of TL-SG2424 is shown as Figure 2-2 . Figure 2-2 Front Panel of TL-SG2424 The front panel of TL-SG2424P is shown as Figure 2-3 . Figure 2-3 Front Panel of TL-SG2424P The front panel ofTL-SG2452 is shown as Figure 2-4 .
N a m e Statu s Indication On The switch is working abnormally . Flashing The switch is working normally . System Off The switch is working abnormally . On A 1000Mbps device is connec ted to the corresponding port. 1000Mbps Off A 10/100Mbps device or no device is connected to the corresponding port.
Name Statu s Indication On The remaining PoE power ≤ 7W. Flashing The remaining PoE power keeps ≤ 7W after this LED is on for 2 minutes. PoE Max Off The remaining PoE power ≥ 7W. On The port is supplying power normally. Green Flashing The supply power exceeds the correspondin g port’s maximum power.
AC Po wer Socket: Connect the female connector of t he power cord here, and the male connector to the AC power outlet. Please make su re the voltage of the power supply meets the requirement of the input voltage (100-240V ~ 50/60Hz 0.6A for TL-SG2216/TL-SG2424, 100-240V~ 50/60Hz 3.
Chapter 3 Login to the Switch 3.1 Login 1) T o access the configurat ion utility , open a web-browser and type in the default address http://192.168.0.
Figure 3-3 Main Setup-Menu Note: Clicking Apply can only make the new conf igurations effective before the switch is rebooted. If you want to keep the configur ations effective even the swit ch is rebooted, please click Save Config .
Chapter 4 System The System module is mainly for system confi guration of the switch, including four submenus: System Info , User Management, System T ools and Access Security .
When the cursor moves on the port, the det ailed information of the port will be displayed. Figure 4-2 Port Information Port Info Port: Displays the port number of the switch. Ty p e : Displays the type of the port. Rate : Displays the maximum trans mission rate of the port.
Figure 4-4 Device Description The following entries are displayed on this screen: Device Description Device Name: Enter the name of the switch. Device Loca tion: Enter the location of the switch. S ystem Cont act: Enter your contact information. 4.
Time Config Manual: When this option is selected, you can set the date and time manually . Get Time from NTP Server: When this option is selected, y ou can configure the time zone and the IP Address for th e NTP Se rver . The switch will get UTC automatically if it has connected to a NTP Server .
Predefined Mode: Select a predefined DST configuration. USA: Second Sunday in Marc h, 02:00 ~ First Sunday in November , 02:00. Australia: First Sunday in Oct ober , 02:00 ~ First Sunday in April, 03:00. Europe: Last Sunday in Marc h, 01:00 ~ Last Sunday in October , 01:00.
The followin g entries are displayed on this screen: IP Config MAC Address: Displays MAC Address of the switch. IP Address Mode: Select the mode to obtain IP Address for the switch. S tatic IP: When this option is selected, you should enter IP Address, Subnet Mask and Default Gateway manually .
Figure 4-8 User T able 4.2.2 User Config On this page you can configure the access level of the user to log on to the Web management page. The switch provides two access levels : Guest and Admin. The guest only can view the settings without the right to conf igure the switch; the admin can c onfigure all the functions of the s w i t c h .
User T able Select: Select the desired entry to delete the corresponding user information. It is multi-optional. T he current user information can’t be deleted. User ID, Name, Access Level and st atu s: Displays the current user ID, user name, access level and user status.
3. After being restored, the current settings of the switch will be lost. Wr ong upl oaded configuration file may cause the switch unmanaged. 4.3.2 Config Backup On this page you can download the cu rrent configuration and save it as a file to your computer for your future configuration restore.
Note: 1. Don’t interrupt the upgrade. 2. Please select the proper software version ma tching with your hardware to upgrade. 3. T o avoid damage, please don't turn off the device while upgradi ng . 4. After upgrading, the device will reboot automatically .
4.4.1 Access Control On this page you can control the users logging on to the W eb management page to enhance the configuration management security. The def initions of Admin and Guest refer to 4.2 User Management . Choose the menu Sy stem → Access Security → Access Control to load the following page.
Port: The field can be available for c onfigur ation only when Port-based mode is selected. Only the users connected to these port s you set here are allowed for login. Session Config Session Timeout: If you do nothing with the Web management page within the timeout time, the system will log out automatically .
Figure 4-16 SSL Config The following entries are displayed on this screen : Global Config SSL: Select Enable/Disable the SSL function on the switch. Certificate Download Certificate File: Select the desired certificate to download to the switch.
Comprising server and client, SSH has two versi ons, V1 and V2 which are not compatible with each other . In the communication, SSH server and client can auto-negotia te the SSH version and the encryption algorithm.
Ke y File: Select the desired key file to download. Download: Click the Dow nload button to download the desire d key file to the switch. Note: 1. Please ensure the key length of the downloaded file is in the range of 256 to 3072 bits. 2. After the Key File is downloaded, the user ’s original key of the same type will be replaced.
Application Example 2 for SSH: Network Requirements 1. Log on to the switch via password authenticat ion using SSH and the SSH function is enabled on the switch . 2. PuTTY client software is recommended. Configuration Procedure 1. Select the key type and key length, and gene rate SSH key .
3. On the Web management page of the switch, dow nlo ad the public key file saved in the computer to the switch. Note: 1. The key type should accord with the type of the key file. 2. The SSH key downloading can not be interrupt ed. 4. Download th e private key file to SSH client sof tware.
30 5. After the public key and private key are dow nloa d ed, please log on to the interface of PuTTY and enter the IP address for login. After successful authentication, pl ease enter the l ogin user name. If you log on to the switch without entering password, it indicates t hat the key has been successfully downloaded.
Chapter 5 Switching Switching module is used to conf igure the basic functi ons of the switch, including five submenus: Port , LAG , T raffic Monitor , MAC Address and DHCP Filtering .
Description: Give a description to the port for identification. Statu s: Allows you to Enable/Disable t he port. When Enable is selected, the port can forward the packet s normally . Speed and Duplex: Select the S peed and Duplex m ode for the port. The device connected to the switch s hould be in the same S peed and Duplex mode with the switch.
Th e following ent ries are displaye d on this screen. Mirror Group List Group: Displays the mirror group number . Mirroring: Dis plays the mirroring port number . Mode: Dis plays the mirror mode. The value will be "Ingress" or "Egress".
Mirrored Port Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered. Select: Select the desired port as a mirrored port. It is multi-optional. Port: Displays the port number . Ingress: Select Enable/Disable the Ingress feature.
Figure 5-4 Port Security The following ent ries are displaye d on this screen: Port Security Select: Select the desired port for Port Security configuration. It is multi-optional. Port: Displays the port number . Max Learned MAC: S pecify the maximum number of MAC addresses that can be learned on the port.
5.1.4 Port Isolation Port Isolation provides a method of restricting traffic flow to improve the network security by forbidding the port to forward packet s to the ports that are not on its forward portlist. Choose the menu Sw itch ing → Port → Port Isola tion to load the following p age.
Choose the menu Sw itch ing → Port → Loopback Detection to load the following p age. Figure 5-6 Loopback Detection Config The following ent ries are displaye d on this screen : Global Config LoopbackDetection Statu s: Here you can enable o r dis able L oopback Detection function globally .
Port Config Port Select: Click the Select button to qui ck-se lect the corresponding port based on the port number you entered. Select: Select the desired port for Loopback Detection configuratio n. It is multi-optional. Port: Displays the port number .
Tips: 1. Calculate the bandwidth for a LAG: If a LAG consists of th e four ports in the speed of 1000Mbps Full Duplex, the whole bandwidth of the LAG is up to 8000Mbps (2000Mbps * 4) because the bandwidth of each member port is 2000Mbp s counting t he up-linked speed of 1000Mbps and the down-linked speed of 1000Mbps.
Operation: Allows you to view or modify the information for each LAG . Edit: Click to modify the settings of the LAG . Detail: Click to get the information of the LAG . Click the Detail button for the det ailed information of your selected LAG .
Member Port Member Port: Select the p ort as the LAG member . Clearing all the ports o f the LAG will delete this LAG . Tips: 1. The LAG can be deleted by clearing its all member ports. 2. A port can only be adde d to a LAG . If a port is the member of a LAG , the port number will be displayed in gray and can not be selected.
Figure 5-10 LACP Config The following ent ries are displaye d on this screen : Global Config System Priority : S pecify the system priority for the switch. The system priority and MAC address constitute the system identification (ID). A lower system priority value indicates a higher system priority .
Mode: S pecify LACP mode for your selected port. Statu s: Enable/Disable the LACP feat ure for your selected port. LAG: Displays the LAG number which the port belongs to. 5.3 T raffic Monitor The T raffic Monitor function, monitoring the traffic of each p ort, is implemented on the Tr a f f i c Summary and T raffic St atistics pag es .
Port: Displays the port numbe r . Packets Rx: Displays the number of packet s received on the port. The erro r packet s are not counted in. Packets Tx: Displays the number of packet s transmitted on the port. Octets Rx: Displays the number of octets received on the port.
Port: Enter a port number and click the Select button to view the traffic statistics of the corresponding port. Received: Displays the details of the p ackets received on the port. Sent: Displays the details of the pa ckets transmitted on the port. Broadcast: Displays the number of good broadcast packet s received o r transmitted on the port.
The add ress filtering feature allo ws the switch to filter the undesired packets and forbid its forwarding so as to improve the network security. The types and the features of the MAC Address T able .
Ty p e : Select the type of your desired entry . All: This option allows the address table to display all the address entries. Stati c: This option allows the address table to display the st atic address entries only . Dyn amic : This option allows the address table to display the dynamic address entries only .
Create St atic Address MAC Address: Enter the static MAC Address to be bound. VLAN ID: Enter the corresponding VLAN ID of the MAC address. Port: Select a port from the pull-down list to be bound.
Figure 5-15 Dynamic Address The following ent ries are displaye d on this screen: Aging Config Auto Aging: Allows you to Enable/Disable t he Auto Aging feature.
Tips: Setting aging time properly helps implement effect ive MAC address aging. The aging time that is too long or too short results decreas es the performance of the switch. If the aging time is too long, excessive invalid MAC address entries maintained by the switch may fill up the MAC address table.
Filtering Address T able Select: Select the entry to delete the corre sponding filtering address. It is multi-optional. MAC Address: Displays the filtering MAC Address. VLAN ID: Displays the correspondi ng VLAN ID. Port: Here the symbol “--” indi cates no specified port.
Figure 5-17 Network diagram of DHCP For different DHCP clients, DHCP server pr ovides three IP address assigning methods: (1) Manually assign the IP address: Allow s the adm inistrator to bind the static IP address to a specific client (e.g.: WWW Server) via the DHCP server .
addr esses and replies to the client with DH CP-OFFER packet carrying the IP address and other information. ( 3 ) DHCP-REQUEST Stage: In the situation that there ar e several DHCP servers sending .
54 the network from the DHCP Server Cheating Attack by discarding the DHCP p ackets on the distrusted port, so as to enhance the network security . Choose the menu Switching → DHCP Filtering to load the following page.
Chapter 6 VLAN The traditional Ethernet is a data network communication technology based on CSMA/CD (Carrier Sense Multiple Access/Collision Detect) vi a shared communication medium.
6.1 802.1Q VLAN VLAN tags in the packet s are necessary for the sw itch to identify packets of dif ferent VLANs. The switch works at the data link layer in OSI model and it can identify the data link layer encapsulation of the packe t only , so you can add the VLAN tag field into the data link layer encapsulation for identification.
PVID PVID (Port VLAN ID) is the default VID of the port. When the switch receives an un-VLAN-tagged packet, it will add a VLAN tag to the packet according to the PVID of its received port and forward the packet s.
Figure 6-3 VLAN T able T o ensure the normal communication of the factory sw itch, the default VLAN of all ports is set to VLAN1. The following ent ries are displaye d on this screen: VLAN Create VLAN ID : Enter the VLAN ID you want to create. It ranges from 2 to 4094.
Port: Displays the port numbe r . Unt agged: The port will be an untagged member of the specific VLAN if you select it. T agged: The port will be an tagged member of the specific VLAN if you select it. NotMember: The port will not be a member of the specific VLAN if you select it.
Configure Switch B Ste p Operation Description 1 Configure the Link T ype of the ports Required. On VLAN → 802.1Q VLAN → VLAN Config page, configure the link type of Port 7, Port 6 and Port 8 as Untagged, T agged and Untagged respectively . 2 Create VLAN10 Required.
Chapter 7 S p anning T ree STP (S panning T ree P rotocol), subject to IEEE 802 .1 D standard, is to disbranch a ring netwo rk in the Data Link layer in a local netwo rk.
Figure 7-1 Basic STP diagram STP T imers Hello T ime: Hello T ime ranges from 1 to 10 seconds. It specifie s the interval to send BPDU p ackets. It is used to test the links. Max. Age: Max. Age ranges from 6 to 40 sec onds. It specifies the maximum time the switch can wait without receiving a BPDU before attempting to reconfigure.
Comparing BPDUs Each switch sends out configur ation BPDUs and receives a confi guration BPDU on one of its ports from another switch. The following t abl e shows the comparing operations.
stop s forwarding data and the des ignated port of the up stream switch begins to forward data. The condition for the designated port to transit its port st ate rapidly: The designated port is an edge port or connecting to a point-to-point link.
Figure 7-2 Basic MSTP diagram MSTP MSTP divides a network into several MST r egions. The CST is generat ed between these MST regions, and multiple spanning trees can be gener ated in each MST region. Each spanning tree is called an instance. As well as STP , MSTP us es BPDUs to generate sp anning tree.
Figure 7-3 Port roles The S panning T ree module is mainly for spanning tree configuration of the switch, including four submenus: STP Config , Port Config , MSTP Inst ance and STP Security . 7.1 STP Config The STP Config function, for global configuration of spanning trees on the switch, can be implemented on STP Config and STP Summary p ages.
The followin g entries are displayed on this screen: Global Config STP: Select Enable/Disable STP f unction globally on the switch. V ersion: Select the desired STP version on the switch. STP: S panning T ree Protocol. RSTP: Rapid S panning Tr ee Protocol.
7.1.2 STP Summary On this page you can view the related parameters for S panning T ree function. Choose the menu S p anning T ree → STP Config → STP Summary to load the following page.
Figure 7-6 Port Config The following entries are displayed on this screen: Port Config Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered. Select: Select the desired port for STP conf iguration.
Port Role: Displays the role of the po rt played in the STP Instance. Root Port: Indicates the port that has the lowest path cost from this bridge to the Root Bridge and forwards packets to the root. Designated Port: Indicates the port that forwards packets to a downstream network segment or switch.
Figure 7-7 Region Config The following entries are displayed on this screen: Region Config Region Name: Create a name for MST region identif ication using up to 32 characters. Revision: Enter the revision from 0 to 6553 5 for MST region identification.
The followin g entries are displayed on this screen: Inst ance T able Inst ance ID Select: Click the Select button to quick-select the corresponding Instance ID based on the ID number you entered. Select: Select the desired Instance ID for c onfiguration.
Figure 7-9 Instance Port Config The following entries are displayed on this screen: Port Config Inst ance ID: Select the desired instance ID for its port configuration. Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered.
Ste p Operation Description 1 Make clear roles the switches play in spanning tree instances: root bridge or designated bridge Preparation. 2 Globally configure MSTP parameters Required. Enable S panning T ree function on the switch and configure MSTP p arameters on Sp anning Tr e e → STP Config → STP Config p age.
T o avoid this, MSTP provides root protect functi on. Ports with this function enabled can only be set as designated ports in all sp anning tree instances . When a port of this type receives BDPU packet s with higher priority , it transits its st ate to blocking state and stops forwarding packets (as if it is disconnected from the link).
Figure 7-10 Port Protect The following entries are displayed on this screen: Port Protect Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered. Select: Select the desired port for port protect configuration.
Choose the menu Sp anning T ree → STP Security → TC Protect to load the following page. Figure 7-1 1 TC Protect The following entries are displayed on this screen: TC Protect TC Threshold: Enter a number from 1 to 100. It is the maximum number of the TC-BPDUs received by the switch in a TC Protect Cycle.
Configuration Procedure Configure Switch A: Ste p Operation Description 1 Configure ports On VLAN → 802.1Q VLAN page, configure the link type of the related ports as T agged, and add the ports to VLAN101-VLAN106. The detailed instructions can be found in the section 802.
Configure Switch C: Ste p Operation Description 1 Configure ports On VLAN → 802.1Q VLAN page, configure the link type of the related ports as T agged, and add the ports to VLAN101-VLAN106. The detailed instructions can be found in the section 802.
The topology diagram of the t w o inst ances after the topology is stable For Instance 1 (VLAN101, 103 and 105), the red paths in the following figure are connected links; the gray paths ar e the blocked links.
Chapter 8 Multicast Multicast Overview In the network, packet s are sent in three modes: unicast, broadcas t and multicast. In unicast, the source server sends separate copy information to each receiver . When a large number of users require this information, the serv er must send many pieces of info rmation with the same content to the users.
4. Real time is highly demanded and certain packet s drop is allowed. Multicast Address 1. Multicast IP Address: As specified by IANA (Internet Assigned Numbers Authority), Class D IP addresses are used as destination addresses of multic ast packets.
VLAN ID Multicast IP Port Figure 8-3 Multicast Address T able IGMP Snooping In the network, the hosts apply to the near router for joining (leavin g) a multicast group by sending IGMP (Internet Group Management Protocol) me ssages.
it will be added to the multicast addr ess table with it s member port ti me specified; if the receiving port is already a member port, its mem ber port time will be directly reset.
Figure 8-4 Basic Config The following entries are displayed on this screen: Global Config IGMP Snooping: Select Enable/Disable IGMP S nooping function globally on the switch. Unknown Multicast: Select the operation for the swit ch to process unknown multicast, Forward or Discard.
Figure 8-5 Port Config The following entries are displayed on this screen: Port Config Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered. Select: Select the desired port for IGMP Snooping featur e configuration.
Figure 8-6 VLAN Config The following entries are displayed on this screen: VLAN Config VLAN ID: Enter the VLAN ID to e nable IGMP Snooping for the desired VLAN.
Router Port: Displays the router po rt of the VLAN. Note: The settings here will be invalid when multicast VLAN is enabled Configuration procedure: Ste p Operation Description 1 Enable IGMP Snoop ing function Required.
The followin g entries are displayed on this screen: Multicast VLAN Multicast VLAN: Select Enable/Disable Multicast VLAN feature. VLAN ID: Enter the VLAN ID of the multicas t VLAN.
Application Example for Multicast VLAN: Network Requirements Multicast source sends multicast streams via the router , and the st reams are transmitted to user A and user B through the switch. Router: Its W AN port is connected to the multicast source; it s LAN port is co nnected to the switch.
Network Diagram Configuration Procedure Ste p Operation Description 1 Create VLANs Create three VLANs with the VLAN ID 3, 4 and 5 respectively , and specify the description of VL AN3 as Multicast VLAN on VLAN → 802. 1Q VLAN page. 2 Configure ports On VLAN → 802.
8.2.1 Multicast IP T able On this page you can view the multicast IP table on the switch. Choose the menu Multicast → Multicast IP → Mult icast IP T abl e to load the following page.
Figure 8-9 S tatic Multicast IP T able The following entries are displayed on this screen: Create St atic Multicast Multicast IP: Enter static multicast IP address. VLAN ID: Enter the VLAN ID of the multicas t IP . Forward Port: Enter the forward port of the multicast group.
port. If the port can be added to the multicast group, it will be added to the multicast address table; if the port can not be added to the multicast group, the switch will drop the IG MP report message. In that way , the multicast streams will not be trans mitted to this port, which allows you to control hosts joining the multicast group.
Figure 8-1 1 Port Filter The following entries are displayed on this screen: Port Filter Config Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered. Select: Select the desired port for multicas t filtering.
Ste p Operation Description 1 Configure IP-Range Required. C onfigure IP-Range to be filtered on Multicast → Multicast Filter → IP-Range page. 2 Configure multicast filter rules for ports Optional. Configure multicast filter rules for ports on Multicast → Multicast Filter → Port Filter page.
Quer y Packet: Displays the number of query packet s the port received. Report Packet (V1): Displays the number of IGMPv1 report packet s the port received . Report Packet (V2): Displays the number of IGMPv2 report packet s the port received . Report Packet (V3): Displays the number of IGMPv3 report packet s the port received .
Chapter 9 QoS QoS (Quality of Service) functi ons to provide different quality of service for various network applications and requirements and optim ize the bandwidth resource dist ribution so as to provide a network service experience of a better quality .
Figure 9-2 802.1Q frame As shown in the figure above, each 802.1Q T ag ha s a Pri field, comprising 3 bits. The 3-bit priority field is 802.1p priority in the range of 0 to 7. 802.1P priority determi nes the priority of the packet s based on the Pri value.
Figure 9-4 SP-Mode 2. WRR-Mode: Weight Round Robin Mode. In this mode, packet s in all the queues are sent in order based on the weight value for each queue and every queue can be assured of a certain service time. The weight value indicates the occupied proportion of the resource.
4. Equ-Mode: Equal-Mode. In this mode, a ll the queues occupy the bandwidth equally . The weight value ratio of a ll the queues is 1:1:1:1. The QoS module is mainly for traffic control and priority configuration, including three submenus: DiffServ Bandwidth Control and V oice VLAN .
Ste p Operation Description 1 Select the port priority Required. On QoS → DiffServ → Port Priority page, configure the port priority . 2 Configure the mapping relation between the 802.1P priority and TC Required. On QoS → DiffServ → 802.1P Priority page, configure the mapping re lation between the 802.
DSCP: Indicates the priority determined by the DS region of IP dat agram . It ranges from 0 to 63. Priority: Indicates the 802.1P priority the p ackets with tag are mapped to. The priorities are labeled as CoS0 ~ CoS7. Configuration Procedure: Ste p Operation Description 1 Configure the mapping relation between the DSCP priority and 802.
Queue TC-id: Indicates the priority level of egress queue the packets with t ag and CoS-id are mapped to. The priority levels of egress queue are labeled as TC0, TC1, TC2 and TC3. Configuration Procedure: Ste p Operation Description 1 Configure the mapping relation between the 802.
Equ-Mode: Equal-Mod e. In this mode , a ll the queues occupy the band width equally . The weight value ratio of all the queues is 1:1:1:1. 9.2 Bandwid th Control Bandwidth function, allowing you to co.
Ingress Rat e (bps ): Configure the bandwidth for receiving packe ts on the port. Y ou can select a rate from the dropdown list or select "Manual" to set Ingress rate, the system will auto matically se lect integral multiple of 64Kbp s that closest to the rate you entered as the real Ingress rate.
The followin g entries are displayed on this screen: Storm Control Config Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered. Select: Select the desired port for S tor m Control configuration.
Number OUI Address V endor 1 00-01-e3-00-00-0 0 Siemens phone 2 00-03-6b-00-00-0 0 Cisco phone 3 00-04-0d-00- 00-00 Avaya phone 4 00-60-b9-00-00-00 Philips/NEC phone 5 00-d0-1e-00-00-0 0 Pingtel phone.
Security Mode of V oice VLAN When voice VLAN is enabled for a port, you can configure it s security mode to filter data stream. If security mode is enabled, the port just forwards voice packet s, and discards other packets whose source MAC addresses do not match OUI addresses.
VLAN ID: Enter the VLAN ID of the v oice VLAN. Aging Time: S pecifies the living time of the membe r port in auto mode after the OUI address is aging out.
Port Mode: Select the mode for the p ort to join the voice VLAN. Auto: In this mode, the switch aut omatically adds a port to the voice VLAN or removes a port from the voice VLAN by checking whether the port receives voice data or not. Manual: In this mode, you can manually add a port to the voice VLAN or remove a port from the voice VLAN.
OUI: Displays the OUI address of the voice device. Mask: Displays the OUI address mask of the voice device. Description: Displays the description of the OUI. Configuration Procedure of V oice VLAN: Ste p Operation Description 1 Configure the link type of the port Required.
Chapter 10 ACL 10.1 ACL Config An ACL may contain a number of rules, and each ru le specifies a different package range. Packet s are matched in match order .
Figure 10-2 ACL Create The following entries are displayed on this screen: Create ACL ACL ID: Enter ACL ID of the ACL you want to create. Rule Order: User Config order is set to be match order in this ACL.
D-MAC: Enter the destination MAC addr ess contained in the rule. MASK: Enter MAC address mask. If it is set to 1, it must strictly match the address. 10.
Figure 10-5 Create Extend-IP Rule The following entries are displayed on this screen: Create Extend-IP ACL ACL ID: Select the desired Extend-I P ACL for configuration. Rule ID: Enter the rule ID. Operation: Select the operation for the switch to process packet s which match the rules.
10.2.1 Policy Summary On this page, you can view the ACL and the corresponding operations in the policy . Choose the menu ACL → Policy Config → Policy Summary to load the following page. Figure 10-6 Policy Summary The following entries are displayed on this screen: Search Option Select Policy: Select name of the desired policy fo r view .
10.2.3 Action Create On this page you can add ACLs for the policy . Choose the menu ACL → Policy Config → Action Create to load the following page. Figure 10-8 Action Create The following entries are displayed on this screen: Create Action Select Policy: Select the name of the policy .
The followin g entries are displayed on this screen: Search Option Show Mode: Select a show mode appropriate to your nee ds. Policy Bind T able Select: Select the desired entry to delet e the corresponding binding policy . Index: Displays the index of the binding policy .
10.3.3 VLAN Bi nding On this page you can bind a policy to a VLAN. Choose the menu ACL → Policy Binding → VLAN Binding to load the following page. Figure 10-1 1 Bind the policy to the VLAN The following entries are displayed on this screen: VLAN-Bind Config Policy Name: Select the name of the po licy you want to bind.
10.4 Application Example for ACL Network Requirements 1. The manager of the R&D departm ent can access to the forum of the comp any and the Internet without any forbiddance. The MAC address of the manager is 00-64 -A5-5D-12-C3. 2. The st aff of the R&D department can not access to the Intern et but can visit the forum.
Ste p Operation Description 2 Configure for requirement 2 and 4 On ACL → ACL Config → ACL Create page, create ACL 100. On ACL → ACL Config → St andard-IP ACL p age, select ACL 100, create Rule 1, configure operatio n as Deny , configure S-IP as 10.
Chapter 11 PoE Note: Only TL-SG2424P supports PoE function. PoE (Power over Ethernet) technology describes a system to transmit electrical power along with data to remote devices over standard twisted-p air cable in an Ethernet net work. It is especially useful for supplying power to IP telephones, wi reless LAN access points, cameras and so on.
PoE Config, mainly for PoE attributes configura tion, is implemented on PoE Config and PoE Profile pages. 11.1.1 PoE Config On this page, you can configure the p a rameters to implement PoE function. Choose the menu PoE → PoE Config → PoE Config to load the following p age.
PoE Pr iority: The priority levels include High, Middle and Lo w in descending order . Whe n the supply power exceeds the system power limit, the PD linked to the port with lower priority will be disconnected. Power Limit ( 0. 1w- 30 w): Defines the max power the corresponding port can supply .
PoE S t atus: Select to the enable/disable Po E fe ature for the corresponding port. If set enable, the port may supply power to the linked PD (Power Device).
Index: Displays the index of the time-rang e. Time-Range Name: Displays the name of the time-range. Slice: Displays the time-slic e of the time-range. Mode: Displays the mode the time-range adopts. Operation: Click Edit to modify this time-range and click Det ail to display the complete information of this time–range.
End T ime: Set the end time of the time-slice. Time-Slice T able Index: Displays the index of the time-slice. St art Time: Displays the st art time of the time-slice. End Time: Displays the end time of the time-slice. Delete: Click the Delete button to delete the corresponding time-slice.
End Date: Displays the end date of the holida y . Return to CONTENTS 129.
Chapter 12 SNMP SNMP Overvie w SNMP (Simple Network Management Protocol) has gained the most extens ive application on the UDP/IP networks. SNMP provides a management frame to monitor and maintain the network devices. It is used for automatica lly managing the various network devices no matter the physical differences of the devices.
application requirement. SNMP v1: SNMP v1 adopts Community Name authentic ation. The community name is used to define the relation between SNMP Management S tation and SNMP Agent. The SNMP packet s failing to pass community name authentication are discarded.
The User configure d in a SNMP Group can manage the switch via the client program on management station. The specif ied User Name and the Auth/Privacy Password are used for SNMP Management S tation to access the SNMP Agent, functioning as the p assword.
12.1.2 SNM P View The OID (Object Identifier) of t he SNMP packets is used to describe the managed objects of the switch, and the MIB (Management Information Base) is the set of the OIDs. The SNMP View is created for the SNMP management station to manage MIB objects.
Figure 12-5 SNMP Group The following ent ries are displaye d on this screen: Group Config Group Name: Enter the SNMP Group name. The Group Name, Security Model and Security Level compose the identifier of the SNMP Group. The Groups with these three items the same are considered to be the same.
Notif y V iew : Select the View to be the Notify View . The management station can receive trap messages of the assigned SNMP view generate d by the switch's SNMP agent. Group T able Select: Select the desired entry to delete the corresponding group.
User Config User Name: Enter the User Name here. User T ype: Select the type for the User . Local User: Indicates that the user is connected to a local SNMP engine. Remote User: Indicates that the user is connected to a remote SNMP engine.
12.1.5 SNM P Communit y SNMP v1 and SNMP v2c adopt community name authentication. The comm unity name can limit access to the SNMP agent from SNMP network ma nagement station, functioni ng as a password. If SNMP v1 or SNMP v2c is employed, you can di rectly configure the SNMP Community on this page without configuring SNMP Group and User .
Configuration Procedure: If SNMPv3 is employed, please take the following step s: Ste p Operation Description 1 Enable SNMP function globally . Required. On the SNMP → SNMP Config → Global Config page, enable SNMP function globally . 2 Create SNMP View .
12.2 Notification With the Notification function enabl ed, the switch can initiatively report to the management station about the important events that o ccur on the V iews (e.g., the manag ed device is rebooted), which allows the management station to monitor and process the events in time.
Ty p e : Select the type for the notifications. Tr a p : Indicates traps are sent. Inform: Indicates informs are sen t. The Inform type has a higher security than the T rap type. Retry: S pecify the amount of times t he switch resends an inform request.
RMON Group Function History Group After a history group is confi gured, the switch collects and records network statistics information periodically , based on which the m anagement station can monitor network effectively . Event Group Event Group is used to define RMON events.
St atu s: Select Enable/Disable the corresponding sampling entry . 12.3.2 Event Config On this page, you can configure the RMON events. Choose the menu SNMP → RMON → Event Config to load the following page.
Figure 12-1 1 Alarm Config The following ent ries are displaye d on this screen: Alarm T able Select: Select the desired entry for configuration. Index: Displays the index number of the entry . Va r i a b l e : Select the alarm variables from the pull-down list.
Interval: Enter the alarm interv al time in seconds. Ow ner : Enter the name of the device or user that defined the entry . Statu s: Select Enable/Disable t he corresponding alarm entry .
Chapter 13 LLDP Note: Only TL-SG2424P supports LLDP function. LLDP (Link Layer Discovery Protocol) is a Layer 2 protocol that is used for network devices to advertise their own device information periodically to neighbors on the same IEEE 802 local area network.
or to allow t he port to both transmit and receive LLDPD Us. Four LLDP admin statuses are supported by each port. Tx&Rx: the port can both transmit and receive LLDPDUs. Rx_Only: the port can receive LLDPDUs only . Tx_Only: the port can transmit LLDPDUs only .
The followin g table shows the details about the currently defined TL Vs. TL V type TL V Name Description Usage in LLDPDU 0 End of LLDPDU Mark the end of the TL V sequence in LLDPDUs. Any information following an End Of LLDPDU TL V shall be ignored. Mandatory 1 Chassis ID Identifies the C hassis address of the connected device.
Note: For detailed introduction of TL V , please refer to IEEE 802.1AB standard and ANSI/TIA-1057. In TP-LINK switch, the following LL DP optional TL Vs are supported. Port Description TLV The Port Description TLV allows network management to advertise the IEEE 802 LAN station's port description.
The LLDP module is mainly for LLDP function c onfiguration of the switch, including three submenus: Basic Config , Device Info , Device St atistics and LLDP-MED . 13.1 Basic Config LLDP is configured on the Global Config and Port Config pages. 13.1.1 Global Config On this page you can configure the LL DP p arameters of the device globally .
Fast S t art Times: When the port's LLDP sta te transfo rms from Disable (or R x_O nly) to Tx&Rx (or Tx_Only), the fast start mechanism will be enabled, that is, the transmit interval will be shorten to a second, and several LLDPDUs will be sent out (the number of LLDPDUs equals this parameter).
13.2 Device Info Y ou can vie w the LLDP information of the local device and its neighbors on the Local Info and Neighbor Info pages respectively . 13.2.1 Local Info On this page you can see all ports' configuration an d system information. Choose the menu LLDP → Device Info → Local Info to load the following page.
Refre sh Rate: S pecify the auto refresh rate. Local Info Enter the desired port number and click Select to display the information of the corresponding port. 13.2.2 Neighbor Info On this page you can get the information of the neighbors. Choose the menu LLDP → Device Info → Neighbor Info to load the following page.
Figure 13-5 LLDP S tatistic Information The following ent ries are displaye d on this screen : Auto Refresh Auto Refresh: Enable/Disable the aut o r efresh function. Refresh Rate: S pecify the auto refresh rate. Global St atistics Last Up date : Displays latest update ti me of the st atistics.
based on the port number you entered. Port: Displays local device's port number . T ransmit T otal: Displays the number of L LDP DUs sent by this port. Receive T ot al: Displays the number of LLDPDUs received by this port. Discards: Displays the number of L LDPDUs discarded by this port.
Extended Power-Via-MDI TLV The Extended Power-Via-MDI TLV is intended to enable advanced power management between LLDP-MED Endpoint and Network Connectivity Devices, and it allows advertisement of fine graine d pow er requirement details, Endpoint power priority, as we ll as both Endpoint and Network Connectivity Device power status.
Figure 13-7 LLDP-MED Port Configuration The following ent ries are displaye d on this screen : LLDP-MED Port Config Port Select: Select the desired port to configure. LLDP-MED S t atus: Configure the port's LLDP-MED statu s : Enable: Enable the port's LLDP- MED status, and the port's Admin S tatus will be changed to Tx&Rx.
Included TL Vs Select TL Vs to be included in outgoing LLDPDU. Location Identification Parameters Configure the Locati on Identification TLV's content in outgoing LLDPDU of the port.
Figure 13-8 LLDP-MED Local Informatio n The following ent ries are displaye d on this screen : Auto Refresh Auto Refresh: Enable/Disable the aut o r efresh function. Refresh Rate: S pecify the auto refresh rate. Local Info Enter the desired port number and click Select to display the information of the corresponding port.
Figure 13-9 LLDP-MED Neighbor Inform ation The following ent ries are displaye d on this screen : Auto Refresh Auto Refresh: Enable/Disable the aut o r efresh function. Refresh Rate: S pecify the auto refresh rate. Neighbor Info Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered.
Chapter 14 Maintenance Maintenance module, assembling the commonly used system tools to manage the switch, provides the convenient method to locate and solve the network problem. ( 1 ) System Monitor: Monitor the utilization stat us of the memory and the CPU of switch.
14.1.2 Memor y Monitor Choose the menu Maintenance → S ystem Monitor → Memory Monitor to load the following page. Figure 14-2 Memory Monitor Click the Monitor button to enable the switch to monitor and display its Memory utilization rate every four seconds.
The Log function is implemented on the Log T able , Local Log , Remote Log and Backup Log pages. 14.2.1 Log T able The switch supports logs output to two directions, namely , log b uffer and log file.
Choose the menu Maintenance → Log → Local Lo g to load the following page. Figure 14-4 Local Log The following ent ries are displaye d on this screen: Local Log Config Select: Select the desired entry to conf igure the corresponding local log.
Figure 14-5 Log Host The following ent ries are displaye d on this screen: Log Host Index: Displays the index of the log host. The switch supports 4 log hosts. Host IP: Configure the IP for the log host. UDP Port: Displays the UDP port used for receiving/sending log information.
Backup Log Backup Log: Click the Backup Log button to save the log as a file to your computer . Note: It will take a few minutes to backup the l og file. Please wait without any operat ion. 14.3 Device Diagnostics This switch provides Cable T est and Loopback functions for device diagnose.
14.3.2 Loopback Loopback test function, looping the sender and the receiver of the si gnal, is used to test whether the port of the switch is available as well as to check and analyze the physical connection st atus of the port to help you locate and solve network malfunctions.
Figure 14-9 Ping The following ent ries are displaye d on this screen: Ping Config Destination IP: Enter the IP address of the destination node for Ping test. Ping Times: Enter the amount of times to send test data during Ping testing. The default value is recommended.
T racert Config Destination IP: Enter the IP address of the destination device. Max Hop: S pecify the maximum number of t he route hops the test data can pass through.
Appendix A: Sp ecifications IEEE802.3 10Base-T Ethernet IEEE802.3u 100Base-TX/100Bas e-FX Fast Ethernet IEEE802.3ab 1000Base-T Gigabit Ethernet IEEE802.
Return to CONTENTS 170.
Appendix B: Configuring the PCs In this section, we’ll introduce how to install and configure the TCP/IP correctly in Windows 2000. First make sure your Ethernet Adapter is work ing, refer to the adapter ’s manual if necessary . 1) On the Windows taskbar , click the Start button, and then click Control Panel .
172 5) The following TCP/IP Properties window will display and the I P Address t ab is open on this window by default. Figure B-3 6) Select Use the following IP address . And the following items will be available. If the switch's IP address is 192.
Appendix C: Glossary Boot Protocol (BOOTP) BOOTP is used to provide bootup informat ion for netwo rk devices, including IP address information, the address of the TFTP server that contains the de vices system files, and the name of the boot file.
Internet Group Manageme nt Protocol (IGMP) A protocol throug h which hos ts can register with their local router for multicast services. If there is more than one multicast switch/router on a gi ven subnetwork, one of t he devices is made the “querier” and assumes responsibility fo r keeping track of group membership.
175 Remote Authentication Dial-in User Service (RADIUS) RADIUS is a logon authent ication protocol that uses software running on a central server to control access to RADIUS-comp liant devices on the network. Remote Monitoring (RMON) RMON provides comprehensive netwo rk monitoring capabilities.
Un punto importante, dopo l’acquisto del dispositivo (o anche prima di acquisto) è quello di leggere il manuale. Dobbiamo farlo per diversi motivi semplici:
Se non hai ancora comprato il TP-Link TL-SG2216 è un buon momento per familiarizzare con i dati di base del prodotto. Prime consultare le pagine iniziali del manuale d’uso, che si trova al di sopra. Dovresti trovare lì i dati tecnici più importanti del TP-Link TL-SG2216 - in questo modo è possibile verificare se l’apparecchio soddisfa le tue esigenze. Esplorando le pagine segenti del manuali d’uso TP-Link TL-SG2216 imparerai tutte le caratteristiche del prodotto e le informazioni sul suo funzionamento. Le informazioni sul TP-Link TL-SG2216 ti aiuteranno sicuramente a prendere una decisione relativa all’acquisto.
In una situazione in cui hai già il TP-Link TL-SG2216, ma non hai ancora letto il manuale d’uso, dovresti farlo per le ragioni sopra descritte. Saprai quindi se hai correttamente usato le funzioni disponibili, e se hai commesso errori che possono ridurre la durata di vita del TP-Link TL-SG2216.
Tuttavia, uno dei ruoli più importanti per l’utente svolti dal manuale d’uso è quello di aiutare a risolvere i problemi con il TP-Link TL-SG2216. Quasi sempre, ci troverai Troubleshooting, cioè i guasti più frequenti e malfunzionamenti del dispositivo TP-Link TL-SG2216 insieme con le istruzioni su come risolverli. Anche se non si riesci a risolvere il problema, il manuale d’uso ti mostrerà il percorso di ulteriori procedimenti – il contatto con il centro servizio clienti o il servizio più vicino.
