User Guide
Page 14
TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide • MAC Access-List - The mac access-list Global Configuration mode command is used to enter the MAC access-list configuration mode.. 1.2 Starting the CLI The device can be managed over cable to the RS-232 serial port of the device to complete the required tasks. 4. Note The following steps are for use the login Privileged EXEC mode command. Note The default data rate is for information on a UNIX system. Ensure that Windows® 2000 Service Pack...
TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide • MAC Access-List - The mac access-list Global Configuration mode command is used to enter the MAC access-list configuration mode.. 1.2 Starting the CLI The device can be managed over cable to the RS-232 serial port of the device to complete the required tasks. 4. Note The following steps are for use the login Privileged EXEC mode command. Note The default data rate is for information on a UNIX system. Ensure that Windows® 2000 Service Pack...
User Guide
Page 20
... checked. To ensure that follow this command. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide aaa authentication enable The aaa authentication enable Global Configuration mode command defines authentication method lists for authentication. To return to a RADIUS server include the username $enabx$., where x is the requested privilege level. Uses the list of authentication are used only if the previous method returns an error, not if it exists. Default Configuration If the default list is not set...
... checked. To ensure that follow this command. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide aaa authentication enable The aaa authentication enable Global Configuration mode command defines authentication method lists for authentication. To return to a RADIUS server include the username $enabx$., where x is the requested privilege level. Uses the list of authentication are used only if the previous method returns an error, not if it exists. Default Configuration If the default list is not set...
User Guide
Page 30
... address command. • delete-on -timeout | secure] no bridge address [mac-address] Parameters • mac-address - A valid MAC address. • interface - Default Configuration No static addresses are defined. Command Mode Interface Configuration (VLAN) mode User Guidelines Using the no port security com- To delete the MAC address, use the no form of the command without specifying a MAC address deletes all static MAC addresses belonging to unlock learning (no form of this VLAN). mand). TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide...
... address command. • delete-on -timeout | secure] no bridge address [mac-address] Parameters • mac-address - A valid MAC address. • interface - Default Configuration No static addresses are defined. Command Mode Interface Configuration (VLAN) mode User Guidelines Using the no port security com- To delete the MAC address, use the no form of the command without specifying a MAC address deletes all static MAC addresses belonging to unlock learning (no form of this VLAN). mand). TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide...
User Guide
Page 32
... Managed Switch Family CLI Reference Guide bridge multicast address The bridge multicast address Interface Configuration (VLAN) mode command registers a MAC-layer multicast address in the bridge database. Removes ports from the group. • mac-multicast-address - Static multicast addresses can only be defined on static VLANs. If no option is used to designate a range of ports. • port-channel-number-list - A valid IP multicast address. • interface-list - a hyphen is specified, this command. Examples The following example registers the MAC address: Console(config...
... Managed Switch Family CLI Reference Guide bridge multicast address The bridge multicast address Interface Configuration (VLAN) mode command registers a MAC-layer multicast address in the bridge database. Removes ports from the group. • mac-multicast-address - Static multicast addresses can only be defined on static VLANs. If no option is used to designate a range of ports. • port-channel-number-list - A valid IP multicast address. • interface-list - a hyphen is specified, this command. Examples The following example registers the MAC address: Console(config...
User Guide
Page 35
... a multicast router port. Command Mode Interface Configuration (VLAN) mode User Guidelines IGMP snooping dynamically discovers multicast router ports. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide bridge multicast forbidden forward-all The bridge multicast forbidden forward-all Interface Configuration (VLAN) mode command forbids a port to be a forward-all add ethernet e1 Page 34 Separates nonconsecutive port-channels with VLAN 2 is used to designate a range of ports. • port-channel-number-list - Console(config)# interface vlan 2 Console(config-if...
... a multicast router port. Command Mode Interface Configuration (VLAN) mode User Guidelines IGMP snooping dynamically discovers multicast router ports. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide bridge multicast forbidden forward-all The bridge multicast forbidden forward-all Interface Configuration (VLAN) mode command forbids a port to be a forward-all add ethernet e1 Page 34 Separates nonconsecutive port-channels with VLAN 2 is used to designate a range of ports. • port-channel-number-list - Console(config)# interface vlan 2 Console(config-if...
User Guide
Page 43
...:5e:02:02:08 00:00:5e:02:02:08 Type ------static static dynamic Ports ---------1, 2 1-3 5-7 Forbidden ports for multicast addresses: Vlan ---1 19 MAC Address 01:00:5e:02:02:03 01:00:5e:02:02:08 Ports ----8 8 Page 42 Default Configuration This command has no default configuration. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide show bridge multicast address-table The show bridge multicast address-table User EXEC mode command displays multicast MAC address or IP address table information. A valid MAC multicast address. • ip-multicast-address -
...:5e:02:02:08 00:00:5e:02:02:08 Type ------static static dynamic Ports ---------1, 2 1-3 5-7 Forbidden ports for multicast addresses: Vlan ---1 19 MAC Address 01:00:5e:02:02:03 01:00:5e:02:02:08 Ports ----8 8 Page 42 Default Configuration This command has no default configuration. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide show bridge multicast address-table The show bridge multicast address-table User EXEC mode command displays multicast MAC address or IP address table information. A valid MAC multicast address. • ip-multicast-address -
User Guide
Page 110
... used for setting the aging-out time after multicast router ports are no user guidelines for this command. Console(config)# interface vlan 2 Console(config-if)# ip igmp snooping mrouter-time-out 200 Page 109 To return to 200 seconds. Example The following example configures the multicast router timeout to the default configuration, use the no ip igmp snooping mrouter-time-out Parameters • time-out - TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide ip igmp snooping mrouter-time-out The ip igmp snooping mrouter-time-out Interface Configuration...
... used for setting the aging-out time after multicast router ports are no user guidelines for this command. Console(config)# interface vlan 2 Console(config-if)# ip igmp snooping mrouter-time-out 200 Page 109 To return to 200 seconds. Example The following example configures the multicast router timeout to the default configuration, use the no ip igmp snooping mrouter-time-out Parameters • time-out - TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide ip igmp snooping mrouter-time-out The ip igmp snooping mrouter-time-out Interface Configuration...
User Guide
Page 111
... from a specific port, this port is allowed to respond to the default configuration, use the no ip igmp snooping leave-time-out Parameters • time-out - Specifies the leave-time-out in seconds for a leave-time-out period after receiving IGMP Leave. Default Configuration The default leave-time-out configuration is just one host connected to 60 seconds. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide ip igmp snooping leave-time-out The ip igmp snooping leave-time-out Interface Configuration (VLAN) mode command configures the...
... from a specific port, this port is allowed to respond to the default configuration, use the no ip igmp snooping leave-time-out Parameters • time-out - Specifies the leave-time-out in seconds for a leave-time-out period after receiving IGMP Leave. Default Configuration The default leave-time-out configuration is just one host connected to 60 seconds. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide ip igmp snooping leave-time-out The ip igmp snooping leave-time-out Interface Configuration (VLAN) mode command configures the...
User Guide
Page 114
... multicast address table (including static addresses) use the show ip igmp snooping groups [vlan vlan-id] [address ip-multicast-address] Parameters • vlan-id - IP multicast address. Console> show ip igmp snooping groups User EXEC mode command displays multicast groups learned by IGMP snooping. Default Configuration This command has no default configuration. Example The following example shows IGMP snooping information on multicast groups. VLAN number. • ip-multicast-address - TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide show ip igmp...
... multicast address table (including static addresses) use the show ip igmp snooping groups [vlan vlan-id] [address ip-multicast-address] Parameters • vlan-id - IP multicast address. Console> show ip igmp snooping groups User EXEC mode command displays multicast groups learned by IGMP snooping. Default Configuration This command has no default configuration. Example The following example shows IGMP snooping information on multicast groups. VLAN number. • ip-multicast-address - TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide show ip igmp...
User Guide
Page 173
... - Command Mode Global Configuration mode User Guidelines To specify multiple hosts, multiple radius-server host commands can be the same as request to each RADIUS server host. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide Section 17. This key must be used , where 0 has the highest priority. (Range: 0-65535) • type - Page 172 Hostname of the server. The address type of the outgoing IP interface. • priority - The host is not used on the RADIUS daemon. Port number...
... - Command Mode Global Configuration mode User Guidelines To specify multiple hosts, multiple radius-server host commands can be the same as request to each RADIUS server host. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide Section 17. This key must be used , where 0 has the highest priority. (Range: 0-65535) • type - Page 172 Hostname of the server. The address type of the outgoing IP interface. • priority - The host is not used on the RADIUS daemon. Port number...
User Guide
Page 201
... enable the device to the device. The user should enter a concatenated hexadecimal string of a DES key for the user. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide snmp-server user The snmp-server user Global Configuration mode command configures a new SNMP Version 3 user. The user should enter a password for authentication and generation of the SHA key (MSB) and the privacy key (LSB). Each byte in the hexadecimal character string is a concatenated hexadecimal string. When a show snmp users Privileged EXEC mode command...
... enable the device to the device. The user should enter a concatenated hexadecimal string of a DES key for the user. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide snmp-server user The snmp-server user Global Configuration mode command configures a new SNMP Version 3 user. The user should enter a password for authentication and generation of the SHA key (MSB) and the privacy key (LSB). Each byte in the hexadecimal character string is a concatenated hexadecimal string. When a show snmp users Privileged EXEC mode command...
User Guide
Page 339
... - TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide Troubleshooting This section describes problems that your cable is properly connected with a valid link light, and that the port has not been disabled Ensure that may already be sure that the pin-out complies with a standard nullmodem cable Be sure the switch has a valid IP address, subnet mask and default gateway configured Check that your management station is plugged into the appropriate VLAN to switch management using...
... - TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide Troubleshooting This section describes problems that your cable is properly connected with a valid link light, and that the port has not been disabled Ensure that may already be sure that the pin-out complies with a standard nullmodem cable Be sure the switch has a valid IP address, subnet mask and default gateway configured Check that your management station is plugged into the appropriate VLAN to switch management using...
User Guide
Page 340
...pair (incorrect twisting of pairs) Configure the network address in and the port LED is on fiber optic cable Replace with IP protocol Replace the cable Replace the module Replace the module Erase the connection and reconfigure the port Download and install a working or previous software version from the terminal emulations software is reversed Bad cable Wrong cable type Change if necessary. Replace the serial cable Reconfigure the emulation software connection settings. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide Problems No response from the...
...pair (incorrect twisting of pairs) Configure the network address in and the port LED is on fiber optic cable Replace with IP protocol Replace the cable Replace the module Replace the module Erase the connection and reconfigure the port Download and install a working or previous software version from the terminal emulations software is reversed Bad cable Wrong cable type Change if necessary. Replace the serial cable Reconfigure the emulation software connection settings. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide Problems No response from the...
User Guide
Page 341
... 3. The Startup Menu is exited. Enter the password command using the CLI mode. 4. necting the power supply, or enter the command reboot, the following syntax: enable password [level level] password [encrypted] For example: enable password level 1 password ***** 6. Enter the CLI mode. 5. Enter the command exit. Lost password Possible Cause A pop-up blockers. The Password Recovery Procedure is not made in 2 seconds - TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide Problems Add and Edit pages do not open. If the selection...
... 3. The Startup Menu is exited. Enter the password command using the CLI mode. 4. necting the power supply, or enter the command reboot, the following syntax: enable password [level level] password [encrypted] For example: enable password level 1 password ***** 6. Enter the CLI mode. 5. Enter the command exit. Lost password Possible Cause A pop-up blockers. The Password Recovery Procedure is not made in 2 seconds - TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family CLI Reference Guide Problems Add and Edit pages do not open. If the selection...
User Guide
Page 19
... Duplex, Auto) is used to connect the device to the device ports through the physical interface ports on the front panel. For each other use crossed cables. Possible values of baud rate are connected to a console managing the device. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family Installation Guide 2.6.3 RS-232 DB-9 Console Port The DB-9 port is 38400 (default). The following figure illustrates the pin allocation: 1 2 3 4 5 6 7 8 87654321 Figure 2-6 RJ-45 connector 12 This interface configuration...
... Duplex, Auto) is used to connect the device to the device ports through the physical interface ports on the front panel. For each other use crossed cables. Possible values of baud rate are connected to a console managing the device. TL-SG3109/TL-SL3428/TL-SL3452 Gigabit Managed Switch Family Installation Guide 2.6.3 RS-232 DB-9 Console Port The DB-9 port is 38400 (default). The following figure illustrates the pin allocation: 1 2 3 4 5 6 7 8 87654321 Figure 2-6 RJ-45 connector 12 This interface configuration...
User Guide
Page 34
... TACACS+ server. Key String (1-128 Characters) - Defines the default device source IP address used . The default is updated. 5.1.1.5 Defining TACACS+ Host Settings Terminal Access Controller Access Control System (TACACS+) provides centralized security user access validation. Defines the order in which the TACACS+ session occurs. Defines the port number via user names and user-defined passwords. Authorization - The authentication mapping is saved, and the device is 5. TACACS+ provides a centralized user management system...
... TACACS+ server. Key String (1-128 Characters) - Defines the default device source IP address used . The default is updated. 5.1.1.5 Defining TACACS+ Host Settings Terminal Access Controller Access Control System (TACACS+) provides centralized security user access validation. Defines the order in which the TACACS+ session occurs. Defines the port number via user names and user-defined passwords. Authorization - The authentication mapping is saved, and the device is 5. TACACS+ provides a centralized user management system...
User Guide
Page 66
... - - Enables Rapid STP on an interface. Enables Multiple STP on the port or device. This is the default value. - Short - The port priority value is disabled on the device. - Identifies the Root Bridge priority and MAC address. Root Port - Indicates the port number that have occurred. Last Topology Change - Specifies the total amount of 4096. Hello Time (1-10) - The time is updated. 9.1.2 Defining STP Interface Settings Network administrators can assign STP settings...
... - - Enables Rapid STP on an interface. Enables Multiple STP on the port or device. This is the default value. - Short - The port priority value is disabled on the device. - Identifies the Root Bridge priority and MAC address. Root Port - Indicates the port number that have occurred. Last Topology Change - Specifies the total amount of 4096. Hello Time (1-10) - The time is updated. 9.1.2 Defining STP Interface Settings Network administrators can assign STP settings...
User Guide
Page 111
... ACL Aggregated VLAN AH ARP Definition Specifies the method by the following features: • Duplex/ Half Duplex Mode. • Flow Control. • Speed. ACE are based on different sub-VLANs belonging to the same Super VLAN. Access Control List. Access Control Lists are defined by which are used in Access Control Lists (ACL) that enable login to and authentication of a network. Groups several VLANs into physical addresses. Provides source host authentication and data integrity. ASIC Application Specific Integrated Circuit. Backbone types...
... ACL Aggregated VLAN AH ARP Definition Specifies the method by the following features: • Duplex/ Half Duplex Mode. • Flow Control. • Speed. ACE are based on different sub-VLANs belonging to the same Super VLAN. Access Control List. Access Control Lists are defined by which are used in Access Control Lists (ACL) that enable login to and authentication of a network. Groups several VLANs into physical addresses. Provides source host authentication and data integrity. ASIC Application Specific Integrated Circuit. Backbone types...
User Guide
Page 114
... topology and supports data transfer rates of Line. For example, an STP port constantly changes from various networks hosts. Registers client stations into a multicast domain. Fast Ethernet transmits at a device with a known route, the packet is compatible with existing 10/100 Ethernet standards. Ethernet packets smaller than 10 Mbps. A hardware module used in addition to communicate with various protocol packet types. GRE creates a virtual point-to-point link to be transmitted. Collects network information from...
... topology and supports data transfer rates of Line. For example, an STP port constantly changes from various networks hosts. Registers client stations into a multicast domain. Fast Ethernet transmits at a device with a known route, the packet is compatible with existing 10/100 Ethernet standards. Ethernet packets smaller than 10 Mbps. A hardware module used in addition to communicate with various protocol packet types. GRE creates a virtual point-to-point link to be transmitted. Collects network information from...
User Guide
Page 117
... Terminal Server over a serial link. Remote Desktop Protocol. Verifies if a specific IP address is sent to a device. Indicates port speed. An authorizations set that contain sets of Service. Allows a clients to a monitoring port. Used by forwarding copies of protocol control information and layer user data. Monitors and mirrors network traffic by SNMP to the Internet over the network. 11 0 Point-to identify it. A network connection endpoint or a common junction for transmission in a layer protocol consisting of incoming and outgoing packets...
... Terminal Server over a serial link. Remote Desktop Protocol. Verifies if a specific IP address is sent to a device. Indicates port speed. An authorizations set that contain sets of Service. Allows a clients to a monitoring port. Used by forwarding copies of protocol control information and layer user data. Monitors and mirrors network traffic by SNMP to the Internet over the network. 11 0 Point-to identify it. A network connection endpoint or a common junction for transmission in a layer protocol consisting of incoming and outgoing packets...