TP-Link TL-SG2424 manual

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182

Go to page of

A good user manual

The rules should oblige the seller to give the purchaser an operating instrucion of TP-Link TL-SG2424, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.

What is an instruction?

The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of TP-Link TL-SG2424 one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.

Unfortunately, only a few customers devote their time to read an instruction of TP-Link TL-SG2424. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.

What should a perfect user manual contain?

First and foremost, an user manual of TP-Link TL-SG2424 should contain:
- informations concerning technical data of TP-Link TL-SG2424
- name of the manufacturer and a year of construction of the TP-Link TL-SG2424 item
- rules of operation, control and maintenance of the TP-Link TL-SG2424 item
- safety signs and mark certificates which confirm compatibility with appropriate standards

Why don't we read the manuals?

Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of TP-Link TL-SG2424 alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of TP-Link TL-SG2424, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the TP-Link service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of TP-Link TL-SG2424.

Why one should read the manuals?

It is mostly in the manuals where we will find the details concerning construction and possibility of the TP-Link TL-SG2424 item, and its use of respective accessory, as well as information concerning all the functions and facilities.

After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.

Table of contents for the manual

  • Page 1

    TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452 Gigabit Smart Switch REV1.2.0 1910010910[...]

  • Page 2

    I COPYRIGHT & TRADEMARKS S pecifications are subject to change without notice. is a registered trademark of TP-LINK TECHNOLOGIES CO., L TD. Other brands and product names are trademarks or registered trademarks of t heir respective holders. No part of the specificatio ns ma y be reproduced in any form or by any means or used to make any derivat[...]

  • Page 3

    II CONTENTS Preface .............................................................................................................. 1 Chapter 1 Using the CLI ....................................................................................... 3 1.1 Accessin g the CLI ................................................................................[...]

  • Page 4

    III show voic e vlan ................................................................................................................ ..... 19 show voic e vlan oui ............................................................................................................ ... 20 show voice vlan switchport ...........................................[...]

  • Page 5

    IV ip ssh downl oad ................................................................................................................ ..... 39 show ip ssh.................................................................................................................... ........ 39 Chapter 9 SSL Comm ands ............................................[...]

  • Page 6

    V copy tf tp st artup-c onfig ....................................................................................................... ... 61 firmware upgr ade ............................................................................................................... ... 62 ping ...................................................................[...]

  • Page 7

    VI qos queue mode ................................................................................................................. ... 82 show qos in terface ............................................................................................................. ... 83 show qos cos-map .........................................................[...]

  • Page 8

    VII Chapter 1 8 DHCP Filteri ng Comma nds ..............................................................104 ip dhcp f iltering .............................................................................................................. ...... 104 ip dhcp filter ing tr ust ...........................................................................[...]

  • Page 9

    VIII spanning-tree tc-def end....................................................................................................... 1 24 spanning-tree timer............................................................................................................ .. 124 spanning-tree hol d-coun t ..................................................[...]

  • Page 10

    IX snmp-serve r grou p .............................................................................................................. 145 snmp-serve r us er ............................................................................................................... . 146 snmp-server communi ty ....................................................[...]

  • Page 11

    X show lldp local-inform ation inte rface.................................................................................... 170 show lldp neighbor-infor mation inte rface ............................................................................. 170 show lldp traf fi c interface .................................................................[...]

  • Page 12

    1 Preface This Guide is intended for network administrator to provide referenced information about CLI (Command Line Interface). The device mentioned in this Guide stands for TL-SG2216/TL-SG2424 /TL-SG2424P/TL-SG2452 Gigabit Smart Switch. The four devices of TL-SG2216/TL-SG2424/TL-S G2424P/TL-SG2452 are sharing this Guide. Fo r simplicity , we will[...]

  • Page 13

    2 IP, reboot and reset the switch, upgrade the sw itch system and comm ands used for device diagnose, including loopback test and cable test. Chapter 12: Ethernet Configuration Commands Provide information about the commands used for configuring the Bandwidth Control, Negotiation Mode, and S torm Control for enthernet ports. Chapter 13: QoS Command[...]

  • Page 14

    3 Chapter 1 Using the CLI 1.1 Accessing the CLI Y ou can log on to the switch and access the CLI by logging on to the switch remotely by a T elnet through an Ethernet port. T o log on to the switch by a T elnet connection, please take the following steps: 1. Make sure the switch and the PC are in the same LAN. 2. Click Start → Run to open the Run[...]

  • Page 15

    4 4. T ype telnet 192.168.0.1 in the command prompt shown as Figure 1-3, and press the Enter button. Figure 1-3 Connecting to the Switch 5. T ype the User name and Passwo rd (the factory default value fo r both of them is admin) and press the Enter button, then you can use the CLI now , which is shown as Figure1-4. Figure 1-4 Log in the Switch 1.2 [...]

  • Page 16

    5 The following table gives detailed information about the Accessing path, Prompt of each mode and how to exit the current mode and access the next mode. Mode Accessing Path Prompt Logout or Access the next mode User EXEC Mode Primary mode once it is connected with the swi tch. TL-SG2424> Use the exit command to disconnect the switch. Use the en[...]

  • Page 17

    6 2. Each command mode has its own set of s pecific commands. To configure some commands, you should access the corres ponding command mode firstly.  Global Configuration Mode : In this mode, global commands are provided, such as the Spanning Tree, Schedule Mode and so on.  Interface Configuration Mode : In this mode, users can c onfigure one[...]

  • Page 18

    7 1.4 Conventions 1.4.1 Format Conventions The following conventions are used in this Guide:  Items in square brackets [ ] are optional  Items in braces { } are required  Alternative items are grouped in braces and se parated by vertical bars. For example: speed {10 | 100 | 1000 }  Bold indicates an unalterable keyword. For example: sho[...]

  • Page 19

    8 Chapter 2 User Interface enable Description The enable command is used to access Privileged EXEC Mode from User EXEC Mode. Synt ax enable Command Mode User EXEC Mode Example If you have set the password to access Privileged EXEC Mode from User EXEC Mode: TL-SG2424>enable Enter p ass word : TL-SG2424# enable password Description The enable p [...]

  • Page 20

    9 disable Description The disable command is used to return to User EXEC Mode from Privileged EXEC Mode. Synt ax disable Command Mode Privileged EXEC Mode Example Return to User EXEC Mode from Privileged EXEC Mode: TL-SG2424# disable TL-SG2424> configure Description The configure command is used to access Global Configuration Mode fr om Privileg[...]

  • Page 21

    10 Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Return to Global Configuration Mode fr om Interface Configuration Mode, and then return to Privileged EXEC Mode: TL-SG2424(config-if)# exit TL-SG2424(config)#exit TL-SG2424# end Description The end command is used to return to Privileged EXEC Mode. Synt ax end Command Mode Pri[...]

  • Page 22

    11 Chapter 3 IEEE 802.1Q VLAN Commands VLAN (Virtual Local Area Network) technology is developed for the switch to divide the LAN into multiple logical LANs flexibly . Hosts in the same VLAN can communicate with each other , regardless of their physical locations. VLAN can enhance performance b y conserving bandwidth, and improve security by limiti[...]

  • Page 23

    12 Parameter vlan-id —— S pecify IEEE 802.1Q VLAN ID, ranging from 1 to 4094. Command Mode Global Configuration Mode Example Create VLAN Interface 2: TL-SG2424(config)# interface vlan 2 name Description The name command is used to assign a description to a VLAN. T o clear the description, please use no name command. Synt ax name descript no nam[...]

  • Page 24

    13 Parameter vlan-list —— S pecify IEEE 802.1Q VLAN ID list, ranging from 2 to 4094, in th e format of 2-3, 5. It is multi-optional. tagged | untagged —— Egress rule , unt agged or tagged. T agge d: All packet s forwarded by the port are tagged. The pa ckets contain VLAN information. Untagged: Packets forwarded by the port are untagged. C[...]

  • Page 25

    14 Synt ax show vlan summary Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the summarized inform ation of IEEE 802.1Q VLAN: TL-SG2424(config)# show vlan summary show vlan brief Description The show vlan brief command is used to display the brief information of IEEE 802.1Q VLAN. Synt ax show vlan brief Command Mode Pr[...]

  • Page 26

    15 Example Display the information of vlan 5: TL-SG2424(config)# show vlan id 5 show interface switchport Description The show interface switchport command is used to display the IEEE 802.1Q VLAN configuration information of the specified port or all ports. Synt ax show interface sw itchport [ port ] Parameter port —— The port number . By d efa[...]

  • Page 27

    16 Chapter 4 Voice VLAN Commands V oice VLANs are configured spec iall y for voice data stream. By configuring V oice VLANs and adding the ports with voice devic es attached to voice VLANs, you can perform QoS-related configuration for voice data, ens uring the transmission priority of voice data stream and voice quality . voice vlan Description Th[...]

  • Page 28

    17 Parameter time —— Aging time (in minutes) to be set for the V oice VLAN. It ranges from 1 to 43200 and the default value is 1440. Command Mode Global Configuration Mode Example Set the aging time for the V oice VLAN as 1 minute: TL-SG2424(config)# voice vlan aging time 1 voice vlan priority Description The voice vl an priority command is use[...]

  • Page 29

    18 Synt ax voice vlan mac-address mac-addr mask mask [ description descript ] no voice vlan mac-address mac-addr Parameter mac-addr —— The OUI address of the voic e device, in the format of XX:XX:XX:XX:XX :XX. mask —— The OUI address mask of the voice device, in the format of XX:XX:XX:XX:XX :XX. descript ——Give a description to the OUI [...]

  • Page 30

    19 TL-SG2424(config)# interface gigabitEthernet 1/0/3 TL-SG2424(config-if)# switchport voice vlan mode auto switchport voice vlan security Description The s w itchport voice vlan security command is used to enable the V oice VLAN security feature. T o disable the V oice VLAN security feature, please use no switchport voice vlan security command. Sy[...]

  • Page 31

    20 show voice vlan oui Description The show voice vlan oui command is used to display the configuration information of V oice VLAN OUI. Synt ax show voice vlan oui Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the configuration info rmation of V oice VLAN OUI: TL-SG2424(config)# show voice vlan oui show voice vlan sw[...]

  • Page 32

    21 Chapter 5 Etherchannel Commands Etherchannel Commands are used to c onfigure LAG and LACP function. LAG (Link Aggregation Group) is to combine a number of ports together to make a single high-bandwidth data path, which can highly exte n d the bandwidth. The bandwidth of the LAG is the sum of bandwidth of it s member port. LACP (Link Aggregation [...]

  • Page 33

    22 port-channel load-balance Description The port-channel load-balance command is used to c onfigure the Aggregate Arithmetic for LAG . T o return to the default configur ations, please use no port-channel load-balance command. Synt ax port-channel load-balance { src-dst-mac | src-dst-ip } no port-channel load-balance Parameter src-dst-mac —— T[...]

  • Page 34

    23 Command Mode Global Configuration Mode Example Configure the LACP system priority as 1024 globally: TL-SG2424(config)# lacp system-priority 1024 lacp port-priority Description The lacp port-priority command is used to configure the LACP port priority for specified ports. T o return to t he default configurat ions, please use no lacp port-priorit[...]

  • Page 35

    24 Synt ax show etherchannel [ channel-group-n um ] { detail | summary } Parameter channel-group-num —— The EtherChannel G roup number , ranging from 1 to 6. By default, it is empty , and will displa y the information of all EtherChannel Groups. detail —— The detailed information of EtherChan nel. summary —— The EtherChannel information[...]

  • Page 36

    25 Parameter channel-group-num —— The EtherChannel G roup number , ranging from 1 to 6. By default, it is empty , and will displa y the information of all LACP groups. internal —— The internal LACP information. neighbor —— The neighbor LACP information. Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the in[...]

  • Page 37

    26 Chapter 6 User Management Commands User Management Commands are us ed to configure the user name and password for users to log on to the Web management p age with a certain access level so as to protect the settings of the switch from being randomly changed . user name Description The user name command is used to add a new user or modify the exi[...]

  • Page 38

    27 user access-control ip-based Description The user ac cess-control ip-based command is used to limit the IP-range of the users for login. Only the users wi thin the IP-range you set here are allowed to login. T o cancel the us er access limit, please use no user acce ss-control command. Synt ax user access-control ip-based ip-addr ip-mask no user[...]

  • Page 39

    28 Parameter mac-addr —— The source MAC addr ess. Only the user with this MAC Address is allowed to login. Command Mode Global Configuration Mode Example Configure that only the user whose MAC address is 00:00:13:0A:00:01 is allowed to login: TL-SG2424(config)# user access-control mac-based 00:00 :13:0A:00:01 user access-control port-based Desc[...]

  • Page 40

    29 user max-number Description The user max-number command is used to configur e the number of the users logging on at the same time. T o cancel the limit to the num bers of the users logging in, please use no user max-number command. Synt ax user max-number admin-num guest-nu m no user max-number Parameter admin-num —— The maximum number of t [...]

  • Page 41

    30 Parameter minutes ——The timeout time, ranging from 5 to 30 in minutes. By default, the value is 10. Command Mode Global Configuration Mode Example Configure the timeout time of the switch as 15 minutes: TL-SG2424(config)# user idle-timeout 15 show user account-list Description The show user account-list command is used to displa y the inform[...]

  • Page 42

    31 Example Display the security configurat ion information of the users: TL-SG2424(config)# show user configuration[...]

  • Page 43

    32 Chapter 7 System Log Commands The log information will record the settings and oper ation of the switch re spectively for you to monitor operation status and diagnose malfunction. logging buffer Description The logging buffer command is used to configure the severity level and the status of the configuration input to the log buf fer . T o disabl[...]

  • Page 44

    33 logging file flash Description The logging file flash command is used to configu re the level and the status of the log file input. T o disable the l oggi ng file flash funtion, please use no logging file flash command. The log file indicates the fl ash sector for saving system log. The information in the log file will not be lost after the swit[...]

  • Page 45

    34 Command Mode Global Configuration Mode Example Clear the information in the log file: TL-SG2424(config)# clear logging buffer logging host index Description The logging host index command is used to configur e the Log Host. T o clear the configuration of the s pecified Log Host, please use no log ging host index command. Log Host is to receive t[...]

  • Page 46

    35 show logging local-config Description The show logging local-config command is used to display the configuration of the Local Log including t he log buffer and the log file. Synt ax show logging local-config Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the configurat ion of the Local Log: TL-SG2424(config)# show [...]

  • Page 47

    36 The show logging buffer command is used to display the log information in the log buffer according to the severity level. Synt ax show logging buffer [ level level ] Parameter leve l —— Severity level. There are 8 severity levels marked with values 0-7. The information of levels with priority not lower than the select level will display . Di[...]

  • Page 48

    37 Chapter 8 SSH Commands SSH (Security Shell) can prov ide the unsecured remote management with security and powerful authentication to ensure the security of the management information. ip ssh server Description The ip ssh server command is used to enable SSH function. T o disable the SSH function, please use no ip ssh server command. Synt ax ip [...]

  • Page 49

    38 Example Enable SSH v2: TL-SG2424(config)# ip ssh version v2 ip ssh timeout Description The ip ssh timeout command is used to specify the idle-timeout time of SSH. T o restore to the fact ory defaults, please use ip ssh timeout command. Synt ax ip ssh timeout value no ip ssh timeout Parameter value —— The Idle-timeout time. During this period[...]

  • Page 50

    39 Command Mode Global Configuration Mode Example S pecify the maximum number of the c onnections to the SSH server as 3: TL-SG2424(config)# ip ssh max-client 3 ip ssh download Description The ip ssh download command is used to download the SSH key file from TFTP server . Synt ax ip ssh download { v1 | v2 } key-file ip-address ip-addr Parameter v1 [...]

  • Page 51

    40 Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the global conf iguration of SSH: TL-SG2424(config)# show ip ssh[...]

  • Page 52

    41 Chapter 9 SSL Commands SSL ( Secure Sockets Layer ) , a security protocol, is to pr ovide a secure connection for the application layer protocol(e.g. H TTP) based on TCP . Adopting asymme trical encryption technology , SSL uses key p air to encrypt/decrypt information. A key pair refers to a public key (contained in the certificate) and its [...]

  • Page 53

    42 Parameter ssl-cert —— The name of the SSL certificate wh ich is selected to download to the switch. The length of the name ranges from 1 to 25 characters. The Certificate must be BASE64 encoded. ip-addr —— The IP address of the TFTP server . Command Mode Global Configuration Mode Example Download a SSL Certificate named ssl-cert from TFT[...]

  • Page 54

    43 show ip http secure-server Description The show ip http secure-server command is used to display the gl obal configuration of SSL. Synt ax show ip http secure-server Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the global configuration of SSL: TL-SG2424(config)# show ip http secure-server[...]

  • Page 55

    44 Chapter 10 MAC Address Commands MAC Address configuration can improve the network security by conf iguring the Port Security and maintaining the address information by managing the Address T able. mac address-table static Description The mac address-table st atic command is used to add the static MAC address entry . T o remove the corre sponding[...]

  • Page 56

    45 mac address-table aging-time Description The mac address-t able aging-time command is used to configure aging ti me for the dynamic address. T o return to the default configur ation, please use no mac address-t able aging-time command. Synt ax mac address-t able aging-time aging-time no mac address-t able aging-time Parameter aging-time —— T[...]

  • Page 57

    46 Command Mode Global Configuration Mode Example Add a filtering address entry of which VLAN ID is 1 and MAC address is 00:1e:4b:04:01:5d: TL-SG2424(config)# mac address-table filtering mac 00:1e:4b:04:01:5d vid 1 mac address-table max-mac-count Description The mac address-t able max-mac-co unt command is used to configure the Port Security . T o [...]

  • Page 58

    47 status —— Enable or disable the Port Securi ty function for a specified port. By default, this function is disabled. Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Enable Port Security function for port 1, select S tatic mode as the learn mode, and specify the maximum number o[...]

  • Page 59

    48 Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the Aging T ime of the MAC address: TL-SG2424(config)# show mac address-table aging-time show mac address-table max-mac-count interface gigabitEthernet Description The show mac address-t able max-mac- coun t interface gigabitEthernet command is used to display the secu[...]

  • Page 60

    49 Synt ax show mac address-t able interface gigabitEthernet port Parameter port —— The Ethernet port number . Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the address configuration of port 1: TL-SG2424(config)# show mac address-table interface gigabitEthernet 1/0/1 show mac address-table mac-num Description The[...]

  • Page 61

    50 Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the information of the MAC address 00:00:00:00:23:00: TL-SG2424(config)#show mac address-t able mac 00:00:00: 00:23:00 show mac address-table vlan Description The show mac address-t able vlan command is used to display the MAC address configuration of the specified vla[...]

  • Page 62

    51 Chapter 11 System Commands System Commands can be used to configure the System informat ion and System IP , reboot and reset the switch, upgrade the swit ch system and other operations. system-time manual Description The system-time manual command is used to configure the system time manually . Synt ax system-time manual time Parameter time —?[...]

  • Page 63

    52 UTC-09:00 —— T imeZone for Alaska. UTC-08:00 —— TimeZone for Pacific T ime(US Canada). UTC-07:00 —— TimeZone for Mountain T ime(US Canada). UTC-06:00 —— TimeZone for Central Time(US Cana da). UTC-05:00 —— TimeZone for Eastern T ime(US Canad a). UTC-04:30 —— TimeZone for Caracas. UTC-04:00 —— T imeZone for Atlantic T i[...]

  • Page 64

    53 Command Mode Global Configuration Mode Example Configure the system time mode as NT P , the time zone is UTC-12:00, the primary NTP server is 133.100.9. 2 and the secondary NTP server is 139.78.100.163, the fetchi ng-rate is 1 1 hours: TL-SG2424(config)# s ystem-t ime ntp UTC-12:00 133.100.9.2 13 9.79.100.163 11 system-time dst predefined Descri[...]

  • Page 65

    54 system-time dst date Description The system-time dst date command is used to configure the one-off daylight saving time. The start date is in the current year by default. The time range of the daylight saving time must shorter than one year , but you can configure it spanning years. T o disable DST function, please use no system-time dst command[...]

  • Page 66

    55 system-time dst recurring Description The system-time dst recurring command is used to configure the recurri ng daylight saving time. It can be confi gured spanning years. T o disable DST function, please use no system-time dst command. Synt ax system-time dst recurring { sweek } { sday } { smonth } { stime } { eweek } { eday } { emonth } { etim[...]

  • Page 67

    56 TL-SG2424(config)# system-time dst recurring first Sun May 02:00 last Sun Oct 02:00 45 hostname Description The hostname command is used to configure t he system name. T o clear the system name information, please use no hostname command. Synt ax hostname hostname no hostname Parameter hostname —— System Name. The length of the name ranges f[...]

  • Page 68

    57 Configure the system location as SHENZHEN: TL-SG2424(config)# location SHENSHEN contact-info Description The cont ac t-info command is used to configure the system cont act information. T o clear the system contac t information, please use no cont act-info command. Synt ax cont act-info contact_info no cont act-info Parameter contact_info ——[...]

  • Page 69

    58 ip address Description The ip address command is used to configure th e system IP Address, Subnet Mask and Default Gateway . T o restore to the factory defaults, please use no ip address command. This command should be configured in the Interface Configuration Mode of the management VLAN. Synt ax ip address { ip-addr } { ip-mask } [ gateway ] no[...]

  • Page 70

    59 Example Enable the DHCP Client f unction when the management VL AN of the switch is VLAN1: TL-SG2424(config)# interface vlan 1 TL-SG2424(config-if)# ip address-alloc dhcp ip address-alloc bootp Description The ip address-alloc bootp command is used to enable the BOOTP Protocol. When the BOOTP Protocol is enabled, t he switch will obt ain IP addr[...]

  • Page 71

    60 TL-SG2424# reset reboot Description The reboot command is used to reboot the Switch. T o avoid damage, please don’t turn off the device while rebooting. Synt ax reboot Command Mode Privileged EXEC Mode Example Reboot the Switch: TL-SG2424# reboot copy running-config startup-config Description The copy running-config st artup-config command is [...]

  • Page 72

    61 Synt ax copy st artup-config t ftp ip-address ip-addr filename name Parameter ip-addr —— IP address of the TFTP server . name —— S pecify the name for the configur ation file which would be backup. Command Mode Privileged EXEC Mode Example Backup the configuration files to TFTP server with the IP 192.168.0.148 and name this file config.c[...]

  • Page 73

    62 firmware upgrade Description The firmware upgrade command is used to upgrade the switch system file via the TFTP server . Synt ax firmware upgrade ip-address ip-addr filename name Parameter ip-addr —— IP address of the TFTP server . name —— S pecify the name for the firmware file. Command Mode Privileged EXEC Mode Example Upgrade the swi[...]

  • Page 74

    63 Command Mode User EXEC Mode and Privileged EXEC Mode Example T o test the connectivity between the swit ch and the network device with the IP 192.168.0.131, pl ease specify the count (-l) as 512 bytes and count (-i) as 1000 milliseconds. If there is not any response after 8 times’ Ping test, the connection between the switch and the network de[...]

  • Page 75

    64 Synt ax loopback interface gigabitEthernet { port } { internal | external } Parameter port —— The Gigabit Ethern et port number . internal | external —— Loopback T ype. There are two options: “internal” and “external”. Command Mode User EXEC Mode and Privileged EXEC Mode Example Do an internal-type loopback test for port 15: TL-S[...]

  • Page 76

    65 Synt ax show system-time Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the time information of the switch TL-SG2424# show syst em-time show system-time dst Description The show system-time dst command is used to display the DST time information of the switch. Synt ax show system-time dst Command Mode Privileged EX[...]

  • Page 77

    66 show cable-diagnostics interface gigabitEthernet Description The show cable-diagnostics in terface gigabitEthernet command is used to display the cable diagnostics of the connected Ethernet Port., which facilitates you to check the connection st atus of the cable connect ed to the switch, locate and diagnose the trouble spot of the network. Synt[...]

  • Page 78

    67 Chapter 12 Ethernet Configuration Commands Ethernet Configuration Commands can be used to configure the B andwidth Control, Negotiation Mode and S torm Control for Ethernet ports. interface gigabitEthernet Description The interface gigabitEthernet command is used to enter the Interface gigabitEthernet Configurat ion Mode and configure t he corre[...]

  • Page 79

    68 User Guidelines Command in the Interface Range gigabitEthernet Mode is executed independently on all ports in the range. It does not affect the execution on the other ports at all if the command results in an error on one port. Example T o enter the Interface range gigabitEthernet Configuration Mode, and configure ports 1, 2, 3, 6, 7 and 9 at th[...]

  • Page 80

    69 Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Disable port 3: TL-SG2424(config)# interface gigabitEthernet 1/0/3 TL-SG2424(config-if)# shutdo w n flow-control Description The flow-control command is used to enable the flow -control function for a port. T o disable the flow-contro[...]

  • Page 81

    70 Parameter rj45 | sfp —— Media type. Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Configure the media type of Combo port 22 as “ SFP ” : TL-SG2424 (config)# interface gigabitEthernet 1/0/22 TL-SG2424 (config-if)# media-type sfp duplex Description The duplex command is use[...]

  • Page 82

    71 Synt ax speed { 10 | 100 | 1000 | auto } no speed Parameter 10 | 100 | 1000 | auto —— The speed mode of the Ethernet port. There are four options: 10Mbps, 100Mbp s, 1000Mbps and Auto negotiation mode (default). Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Configure the S pee[...]

  • Page 83

    72 Example Enable the broadcast cont rol function for port 5: TL-SG2424(config)# interface gigabitEthernet 1/0/5 TL-SG2424(config-if)# storm-control broadcast storm-control multicast Description The storm-control multicast command is used to enable the multicast control function. T o disable the multic ast control function, please use no storm-cont[...]

  • Page 84

    73 in the network. If the transmission rate of the UL frames exceeds the set bandwidth, the pa ckets will be automatically discarded to avoid network broadcast storm. Synt ax storm-control unicast [ rate rate ] no storm-control unicast Parameter rate —— S pecify the bandwidth for receiving UL-Frame on the port. The packet traf fic exceeding the[...]

  • Page 85

    74 Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Configure the ingress-rate as 5120Kbp s and egress-rate as 1024Kbps for port 5: TL-SG2424(config)# interface gigabitEthernet 1/0/5 TL-SG2424(config-if)# bandwidth ingress 5120 egress 1 024 clear counters Description The clear counters[...]

  • Page 86

    75 TL-SG2424(config)# show interface status Display the connective-status of port 1: TL-SG2424(config)# show interface gigabitEthernet 1/0/1 status show interface counters Description The show interface counters command is used to display the statistic information of all ports or an Ethernet port. Synt ax show interface [ gigabitEthernet port ] cou[...]

  • Page 87

    76 TL-SG2424(config)# show interface description Display the description of port 2: TL-SG2424(config)# show interface gigabitEthernet 1/0/2 description show interface flowcontrol Description The show interface flow control command is used to display the flow-control information of an Ethernet port. Synt ax show interface [ gigabitEthernet port ] fl[...]

  • Page 88

    77 TL-SG2424(config)# show interface configuration Display the configurations of port 2: TL-SG2424(config)# show interface gigabitEthernet 1/0/2 configuration show storm-control Description The show storm-contr ol command is used to display the storm-control information of Ethernet ports. Synt ax show storm-co ntrol [ interface { gigabitEthernet po[...]

  • Page 89

    78 Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the bandwidth-limit information of port 4: TL-SG2424(config)# show bandwidth interface gigabitEthernet 1/0/4[...]

  • Page 90

    79 Chapter 13 QoS Commands QoS (Quality of Service) function is used to optimiz e the network performance. It provides you with network service experience of a better quality . qos Description The qos command is used to configure CoS (Class of Service) based on port. T o return to the default configuration, please use no qos command. Synt ax qos co[...]

  • Page 91

    80 Synt ax qos dscp no qos dscp Command Mode Global Configuration Mode User Guidelines DSCP (Dif fServ Code Point) is a new definition to IP T oS field given by IEEE. DSCP priorities are mapped to the corresponding 8 02.1p priorities. IP datagram will be classified into the egress queue based on the mapping relation between DSCP priority and CoS va[...]

  • Page 92

    81 User Guidelines 1. By default, the mapping relation bet ween tag/cos and the egress queue is: 0-TC1, 1-TC0, 2-TC0 , 3-TC1, 4-TC2, 5- TC2, 6-TC3, 7-TC3 2 . Among the prior ity levels TC0-TC3, the bigger value, the higher priority . Example Map CoS 5 to TC 2.: TL-SG2424(config)# qos queue cos-map 5 2 qos queue dscp-map Description The qos queue ds[...]

  • Page 93

    82 User Guidelines By default, the mapping relation between tag and the egress queue is: (0-7)-CoS 0, (8-15)-C oS 1, (16-23)-CoS 2, (24-31)-CoS 3, (32-39)- CoS 4, (40-47)-CoS 5, (48-55)-CoS 6, (56-63)-CoS 7. Example Map DSCP values 10-12 to CoS 2: TL-SG2424(config)# qos queue dscp-map 10-12 2 qos queue mode Description The qos queue mode command is[...]

  • Page 94

    83 equ —— Equal-Mode. In this mode, all the queues occupy the bandwidth equally . The weight value ratio of all the queues is 1:1:1:1. Command Mode Global Configuration Mode Example S pecify the Schedule Mode as Weight Round Robin Mode: TL-SG2424(config)# qos queue mode wrr show qos interface Description The show qos interface command is used t[...]

  • Page 95

    84 Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the configuratio n of IEEE 802.1P Priority and the mapping relation between cos-id and tc-id: TL-SG2424# show qos cos-map show qos dscp-map Description The show qos dscp-map command is used to disp lay the configuration of DSCP Priority . Synt ax show qos dscp-map Comm[...]

  • Page 96

    85 show qos status Description The show qos status command is used to display the status of IEEE 802.1P priority and DSCP priority . Synt ax show qos status Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the status of IEEE 802. 1P priority and DSCP priority: TL-SG2424# show qos status[...]

  • Page 97

    86 Chapter 14 Port Mirror Commands Port Mirror refers to the process of forwarding copies of packets from one port to a monitoring port. Usually , the monitoring port is connected to data diagnose device , which is used to analyze the monitored packet s for monitoring and troubleshooting the netwo rk. monitor session destination interface Descripti[...]

  • Page 98

    87 monitor session source interface Description The monitor session source interface command is used to configure the monitored port. T o delete the corre spondin g monitored port, please use no monitor session source interface command. Synt ax monitor session session_num source interface gigabitEthernet port-list mode no monitor session session_nu[...]

  • Page 99

    88 TL-SG2424(config)# monitor session 1 source interface gigabitEthernet 1/0/4-5,1/0/7 rx Delete port 4 in monitor session 1 and its configuration: TL-SG2424(config)# no monitor session 1 source interface gigabitEthernet 1/0/4 rx show monitor session Description The show monitor session command is used to displa y the configuration of port monitori[...]

  • Page 100

    89 Chapter 15 Port Isolation Commands Port Isolation provides a method of restricting traffic flow to improve the network security by forbidding the port to forward packets to the ports that are not on its forwarding port list. port isolation Description The port isolation command is used to configure t he forward port list of a port, so that this [...]

  • Page 101

    90 Synt ax show port isolation interface [ gigabitEthernet port ] Parameter port —— The number of Ethernet port you want to show its forward port list, in the format of 1/0/2. Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the forward-list of port 2: TL-SG2424# show port isolation interface gigabitEthernet 1/0/2 D[...]

  • Page 102

    91 Chapter 16 Loopback Detection Commands With loopback detection feature enabled, the switch can detect loops us ing loopback detection packet s. When a loop is detected, the switch will di splay an alert or further block the corresponding port according to the configuration. loopback-detection(global) Description The loopback-detection command is[...]

  • Page 103

    92 Example S pecify the interval -time as 50 seconds: TL-SG2424(config)# loopback-detection interval 50 loopback-detection recovery-time Description The loopback-detection recovery-time command is used to configure the time after which the blocked port would automatically recover to normal status. Synt ax loopback-detection recovery-time recovery-t[...]

  • Page 104

    93 TL-SG2424(config)# interface range gigabitEthernet 1/0/1-3 TL-SG2424(Config-if-range)# loopback-detection loopback-detection config Description The loopback-detection config command is used to configure the process-mode and recovery-mode for the por ts by which the switch copes with the detected loops. Synt ax loopback-detection config [ process[...]

  • Page 105

    94 Synt ax loopback-detection recover Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Recover the blocked port 2 to normal status: TL-SG2424(config)# interface gigabitEthernet 1/0/2 TL-SG2424(config-if)# loopback-detection recover show loopback-detection global Description The show lo[...]

  • Page 106

    95 Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the configuration of loopback det ection function and the status of all ports: TL-SG2424# show loopback-detection interface Display the configuration of loopback det ection function and the status of port 5: TL-SG2424# show loopback-detection interface gigabitEthernet [...]

  • Page 107

    96 Chapter 17 ACL Commands access-list create Description The access-list create command is used to create standard-IP ACL and extend-IP ACL. Synt ax access-list create access-list-num Parameter access-list-num —— ACL ID, rang ing from 100 to 299. The ID range of S tandard-IP ACL ranges is 100-199 and the Extend-IP ACL is 200-299. Command Mode [...]

  • Page 108

    97 TL-SG2424(config)# mac access-list 23 access-list standard Description The access -list standard command is used to add S tandard-IP ACL rule. T o delete the correspondi ng rule, please use no access-list standard command. S tandard-IP ACLs analyze and process da ta p ackets based on a series of match conditions, which c an be the source IP addr[...]

  • Page 109

    98 access-list extended Description The acces s-list extended command is used to add Extended-IP ACL rule. T o delete the correspondi ng rule, please use no access-list exten ded command. Synt ax access-list extended acl-id rule rule-id [ deny | permit ] [[ sip source-ip ] smask source-ip-mask ] [[ dip destination-ip ] dm ask destination-ip-mask ] [...]

  • Page 110

    99 rule Description The rule command is used to configure MAC ACL rule. T o delete the corresponding rule, please use no rule command. Synt ax rule rule-id [ deny | permit ] [[ smac source-mac ] smask source-mac-mas k ] [[ dmac destination-mac ] dmask destination-mac-mask ] no rule rule-id Parameter rule-id —— The rule ID. deny —— The opera[...]

  • Page 111

    100 Policy is used to control the data p a c kets those match the corresponding ACL rules by configuring ACLs and actions together for effect. The operations here include stream mirror , stream condi tion, QoS Remarking and redirect. Synt ax access-list policy name name no access-list policy name name Parameter name —— The Policy Name, ranging [...]

  • Page 112

    101 access-list bind(interface) Description The access- list bind command is used to bind a policy to a specified port. T o cancel the bind re lation, please use no access-list bind command. Synt ax access-list bind policy-name no access-list bind policy-name Parameter policy-name —— The name of the policy desired to bind. Command Mode Interfac[...]

  • Page 113

    102 TL-SG2424(config-if)# access-list bind policy1 show access-list Description The show access-list command is used to display configuration of ACL. Synt ax show access-list acl-id Parameter acl-id —— The ID of the ACL selected to display the configurat ion. Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the conf[...]

  • Page 114

    103 show access-list bind Description The show access-list bind command is used to displa y the configuration of Policy bind. Synt ax show access-list bind Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the configuration of Policy bind: TL-SG2424(config)# show access-list bind[...]

  • Page 115

    104 Chapter 18 DHCP Filtering Commands DHCP Filtering functions to monitor the process of hosts obt aining IP addresses from DHCP Servers by configuring the desir ed port(s) as Trusted Port(s). Only the ho st s connected to the trusted port(s) can receive DHCP packets from DHCP servers. In this way , the switch can devoid of DHCP cheating att ack w[...]

  • Page 116

    105 Example Configure port 1 to be a trusted port: TL-SG2424(config)#interface gigabitEthernet 1/0/1 TL-SG2424(config-if)#ip dhcp filtering trust show ip dhcp filtering Description The show ip dhcp filtering command is used to displa y the running status of DHCP Filtering. Syntax show ip dhcp filtering Command Mode Privileged EXEC Mode and Any Conf[...]

  • Page 117

    106 Chapter 19 PoE Commands Note: Only TL-SG2424P support s PoE function. PoE (Power over Ethernet) technology describes a system to transmit electrical power along with data to remote devices over standard twisted-pair cable in an Ethernet netwo rk. It is especially useful for supplying power to IP telephones, wi reless LAN access points, cameras [...]

  • Page 118

    107 no power profile name Parameter name —— The PoE profile name, ranging from 1 to 16 characters. If the name being assigned contains spaces then put it inside double quotes. supply —— The PoE status of the p ort in th e profile. By default, the PoE status is “enable”. priority —— The PoE priority of the port in the profile. The pr[...]

  • Page 119

    108 Syntax power time-range name no power time-range name Parameter name —— The PoE time-range name, ranging fr om 1 to 16 characters. Command Mode Global Configuration Mode Example Create a PoE time-range named “tRange1” for the switch: TL-SG2424P(config)# power time-range tRange1 power holiday Description The power holiday command is used[...]

  • Page 120

    109 absolute Description The absolute command is used to create an absolute mode time-range for the PoE time-range of the switch. The switch will supply power when the specified absolute time occurs. To delete the corresponding absolute mode time-range configuration, please use no absolute command. Syntax absolute start start-date end end-date no a[...]

  • Page 121

    11 0 Parameter week-day — — Periodic Mode, with “1-7”, “daily”, “off-day” an d “working-day” options. “1-7” should be entered in the form at of 1-3, 7 whic h represent Monday, Tuesday, Wednesday and Sunday. “Daily ” represents ever y day. “Off-day” represents weekend. “Working-da y” represents working day. time-s[...]

  • Page 122

    111 TL-SG2424P(config-pwr-time-range)# holiday exclude power inline consumption (interface) Description The pow er inline consumption command is used to conf igure the power limit the corresponding port can supply. Syntax power inline consumption { power-l imit | auto | clas s1 | class2 | class3 | class4 } Parameter power-limit ——The max power [...]

  • Page 123

    11 2 system power limit, the PD linked to t he port with lower priority will be disconnected. By default, the priority level is “low”. Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Configure the PoE priority as “low” for port 2: TL-SG2424P(config)# interface gigabitEthernet [...]

  • Page 124

    11 3 Syntax power inline profile name no power inline profile Parameter name —— The name of the PoE profile to be bound to the port. If the name being assigned contains spaces then put it inside double quotes. Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Bind the PoE profile na[...]

  • Page 125

    11 4 show power inline Description The show power inline command is used to display the global PoE information of the system. Syntax show power inline Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the PoE information of the system: TL-SG2424P# show pow er inline show power inline configuration interface Description Th[...]

  • Page 126

    11 5 Parameter port —— The Ethernet port number. Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the PoE information of all ports: TL-SG2424P# show pow er inline information interface show power profile Description The show pow er profile command is used to display the defined PoE profile. Syntax show power profile [...]

  • Page 127

    11 6 show power time-range Description The show pow er time-range command is used to displa y the configuration of PoE time-range. Syntax show power time-range Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the configurat ion of PoE time-range: TL-SG2424P# show pow er time-range[...]

  • Page 128

    11 7 Chapter 20 MSTP Commands MSTP (Multiple S panning T ree Protocol), compat ible with both STP and RSTP and subject to IEEE 802.1s, can disbranch a ri ng network. STP is to block redunda nt links and backup links as well as optimize paths. spanning-tree(global) Description The spanning-tree command is used to enable STP function globally . T o d[...]

  • Page 129

    11 8 TL-SG2424(config-if)# spanning-tree spanning-tree common-config Description The sp anning-tree common-config command is used to configure the parameters of the port s for comparison in the CIST and the common parameters of all insta nces. T o return to the default co nfiguration, please use no sp anning-tree common-config command. CIST (Common[...]

  • Page 130

    11 9 Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Enable the STP function of por t 1, and configure the Port Priority as 64, ExtPath Cost as 100, IntPath Cost as 100, and then enable Edge Port: TL-SG2424(config)# interface gigabitEthernet 1/0/1 TL-SG2424(config-if)# spanning-tree c[...]

  • Page 131

    120 default configuration of the co rresponding Instance, please use no sp anning-tree mst configuration command. Synt ax sp anning-tree mst configuration no sp anning-tree mst configuration Command Mode Global Configuration Mode Example Enter into the MST configuration mode: TL-SG2424(config)# sp anning-tree mst configuration TL-SG2424(Config-mst)[...]

  • Page 132

    121 TL- SG2424(config-mst)# no inst ance 1 Remove VLANs 1-50 in mapping VLANs 1-100 for Instance 1: TL-SG2424(config)# sp anning-tree mst configuration TL-SG2424(config-mst)# no instance 1 vlan 1-5 0 name Description The name command is used to configure t he region name of MST instance. Synt ax name name Parameters name —— The regio n name, us[...]

  • Page 133

    122 TL-SG2424(config)# sp anning-tree mst configuration TL-SG2424(config-mst)# revision 100 spanning-tree mst instance Description The sp anning-tree mst inst ance command is used to configure the priorit y of MST inst ance. T o return to the default va lue of MST instance priority , please use no sp anning-tree mst instance command. Synt ax sp ann[...]

  • Page 134

    123 Parameter instance-id —— Instance ID, ranging from 1 to 8. pri —— Port Priority , which must be multiple of 16 ranging from 0 to 240. By default, it is 128. Port Priority is an im portant criterion on determining if the port will be chosen as the root port by the device connected to this port. cost —— Path Cost, ranging from 0 to 20[...]

  • Page 135

    124 spanning-tree tc-defend Description The spanning-tree tc-defend command is used to confi gure the TC Protect of S panning T ree globally . T o return to t he default configurat ion, please use no sp anning-tree tc-def end command. A switch removes MAC address entries upon receiving TC-BPDUs. If a malicious user continuously sends TC-BPDUs to a [...]

  • Page 136

    125 Parameter forward-time —— Forward Delay , which is the time for the port to transit its state af ter the network topology is change d. Forw ard Delay ranges from 4 to 30 in seconds and it is 15 by default. Other wise, 2 * (Forward Delay - 1) >= Max Age. hello-time —— Hello T ime, which is the interval to send BPDU packets , and used [...]

  • Page 137

    126 TL-SG2424(config)# sp anning-tree hold-count 8 spanning-tree max-hops Description The sp anning-tree max-hops command is used to configure the maximum number of hops that occur in a specific region before the BPDU is discarded. T o return to the default c onfigurations, please use no sp anning-tree max-hops command. Synt ax sp anning-tree max-h[...]

  • Page 138

    127 Example Enable the BPDU filter function for port 2: TL-SG2424(config)# interface gigabitEthernet 1/0/2 TL-SG2424(config-if)# spanning-tree bp dufilter spanning-tree bpduguard Description The spanning-tree bp duguard command is used to enable the BPDU protect function for a port. With the BPDU protect function enabled, the port will set itself a[...]

  • Page 139

    128 Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Enable the Loop Protect function for port 2: TL-SG2424(config)# interface gigabitEthernet 1/0/2 TL-SG2424(config-if)# spanning-tree guard loop spanning-tree guard root Description The spanning-tree guard root command is used to enabl[...]

  • Page 140

    129 removing MAC address entries, whic h may decrease the performance and stability of the network. With the Prot ect of Sp anning T ree f unction enabled, you can configure the number of TC-BPDUs in a required time, so as to avoid the process of removing MAC addresses frequently . Synt ax sp anning-tree guard tc no sp anning-tree guard tc Command [...]

  • Page 141

    130 Synt ax show spanning-tree active Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the active information of spanning-tree: TL-SG2424(config)# show spanning-tree active show spanning-tree bridge Description The show spanning-tree bridge command is used to display the bridge parameters. Synt ax show spanning-tree bri[...]

  • Page 142

    131 Example Display the spanning-tree information of all ports: TL-SG2424(config)# show spanning-tree interface Display the spanning-tree information of port 2: TL-SG2424(config)# show spanning-tree interface gigabitEthernet 1/0/2 Display the spanning-tree mode information of port 2: TL-SG2424(config)# show spanning-tree interface gigabitEthernet 1[...]

  • Page 143

    132 show spanning-tree mst Description The show spanning-tree mst command is used to display the related information of MST Instan ce. Synt ax show spanning-tree mst { configuration [ digest ] | inst ance instance-id [ interface [ gigabitEthernet port ]]} Parameter instance-id —— Instance ID desired to show , ranging from 1 to 8. port —— Th[...]

  • Page 144

    133 Chapter 21 IGMP Commands IGMP Snooping (Internet Group Management Prot ocol Snooping) is a multicast control mechanism running on Layer 2 switch. It can effectively prevent multicast groups being broadcasted in the network. ip igmp snooping(global) Description The ip igmp snooping command is used to configure IGMP Snooping globally . T o disabl[...]

  • Page 145

    134 TL-SG2424(config)# interface gigabitEthernet 1/0/3 TL-SG2424(config-if)# ip igmp snooping ip igmp snooping immediate-leave Description The ip igmp snooping immediate-leave command is used to configure the Fast Leave function for port. T o disabl e the Fast Leave fu nction, please use no ip igmp snooping immediate-leave command. Synt ax ip igmp [...]

  • Page 146

    135 ip igmp snooping vlan-config Description The ip igmp snooping v lan-config command is used to enable VLAN IGMP Snooping function or to modify IGMP Snooping parameters, and to create static multicast IP entry . T o disable the VL AN IGMP Snooping function, please use no ip igmp snooping vlan-config command. Synt ax ip igmp snooping vlan-config v[...]

  • Page 147

    136 Example Enable the IGMP Snooping function and m odify Router Port T ime as 300 seconds, Member Port T ime as 200 sec onds for VLAN 1-3, and set the Leave time as 15 seconds for VLAN 1-2: TL -SG24 24(c onfi g)# ip igmp snooping vlan-config 1-3 rtime 300 TL -SG242 4(co nfig )# ip igmp snooping vlan -config 1-3 mtime 200 TL -SG242 4(co nfig )# ip [...]

  • Page 148

    137 leave-time —— Leave Time, which is the interval between the switch receiving a leave message from a host and the switch removing the host from the multicast groups. Leave Time ranges from 1 to 30 in seconds. By default, it is 1. port —— The Ethernet port number . Command Mode Global Configuration Mode Example Enable Multicast VLAN 3, an[...]

  • Page 149

    138 Example Bind the filtering address ID 2-6 to port 3: TL-SG2424(config)# interface gigabitEthernet 1/0/3 TL-SG2424(config-if)# ip igmp snooping filter addr-id 2-6 ip igmp snooping filter(global) Description The ip igmp snooping filter command is used to add or modify the multica st filtering IP-range. T o del ete the multicast filter ing IP-rang[...]

  • Page 150

    139 Synt ax ip igmp snooping filter no ip igmp snooping filter Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Enable IGMP Snooping filter function for port 3: TL-SG2424(config)# interface gigabitEthernet 1/0/3 TL-SG2424(config-if)# ip igmp snooping filter ip igmp snooping filter maxg[...]

  • Page 151

    140 Synt ax ip igmp snooping filter mode mode Parameter mode —— Action Mode, with refuse and accept options. Refuse indicates only the multicast packe ts whose multicast IP is not in th e IP-range will be processed, while accept indicates only the multicas t pa ckets whose multicast IP is in the IP-range will be processed. By def ault, the opti[...]

  • Page 152

    141 Synt ax show ip igmp snooping interface gigabitEthernet [ port | port-list ] { basic-config | filt er | packet-stat } Parameter port —— The Ethernet port number . port-list —— The list of Ethernet port s. basic-config | filter | pa cket-stat —— The related configuration information selected to display . Command Mode Privileged EXEC [...]

  • Page 153

    142 TL-SG2424# show ip igmp snooping vlan 2 show ip igmp snooping multi-vlan Description The sho w ip igmp snooping multi-vlan command is used to display the Multicast VLAN configuration. Synt ax show ip igmp snooping multi-vlan Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the Multicast VLAN configuration: TL-SG2424[...]

  • Page 154

    143 Example Display the information of all IGMP snooping groups: TL-SG2424#show ip igmp snooping group s Display all the multicast entries in VLAN 5: TL-SG2424(config)#show ip igmp snooping groups vlan 5 Display the count of multic ast entries in VLAN 5: TL-SG2424(config)#show ip igmp snooping groups vlan 5 count Display the dynamic multicast group[...]

  • Page 155

    144 Chapter 22 SNMP Commands SNMP (Simple Network Management Protocol) func tions are used to manage the network devices for a smooth communication, whic h can facilitate the network administrators to monitor the network nodes and implement the proper operation. snmp-server Description The snmp-server command is used t o enable the SNMP function. B[...]

  • Page 156

    145 mib-oid —— MIB Object ID. It is the Object I dentifier (OID) for the entry of V iew , ranging from 1 to 61 characters. include | exclude —— View T ype, with include and exclude options. They represent the view entry can/cannot be managed by the SNMP management station individually . Command Mode Global Configuration Mode Example Add a V[...]

  • Page 157

    146 By default, the Security Level is noAuthN oPriv . There is no need to configure this in SNMP v1 Mode and SNMP v2c Mode. read-view —— Select the View to be the Read View . The management access is restricted to read-only , and changes cannot be made to the assigned SNMP Vie w . write-view —— Select the View to be the Write V iew . The ma[...]

  • Page 158

    147 Parameter name —— User Name, ranging from 1 to 16 characters. local | remote —— User T ype, with local and remote options. Local indicates that the user is c onnected to a local SNMP engine, while remote means that the user is connected to a remote SNMP engine. group-name —— The Group Name of the User . The User is classified to the[...]

  • Page 159

    148 snmp-server community Description The snmp-server community command is used to add Community . T o delete the corresponding Community , please use no snmp-server community command. SNMP v1 and SNMP v2c adopt community nam e authentication. The community name can limit access to the SNMP agent from SNMP network management station, func tioning a[...]

  • Page 160

    149 udp-port —— UDP port, which is used to s end notifications. The UDP port functions with the IP address for the not ification sending. It ranges from 1 to 65535. user-name —— The User name of the management station. smode —— The Security Model of the mana gement station, with v1, v2c and v3 options. By default, the option is v1. slev[...]

  • Page 161

    150 snmp-server engineID Description The snmp-server engineID command is used to configure the local and remote engineID of the switch. T o restore to the default setting, please use no snmp-server engineID command. Synt ax snmp-server engineID { [ local local-engineID ] [ remote remote-engineID ] } no snmp-server engineID Parameter local-engineID [...]

  • Page 162

    151 Synt ax snmp-server traps snmp [ lin kup | linkdown | wa rmstart | coldst art ] no snmp-server traps snmp [ linkup | linkdown | warmst art | coldstart ] Parameter linkup —— Enable linkup trap. It is s ent when port status changes from linkdown to linkup. By default, it is enabled. linkdown ——Enable linkdown trap. It is sent when port st[...]

  • Page 163

    152 snmp-server traps Description The snmp-server traps command is used to enable SNMP extended traps. T o disable the sending of SNMP extended trap s, please use no snmp-server trap s command. Synt ax snmp-server traps { bandwid th-control | cpu | flash | ipaddr-change | lldp | loopback-detection | storm-c ontrol | spanning-tree } no snmp-server t[...]

  • Page 164

    153 snmp-server traps mac Description The snmp-server traps mac command is used to enable SNMP extended MAC address-related traps which include four types: new , full, learn-mode-change and max-lear ned. T o disable the sending of SNMP extended MAC address related traps, please use no snmp-server traps mac command. Synt ax snmp-server traps mac [ n[...]

  • Page 165

    154 Synt ax snmp-server traps vlan [ create | delete ] no snmp-server traps vlan [create | delete ] Parameter create —— Enable VLAN-created trap. It is sent when new VLAN is created successfully . delete —— Enable VLAN-deleted traps. It is sent when VLAN is deleted successfully . Command Mode Global Configuration Mode Example Enable all SNM[...]

  • Page 166

    155 seconds —— The interval to take samplings from the port, ranging from 10 to 3600 in seconds. By default, it is 1800. owner-name —— The owner of the history sample entry , ranging from 1 to 16 characters. By default, it is “monitor”. Command Mode Global Configuration Mode Example Configure the sample port as Gi1/0/2 and the sample in[...]

  • Page 167

    156 Command Mode Global Configuration Mode Example Configure the user name of entry 1, 2, 3 and 4 as user1, the description of the event as description1, the type of event as log and the owner of the eve nt as owner1: TL-SG2424(config)# rmon event 1-4 user user1 description description1 ty pe log ow ne r owner1 rmon alarm Description The rmon alarm[...]

  • Page 168

    157 last sampled value from the current val ue, and then comparing the difference in the values with the threshold. By def ault, the Sample T ype is “absolute”. r-hold —— The rising counter value that tr iggers the Rising Threshold alarm, ranging from 1 to 65535. By default, it is 100. r-event —— Rise Event, which is the index of the co[...]

  • Page 169

    158 Synt ax show snmp-server Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display SNMP configuration globally: TL-SG2424# show snmp-server show snmp-server view Description The show snmp-server view command is used to display the View t able. Synt ax show snmp-server view Command Mode Privileged EXEC Mode and Any Co nfigura[...]

  • Page 170

    159 show snmp-server user Description The show snmp-server user command is used to display the User table. Synt ax show snmp-server user Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the User table: TL-SG2424# show snmp-server user show snmp-server community Description The sho w snmp-server community command is used[...]

  • Page 171

    160 TL-SG2424# show snmp-server host show snmp-server engineID Description The show snmp-server engineID command is used to display the engineID of the SNMP . Synt ax show snmp-server engineID Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the engineID: TL-SG2424# show snmp-server engineID show rmon history Descriptio[...]

  • Page 172

    161 show rmon event Description The show rmon event command is used to displa y the configuration of SNMP-RMON Event. Synt ax show rmon event [ index ] Parameter index —— The index nu mber of the entry sele cted to display the configuration, ranging from 1 to 12, in the format of 1- 3, 5. Y ou can select more than one entry for each command. By[...]

  • Page 173

    162 Chapter 23 LLDP Commands Note: Only TL-SG2424P support s LLDP function. LLDP function enables network devic es to advertise their own device information periodically to neighbors on the same LAN. The information of the LLDP devices in the LAN can be stored by its neighbor in a standard MIB, so it is possible fo r the information to be accessed [...]

  • Page 174

    163 Parameter multiplier —— Configure the Hold Multiplier parameter . It ranges from 2 to 10. By default, it is 4. Command Mode Global Configuration Mode Example S pecify Hold Multiplier as 5: TL-SG2424P(config)# ll d p hold-multiplier 5 lldp timer Description The lldp timer command is used to confi gure the parameters about transmission. T o r[...]

  • Page 175

    164 be sent out (the number of LLDPDUs equals this para meter). The value ranges from 1 to 10 and the default value is 3. Command Mode Global Configuration Mode Example S pecify the T ransmit Interval of LLD PDU as 45 seconds and Trap message to NMS as 120 seconds: TL-SG2424P(config)# lld p timer tx-interval 45 TL-SG2424P(config)# lld p timer notif[...]

  • Page 176

    165 Synt ax lld p receive no lld p receive Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Enable port 1 to receive LLDPDU: TL-SG2424P(config)# interface gigabitEthernet 1/0/1 TL-SG2424P(config-if)# lldp receive lldp transmit Description The lld p transmit command is used to enable th[...]

  • Page 177

    166 Synt ax lld p snmp-trap no lld p snmp-trap Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Enable the SNMP notif ication for port 1: TL-SG2424P(config)# interface gigabitEthernet 1/0/1 TL-SG2424P(config-if)# lldp snmp-trap lldp tlv-select Description The lld p tlv-select command i[...]

  • Page 178

    167 lldp med-location Description The lldp med-location command is used to configure the Locat ion Identification TL V's content in outgoing LLDPDU of the port. Synt ax lld p med-location { emergency-number identifier | civic-address { [ language language ] [ provi nce-state province-st ate ] [ county county ] [city city ] [ street street ] [ [...]

  • Page 179

    168 S tatus will be changed to Tx&Rx. T o disable the LLDP-MED feature for the corresponding port, please use no lldp med-st atu s command. Synt ax lld p med-status no lld p med-st atus Command Mode Interface Configuration Mode (interfa ce gigabitEthernet / interface range gigabitEthernet) Example Enable the LLDP-MED feature for port 2: TL-SG24[...]

  • Page 180

    169 show lldp Description The show lldp comman d is used to display t he global configuration of LLDP and LLDP-MED fast start repeat count number . Synt ax show lldp Command Mode Privileged EXEC Mode and Any Co nfiguration Mode Example Display the global configur ation of LLDP and LLDP-MED fast start repeat count number: TL-SG2424P# show lldp show [...]

  • Page 181

    170 show lldp local-information interface Description The show lld p local-information interface command is used to display the LLDP and LLDP-MED local information of the corresponding port. By default, the information of all the ports will be displayed. Synt ax show lldp local-information interface [ gigabitEthernet port ] Parameter port —— Th[...]

  • Page 182

    171 show lldp traffic interface Description The show lld p traffic interface command is used to display the LLDP statistic information between the local device and neighbo r device of the corresponding port. By default, the LLDP st atistic informat ion of all the ports will be displayed. Synt ax show lldp traffic interface [ gigabitEthernet port ] [...]