Specifications are subject to change without notice. is a registered trademark of
TP-LINK TECHNOLOGIES CO., LTD. Other brands and product names are trademarks or
registered trademarks of their respective holders.
This equipment has been tested and found to comply with the limits for a Class A digital device,
pursuant to part 15 of the FCC Rules. These limits are designed to provide reasonable protection
against harmful interference when the equipment is operated in a commercial environment. This
equipment generates, uses, and can radiate radio frequency energy and, if not installed and used
in accordance with the instruction manual, may cause harmful interference to radio
communications. Operation of this equipment in a residential area is likely to cause harmful
interference in which case the user will be required to correct the interference at his own expense.
This device complies with part 15 of the FCC Rules. Operation is subject to the following two
conditions:
1) This device may not cause harmful interference.
2) This device must accept any interference received, including interference that may cause
undesired operation.
Any changes or modifications not expressly approved by the party responsible for compliance
could void the user’s authority to operate the equipment.
CE Mark Warning
This is a class A product. In a domestic environment, this product may cause radio interference, in
which case the user may be required to take adequate measures.
Продукт сертифіковано згідно с правилами системи УкрСЕПРО на відповідність вимогам
нормативних документів та вимогам, що передбачені чинними законодавчими актами
України.
III
Safety Information
When product has power button, the power button is one of the way to shut off the product;
When there is no power button, the only way to completely shut off power is to disconnect the
product or the power adapter from the power source.
Don’t disassemble the product, or make repairs yourself. You run the risk of electric shock
and voiding the limited warranty. If you need service, please contact us.
Avoid water and wet locations.
This product can be used in the following countries:
Resource CD for TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452, including:
• This User Guide
• CLI Reference Guide
• SNMP Mibs
• 802.1X Client Software
• Other Helpful Information
Note:
Make sure that the package contains the above items. If any of the listed items are damaged or
missing, please contact your distributor.
1
Introduces the features, application and appearance of
Chapter 1 About this Guide
This User Guide contains information for setup and management of TL-SG2216/TL-SG2424/
TL-SG2424P/TL-SG2452 Gigabit Smart Switch. Please read this guide carefully before operation.
1.1 Intended Readers
This Guide is intended for network managers familiar with IT concepts and network terminologies.
1.2 Conventions
In this Guide the following conventions are used:
The switch or TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452 mentioned in this Guide
stands for TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452 Gigabit Smart Switch without
any explanation.
Tips:
The TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452 switchs are sharing this User Guide. They
just differ in the number of LED indicators and ports. For simplicity, we will take TL-SG2424 for
example throughout this Guide. However, differences with significance will be presented with
figures or notes as to attract your attention.
Menu Name→Submenu Name→Tab page indicates the menu structure. System→System
Info→System Summary means the System Summary page under the System Info menu
option that is located under the System menu.
Bold font indicates a button, a toolbar icon, menu or menu item.
Symbols in this Guide:
Symbol Description
Note:
Tips:
Ignoring this type of note might result in a malfunction or damage to the device.
This format indicates important information that helps you make better use of
your device.
1.3 Overview of This Guide
Chapter Introduction
Chapter 1 About This GuideIntroduces the guide structure and conventions.
Chapter 2 Introduction
TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452 switch.
2
This module is used to configure system properties of the
the description, system time and
STP Config: Configure and view the global settings of
STP Security: Configure protection function to prevent
This module is used to configure multicast function of the
IGMP Snooping: Configure global parameters of IGMP
Snooping function, port properties, VLAN and multicast
Snooping function, port properties, VLAN and multicast
information of IPv4 and IPv6
Chapter Introduction
Chapter 3 Login to the Switch Introduces how to log on to the Web management page.
Chapter 4 System
switch. Here mainly introduces:
System Info: Configure
network parameters of the switch.
User Management: Configure the user name and password
for users to log on to the Web management page with a
certain access level.
System Tools: Manage the configuration file of the switch.
Access Security: Provide different security measures for the
login to enhance the configuration management security.
Chapter 5 SwitchingThis module is used to configure basic functions of the switch.
Here mainly introduces:
Port: Configure the basic features for the port.
LAG: Configure Link Aggregation Group. LAG is to combine
a number of ports together to make a single high-bandwidth
data path.
Traffic Monitor: Monitor the traffic of each port.
MAC Address: Configure the address table of the switch.
DHCP Filtering: Monitor the process of the host obtaining the
IP address from DHCP server.
Chapter 6 VLANThis module is used to configure VLANs to control broadcast in
LANs. Here mainly introduces:
802.1Q VLAN: Configure port-based VLAN.
Chapter 7 Spanning TreeThis module is used to configure spanning tree function of the
switch. Here mainly introduces:
spanning tree function.
Port Config: Configure CIST parameters of ports.
MSTP Instance: Configure MSTP instances.
devices from any malicious attack against STP features.
Chapter 8 Multicast
switch. Here mainly introduces:
VLAN.
MLD Snooping: Configure global parameters of MLD
VLAN.
Multicast Table: View the
multicast groups already on the switch.
3
ion to provide
stream within the specified VLAN so as to ensure the
LAN ports to solve mainly authentication and security
management frame to monitor and maintain the network
tion function for the
Chapter Introduction
Chapter 9 QoSThis module is used to configure QoS funct
different quality of service for various network applications and
requirements. Here mainly introduces:
DiffServ: Configure priorities, port priority, 802.1P priority and
DSCP priority.
Bandwidth Control: Configure rate limit feature to control the
traffic rate on each port; configure storm control feature to
filter broadcast, multicast and UL frame in the network.
Voice VLAN: Configure voice VLAN to transmit voice data
transmission priority of voice data stream and voice quality.
Chapter 10 ACLThis module is used to configure match rules and process
policies of packets to filter packets in order to control the access
of the illegal users to the network. Here mainly introduces:
ACL Config: ACL rules.
Policy Config: Configure operation policies.
Policy Binding: Bind the policy to a port/VLAN to take its
effect on a specific port/VLAN.
Chapter 11 Network SecurityThis module is used to configure the protection measure for the
network security. Here introduces:
802.1X: Configure common access control mechanism for
problems.
Chapter 12 PoEThis module is used to configure the PoE function for the switch
to supply power for PD devices. Here mainly introduces:
PoE Config: Configure PoE function globally.
PoE Time-Range: Configure the effective time for PoE port
to supply power..
Chapter 13 SNMPThis module is used to configure SNMP function to provide a
devices. Here mainly introduces:
SNMP Config: Configure global settings of SNMP function.
Notification: Configure notifica
management station to monitor and process the events.
RMON: Configure RMON function to monitor network more
efficiently.
Chapter 14 LLDPThis module is used to configure LLDP function to provide
information for SNMP applications to simplify troubleshooting.
Here mainly introduces:
Basic Config: Configure the LLDP parameters of the device.
Device Info: View the LLDP information of the local device
and its neighbors
Device Statistics: View the LLDP statistics of the local device
LLDP-MED: Configure LLDP-MED parameters of the device.
4
Appendix B Configure the
802.1X Client
Chapter Introduction
Chapter 15 MaintenanceThis module is used to assemble the commonly used system
tools to manage the switch. Here mainly introduces:
System Monitor: Monitor the memory and CPU of the switch.
Log: View configuration parameters on the switch.
Device Diagnostics: Test the connection status of the cable
connected to the switch, test if the port of the switch and the
connected device are available.
Network Diagnostics: Test if the destination is reachable and
the account of router hops from the switch to the destination.
Appendix A SpecificationsLists the hardware specifications of the switch.
Introduces how to configure the PCs.
PCs
Appendix C
Software
Introduces how to use 802.1X Client Software provided for
authentication.
Appendix D GlossaryLists the glossary used in this manual.
Return to CONTENTS
5
Chapter 2 Introduction
Thanks for choosing the TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452 Gigabit Smart Switch!
2.1 Overview of the Switch
Designed for workgroups and departments, TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452
from TP-LINK provides wire-speed performance and full set of layer 2 management features. It
provides a variety of service features and multiple powerful functions with high security.
The EIA-standardized framework and smart configuration capacity can provide flexible solutions
for a variable scale of networks. QoS and IGMP/MLD snooping/filtering optimize voice and video
application. Link aggregation (LACP) increase aggregated bandwidth, optimizing the transport of
business critical data. SNMP/SNMPv6, RMON, WEB/CLI/Telnet Log-in bring abundant
management policies.
multiple functions with excellent performance, and is friendly to manage, which can fully meet the
need of the users demanding higher networking performance.
+ IEEE 802.1s Multiple Spanning Tree provides high link availability in multiple VLAN
environments.
+ IGMP snooping and MLD snooping automatically prevents flooding of IP multicast traffic.
+ Root Guard protects root bridge from malicious attack or configuration mistakes
•Layer 2 Switching
+ Supports up to 512 VLANs simultaneously (out of 4K VLAN IDs).
•Quality of Service
+ Supports L2/L3 granular CoS with 4 priority queues per port.
+ Rate limiting confines the traffic flow accurately according to the preset value.
•Manageability
+ Supports Telnet, SNMP v1/v2c/v3, RMON and web access.
+ Port Mirroring enables monitoring selected ingress/egress traffic.
+ Simple Network and Management Protocol (SNMP) can be configured over IPv6 transport.
+ IPv6 supports stateless autoconfiguration to manage link, subnet, and site addressing
changes.
+ DHCPv6 enables switch to receive configuration parameters, such as IPv6 network
addresses from DHCPv6 servers.
6
2.3 Appearance Description
2.3.1 Front Panel
The front panel of TL-SG2216 is shown as Figure 2-1.
Figure 2-1 Front Panel of TL-SG2216
The front panel of TL-SG2424 is shown as Figure 2-2.
Figure 2-2 Front Panel of TL-SG2424
The front panel of TL-SG2424P is shown as Figure 2-3.
Figure 2-3 Front Panel of TL-SG2424P
The front panel of TL-SG2452 is shown as Figure 2-4.
Figure 2-4 Front Panel of TL-SG2452
The following parts are located on the front panel of TL-SG2216/TL-SG2424/TL-SG2424P/
TL-SG2452:
Reset: Press this button for five seconds or above to reset the software setting back to factory
default setting.
10/100/1000Mbps Ports: Designed to connect to the device with a bandwidth of 10Mbps,
100Mbps or 1000Mbps. Each has a corresponding 1000Mbps LED and link/Act LED.
SFP Ports: Designed to install the SFP module. TL-SG2216/TL-SG2424/TL-SG2424P switch
features some SFP transceiver slots that are shared with the associated RJ45 ports. The
associated two ports are referred to as “combo” ports, which means they cannot be used
simultaneously, otherwise only SFP ports work. TL-SG2452 features 4 individual SFP ports.
Note:
The SFP port can only be used with a gigabit module.
7
On
A 1000Mbps device is connected to the corresponding port.
A 10/100Mbps device or no device is connected to the
On
A device is connected to the corresponding port but no activity.
The switch is powered off or power supply is
A 1000Mbps device is connected to the
A 10/100Mbps device is connected to the
LEDs
For TL-SG2216/TL-SG2424:
Name Status Indication
On Power is on.
Power
Flashing Power supply is abnormal.
Off Power is off or power supply is abnormal.
On The switch is working abnormally.
System
Flashing The switch is working normally.
Off The switch is working abnormally.
1000Mbps
Link/Act
Off
corresponding port.
Flashing Data is being transmitted or received.
Off No device is connected to the corresponding port.
For TL-SG2424P:
TL-SG2424P has a LED mode switch button which is for switching the LED status indication.
When the Speed LED is on, the port LED is indicating the data transmission rate. When the PoE
LED is on, the port LED is indicating the power supply status. By default the Speed LED is on.
Pressing the mode switch button, the Speed LED will turn off and the PoE LED will light up. Then
the PoE LED will turn off after being on for 60 seconds and the Speed LED will light up again.
When the Speed LED is on, the port LED is indicating the data transmission rate.
NameStatusIndication
On The switch is powered on.
Power
Off
abnormal.
Flashing Power supply is abnormal.
Flashing The switch works properly.
System
On/Off The switch works improperly.
Green
On
corresponding port, but no activity.
Flashing Data is being transmitted or received.
10/100/1000Mbps
Yellow
On
corresponding port, but no activity.
Flashing Data is being transmitted or received.
Off No device is connected to the corresponding port.
8
A 1000Mbps device is connected to the corresponding
Flashing
Data is being transmitted or received.
A 10/100Mbps device is connected to the
When the PoE LED is on, the port LED is indicating the power supply status.
NameStatusIndication
On The switch is powered on.
Power
System
PoE Max
10/100/1000Mbps
For TL-SG2452:
Name Status Indication
Off The switch is powered off or power supply is abnormal.
Flashing Power supply is abnormal.
Flashing The switch works properly.
On/Off The switch works improperly.
On The remaining PoE power≤7W.
Flashing The remaining PoE power keeps ≤7W after this LED is
on for 2 minutes.
Off The remaining PoE power≥7W.
On The port is supplying power normally.
Green
Flashing
The supply power exceeds the corresponding port’s
maximum power.
On Overload or short circuit is detected.
Yellow
Flashing Power-on self-test has failed.
Off No PoE power supply is provided on the port.
PWR
SYS
10/100/1000Mbps
On Power is on.
Flashing Power supply is abnormal.
Off Power is off or power supply is abnormal.
On The switch is working abnormally.
Flashing The switch is working normally.
Off The switch is working abnormally.
Green
On
On
Yellow
Flashing
port but no activity.
corresponding port but no activity.
Data is being transmitted or received.
Off No device is connected to the corresponding port.
9
2.3.2 Rear Panel
The rear panel of TL-SG2216/TL-SG2424/TL-SG2424P/TL-SG2452 features a power socket and
a Grounding Terminal (marked with
Grounding Terminal: The switch already comes with Lightning Protection Mechanism. You
can also ground the switch through the PE (Protecting Earth) cable of AC cord or with Ground
Cable.
AC Power Socket: Connect the female connector of the power cord here, and the male
connector to the AC power outlet. Please make sure the voltage of the power supply meets the
requirement of the input voltage (100-240V~ 50/60Hz 0.4A for TL-SG2216, 100-240V~
50/60Hz 0.5A for TL-SG2424, 100-240V~ 50/60Hz 3.5A for TL-SG2424P and100-240V~
50/60Hz 1.0A for TL-SG2452).
), here we take TL-SG2216 for example.
Figure 2-5 Rear Panel
Return to CONTENTS
10
Chapter 3 Login to the Switch
3.1 Login
1) To access the configuration utility, open a web-browser and type in the default address
http://192.168.0.1 in the address field of the browser, then press the Enter ke y.
Figure 3-1 Web-browser
Tips:
To log in to the switch, the IP address of your PC should be set in the same subnet addresses of
the switch. The IP address is 192.168.0.x ("x" is any number from 2 to 254), Subnet Mask is
255.255.255.0. For the detailed instructions as to how to do this, please refer to Appendix B.
2) After a moment, a login window will appear, as shown in Figure 3-2. Enter admin for the User
Name and Password, both in lower case letters. Then click the Login button or press the Enter
key.
Figure 3-2 Login
11
3.2 Configuration
After a successful login, the main page will appear as Figure 3-6, and you can configure the
function by clicking the setup menu on the left side of the screen.
Figure 3-3 Main Setup-Menu
Note:
Clicking Apply can only make the new configurations effective before the switch is rebooted. If
you want to keep the configurations effective even the switch is rebooted, please click Save
Config. You are suggested to click Save Config before cutting off the power or rebooting the
switch to avoid losing the new configurations.
Return to CONTENTS
12
Chapter 4 System
The System module is mainly for system configuration of the switch, including four submenus:
System Info, User Management, System Tools and Access Security.
4.1 System Info
The System Info, mainly for basic properties configuration, can be implemented on System
Summary, Device Description, System Time, Daylight Saving Time, System IP and System
IPv6 pages.
4.1.1 System Summary
On this page you can view the port connection status and the system information.
The port status diagram shows the working status of 24 10/100/1000Mbps RJ45 ports and 4 SFP
ports of the switch.
Choose the menu System→System Info→System Summary to load the following page.
Port Status
Figure 4-1 System Summary
Indicates the 1000Mbps port is not connected to a device.
Indicates the 1000Mbps port is at the speed of 1000Mbps.
Indicates the 1000Mbps port is at the speed of 10Mbps or 100Mbps.
Indicates the SFP port is not connected to a device.
Indicates the SFP port is at the speed of 1000Mbps.
13
Port:
Displays the port number of the switch.
Typ e :
Displays the type of the port.
Rate:
Displays the maximum transmission rate of the port.
Status:
Displays the connection status of the port.
iving packets
Select Tx to display the bandwidth utilization of sending packets
When the cursor moves on the port, the detailed information of the port will be displayed.
Figure 4-2 Port Information
Port Info
Click a port to display the bandwidth utilization on this port. The actual rate divided by theoretical
maximum rate is the bandwidth utilization. The following figure displays the bandwidth utilization
monitored every four seconds. Monitoring the bandwidth utilization on each port facilitates you to
monitor the network traffic and analyze the network abnormities.
Figure 4-3 Bandwidth Utilization
Bandwidth Utilization
Rx: Select Rx to display the bandwidth utilization of rece
on this port.
Tx:
on this port.
14
4.1.2 Device Description
On this page you can configure the description of the switch, including device name, device location
and system contact.
Choose the menu System→System Info→Device Description to load the following page.
Figure 4-4 Device Description
The following entries are displayed on this screen:
Device Description
Device Name: Enter the name of the switch.
Device Location: Enter the location of the switch.
System Contact: Enter your contact information.
4.1.3 System Time
System Time is the time displayed while the switch is running. On this page you can configure the
system time and the settings here will be used for other time-based functions.
You can manually set the system time or synchronize with PC’s clock as the system time.
Choose the menu System→System Info→System Timeto load the following page.
Figure 4-5 System Time
15
When this option is selected, you can set the date and time
Time from NTP
When this option is selected, you can configure the time zone
Enter the IP Address for the
Synchronize with
clock is
The following entries are displayed on this screen:
Time Info
Current System Date: Displays the current date and time of the switch.
Current Time Source: Displays the current time source of the switch.
Time Config
Manual:
manually.
Get
Server:
and the IP Address for the NTP Server. The switch will get UTC
automatically if it has connected to an NTP Server.
Time Zone: Select your local time.
Primary/Secondary Server:
NTP Server.
Update Rate: Specify the rate fetching time from NTP server.
When this option is selected, the administrator PC’s
PC’S Clock:
utilized.
Note:
1. The system time will be restored to the default when the switch is restarted and you need to
reconfigure the system time of the switch.
2. When Get Time from NTP Server is selected and no time server is configured, the switch will
get time from the time server of the Internet if it has connected to the Internet.
4.1.4 Daylight Saving Time
Here you can configure the Daylight Saving Time of the switch.
Choose the menu System→System Info→Daylight Saving Time to load the following page.
Figure 4-6 Daylight Saving Time
16
Sunday in
Australia: First Sunday in October, 02:00 ~ First Sunday in
t Sunday in
st
Specify the DST configuration in recurring mode. This
en Daylight
Start/End Time: Select starting time and ending time of
te mode. This configuration is
light
Start/End Time: Select starting time and ending time of
The following entries are displayed on this screen:
DST Config
DST Status: Enable or disable the DST.
Predefined Mode: Select a predefined DST configuration.
USA: Second Sunday in March, 02:00 ~ First
November, 02:00.
April, 03:00.
Europe: Last Sunday in March, 01:00 ~ Las
October, 01:00.
New Zealand: Last Sunday in September, 02:00 ~ Fir
Sunday in April, 03:00.
Recurring Mode:
configuration is recurring in use.
Offset: Specify the time adding in minutes wh
Saving Time comes.
Daylight Saving Time.
Date Mode: Specify the DST configuration in Da
recurring in use.
Offset: Specify the time adding in minutes when Day
Saving Time comes.
Daylight Saving Time.
Note:
1. When the DST is disabled, the predefined mode, recurring mode and date mode cannot be
configured.
2. When the DST is enabled, the default daylight saving time is of European in predefined mode.
4.1.5 System IP
Each device in the network possesses a unique IP Address. You can log on to the Web
management page to operate the switch using this IP Address. The switch supports three modes
to obtain an IP address: Static IP, DHCP and BOOTP. The IP address obtained using a new mode
will replace the original IP address. On this page you can configure the system IP of the switch.
17
Static IP: When this option is selected, you should enter IP
DHCP: When this option is selected, the switch will obtain
OOTP: When this option is selected, the switch will obtain
you can get access to the switch. By default VLAN1 owning all
he Management VLAN and you can access the
switch via any port on the switch. However, if another VLAN is
set to be the Management VLAN, you may have to
reconnect the management station to a port that is a member of
Enter the system IP of the switch. The default system IP is
Choose the menu System→System Info→System IP to load the following page.
Figure 4-7 System IP
The following entries are displayed on this screen:
IP Config
MAC Address: Displays MAC Address of the switch.
IP Address Mode: Select the mode to obtain IP Address for the switch.
Address, Subnet Mask and Default Gateway manually.
network parameters from the DHCP Server.
B
network parameters from the BOOTP Server.
Management VLAN: Enter the ID of management VLAN, the only VLAN through which
the ports is t
created and
the Management VLAN.
IP Address:
192.168.0.1 and you can change it appropriate to your needs.
Subnet Mask: Enter the subnet mask of the switch.
Default Gateway:Enter the default gateway of the switch.
Note:
1. Changing the IP address to a different IP segment will interrupt the network communication, so
please keep the new IP address in the same IP segment with the local network.
2. The switch only possesses one IP address. The IP address configured will replace the original
IP address.
3. If the switch gets the IP address from DHCP server, you can see the configuration of the
switch in the DHCP server; if DHCP option is selected but no DHCP server exists in the
network, a few minutes later, the switch will restore the setting to the default.
18
4. If DHCP or BOOTP option is selected, the switch will get network parameters dynamically from
the Internet, which means that IP address, subnet mask and default gateway cannot be
configured.
5. By default, the IP address is 192.168.0.1.
4.1.6 System IPv6
IPv6 (Internet Protocol version 6), also called IPng (IP next generation), was developed by the
IETF (Internet Engineering Task Force) as the successor to IPv4 (Internet Protocol version 4).
Compared with IPv4, IPv6 increases the IP address size from 32 bits to 128 bits; this solves the
IPv4 address exhaustion problem.
IPv6 features
IPv6 has the following features:
1. Adequate address space: The source and destination IPv6 addresses are both 128 bits (16
bytes) long. IPv6 can provide 3.4 x 10
hierarchical address division as well as allocation of public and private addresses.
2. Header format simplification: IPv6 cuts down some IPv4 header fields or move them to IPv6
extension headers to reduce the load of basic IPv6 headers, thus making IPv6 packet handling
38
addresses to completely meet the requirements of
simple and improving the forwarding efficiency. Although the IPv6 address size is four times
that of IPv4 addresses, the size of basic IPv6 headers is 40 bytes and is only twice that of IPv4
headers (excluding the Options field).
3. Flexible extension headers: IPv6 cancels the Options field in IPv4 packets but introduces
multiple extension headers. In this way, IPv6 enhances the flexibility greatly to provide
scalability for IP while improving the handling efficiency. The Options field in IPv4 packets
contains 40 bytes at most, while the size of IPv6 extension headers is restricted by that of IPv6
packets.
4. Built-in security: IPv6 uses IPSec as its standard extension header to provide end-to-end
security. This feature provides a standard for network security solutions and improves the
interoperability between different IPv6 applications.
5. Automatic address configuration: To simplify the host configuration, IPv6 supports stateful
and stateless address configuration.
Stateful address configuration means that a host acquires an IPv6 address and related
information from a server (for example, DHCP server).
Stateless address configuration means that a host automatically configures an IPv6
address and related information on basis of its own link-layer address and the prefix
information advertised by a router.
In addition, a host can generate a link-local address on basis of its own link-layer address and
the default prefix (FE80::/64) to communicate with other hosts on the link.
6. Enhanced neighbor discovery mechanism: The IPv6 neighbor discovery protocol is a
group of Internet control message protocol version 6 (ICMPv6) messages that manages the
information exchange between neighbor nodes on the same link. The group of ICMPv6
19
messages takes the place of Address Resolution Protocol (ARP) message, Internet Control
Message Protocol version 4 (ICMPv4) router discovery message, and ICMPv4 redirection
message to provide a series of other functions.
Introduction to IPv6 address
1. IPv6 address format
An IPv6 address is represented as a series of 16-bit hexadecimals, separated by colons (:).
An IPv6 address is divided into eight groups, and the 16 bits of each group are represented by
four hexadecimal numbers which are separated by colons, for example,
2001:0d02:0000:0000:0014: 0000:0000:0095. The hexadecimal letters in IPv6 addresses are
not case-sensitive.
To simplify the representation of IPv6 addresses, zeros in IPv6 addresses can be handled as
follows:
Leading zeros in each group can be removed. For example, the above-mentioned address
can be represented in shorter format as 2001:d02:0:0:14:0:0:95.
Two colons (::) may be used to compress successive hexadecimal fields of zeros at the
beginning, middle, or end of an IPv6 address. For example, the above-mentioned address
can be represented in the shortest format as 2001:d02::14:0:0:95.
Note:
Two colons (::) can be used only once in an IPv6 address, usually to represent the longest
successive hexadecimal fields of zeros. If two colons are used more than once, the device is
unable to determine how many zeros double-colons represent when converting them to zeros to
restore a 128-bit IPv6 address.
An IPv6 address consists of two parts: address prefix and interface ID. The address prefix and
the interface ID are respectively equivalent to the network ID and the host ID in an IPv4
address.
An IPv6 address prefix is represented in "IPv6 address/prefix length" format, where "IPv6
address" is an IPv6 address in any of the above-mentioned formats and "prefix length" is a
decimal number indicating how many leftmost bits from the preceding IPv6 address are used
as the address prefix.
2. IPv6 address classification
IPv6 addresses fall into three types: unicast address, multicast address, and anycast address.
Unicast address: An identifier for a single interface, on a single node. A packet that is sent
to a unicast address is delivered to the interface identified by that address.
Multicast address: An identifier for a set of interfaces (typically belonging to different nodes),
similar to an IPv4 multicast address. A packet sent to a multicast address is delivered to all
interfaces identified by that address. There are no broadcast addresses in IPv6. Their
function is superseded by multicast addresses.
20
Anycast addresses are taken from unicast
address space and are not syntactically
Anycast address: An identifier for a set of interfaces (typically belonging to different nodes).
A packet sent to an anycast address is delivered to one of the interfaces identified by that
address (the nearest one, according to the routing protocols’ measure of distance).
The type of an IPv6 address is designated by the first several bits called format prefix. The
following table lists the mappings between address types and format prefixes.
Type Format Prefix (binary) IPv6 Prefix ID
Unassigned address 00…0 (128 bits) ::/128
Loopback address 00…1 (128 bits) ::1/128
Unicast
Link-local address 111111101 0 FE80::/10
address
Site-local address 1111111011 FEC0::/10
Global unicast address
(currently assigned)
Reserved type
(to be assigned in future)
001 2xxx::/4 or 3xxx::/4
Other formats
Multicast address 11111111 FF00::/8
Anycast address
distinguishable from unicast addresses.
Table 4-1 Mappings between address types and format prefixes
3. IPv6 Unicast Address:
IPv6 unicast address is an identifier for a single interface. It consists of a subnet prefix and an
interface ID.
Subnet Prefix: This section is allocated by the IANA (The Internet Assigned Numbers
Authority), the ISP (Internet Service Provider) or the organizations.
Interface ID: An interface ID is used to identify interfaces on a link. The interface ID must be
unique to the link.
There are several ways to form interface IDs. The IPv6 addresses with format prefixes 001
through 111, except for multicast addresses (1111 1111), are all required to have 64-bit
interface IDs in EUI-64 format.
For all IEEE 802 interface types (for example, Ethernet and FDDI interfaces), Interface IDs in
the modified EUI-64 format are constructed in the following way:
The first three octets (24 bits) are taken from the Organizationally Unique Identifier (OUI) of the
48-bit link-layer address (the MAC address) of the interface, the fourth and fifth octets (16 bits)
are a fixed hexadecimal value of FFFE, and the last three octets (24 bits) are taken from the
last three octets of the MAC address. The construction of the interface ID is completed by
21
setting the universal/local (U/L) bit--the seventh bit of the first octet--to a value of 0 or 1. A
value of 0 indicates a locally administered identifier; a value of 1 indicates a globally unique
IPv6 interface identifier.
Tak e MAC address 0012:0B0A:2D51 as an example. Insert FFFE to the middle of the address
to get 0012:0BFF:FE0A:2D51. Then set the U/L bit to 1 to obtain an interface ID in EUI-64
format as 0212:0BFF:FE0A:2D51.
IPv6 unicast address can be classified into several types, as shown in Table 4-1. The two
most common types are introduced below:
Global unicast address
A Global unicast address is an IPv6 unicast address that is globally unique and is routable on
the global Internet.
Global unicast addresses are defined by a global routing prefix, a subnet ID, and an interface
ID. The IPv6 global unicast address starts with binary value 001 (2000::/3). The global routing
prefix is a value assigned to a site (a cluster of subnets/links) by IANA. The subnet ID is an
identifier of a subnet within the site.
The figure below shows the structure of a global unicast address.
Figure 4-8 Global Unicast Address Format
Link-local address
A link-local address is an IPv6 unicast address that can be automatically configured on any
interface using the link-local prefix FE80::/10 (1111 1110 10) and the interface identifier in the
modified EUI-64 format. Link-local addresses are used in the neighbor discovery protocol and
the stateless autoconfiguration process. Nodes on a local link can use link-local addresses to
communicate. The figure below shows the structure of a link-local address.
Figure 4-9 Link-local Address Format
IPv6 devices must not forward packets that have link-local source or destination addresses to
other links.
Note:
You can configure multiple IPv6 addresses per interface, but only one link-local address.
22
Loading...
+ 195 hidden pages
You need points to download manuals.
1 point = 1 manual.
You can buy points or you can get point for every manual you upload.