Page 1 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch REV1.2.1 1910010930...
Page 2 Specifications are subject to change without notice. is a registered trademark of TP-LINK TECHNOLOGIES CO., LTD. Other brands and product names are trademarks or registered trademarks of their respective holders. No part of the specifications may be reproduced in any form or by any means or used to make any derivative such as translation, transformation, or adaptation without permission from TP-LINK TECHNOLOGIES CO., LTD.
Page 3: Table Of Contents
CONTENTS Preface ………………………………………………………………………………….1 Chapter 1 Using the CLI ..................4 1.1 Accessing the CLI ......................4 1.1.1 Logon by a console port ..................4 1.1.2 Logon by Telnet ....................6 1.2 CLI Command Modes ....................10 1.3 Security Levels ......................11 1.4 Conventions ........................12 1.4.1 Format Conventions ...................12 1.4.2 Special Characters....................12 1.4.3 Parameter Format....................12...
Page 4 protocol-vlan..........................25 show protocol-vlan template....................26 show protocol-vlan vlan ......................26 show protocol-vlan interface....................27 Chapter 5 Voice VLAN Commands ..............28 voice vlan ..........................28 voice vlan aging time ......................28 voice vlan mac-address......................29 switchport voice vlan mode ....................30 show voice vlan ........................30 show voice vlan oui .......................31 show voice vlan switchport ....................31 Chapter 6 GVRP Commands................
Page 5 line............................46 password ..........................47 login............................47 login local ..........................48 show user account-list ......................48 show user configuration......................49 Chapter 9 Binding Table Commands..............50 ip source binding ........................50 ip dhcp snooping ........................51 ip dhcp snooping global......................52 ip dhcp snooping information option ..................53 ip dhcp snooping information strategy ...................53 ip dhcp snooping information remote-id.................54 ip dhcp snooping information circuit-id ..................54 ip dhcp snooping trust ......................55...
Page 6 Chapter 12 IEEE 802.1X Commands ..............67 dot1x system-auth-control .....................67 dot1x auth-method ........................67 dot1x guest-vlan(global) ......................68 dot1x quiet-period........................69 dot1x timeout.........................69 dot1x max-reauth-req ......................70 dot1x............................71 dot1x guest-vlan(interface) ....................71 dot1x port-control ........................72 dot1x port-method .........................73 radius.............................73 radius server-account ......................74 show dot1x global........................75 show dot1x interface ......................75 show radius accounting ......................76 show radius authentication ....................76...
Page 7 ip http secure-server download certificate ................87 ip http secure-server download key ..................88 show ip http secure-server ....................89 Chapter 16 MAC Address Commands..............90 mac address-table static......................90 mac address-table aging-time ....................91 mac address-table filtering ....................91 mac address-table max-mac-count ..................92 show mac address-table address ..................93 show mac address-table aging-time ..................94 show mac address-table max-mac-count interface ...............94 show mac address-table interface ..................95...
Page 8 loopback interface ....................... 110 show system-time........................ 110 show system-time dst ......................111 show system-time ntp......................111 show system-info......................... 112 show running-config ......................112 show cable-diagnostics interface..................112 Chapter 18 Ethernet Configuration Commands ..........114 interface fastEthernet ......................114 interface range fastEthernet ....................114 interface gigabitEthernet......................
Page 9 qos queue dscp-map ......................129 qos queue mode........................130 show qos interface ......................131 show qos cos-map ......................132 show qos dscp-map ......................132 show qos queue mode ......................133 show qos status........................133 Chapter 20 Port Mirror Commands ..............134 monitor session destination interface ..................134 monitor session source interface..................135 show monitor session ......................136 Chapter 21 Port isolation Commands ..............137 port isolation ........................137...
Page 10 access-list policy action .......................152 redirect interface........................153 s-condition ...........................153 s-mirror ..........................154 access-list bind(interface)....................155 access-list bind(vlan) ......................155 show time-range........................156 show holiday........................156 show access-list ........................156 show access-list policy ......................157 show access-list bind ......................157 Chapter 24 MSTP Commands ................159 spanning-tree(global)......................159 spanning-tree(interface) ......................159 spanning-tree common-config .....................160 spanning-tree mode......................161 spanning-tree mst configuration ..................162 instance ..........................162...
Page 11 show spanning-tree mst ......................175 Chapter 25 IGMP Commands................176 ip igmp snooping(global) .....................176 ip igmp snooping(interface) ....................176 ip igmp snooping immediate-leave ..................177 ip igmp snooping drop-unknown..................177 ip igmp snooping vlan-config ....................178 ip igmp snooping multi-vlan-config ..................179 ip igmp snooping filter add-id....................180 ip igmp snooping filter(global)....................181 ip igmp snooping filter(interface) ..................181 ip igmp snooping filter maxgroup..................182...
Page 12 show snmp-server view .......................201 show snmp-server group .....................202 show snmp-server user .......................202 show snmp-server community.....................202 show snmp-server host .......................203 show snmp-server engineID....................203 show rmon history .......................203 show rmon event .........................204 show rmon alarm.........................205 Chapter 27 LLDP Commands................206 lldp............................206 lldp hold-multiplier........................206 lldp timer..........................207 lldp receive ..........................208 lldp transmit .........................208...
Page 13: Preface
(Command Line Interface). The device mentioned in this Guide stands for TL-SL3428/TL-SL3452 JetStream L2 Managed Switch. The two devices of TL-SL3428 and TL-SL3452 are sharing this User Guide. For simplicity, we will take TL-SL3428 for example throughout the configuration chapters. TL-SL3428 and TL-SL3452 just differ in the number of LED indicators and ports and all figures in this guide are of TL-SL3428.
Page 14 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide server, and record the IP address, MAC address, VLAN and the connected Port number of the Host for automatic binding. Chapter 10: ARP Inspection Commands Provide information about the commands used for protecting the switch from the ARP cheating or ARP Attack.
Page 15 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 23: ACL Commands Provide information about the commands used for configuring the ACL (Access Control List). Chapter 24: MSTP Commands Provide information about the commands used for configuring the MSTP (Multiple Spanning Tree Protocol).
Page 16: Chapter 1 Using The Cli
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 1 Using the CLI 1.1 Accessing the CLI You can log on to the switch and access the CLI by the following two methods: Log on to the switch by the console port on the switch.
Page 17 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Figure 1-2 Connection Description Select the port to connect in Figure 1-3, and click OK. Figure 1-3 Select the port to connect Configure the port selected in the step above as the following Figure 1-4 shown. Configure Bits per second as 38400, Data bits as 8, Parity as None, Stop bits as 1, Flow control as None, and then click OK.
Page 18: 1.1.2 Logon By Telnet
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide The DOS prompt” TL-SL3428>” will appear after pressing the Enter button as Figure 1-5 shown. It indicates that you can use the CLI now. Figure 1-5 Log in the Switch 1.1.2 Logon by Telnet...
Page 19 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Now, you can logon by Telnet in login local mode. Make sure the switch and the PC are in the same LAN. Click Start → Run to open the Run window and type cmd in the prompt Run window as Figure 1-7 and click OK.
Page 20 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Type enable command to enter Privileged EXEC Mode. A password that you have set through Console port connection is required. Here the password is set as 123. Figure 1-10 Enter to the Privileged EXEC Mode ...
Page 21 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Figure 1-12 Connecting to the Switch You are prompted to enter the connection password 123 you have set through Console port connection, and then you are in User EXEC Mode. Figure 1-13 Enter into the User EXEC Mode When entering enable command to access Privileged EXEC Mode, you are required to give the password 123 you have set through Console port connection.
Page 22: 1.2 Cli Command Modes
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide 1.2 CLI Command Modes The CLI is divided into different command modes: User EXEC Mode, Privileged EXEC Mode, Global Configuration Mode, Interface Configuration Mode and VLAN Configuration Mode. Interface Configuration Mode can also be divided into Interface fastEthernet, Interface gigabitEthernet, Interface link-aggregation and some other modes, which is shown as the following diagram.
Page 23: 1.3 Security Levels
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Use the end command or press Ctrl+Z to Use the vlan vlan-list VLAN return to Privileged EXEC mode. command to enter this TL-SL3428(config- Configuration mode from Global vlan)# Enter the exit or # command to return to Mode Configuration mode.
Page 24: 1.4 Conventions
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide allows you to monitor, configure and manage the switch in Privileged EXEC Mode, Global Configuration Mode, Interface Configuration Mode and VLAN Configuration Mode. Users get the privilege to the User level once connecting console port with the switch or logging in by Telnet.
Page 25 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide MAC Address must be enter in the format of xx:xx:xx:xx:xx:xx  One or several values can be typed for a port-list or a vlan-list using comma to separate. Use  a hyphen to designate a range of values, for instance, 1,3-5,7 indicates choosing 1,3,4,5,and The port number must enter in the format of 1/0/3, meaning unit/slot/port.
Page 26: Chapter 2 User Interface
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 2 User Interface enable Description The enable command is used to access Privileged EXEC Mode from User EXEC Mode. Syntax enable Command Mode User EXEC Mode Example If you have set the password to access Privileged EXEC Mode from User EXEC Mode: TL-SL3428>enable...
Page 27: Disable
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide disable Description The disable command is used to return to User EXEC Mode from Privileged EXEC Mode. Syntax disable Command Mode Privileged EXEC Mode Example Return to User EXEC Mode from Privileged EXEC Mode: TL-SL3428#disable TL-SL3428>...
Page 28: End
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax exit Command Mode Any Configuration Mode Example Return to Global Configuration Mode from Interface Configuration Mode, and then return to Privileged EXEC Mode: TL-SL3428(config-if)#exit TL-SL3428(config)#exit TL-SL3428# Description The end command is used to return to Privileged EXEC Mode.
Page 29: Chapter 3 Ieee 802.1Q Vlan Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 3 IEEE 802.1Q VLAN Commands VLAN (Virtual Local Area Network) technology is developed for the switch to divide the LAN into multiple logical LANs flexibly. Hosts in the same VLAN can communicate with each other, regardless of their physical locations.
Page 30: Name
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax interface vlan vlan-id no interface vlan vlan-id Parameter vlan-id —— Specify IEEE 802.1Q VLAN ID, ranging from 1 to 4094. Command Mode Global Configuration Mode Example Create VLAN Interface 2: TL-SL3428(config)#interface vlan 2...
Page 31: Switchport Mode
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide switchport mode Description The switchport mode command is used to configure the Link Types for the ports. Syntax switchport mode { access | trunk | general } Parameter access | trunk | general —— Link Types. There are three Link Types for the ports.
Page 32: Switchport Trunk Allowed Vlan
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Configure Fast Ethernet port 3 whose link type is “access” to VLAN 2: TL-SL3428(config)#interface fastEthernet 1/0/3 TL-SL3428(config-if)#switchport access vlan 2 switchport trunk allowed vlan Description The switchport trunk allowed vlan command is used to add the desired Trunk port to IEEE 802.1Q VLAN, or to remove a port from the corresponding VLAN.
Page 33: Switchport Pvid
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax switchport general allowed vlan vlan-list { tagged | untagged } no switchport general allowed vlan vlan-list Parameter vlan-list —— VLAN ID list, ranging from 2 to 4094, in the format of 2-3, 5. It is multi-optional.
Page 34: Show Vlan Summary
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Specify the PVID of Fast Ethernet port 3 as 1: TL-SL3428(config)#interface fastEthernet 1/0/3 TL-SL3428(config-if)#switchport pvid 1 show vlan summary Description The show vlan summary command is used to display the summarized information of IEEE 802.1Q VLAN.
Page 35: Show Vlan
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show vlan Description The show vlan command is used to display the detailed information of IEEE 802.1Q VLAN. Syntax show vlan [id vlan-list] Parameter vlan-list —— Specify IEEE 802.1Q VLAN ID, ranging from 1 to 4094. Using the show vlan command without parameter displays the detailed information of all VLANs.
Page 36: Chapter 4 Protocol-Based Vlan Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 4 Protocol-based VLAN Commands Protocol VLAN (Virtual Local Area Network) is the way to classify VLANs based on Protocols. A Protocol is relative to a single VLAN ID. The untagged packets and the priority-tagged packets matching the protocol template will be tagged with this VLAN ID.
Page 37: Protocol-Vlan Vlan
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide protocol-vlan vlan Description The protocol-vlan vlan command is used to create a Protocol-based VLAN entry. To delete a Protocol-based VLAN entry, please use no protocol-vlan vlan command. Syntax protocol-vlan vlan vlan-id template template-idx...
Page 38: Show Protocol-Vlan Template
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax protocol-vlan no protocol-vlan Command Mode Interface Configuration Mode (interface fastEthernet / interface range fastEthernet / interface gigabitEthernet / interface range gigabitEthernet) Example Enable the Protocol-based VLAN feature for the Gigabit Ethernet port 25:...
Page 39: Show Protocol-Vlan Interface
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax show protocol-vlan vlan Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display information of the Protocol-based VLAN entry: TL-SL3428(config)#show protocol-vlan vlan show protocol-vlan interface Description The show protocol-vlan interface command is used to display port state and of Protocol-based VLAN interface.
Page 40: Chapter 5 Voice Vlan Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 5 Voice VLAN Commands Voice VLANs are configured specially for voice data stream. By configuring Voice VLANs and adding the ports with voice devices attached to voice VLANs, you can perform QoS-related configuration for voice data, ensuring the transmission priority of voice data stream and voice quality.
Page 41: Voice Vlan Mac-Address
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide no voice vlan aging time Parameter time —— Aging time (in minutes) to be set for the Voice VLAN. It ranges from 1 to 43200. Command Mode Global Configuration Mode Example Set the aging time for the Voice VLAN as 1 minute:...
Page 42: Switchport Voice Vlan Mode
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config)#voice vlan mac-address 00:11:11:11:11:11 mask FF:FF:FF:00:00:00 description TP- Phone switchport voice vlan mode Description The switchport voice vlan mode command is used to configure the Voice VLAN mode for the Ethernet port. Syntax...
Page 43: Show Voice Vlan Oui
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Display the configuration information of Voice VLAN globally: TL-SL3428(config)#show voice vlan show voice vlan oui Description The show voice vlan oui command is used to display the configuration information of Voice VLAN OUI.
Page 44 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Display the configuration information of Fast Ethernet port 1 in the Voice VLAN: TL-SL3428(config)#show voice vlan switchport fastEthernet 1/0/1 Display the configuration information of all the ports in the Voice VLAN: TL-SL3428(config)#show voice vlan switchport...
Page 45: Chapter 6 Gvrp Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 6 GVRP Commands GVRP (GARP VLAN registration protocol) is an implementation of GARP (generic attribute registration protocol). GVRP allows the switch to automatically add or remove the VLANs via the dynamic VLAN registration information and propagate the local VLAN registration information to other switches, without having to individually configure each VLAN.
Page 46: Gvrp Registration
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Interface Configuration Mode (interface fastEthernet / interface range fastEthernet / interface gigabitEthernet / interface range gigabitEhternet) Example Enable the GVRP function for Fast Ethernet ports 2-6: TL-SL3428(config)#interface range fastEthernet 1/0/2-6 TL-SL3428(config-if-range)#gvrp...
Page 47: Command Mode
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide restore to the default setting of a GARP timer, please use no gvrp timer command. Syntax gvrp timer { leaveall | join | leave } value no gvrp timer { leaveall | join | leave } Parameter leaveall | join | leave ——...
Page 48: Show Gvrp Global
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show gvrp global Description The show gvrp global command is used to display the global GVRP status. Syntax show gvrp global Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the global GVRP status:...
Page 49: Chapter 7 Etherchannel Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 7 Etherchannel Commands Etherchannel Commands are used to configure LAG and LACP function. LAG (Link Aggregation Group) is to combine a number of ports together to make a single high-bandwidth data path, which can highly extend the bandwidth. The bandwidth of the LAG is the sum of bandwidth of its member port.
Page 50: Port-Channel Load-Balance
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide port-channel load-balance Description The port-channel load-balance command is used to configure the Aggregate Arithmetic for LAG. To return to the default configurations, please use no port-channel load-balance command. Syntax port-channel load-balance {src-dst-mac | src-dst-ip}...
Page 51: Lacp Port-Priority
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Global Configuration Mode Example Configure the LACP system priority as 1024 globally: TL-SL3428(config)#lacp system-priority 1024 lacp port-priority Description The lacp port-priority command is used to configure the LACP system priority globally. To return to the default configurations, please use no lacp port-priority command.
Page 52: Show Etherchannel Load-Balance
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide 14. By default, it is empty, and will display the information of all EtherChannel Groups. detail —— The detailed information of EtherChannel. summary —— The EtherChannel information in summary. Command Mode Privileged EXEC Mode and Any Configuration Mode...
Page 53: Show Lacp Sys-Id
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide neighbor —— The neighbor LACP information. Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the internal LACP information of EtherChannel Group 1: TL-SL3428(config)#show lacp 1 internal show lacp sys-id Description The show lacp sys-id command is used to display the LACP system priority globally.
Page 54: Chapter 8 User Manage Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 8 User Manage Commands User Manage Commands are used to manage the user’s logging information by Web, CLI or SSH, so as to protect the settings of the switch from being randomly changed.
Page 55: User Access-Control Ip-Based
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config)#user name tplink password password type admin status enable user access-control ip-based Description The user access-control ip-based command is used to limit the IP-range of the users for login. Only the users within the IP-range you set here are allowed to login.
Page 56: User Access-Control Port-Based
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide no user access-control Parameter mac-addr —— The source MAC address. Only the user with this MAC address is allowed to login. Command Mode Global Configuration Mode Example Configure that only the user with the MAC address 00:00:13:0A:00:01 is allowed...
Page 57: User Max-Number
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide user max-number Description The user max-number command is used to configure the maximum login user number at the same time. To cancel the limit on login number, please use no user max-number command.
Page 58: Line
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Global Configuration Mode Example Configure the timeout time of the switch as 15 minutes: TL-SL3428(config)#user idle-timeout 15 line Description The line command is used to enter the Line Configuration Mode and make related configurations for the desired user(s), including the login mode and password configurations.
Page 59: Password
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide password Description The password command is used to configure the connection password. To clear the password, please use no password command. Syntax password password no password Parameter password —— Configure the connection password, which contains 16 characters at most, composing digits, English letters and underlines only.
Page 60: Login Local
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Configure the login of Console port connection 0 as login mode: TL-SL3428(config)#line console 0 TL-SL3428(config-line)#login Configure the login of virtual terminal connection 0-5 as login mode: TL-SL3428(config)#line vty 0 5 TL-SL3428(config-line)#login login local...
Page 61: Show User Configuration
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax show user account-list Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the information of the current users: TL-SL3428(config)#show user account-list show user configuration Description The user configuration command is used to display the security configuration information of the users, including access-control, max-number and the idle-timeout, etc.
Page 62: Chapter 9 Binding Table Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 9 Binding Table Commands You can bind the IP address, MAC address, VLAN and the connected Port number of the Host together, which can be the condition for the ARP Inspection and IP verify source to filter the packets.
Page 63: Ip Dhcp Snooping
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Global Configuration Mode Example Bind an ACL entry with the IP 192.168.0.1, MAC 00:00:00:00:00:01, VLAN ID 2 and the Port number 5 manually. And then enable the entry for the ARP detection: TL-SL3428(config)#ip source binding host1 192.168.0.1 00:00:00:00:00:01...
Page 64: Ip Dhcp Snooping Global
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide ip dhcp snooping global Description The ip dhcp snooping global command is configure DHCP-Snooping globally. To restore to the default value, please use no dhcp-snooping global command. Syntax ip dhcp snooping global { [global-rate global-rate] [dec-threshold...
Page 65: Ip Dhcp Snooping Information Option
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide ip dhcp snooping information option Description The ip dhcp snooping information option command is used to enable the Option 82 function of DHCP Snooping. To disable the Option 82 function, please use no ip dhcp snooping information option command.
Page 66: Ip Dhcp Snooping Information Remote-Id
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Global Configuration Mode Example Replace the Option 82 field of the packets with the switch defined one and then send out: TL-SL3428(config)#ip dhcp snooping information strategy replace ip dhcp snooping information remote-id...
Page 67: Ip Dhcp Snooping Trust
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide default Circuit ID for the Option 82, please use no ip dhcp snooping information circuit-id command. Syntax ip dhcp snooping information circuit-id string no ip dhcp snooping information circuit-id Parameter string —— Enter the sub-option Circuit ID, which contains 32 characters at most.
Page 68: Ip Dhcp Snooping Mac-Verify
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config-if)#ip dhcp snooping trust ip dhcp snooping mac-verify Description The ip dhcp snooping mac-verify command is used to enable the MAC Verify feature. To disable the MAC Verify feature, please use no ip dhcp snooping mac-verify command.
Page 69: Ip Dhcp Snooping Decline
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter value —— The value of Flow Control. The options are 0/5/10/15/20/25/30 (packet/second). The default value is 0, which stands for “disable”. Command Mode Interface Configuration Mode (interface fastEthernet / interface range fastEthernet / interface gigabitEthernet / interface range gigabitEthernet)
Page 70: Show Ip Dhcp Snooping
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax show ip source binding Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the IP-MAC-VID-PORT binding table: TL-SL3428(config)#show ip source binding show ip dhcp snooping Description The show ip dhcp snooping command is used to display the running status of DHCP-Snooping.
Page 71: Show Ip Dhcp Snooping Interface
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Display the Option 82 configuration status of DHCP-Snooping: TL-SL3428#show ip dhcp snooping information show ip dhcp snooping interface Description The show ip dhcp snooping interface command is used to display the DHCP-Snooping configuration of a desired Fast/Gigabit Ethernet ports or of all Ethernet ports.
Page 72: Chapter 10 Arp Inspection Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 10 ARP Inspection Commands ARP (Address Resolution Protocol) Detect function is to protect the switch from the ARP cheating, such as the Network Gateway Spoofing and Man-In-The-Middle Attack, etc. ip arp inspection(global)
Page 73: Ip Arp Inspection(Interface)
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Interface Configuration Mode (interface fastEthernet / interface range fastEthernet / interface gigabitEthernet / interface range gigabitEhternet) Example Configure the Fast Ethernet ports 2-5 as the Trusted Port: TL-SL3428(config)#interface range fastEthernet 1/0/2-5...
Page 74: Ip Arp Inspection Recover
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide of a specified port. To restore to the default speed, please use no ip arp inspection limit-rate command. Syntax ip arp inspection limit-rate value no ip arp inspection limit-rate Parameter value ——The value to specify the maximum amount of the received ARP packets per second, ranging from 10 to 100 in pps(packet/second).
Page 75: Show Ip Arp Inspection
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config-if)#ip arp inspection recover show ip arp inspection Description The show ip arp inspection command is used to display the ARP detection global configuration including the enable/disable status and the Trusted Port list.
Page 76: Show Ip Arp Inspection Statistics
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Display the configuration of all Ethernet ports: TL-SL3428(config)#show ip arp inspection interface show ip arp inspection statistics Description The show ip arp inspection statistics command is used to display the number of the illegal ARP packets received.
Page 77: Chapter 11 Dos Defend Command
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 11 DoS Defend Command DoS (Denial of Service) Attack is to occupy the network bandwidth maliciously by the network attackers or the evil programs sending a lot of service requests to the Host. With the DoS Defend enabled, the switch can analyze the specific field of the received packets and provide the defend measures to ensure the normal working of the local network.
Page 78: Show Ip Dos-Prevent
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter scan-synfin —— Scan SYNFIN attack. xma-scan —— Xma Scan attack. null-scan —— NULL Scan attack. port-less-1024 ——The SYN packets whose Source Port less than 1024. ping-flood —— Ping flooding attack. With the ping flood attack enabled, the switch will limit automatically the forwarding speed of ping packets to 512 Kbps when attacked by ping flood.
Page 79: Chapter 12 Ieee 802.1X Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 12 IEEE 802.1X Commands IEEE 802.1X function is to provide an access control for LAN ports via the authentication. Only the supplicant passing the authentication can access the LAN. dot1x system-auth-control Description The dot1x system-auth-control command is used to enable the IEEE 802.1X...
Page 80: Dot1X Guest-Vlan(Global)
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide pap: IEEE 802.1X authentication system uses extensible authentication protocol (EAP) to exchange information between the switch and the client. The transmission of EAP packets is terminated at the switch and the EAP packets are converted to the other protocol (such as RADIUS) packets for transmission eap-md5: IEEE 802.1X authentication system uses extensible authentication...
Page 81: Dot1X Quiet-Period
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Enable the Guest VLAN function for VLAN 5: TL-SL3428(config)#dot1x guest-vlan 5 dot1x quiet-period Description The dot1x quiet-period command is used to enable the quiet-period function. To disable the function, please use no dot1x quiet-period command.
Page 82: Dot1X Max-Reauth-Req
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide reauth-period time ——The maximum time for the switch to wait for the response from supplicant before resending a request to the supplicant., ranging from 1 to 9 in second. By default, it is 3.
Page 83: Dot1X
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide dot1x Description The dot1x command is used to enable the IEEE 802.1X function for a specified port. To disable the IEEE 802.1X function for a specified port, please use no dot1x command. Syntax...
Page 84: Dot1X Port-Control
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Enable the Guest VLAN function for Fast Ethernet port 2: TL-SL3428(config)#interface fastEthernet 1/0/2 TL-SL3428(config-if)#dot1x guest-vlan dot1x port-control Description The dot1x port-control command is used to configure the Control Mode of IEEE 802.1X for the specified port. By default, the control mode is “auto”. To restore to the default configuration, please use no dot1x port-control command.
Page 85: Dot1X Port-Method
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide dot1x port-method Description The dot1x port-method command is used to configure the control type of IEEE 802.1X for the specified port. By default, the control type is “mac-based”. To restore to the default configuration, please use no dot1x port-method command.
Page 86: Radius Server-Account
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter auth-pri ip —— The IP address of the authentication server. auth-sec ip —— The IP address of the alternative authentication server. auth-port port ——The UDP port of authentication server(s) ranging from 1 to 65535.
Page 87: Show Dot1X Global
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Global Configuration Mode Example Enable the accounting feature: TL-SL3428(config)#radius server-account show dot1x global Description The show dot1x global command is used to display the global configuration of 801.X. Syntax show dot1x global...
Page 88: Show Radius Accounting
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Display the configuration information of 801.X for Gigabit Ethernet port 25: TL-SL3428(config)#show dot1x interface gigabitEthernet 1/0/25 Display the configuration information of 801.X for all Ethernet ports: TL-SL3428(config)#show dot1x interface show radius accounting...
Page 89: Chapter 13 System Log Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 13 System Log Commands The log information will record the settings and operation of the switch respectively for you to monitor operation status and diagnose malfunction. logging buffer Description The logging buffer command is used to configure the severity level and the status of the configuration input to the log buffer.
Page 90: Logging File Flash
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide logging file flash Description The logging file flash command is used to configure the level and the status of the log file input. To disable the logging file flash funtion, please use no logging file flash command.
Page 91: Logging Host Index
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter buffer | flash —The output channels: buffer and flash. Clear the information of the two channels, by default. Command Mode Global Configuration Mode Example Clear the information in the log file: TL-SL3428(config)#clear logging buffer...
Page 92: Show Logging Local-Config
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Set the IP address as 192.168.0.148, the level 5: TL-SL3428(config)#logging host index 2 192.168.0.148 5 show logging local-config Description The show logging local-config command is used to display the configuration of the Local Log including the log buffer and the log file.
Page 93: Show Logging Buffer
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Display the configuration of the log host 2: TL-SL3428(config)#show logging loghost 2 show logging buffer Description The show logging buffer command is used to display the log information in the log buffer according to the severity level.
Page 94 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the log information with the level marked 0~3 in the log file: TL-SL3428(config)#show logging flash level 3...
Page 95: Chapter 14 Ssh Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 14 SSH Commands SSH (Security Shell) can provide the unsecured remote management with security and powerful authentication to ensure the security of the management information. ip ssh server Description The ip ssh server command is used to enable SSH function. To disable the SSH function, please use no ip ssh server command.
Page 96: Ip Ssh Timeout
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Enable SSH v2: TL-SL3428(config)#ip ssh version v2 ip ssh timeout Description The ip ssh timeout command is used to specify the idle-timeout time of SSH. To restore to the factory defaults, please use ip ssh timeout command.
Page 97: Ip Ssh Download
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Global Configuration Mode Example Specify the maximum number of the connections to the SSH server as 3: TL-SL3428(config)#ip ssh max-client 3 ip ssh download Description The ip ssh download command is used to download the SSH key file from TFTP server.
Page 98 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the global configuration of SSH: TL-SL3428(config)#show ip ssh...
Page 99: Chapter 15 Ssl Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 15 SSL Commands SSL（Secure Sockets Layer）, a security protocol, is to provide a secure connection for the application layer protocol(e.g. HTTP) based on TCP. Adopting asymmetrical encryption technology, SSL uses key pair to encrypt/decrypt information. A key pair refers to a public key (contained in the certificate) and its corresponding private key.
Page 100: Ip Http Secure-Server Download Key
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter ssl-cert —— The name of the SSL certificate which is selected to download to the switch. The length of the name ranges from 1 to 25 characters. The Certificate must be BASE64 encoded.
Page 101: Show Ip Http Secure-Server
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show ip http secure-server Description The show ip http secure-server command is used to display the global configuration of SSL. Syntax show ip http secure-server Command Mode Privileged EXEC Mode and Any Configuration Mode...
Page 102: Chapter 16 Mac Address Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 16 MAC Address Commands MAC address configuration can improve the network security by configuring the Port Security and maintaining the address information by managing the address Table. mac address-table static Description The mac address-table static command is used to add the static MAC address entry.
Page 103: Mac Address-Table Aging-Time
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Delete the static address entry whose MAC address is 00:02:58:4f:6c:23: TL-SL3428(config)#no mac address-table static 00:02:58:4f:6c:23 mac address-table aging-time Description The mac address-table aging-time command is used to configure aging time for the dynamic address. To return to the default configuration, please use no mac address-table aging-time command.
Page 104: Mac Address-Table Max-Mac-Count
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter mac-addr —— The MAC address to be filtered. vid —— The corresponding VLAN ID of the MAC address. It ranges from 1 to 4094. Command Mode Global Configuration Mode Example Add a filtering address entry of which VLAN ID is 1 and MAC address is...
Page 105: Show Mac Address-Table Address
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide deleted manually. The learned entries will be cleared after the switch is rebooted. When permanent mode is selected, the learned MAC address will be out of the influence of the aging time and can only be deleted manually too. However, the learned entries will be saved even the switch is rebooted.
Page 106: Show Mac Address-Table Aging-Time
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show mac address-table aging-time Description The show mac address-table aging-time command is used to display the Aging Time of the MAC address. Syntax show mac address-table aging-time Command Mode Privileged EXEC Mode and Any Configuration Mode...
Page 107: Show Mac Address-Table Interface
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show mac address-table interface Description The show mac address-table interface command is used to display the address configuration of an Ethernet port. Syntax show mac address-table interface { fastEthernet port | gigabitEthernet port } Parameter ——...
Page 108: Show Mac Address-Table Vlan
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax show mac address-table mac mac-addr Parameter mac-addr —— The specified MAC address. Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the information of the MAC address 00:00:00:00:23:00 TL-SL3428(config)#show mac address-table 00:00:00:00:23:00...
Page 109: Chapter 17 System Configuration Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 17 System Configuration Commands System Configuration Commands can be used to configure the system information and system IP of the switch, and to reboot and reset the switch, upgrade the switch system and commands used for device diagnose, including loopback test and cable test.
Page 110 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide UTC-12:00 —— TimeZone for International Date Line West. UTC-11:00 —— TimeZone for Coordinated Universal Time-11. UTC-10:00 —— TimeZone for Hawaii. UTC-09:00 —— TimeZone for Alaska. UTC-08:00 —— TimeZone for Pacific Time(US Canada). UTC-07:00 —— TimeZone for Mountain Time(US Canada).
Page 111: System-Time Dst Predefined
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide backup-ntp-server —— The IP address for the Secondary NTP Server. fetching-rate —— Specify the rate fetching time from NTP server. Command Mode Global Configuration Mode Example Configure the system time mode as NTP, the time zone is UTC-12:00, the primary NTP server is 133.100.9.2 and the secondary NTP server is...
Page 112: System-Time Dst Date
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide system-time dst date Description The system-time dst date command is used to specify the DST configuration in Date mode. This configuration is recurring in use. By default, the current year is used as the starting time. DST time periods should be within 12 months over one/two year.
Page 113: Hostname
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide configuration in recurring mode. This configuration is recurring in use. The time period is not restricted to be within one year. Syntax system-time dst recurring {sweek} {sday} {smonth} {stime} {eweek} {eday} {emonth} {etime} [offset]...
Page 114: Location
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax hostname hostname no hostname Parameter hostname —— System Name, ranging from 1 to 32 characters. It is the product name by default. Here it is TL-SL3428. Command Mode Global Configuration Mode Example...
Page 115: Contact-Info
—— Contact Information. It consists of 32 characters at most. It is www.tp-link.com by default. Command Mode Global Configuration Mode Example Configure the system contact information as www.tp-link.com: TL-SL3428(config)#contact-info www.tp-link.com ip management-vlan Description The ip management-vlan command is used to configure the management VLAN, through which you can log on to the switch.
Page 116: Ip Address
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide ip address Description The ip address command is used to configure the system IP address, Subnet Mask and Default Gateway. To restore to the factory defaults, please use no ip address command. This command should be configured in the Interface Configuration Mode of the management VLAN.
Page 117: Ip Address-Alloc Bootp
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Enable the DHCP Client function when the management VLAN of the switch is VLAN1: TL-SL3428(config)# interface vlan 1 TL-SL3428(config-if)# ip address-alloc dhcp ip address-alloc bootp Description The ip address-alloc bootp command is used to enable the BOOTP Protocol.
Page 118: Reboot
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Reset the software of the switch: TL-SL3428#reset reboot Description The reboot command is used to reboot the Switch. To avoid damage, please don’t turn off the device while rebooting. Syntax reboot Command Mode...
Page 119: Copy Tftp Startup-Config
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide The copy startup-config tftp command is used to backup the configuration file to TFTP server. Syntax copy startup-config tftp ip-address ip-addr filename name Parameter ip-addr —— IP address of the TFTP server. name — — Specify the name for the configuration file which would be backuped.
Page 120: Firmware Upgrade
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Download the configuration file named as config.cfg to the switch from TFTP server with the IP 192.168.0.148: TL-SL3428# copy tftp startup-config ip-address 192.168.0.148 filename config firmware upgrade Description The firmware upgrade command is used to upgrade the switch system file via the TFTP server.
Page 121: Tracert
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide ranges from 1 to 10. By default, this value is 4. -l count —— The size of the sending data during ping testing. It ranges from 1 to 1024 bytes. By default, this value is 64.
Page 122: Loopback Interface
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide the connection between the switch and the destination device is failed to establish: TL-SL3428#tracert 192.168.0.131 –h 20 loopback interface Description The loopback interface command is used to test whether the port is available or not.
Page 123: Show System-Time Dst
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the time information of the switch: TL-SL3428#show system-time show system-time dst Description The show system-time dst command is used to display the DST time information of the switch.
Page 124: Show System-Info
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show system-info Description The show system-info command is used to display system description, system name, device location, system contact, hardware version, firmware version, system time, run time and so on. Syntax show system-info...
Page 125 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide connection status of the cable connected to the Switch, locate and diagnose the trouble spot of the network. Syntax show cable-diagnostics interface { fastEthernet port | gigabitEthernet port } Parameter port —— The number of the port which is selected for Cable test.
Page 126: Chapter 18 Ethernet Configuration Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 18 Ethernet Configuration Commands Ethernet Configuration Commands can be used to configure the Bandwidth Control, Negotiation Mode and Storm Control for Ethernet ports. interface fastEthernet Description The interface fastEthernet command is used to enter the interface fastEthernet Configuration Mode and configure the corresponding Fast Ethernet port.
Page 127: Interface Gigabitethernet
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide User Guidelines Command in the Interface Range fastEthernet Mode is executed independently on all ports in the range. It does not effect the execution on the other ports at all if the command results in an error on one port.
Page 128: Description
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter port-list —— The list of Gigabit Ethernet ports. Command Mode Global Configuration Mode User Guidelines Command in the Interface Range gigabitEthernet Mode is executed independently on all ports in the range. It does not affect the execution on the other ports at all if the command results in an error on one port.
Page 129: Shutdown
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide shutdown Description The shutdown command is used to disable an Ethernet port. To enable this port again, please use no shutdown command. Syntax shutdown no shutdown Command Mode Interface Configuration Mode (interface fastEthernet / interface range...
Page 130: Media-Type
The media-type command is used to configure the media type of Combo port. For a Combo port, the media type should be configured before you set its speed and mode. This command does not apply to TL-SL3452 since TL-SL3452 has no Combo port.
Page 131: Speed
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Configure the Duplex Mode as full-duplex for Gigabit Ethernet port 25: TL-SL3428(config)#interface gigabitEthernet 1/0/25 TL-SL3428(config-if)#duplex full speed Description The speed command is used to configure the Speed Mode for an Ethernet port. To return to the default configuration, please use no speed command.
Page 132: Storm-Control Multicast
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide storm-control broadcast no storm-control broadcast Command Mode Interface Configuration Mode (interface fastEthernet / interface range fastEthernet / interface gigabitEthernet / interface range gigabitEthernet) Example Enable the broadcast control function for Fast Ethernet port 5:...
Page 133: Storm-Control Rate
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide unicast command. Unicast control function allows the switch to filter UL frame in the network. If the transmission rate of the UL frames exceeds the set bandwidth in the storm-contorl rate, the packets will be automatically discarded to avoid network broadcast storm.
Page 134: Bandwidth
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Specify the storm control rate as 2Mbps for port5: TL-SL3428(config)# interface fastEthernet 1/0/5 TL-SL3428(config-if)# storm-control rate 2m bandwidth Description The bandwidth command is used to configure the bandwidth limit for an Ethernet port. To disable the bandwidth limit, please use no bandwidth command.
Page 135: Show Interface Status
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax clear counters Command Mode Global Configuration Mode Example Clear the statistic information of all Ethernet ports TL-SL3428(config)#clear counters show interface status Description The show interface status command is used to display the connective-status of an Ethernet port.
Page 136: Show Interface Description
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter port —— The Fast/Gigabit Ethernet port number. By default, the statistic information of all ports is displayed. Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the statistic information of all Ethernet ports:...
Page 137: Show Interface Configuration
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter port —— The Fast/Gigabit Ethernet port number. Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the flow-control information of all Ethernet ports: TL-SL3428#show interface flowcontrol show interface configuration Description...
Page 138: Show Bandwidth
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide port-list —— The list of Fast/Gigabit Ethernet ports. Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the storm-control information of port Gigabit Ethernet port 25: TL-SL3428(config)#show storm-control interface gigabitEthernet 1/0/25...
Page 139: Chapter 19 Qos Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 19 QoS Commands QoS (Quality of Service) function is used to optimize the network performance. It provides you with network service experience of a better quality. Description The qos command is used to configure CoS (Class of Service) based on port.
Page 140: Qos Dscp
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax qos cos no qos cos Command Mode Global Configuration Mode User Guidelines IEEE 802.1P gives the Pri field in IEEE 802.1Q tag a recommended definition. When the mapping relation between IEEE 802.1P Priority and TC egress queue is enabled, the data will be classified into the egress queue based on this mapping relation.
Page 141: Qos Queue Cos-Map
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide qos queue cos-map Description The qos queue cos-map command is used to configure the mapping relation between IEEE 802.1P priority tag/IEEE 802.1Q tag, CoS value and the TC egress queue. To return to the default configuration, please use no qos queue cos-map command.
Page 142: Qos Queue Mode
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide divide IP datagram into 64 priorities. When DSCP Priority is enabled, IP datagram are mapped to different priority levels based on DSCP priority mode; non-IP datagram with IEEE 802.1Q tag are mapped to different priority levels based on IEEE 802.1P priority mode if IEEE 802.1P Priority is enabled;...
Page 143: Show Qos Interface
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide queues and scheduling algorithms you set. On this switch, the priority levels are labeled as TC0, TC1… TC3. Syntax qos queue mode { sp | wrr | sp+wrr | equ } no qos queue mode Parameter sp ——...
Page 144: Show Qos Cos-Map
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax show qos interface [ fastEthernet port | gigabitEthernet port | range fastEthernet port-list | range gigabitEthernet port-list ] Parameter port —— The Fast/Gigabit Ethernet port number. port-list —— The list of Ethernet ports.
Page 145: Show Qos Queue Mode
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax show qos dscp-map Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the configuration of DSCP Priority: TL-SL3428#show qos dscp-map show qos queue mode Description The show qos queue mode command is used to display the schedule rule of the egress queues.
Page 146: Chapter 20 Port Mirror Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 20 Port Mirror Commands Port Mirror refers to the process of forwarding copies of packets from one port to a monitoring port. Usually, the monitoring port is connected to data diagnose device, which is used to analyze the monitored packets for monitoring and troubleshooting the network.
Page 147: Monitor Session Source Interface
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide monitor session source interface Description The monitor session source interface command is used to configure the monitored port. To delete the corresponding monitored port, please use no monitor session source interface command. Syntax...
Page 148: Show Monitor Session
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config)#monitor session 1 source interface fastEthernet 1/0/4-5,1/0/7 rx Delete the Fast Ethernet port 4 in monitor session 1 and its configuration: TL-SL3428(config)#no monitor session 1 source interface fastEthernet 1/0/4 rx show monitor session...
Page 149: Chapter 21 Port Isolation Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 21 Port isolation Commands Port Isolation provides a method of restricting traffic flow to improve the network security by forbidding the port to forward packets to the ports that are not on its forwarding port list.
Page 150: Show Port Isolation
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show port isolation Description The show port isolation command is used to display the forward port list of a port. Syntax show port isolation interface [ fastEthernet port | gigabitEthernet port ] Parameter port ——...
Page 151: Chapter 22 Loopback Detection Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 22 Loopback Detection Commands With loopback detection feature enabled, the switch can detect loops using loopback detection packets. When a loop is detected, the switch will display an alert or further block the corresponding port according to the configuration.
Page 152: Loopback-Detection Recovery-Time
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Specify the interval-time as 50 seconds: TL-SL3428(config)#loopback-detection interval 50 loopback-detection recovery-time Description The loopback-detection recovery-time command is used to configure the time after which the blocked port would automatically recover to normal status.
Page 153: Loopback-Detection Config
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Enable the loopback detection function of Gigabit Ethernet ports 25-27: TL-SL3428(config)#interface range gigabitEthernet 1/0/25-27 TL-SL3428(config-if-range)#loopback-detection loopback-detection config Description The loopback-detection config command is used to configure the process-mode and recovery-mode for the ports by which the switch copes with the detected loops.
Page 154: Loopback-Detection Recover
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide loopback-detection recover Description The loopback-detection recover command is used to remove the block status of selected ports, recovering the blocked ports to normal status, Syntax loopback-detection recover Command Mode Interface Configuration Mode (interface fastEthernet / interface range...
Page 155 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide configuration of loopback detection function and the status of all ports or of a specified Fast/Gigabit Ethernet port. Syntax show loopback-detection interface [ fastEthernet port | gigabitEthernet port] Parameter port —— The Fast/Gigabit Ethernet port number.
Page 156: Chapter 23 Acl Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 23 ACL Commands ACL (Access Control List) is used to filter data packets by configuring a series of match conditions, operations and time ranges. It provides a flexible and secured access control policy and facilitates you to control the network security.
Page 157: Periodic
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax absolute start start-date end end-date no absolute Parameter start-date — — The start date in Absoluteness Mode, in the format of MM/DD/YYYY. By default, it is 01/01/2000. end-date — — The end date in Absoluteness Mode, in the format of MM/DD/YYYY.
Page 158: Holiday
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Configure the time-range tSeg1 with time from 8:30 to 12:00 at weekend: TL-SL3428(config)#time-range tSeg1 TL-SL3428(config-time-range)#periodic week-date off-day time-slice1 08:30-12:00 holiday Description The holiday command is used to configure the time-range into Holiday Mode under Time-range Create Configuration Mode.
Page 159: Access-List Create
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide end-date —— The end date of the holiday, in the format of MM/DD, for instance, 05/03. Command Mode Global Configuration Mode Example Define National Day, configuring the start date as October 1st, and the end date...
Page 160: Access-List Standard
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax mac access-list access-list-num no mac access-list access-list-num Parameter access-list-num —— ACL ID, ranging from 0 to 99. Command Mode Global Configuration Mode Example Create a MAC ACL whose ID is 23: TL-SL3428(config)#mac access-list 23...
Page 161: Access-List Extended
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide destination-ip-mask —— The destination IP address mask. It is required if you typed the destination IP address. time-segment —— The time-range for the rule to take effect. By default, it is not limited.
Page 162 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide source-ip —— The source IP address contained in the rule. source-ip-mask —— The source IP address mask. It is required if you typed the source IP address. destination-ip —— The destination IP address contained in the rule.
Page 163: Rule
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide rule Description The rule command is used to configure MAC ACL rule. To delete the corresponding rule, please use no rule command. Syntax rule rule-id [deny | permit] [ [smac source-mac] smask source-mac-mask ]...
Page 164: Access-List Policy Name
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config)#mac access-list 20 TL-SL3428(config-mac-acl)#rule 10 permit smac 00:01:3F:48:16:23 smask 11:11:11:11:11:00 vid 2 pri 5 tseg tSeg1 access-list policy name Description The access-list policy name command is used to add Policy. To delete the corresponding Policy, please use no access-list policy name command.
Page 165: Redirect Interface
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter policy-name —— The Policy Name, ranging from 1 to 16 characters. acl-id —— The ID of the ACL to which the above policy is applied. Command Mode Global Configuration Mode Example Add ACL whose ID is 120 to policy1 and create an action for them:...
Page 166: S-Mirror
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax s-condition rate rate osd {none | discard} Parameter rate —— The rate of Stream Condition, ranging from 0 to 100000kbps. osd —— Out of Band disposal of Stream Condition. It is the disposal way of the data packets those are transmitted beyond the rate.
Page 167: Access-List Bind(Interface)
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide access-list bind(interface) Description The access-list bind command is used to bind a policy to a specified port. To cancel the bind relation, please use no access-list bind command. Syntax access-list bind policy-name no access-list bind policy-name Parameter policy-name ——...
Page 168: Show Time-Range
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config-if)#access-list bind policy1 show time-range Description The show time-range command is used to display the configuration of time-range. Syntax show time-range Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the configuration of Time-Range:...
Page 169: Show Access-List Policy
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter acl-id —— The ID of the ACL selected to display the configuration. Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the configuration of the MAC ACL whose ID is 20:...
Page 170 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Display the configuration of Policy bind: TL-SL3428#show access-list bind...
Page 171: Chapter 24 Mstp Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 24 MSTP Commands MSTP (Multiple Spanning Tree Protocol), compatible with both STP and RSTP and subject to IEEE 802.1s, can disbranch a ring network. STP is to block redundant links and backup links as well as optimize paths.
Page 172: Spanning-Tree Common-Config
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config)#interface fastEthernet 1/0/2 TL-SL3428(config-if)#spanning-tree spanning-tree common-config Description The spanning-tree common-config command is used to configure the parameters of the ports for comparison in the CIST and the common parameters of all instances. To return to the default configuration, please use no spanning-tree common-config command.
Page 173: Spanning-Tree Mode
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide designated port, they can transit their states to forwarding rapidly to reduce the unnecessary forward delay. Command Mode Interface Configuration Mode (interface fastEthernet / interface range fastEthernet / interface gigabitEthernet / interface range gigabitEthernet)
Page 174: Spanning-Tree Mst Configuration
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide spanning-tree mst configuration Description The spanning-tree mst configuration command is used to access MST Configuration Mode from Global Configuration Mode, as to configure the VLAN-Instance mapping, region name and revision level. To return to the default configuration of the corresponding Instance, please use no spanning-tree mst configuration command.
Page 175: Name
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Map the VLANs 1-100 to Instance 1: TL-SL3428(config)#spanning-tree mst configuration TL-SL3428(config-mst)#instance 1 vlan 1-100 Disable Instance 1, namely remove all the mapping VLANs 1-100: TL-SL3428(config)#spanning-tree mst configuration TL-SL3428(config-mst)#no instance 1 Remove VLANs 1-50 in mapping VLANs 1-100 for Instance 1:...
Page 176: Spanning-Tree Mst Instance
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameters revision —— The revision level for MST region identification, ranging from 0 to 65535. Command Mode MST Configuration Mode Example Configure the revision level of MST as 100: TL-SL3428(config)#spanning-tree mst configuration TL-SL3428(config-mst)#revision 100...
Page 177: Spanning-Tree Priority
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide return to the default configuration of the corresponding Instance Port, please use no spanning-tree mst command. A port can play different roles in different spanning tree instance. You can use this command to configure the parameters...
Page 178: Spanning-Tree Tc-Defend
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter pri —— Bridge priority, ranging from 0 to 61440. It is 32768 by default. Command Mode Global Configuration Mode Example Configure the bridge priority as 4096: TL-SL3428(config)#spanning-tree priority 4096 spanning-tree tc-defend Description The spanning-tree tc-defend command is used to configure the TC Protect of Spanning Tree globally.
Page 179: Spanning-Tree Timer
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide spanning-tree timer Description The spanning-tree timer command is used to configure forward-time, hello-time and max-age of Spanning Tree. To return to the default configurations, please use no spanning-tree timer command. Syntax spanning-tree timer { [forward-time forward-time] [hello-time hello-time]...
Page 180: Spanning-Tree Max-Hops
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax spanning-tree hold-count value no spanning-tree hold-count Parameter value —— The maximum number of BPDU packets transmitted per Hello Time interval, ranging from 1 to 20 in pps. By default, it is 5.
Page 181: Spanning-Tree Bpdufilter
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide spanning-tree bpdufilter Description The spanning-tree bpdufilter command is used to enable the BPDU filter function for a port. With the function enabled, the port can be prevented from receiving and sending any BPDU packets. To disable the BPDU filter function, please use no spanning-tree bpdufilter command.
Page 182: Spanning-Tree Guard Loop
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config)#interface fastEthernet 1/0/2 TL-SL3428(config-if)#spanning-tree bpduguard spanning-tree guard loop Description The spanning-tree guard loop command is used to enable the Loop Protect function for a port. Loop Protect is to prevent the loops in the network brought by recalculating STP because of link failures and network congestions.
Page 183 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide fastEthernet / interface gigabitEthernet / interface range gigabitEthernet) Example Enable the Root Protect function for Fast Ethernet port 2: TL-SL3428(config)#interface fastEthernet 1/0/2 TL-SL3428(config-if)#spanning-tree guard root...
Page 184: Spanning-Tree Guard Tc
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide spanning-tree guard tc Description The spanning-tree guard tc command is used to enable the TC Protect of Spanning Tree function for a port. To disable the TC Protect of Spanning Tree function, please use no spanning-tree guard tc command. A switch removes MAC address entries upon receiving TC-BPDUs.
Page 185: Show Spanning-Tree Active
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config)#interface fastEthernet 1/0/2 TL-SL3428(config-if)#spanning-tree mcheck show spanning-tree active Description The show spanning-tree active command is used to display the active information of spanning-tree. Syntax show spanning-tree active Command Mode Privileged EXEC Mode and Any Configuration Mode...
Page 186: Show Spanning-Tree Interface-Security
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide spanning-tree information of all ports or a specified port. Syntax show spanning-tree interface [ fastEthernet port | gigabitEthernet port ] [edge | ext-cost | int-cost | mode | p2p | priority | role | state | status] Parameter port ——...
Page 187: Show Spanning-Tree Mst
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428(config)#show spanning-tree interface-security gigabitEthernet 1/0/25 Display the interface security bpdufilter information: TL-SL3428(config)# show spanning-tree interface-security bpdufilter show spanning-tree mst Description The show spanning-tree mst command is used to display the related information of MST Instance.
Page 188: Chapter 25 Igmp Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 25 IGMP Commands IGMP Snooping (Internet Group Management Protocol Snooping) is a multicast control mechanism running on Layer 2 switch. It can effectively prevent multicast groups being broadcasted in the network. ip igmp snooping(global) Description The ip igmp snooping command is used to configure IGMP Snooping globally.
Page 189: Ip Igmp Snooping Immediate-Leave
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Enable IGMP Snooping function of Gigabit Ethernet port 25: TL-SL3428(config)#interface gigabitEthernet 1/0/25 TL-SL3428(config-if)#ip igmp snooping ip igmp snooping immediate-leave Description The ip igmp snooping immediate-leave command is used to configure the Fast Leave function for port. To disable the Fast Leave function, please use no ip igmp snooping immediate-leave command.
Page 190: Ip Igmp Snooping Vlan-Config
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Specify the operation of processing unknown multicast as “discard”: TL-SL3428(config)#ip igmp snooping drop-unknown ip igmp snooping vlan-config Description The ip igmp snooping vlan-config command is used to enable VLAN IGMP Snooping function or to modify IGMP Snooping parameters, and to create static multicast IP entry.
Page 191: Ip Igmp Snooping Multi-Vlan-Config
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide the format of 1/0/2; Gigabit Ethernet port, ranging from 1-4, in the format of 1/0/2. vlan-id —— The VLAN ID of the multicast IP, ranging from 1 to 4094. ip —— The static multicast IP address.
Page 192: Ip Igmp Snooping Filter Add-Id
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide a leave message from a host and the switch removing the host from the multicast groups. Leave Time ranges from 1 to 30 in seconds. By default, it is 1. port —— Static Router Port, which is mainly used in the network with stable topology.
Page 193: Ip Igmp Snooping Filter(Global)
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide ip igmp snooping filter(global) Description The ip igmp snooping filter command is used to add or modify the multicast filtering IP-range. To delete the multicast filtering IP-range, please use no ip igmp snooping filter command.
Page 194: Ip Igmp Snooping Filter Maxgroup
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide fastEthernet / interface gigabitEthernet / interface range gigabitEthernet) Example Enable IGMP Snooping filter function for Gigabit Ethernet port 26: TL-SL3428(config)#interface gigabitEthernet 1/0/26 TL-SL3428(config-if)#ip igmp snooping filter ip igmp snooping filter maxgroup Description The ip igmp snooping filter maxgroup command is used to specify the maximum number of multicast groups for a port to join in.
Page 195: Show Ip Igmp Snooping
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide only the multicast packets whose multicast IP is not in the IP-range will be processed, while “accept” indicates only the multicast packets whose multicast IP is in the IP-range will be processed. By default, the option is “accept”.
Page 196: Show Ip Igmp Snooping Vlan
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter port —— The Fast/Gigabit Ethernet port number. By default, the configuration of all ports is displayed. basic-config | filter | packet-stat —— The related configuration information selected to display. port-list —— The list group of Ethernet ports.
Page 197: Show Ip Igmp Snooping Groups
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax show ip igmp snooping multi-vlan Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the Multicast VLAN configuration: TL-SL3428#show ip igmp snooping multi-vlan show ip igmp snooping groups Description The show ip igmp snooping groups command is used to display the information of all IGMP snooping groups.
Page 198: Show Ip Igmp Snooping Filter
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Display the count of multicast entries in VLAN 5: TL-SL3428(config)#show ip igmp snooping groups vlan 5 count show ip igmp snooping filter Description The show ip igmp snooping filter command is used to display the Multicast Filter address table.
Page 199: Chapter 26 Snmp Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 26 SNMP Commands SNMP (Simple Network Management Protocol) functions are used to manage the network devices for a smooth communication, which can facilitate the network administrators to monitor the network nodes and implement the proper operation.
Page 200: Snmp-Server Group
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter name —— The entry name of View, ranging from 1 to 16 characters. Each View can include several entries with the same name. mib-oid —— MIB Object ID. It is the Object Identifier (OID) for the entry of View, ranging from 1 to 61 characters.
Page 201: Snmp-Server User
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide smode —— Security Model, with v1、v2c and v3 options. They represent SNMP v1, SNMP v2c and SNMP v3. slev —— The Security Level of SNMP v3 Group. There are three options, including noAuthNoPriv （no authorization and no encryption）、authNoPriv （authorization and no encryption）...
Page 202 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide no snmp-server user name Parameter name —— User Name, ranging from 1 to 16 characters. local | remote —— User Type, with local and remote options. Local indicates that the user is connected to a local SNMP engine, while remote indicates that the user is connected to a remote SNMP engine.
Page 203: Snmp-Server Community
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Add Local User admin to Group group2, and configure the Security Model of the user as v3, the Security Level of the group as authPriv, the Authentication Mode of the user as MD5, the Authentication Password as 11111, the Privacy Mode as...
Page 204 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide corresponding Notification, please use no snmp-server host command. With the Notification function enabled, the switch can initiatively report to the management station about the important events that occur on the Views, which allows the management station to monitor and process the events in time.
Page 205: Snmp-Server Engineid
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Add a Notification entry, and configure the IP address of the management Host as 192.168.0.146, the UDP port as 162, the User name of the management station as admin, the Security Model of the management station as v2c, the type...
Page 206: Snmp-Server Traps Snmp
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide snmp-server traps snmp Description The snmp-server traps snmp command is used to enable SNMP standard traps which include four types: linkup, linkdown, warmstart and coldstart. To disable the sending of SNMP standard traps, please use no snmp-server traps snmp command.
Page 207: Snmp-Server Traps
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Interface Configuration Mode (interface gigabitEthernet / interface range gigabitEthernet) Example Enable SNMP link status trap for port 3: TL-SL3428(config)# interface gigabitEthernet 1/0/3 TL- SG3424P(config-if)# snmp-server traps link-status snmp-server traps Description The snmp-server traps command is used to enable SNMP extended traps. To disable the sending of SNMP extended traps, please use no snmp-server traps command.
Page 208: Snmp-Server Traps Mac
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide spanning-tree —— Enable spanning-tree trap. It is sent when the port forwarding status changes or the port receives TCN packet or packet with TC flag. memory —— Enable memory trap. It is sent when CPU usage exceeds 80%.
Page 209: Snmp-Server Traps Vlan
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Enable all SNMP extended MAC address-related traps for the switch: TL-SL3428(config)# snmp-server traps mac Enable new MAC address trap only for the switch: TL-SL3428(config)# snmp-server traps mac new snmp-server traps vlan Description The snmp-server traps vlan command is used to enable SNMP extended VLAN-related traps which include two types: create and delete.
Page 210: Rmon Event
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide the network. History Group is one of the commonly used RMON Groups. After a history group is configured, the switch collects network statistics information periodically, based on which the management station can monitor network effectively.
Page 211: Rmon Alarm
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter index —— The index number of the event entry, ranging from 1 to 12. You can only select one entry for each command. user-name —— The name of the User to which the event belongs, ranging from 1 to 16 characters.
Page 212 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide 1024-10240 }] [ s-type { absolute | delta} ] [ rising-threshold r-hold ] [ rising-event-index r-event] [ falling-threshold f-hold] [ falling-event-index f-event] [ a-type {rise | fall | all} ] [ owner owner-name ] [ interval interval]...
Page 213: Show Snmp-Server
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Global Configuration Mode Example Configure the ports of entries of 1-3 as Gi1/0/2, the owners as owner1 and the alarm intervals as 100 seconds: TL-SL3428(config)#rmon alarm 1-3 interface fastEthernet 1/0/2 owner...
Page 214: Show Snmp-Server Group
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show snmp-server group Description The show snmp-server group command is used to display the Group table. Syntax show snmp-server group Command Mode Privileged EXEC Mode and Any Configuration Mode Example Display the Group table:...
Page 215: Show Snmp-Server Host
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Display the Community table: TL-SL3428#show snmp-server community show snmp-server host Description The show snmp-server host command is used to display the Host table. Syntax show snmp-server host Command Mode Privileged EXEC Mode and Any Configuration Mode...
Page 216: Show Rmon Event
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax show rmon history [index] Parameter index —— The index number of the entry selected to display the configuration, ranging from 1 to 12, in the format of 1-3, 5. You can select more than one entry for each command.
Page 217: Show Rmon Alarm
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show rmon alarm Description The show rmon alarm command is used to display the configuration of the Alarm Management entry. Syntax show rmon alarm [index] Parameter index —— The index number of the entry selected to display the configuration, ranging from 1 to 12, in the format of 1-3, 5.
Page 218: Chapter 27 Lldp Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 27 LLDP Commands LLDP function enables network devices to advertise their own device information periodically to neighbors on the same LAN. The information of the LLDP devices in the LAN can be stored by its neighbor in a standard MIB, so it is possible for the information to be accessed by a Network Management System (NMS) using SNMP.
Page 219: Lldp Timer
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Parameter multiplier —— Configure the Hold Multiplier parameter. It ranges from 2 to 10. By default, it is 4. Command Mode Global Configuration Mode Example Specify Hold Multiplier as 5: TL-SL3428(config)#lldp hold-multiplier 5...
Page 220: Lldp Receive
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide is, the transmit interval will be shorten to a second, and several LLDPDUs will be sent out (the number of LLDPDUs equals this parameter). The value ranges from 1 to 10 and the default value is 3.
Page 221: Lldp Snmp-Trap
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Syntax lldp transmit no lldp transmit Command Mode Interface Configuration Mode (interface fastEthernet / interface range fastEthernet / interface gigabitEthernet / interface range gigabitEthernet) Example Enable Fast Ethernet port 1 to transmit LLDPDU:...
Page 222: Show Lldp
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide outgoing LLDPDU. To exclude TLVs, please use no lldp tlv-select command. By default, All TLVs are included in outgoing LLDPDU. Syntax lldp tlv-select [port-description | system-capability | system-description | system-name | management-address | port-vlan | protocol-vlan | vlan-name |...
Page 223: Show Lldp Interface
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show lldp interface Description The show lldp interface command is used to display LLDP configuration of the corresponding port. By default, the LLDP configuration of all the ports will be displayed. Syntax show lldp interface [ fastEthernet port | gigabitEthernet port] Parameter port ——...
Page 224: Show Lldp Neighbor-Information Interface
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide TL-SL3428#show lldp local-information interface fastEthernet 1/0/1 show lldp neighbor-information interface Description The show lldp neighbor-information interface command is used to display the neighbor information of the corresponding port. By default, the neighbor information of all the ports will be displayed.
Page 225 TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Display the LLDP statistic information of Fast Ethernet port 1: TL-SL3428#show lldp traffic interface fastEthernet 1/0/1...
Page 226: Chapter 28 Cluster Commands
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Chapter 28 Cluster Commands Cluster Management function enables a network administrator to manage the scattered devices in the network via a management device. After a commander switch is configured, management and maintenance operations intended for the member devices in a cluster is implemented by the commander device.
Page 227: Cluster Ntdp
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Example Enable NDP function globally, and configure Aging Time as 120 seconds, Hello Time as 50 seconds: TL-SL3428(config)#cluster ndp TL-SL3428(config)#cluster ndp timer hello 50 aging 120 cluster ntdp Description The cluster ntdp command is used to configure NTDP globally. To return to the default configuration, please use no cluster ntdp command.
Page 228: Cluster Explore
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide collects. NTDP Hops ranges from 1 to 16. By default, it is 3. Command Mode Global Configuration Mode Example Enable NTDP function globally, and specify NTDP Hops as 5, NTDP Interval Time as 30 minutes:...
Page 229: Cluster Candidate
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide Command Mode Interface Configuration Mode (interface fastEthernet / interface range fastEthernet / interface gigabitEthernet / interface range gigabitEthernet) Example Enable NDP and NTDP function for Fast Ethernet port 5: TL-SL3428(config)#interface fastEthernet 1/0/5 TL-SL3428(config-if)#cluster ndp enable ntdp enable...
Page 230: Show Cluster Ndp
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show cluster ndp Description The show cluster ndp command is used to display NDP configuration of certain ports. Syntax show cluster ndp [ interface [ fastEthernet port | gigabitEthernet port] ] Parameter port —— The Fast/Gigabit Ethernet port number. By default, the configuration of all Fast / Gigabit Ethernet ports is displayed.
Page 231: Show Cluster Ntdp
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show cluster ntdp Description The show cluster ntdp command is used to display NTDP configuration information. Syntax show cluster ntdp [ interface [fastEthernet port | gigabitEthernet port ] | device-list ] Parameter port —— The Fast/Gigabit Ethernet port number. By default, the configuration of all Fast / Gigabit Ethernet ports is displayed.
Page 232: Show Cluster Manage Role
TL-SL3428/TL-SL3452 JetStream L2 Managed Switch CLI Guide show cluster manage role Description The show cluster manage role command is used to display the role of the current switch. Syntax show cluster manage role Command Mode Privileged EXEC Mode and Any Configuration Mode...

This manual is also suitable for:

Jetstream tl-sl3428

TP-Link JetStream TL-SL3452 Reference Manual

Preface

Chapter 1 Using the CLI

Chapter 2 User Interface

Chapter 3 IEEE 802.1Q VLAN Commands

Chapter 4 Protocol-Based VLAN Commands

Chapter 5 Voice VLAN Commands

Chapter 6 GVRP Commands

Chapter 7 Etherchannel Commands

Chapter 8 User Manage Commands

Chapter 9 Binding Table Commands

Chapter 10 ARP Inspection Commands

Chapter 11 Dos Defend Command

Chapter 12 IEEE 802.1X Commands

Chapter 13 System Log Commands

Chapter 14 SSH Commands

Chapter 15 SSL Commands

Chapter 16 MAC Address Commands

Chapter 17 System Configuration Commands

Chapter 18 Ethernet Configuration Commands

Chapter 19 Qos Commands

Chapter 20 Port Mirror Commands

Chapter 21 Port Isolation Commands

Chapter 22 Loopback Detection Commands

Chapter 23 ACL Commands

Chapter 24 MSTP Commands

Chapter 25 IGMP Commands

Quick Links

Related Manuals for TP-Link JetStream TL-SL3452

Summary of Contents for TP-Link JetStream TL-SL3452