TP-Link TL-SG5412F, TL-SG5428 User Manual

TL-SG5428
24-Port Gigabit L2 Managed Switch with 4 SFP Slots
TL-SG5412F
12-Port Gigabit SFP L2 Managed Switch with 4 Combo 1000BASE-T Ports
Rev: 2.0.0
1910010630
COPYRIGHT & TRADEMARKS
Specifications are subject to change without notice. is a registered trademark of
TP-LINK TECHNOLOGIES CO., LTD. Other brands and product names are trademarks or
registered trademarks of their respective holders.
No part of the specifications may be reproduced in any form or by any means or used to make any
derivative such as translation, transformation, or adaptation without permission from TP-LINK
TECHNOLOGIES CO., LTD. Copyright © 2012 TP-LINK TECHNOLOGIES CO., LTD. All rights
reserved.
http://www.tp-link.com
I
CONTENTS
Preface .............................................................................................................. 1
Chapter 1 Using the CLI ....................................................................................... 4
1.1 Accessing the CLI..............................................................................................................4
1.1.1 Logon by a console port ..........................................................................................4
1.1.2 Logon by Telnet.......................................................................................................6
1.2 CLI Command Modes........................................................................................................8
1.3 Security Levels ................................................................................................................10
1.4 Conventions ....................................................................................................................10
1.4.1 Format Conventions ..............................................................................................10
1.4.2 Special Characters ................................................................................................11
1.4.3 Parameter Format............................................................................................... 11
Chapter 2 User Interface .................................................................................... 12
enable....................................................................................................................................
enable password ...................................................................................................................12
disable ...................................................................................................................................
configure................................................................................................................................1
exit.........................................................................................................................................
end ........................................................................................................................................
12
13
3
13
14
Chapter 3 IEEE 802.1Q VLAN Commands ........................................................ 15
vlan database ........................................................................................................................15
vlan........................................................................................................................................
interface vlan .........................................................................................................................16
description .............................................................................................................................16
switchport type ......................................................................................................................17
switchport allowed vlan..........................................................................................................17
switchport pvid.......................................................................................................................18
15
switchport general egress-rule ..............................................................................................18
show vlan ..............................................................................................................................19
show interface switchport ...................................................................................................... 19
Chapter 4 Protocol VLAN Commands............................................................... 20
protocol-vlan template ...........................................................................................................20
protocol-vlan vlan ..................................................................................................................20
protocol-vlan interface ...........................................................................................................21
II
show protocol-vlan template..................................................................................................22
show protocol-vlan vlan .........................................................................................................22
show protocol-vlan interface..................................................................................................22
Chapter 5 VLAN-VPN Commands...................................................................... 24
vlan-vpn enable .....................................................................................................................24
vlan-vpn tpid ..........................................................................................................................24
vlan-vpn interface ..................................................................................................................25
vlan-vpn uplink ......................................................................................................................25
show vlan-vpn global ............................................................................................................. 26
show vlan-vpn uplink ............................................................................................................. 26
show vlan-vpn interface.........................................................................................................27
Chapter 6 Voice VLAN Commands.................................................................... 28
voice-vlan enable ..................................................................................................................28
voice-vlan aging-time ............................................................................................................28
voice-vlan oui ........................................................................................................................29
switchport voice-vlan mode ................................................................................................... 30
switchport voice-vlan security................................................................................................30
show voice-vlan global ..........................................................................................................31
show voice-vlan oui ...............................................................................................................31
show voice-vlan switchport....................................................................................................31
Chapter 7 Private VLAN Commands ................................................................. 33
private-vlan............................................................................................................................33
switchport private-vlan...........................................................................................................33
show private-vlan ..................................................................................................................34
show private-vlan switchport .................................................................................................34
Chapter 8 GVRP Commands.............................................................................. 36
gvrp .......................................................................................................................................
36
gvrp (interface) ......................................................................................................................36
gvrp registration.....................................................................................................................37
gvrp timer ..............................................................................................................................37
show gvrp global ...................................................................................................................38
show gvrp interface ...............................................................................................................39
Chapter 9 LAG Commands ................................................................................ 40
interface link-aggregation ...................................................................................................... 40
III
interface range link-aggregation ............................................................................................40
link-aggregation.....................................................................................................................41
link-aggregation hash-algorithm ............................................................................................42
description .............................................................................................................................42
show interface link-aggregation.............................................................................................43
Chapter 10 LACP Commands .............................................................................. 44
lacp system-priority ...............................................................................................................44
lacp (interface).......................................................................................................................44
lacp admin-key ......................................................................................................................45
lacp port-priority.....................................................................................................................45
show lacp system-priority ......................................................................................................46
show lacp interface................................................................................................................46
Chapter 11 User Manage Commands.................................................................. 48
user add ................................................................................................................................4
user remove ..........................................................................................................................49
user modify status .................................................................................................................49
user modify type ....................................................................................................................50
user modify password............................................................................................................50
user access-control disable ................................................................................................... 51
user access-control ip-based.................................................................................................51
user access-control mac-based.............................................................................................52
user access-control port-based ............................................................................................. 52
user max-number ..................................................................................................................53
user idle-timeout....................................................................................................................53
show user account-list...........................................................................................................54
show user configuration.........................................................................................................54
8
Chapter 12 Binding Table Commands................................................................. 56
binding-table user-bind ..........................................................................................................56
binding-table remove .............................................................................................................57
dhcp-snooping.......................................................................................................................57
dhcp-snooping global ............................................................................................................58
dhcp-snooping information enable ........................................................................................59
dhcp-snooping information strategy ......................................................................................59
dhcp-snooping information user-defined ...............................................................................60
dhcp-snooping information remote-id .................................................................................... 60
dhcp-snooping information circuit-id......................................................................................61
IV
dhcp-snooping trusted ........................................................................................................... 61
dhcp-snooping mac-verify .....................................................................................................62
dhcp-snooping rate-limit ........................................................................................................ 62
dhcp-snooping decline...........................................................................................................63
show binding-table.................................................................................................................63
show dhcp-snooping global ...................................................................................................64
show dhcp-snooping information...........................................................................................64
show dhcp-snooping interface...............................................................................................65
Chapter 13 ARP Inspection Commands.............................................................. 66
arp detection (global)............................................................................................................. 66
arp detection trust-port ..........................................................................................................66
arp detection (interface).........................................................................................................67
arp detection limit-rate........................................................................................................... 67
arp detection recover............................................................................................................. 68
show arp detection global......................................................................................................69
show arp detection interface..................................................................................................69
show arp detection statistic ...................................................................................................69
show arp detection statistic reset ..........................................................................................70
Chapter 14 IP Source Guard Commands............................................................ 71
ip source guard......................................................................................................................71
show ip source guard ............................................................................................................72
Chapter 15 DoS Defend Command...................................................................... 73
dos-prevent ...........................................................................................................................73
dos-prevent type.................................................................................................................... 73
show dos-prevent ..................................................................................................................74
Chapter 16 IEEE 802.1X Commands ................................................................... 75
dot1x (global).........................................................................................................................75
dot1x auth-method ................................................................................................................75
dot1x guest-vlan ....................................................................................................................76
dot1x quiet-period.................................................................................................................. 77
dot1x timer.............................................................................................................................77
dot1x retry .............................................................................................................................78
dot1x (interface) ....................................................................................................................78
dot1x guest-vlan ....................................................................................................................79
dot1x port-control ..................................................................................................................79
V
dot1x port-method .................................................................................................................80
radius authentication primary-ip ............................................................................................81
radius authentication secondary-ip ........................................................................................ 81
radius authentication port ...................................................................................................... 82
radius authentication key.......................................................................................................83
radius accounting enable.......................................................................................................83
radius accounting primary-ip .................................................................................................84
radius accounting secondary-ip.............................................................................................84
radius accounting port ...........................................................................................................85
radius accounting key............................................................................................................ 85
radius response-timeout ........................................................................................................ 86
show dot1x global.................................................................................................................. 87
show dot1x interface .............................................................................................................87
show radius authentication .................................................................................................... 87
show radius accounting......................................................................................................... 88
Chapter 17 Log Commands ................................................................................. 89
logging local buffer ................................................................................................................89
logging local flash..................................................................................................................89
logging clear ..........................................................................................................................90
logging loghost ......................................................................................................................91
show logging local-config ......................................................................................................91
show logging loghost............................................................................................................. 92
show logging buffer ...............................................................................................................92
show logging flash.................................................................................................................93
Chapter 18 SSH Commands................................................................................. 94
ssh server enable ..................................................................................................................94
ssh version ............................................................................................................................ 94
ssh idle-timeout .....................................................................................................................95
ssh max-client .......................................................................................................................95
ssh download ........................................................................................................................96
show ssh ...............................................................................................................................96
Chapter 19 SSL Commands ................................................................................. 97
ssl enable .............................................................................................................................. 97
ssl download certificate .........................................................................................................97
ssl download key ...................................................................................................................98
show ssl.................................................................................................................................
VI
98
Chapter 20 Address Commands.........................................................................100
bridge address port-security ................................................................................................100
bridge address static ...........................................................................................................101
bridge aging-time................................................................................................................. 102
bridge address filtering ........................................................................................................ 102
show bridge port-security ....................................................................................................103
show bridge address ...........................................................................................................103
show bridge aging-time .......................................................................................................104
Chapter 21 System Commands ..........................................................................105
system-descript ...................................................................................................................105
system-time gmt ..................................................................................................................105
system-time manual ............................................................................................................106
system-time dst ...................................................................................................................106
ip address............................................................................................................................107
ip management-vlan ............................................................................................................ 108
ip dhcp-alloc ........................................................................................................................108
ip bootp-alloc .......................................................................................................................108
reset ....................................................................................................................................
reboot ..................................................................................................................................
user-config backup .............................................................................................................. 110
user-config load................................................................................................................... 110
user-config save .................................................................................................................. 111
firmware upgrade ................................................................................................................ 111
ping .....................................................................................................................................
tracert ..................................................................................................................................
loopback .............................................................................................................................. 113
show system-info................................................................................................................. 113
show ip address .................................................................................................................. 114
show system-time................................................................................................................ 114
109
109
111
112
show system-time dst.......................................................................................................... 114
show system-time source .................................................................................................... 115
show system-time mode...................................................................................................... 115
Chapter 22 Ethernet Configuration Commands ................................................116
interface ethernet ................................................................................................................ 116
interface range ethernet ...................................................................................................... 116
description ........................................................................................................................... 117
VII
shutdown ............................................................................................................................. 117
flow-control .......................................................................................................................... 118
negotiation........................................................................................................................... 118
storm-control ....................................................................................................................... 119
port rate-limit .......................................................................................................................120
port rate-limit disable ingress...............................................................................................120
port rate-limit disable egress ...............................................................................................121
show interface configuration................................................................................................121
show interface status........................................................................................................... 122
show interface counters.......................................................................................................122
show storm-control ethernet ................................................................................................123
show port rate-limit ..............................................................................................................123
Chapter 23 QoS Commands................................................................................124
qos ......................................................................................................................................
qos dot1p enable.................................................................................................................124
qos dot1p config ..................................................................................................................125
qos dscp enable ..................................................................................................................126
qos dscp config ...................................................................................................................126
qos scheduler ......................................................................................................................127
show qos port-based ...........................................................................................................128
show qos dot1p ...................................................................................................................129
show qos dscp.....................................................................................................................129
show qos scheduler............................................................................................................. 129
124
Chapter 24 Port Mirror Commands ....................................................................131
mirror add ............................................................................................................................131
mirror remove mirrored........................................................................................................132
mirror remove group............................................................................................................ 132
show mirror..........................................................................................................................133
Chapter 25 Port isolation Commands ................................................................134
port isolation ........................................................................................................................134
show port isolation............................................................................................................... 134
Chapter 26 ACL Commands................................................................................136
acl time-segment .................................................................................................................136
acl edit time-segment ..........................................................................................................137
acl holiday ...........................................................................................................................138
VIII
acl create.............................................................................................................................138
acl rule mac-acl ...................................................................................................................139
acl edit rule mac-acl ............................................................................................................140
acl rule std-acl .....................................................................................................................141
acl edit rule std-acl...............................................................................................................142
acl policy policy-add ............................................................................................................143
acl policy action-add............................................................................................................ 144
acl edit action ......................................................................................................................145
acl bind to-port..................................................................................................................... 145
acl bind to-vlan ....................................................................................................................146
show acl time-segment........................................................................................................146
show acl holiday ..................................................................................................................147
show acl config....................................................................................................................147
show acl bind.......................................................................................................................148
Chapter 27 MSTP Commands.............................................................................149
spanning-tree global............................................................................................................ 149
spanning-tree common-config .............................................................................................150
spanning-tree region............................................................................................................151
spanning-tree msti...............................................................................................................152
spanning-tree msti...............................................................................................................153
spanning-tree tc-defend.......................................................................................................154
spanning-tree security .........................................................................................................154
spanning-tree mcheck .........................................................................................................155
show spanning-tree global-info............................................................................................ 156
show spanning-tree global-config........................................................................................ 156
show spanning-tree port-config ...........................................................................................156
show spanning-tree region .................................................................................................. 157
show spanning-tree msti config ...........................................................................................157
show spanning-tree msti port ..............................................................................................158
show spanning-tree security tc-defend................................................................................ 158
show spanning-tree security port-defend.............................................................................159
Chapter 28 IGMP Commands..............................................................................160
igmp-snooping global ..........................................................................................................160
igmp-snooping config ..........................................................................................................160
igmp-snooping vlan-config-add ...........................................................................................161
igmp-snooping vlan-config...................................................................................................162
IX
igmp-snooping multi-vlan-config.......................................................................................... 163
igmp-snooping static-entry-add ...........................................................................................164
igmp-snooping filter-add ......................................................................................................165
igmp-snooping filter-config ..................................................................................................165
igmp-snooping filter ............................................................................................................. 166
show igmp-snooping global-config ......................................................................................167
show igmp-snooping port-config.......................................................................................... 167
show igmp-snooping vlan-config .........................................................................................168
show igmp-snooping multi-vlan ...........................................................................................168
show igmp-snooping multi-ip-list .........................................................................................169
show igmp-snooping filter-ip-addr .......................................................................................169
show igmp-snooping port-filter ............................................................................................169
show igmp-snooping packet-stat .........................................................................................170
show igmp-snooping packet-stat-clear ................................................................................ 170
Chapter 29 SNMP Commands.............................................................................171
snmp global .........................................................................................................................171
snmp view-add ....................................................................................................................172
snmp group-add ..................................................................................................................172
snmp user-add ....................................................................................................................174
snmp community-add .......................................................................................................... 175
snmp notify-add...................................................................................................................176
snmp-rmon history sample-cfg ............................................................................................177
snmp-rmon history owner ....................................................................................................178
snmp-rmon history enable ...................................................................................................178
snmp-rmon event user.........................................................................................................179
snmp-rmon event description ..............................................................................................179
snmp-rmon event type.........................................................................................................180
snmp-rmon event owner......................................................................................................181
snmp-rmon event enable.....................................................................................................181
snmp-rmon alarm config......................................................................................................182
snmp-rmon alarm owner......................................................................................................183
snmp-rmon alarm enable.....................................................................................................184
show snmp global-config ..................................................................................................... 184
show snmp view ..................................................................................................................185
show snmp group ................................................................................................................185
show snmp user ..................................................................................................................185
show snmp community........................................................................................................ 186
X
show snmp destination-host ................................................................................................ 186
show snmp-rmon history .....................................................................................................186
show snmp-rmon event ....................................................................................................... 187
show snmp-rmon alarm ....................................................................................................... 187
Chapter 30 Cluster Commands...........................................................................189
cluster ndp...........................................................................................................................189
cluster ntdp..........................................................................................................................190
cluster explore .....................................................................................................................191
cluster..................................................................................................................................
cluster create.......................................................................................................................192
cluster manage config .........................................................................................................192
cluster manage member......................................................................................................193
cluster manage role-change ................................................................................................193
show cluster ndp global ....................................................................................................... 194
show cluster ndp port-status................................................................................................194
show cluster neighbour........................................................................................................195
show cluster ntdp global ...................................................................................................... 195
show cluster ntdp port-status...............................................................................................196
show cluster ntdp device ..................................................................................................... 196
show cluster manage config ................................................................................................196
show cluster manage member ............................................................................................197
show cluster manage role....................................................................................................197
191
Chapter 31 LLDP Commands..............................................................................198
lldp enable ...........................................................................................................................198
lldp hold-multiplier................................................................................................................198
lldp timer..............................................................................................................................199
lldp admin-status .................................................................................................................200
lldp snmp-trap......................................................................................................................201
lldp tlv-select........................................................................................................................201
show lldp global...................................................................................................................202
show lldp interface............................................................................................................... 202
show lldp local-information .................................................................................................. 203
show lldp neighbor-information............................................................................................ 203
show lldp statistics............................................................................................................... 203
XI

Preface

This Guide is intended for network administrator to provide referenced information about CLI (Command Line Interface). The device mentioned in this Guide stands for TL-SG5428/TL-SG5412F JetStream L2 Managed Switch.
Overview of this Guide
Chapter 1: Using the CLI
Provide information about how to use the CLI, CLI Command Modes, Security Levels and some
Conventions.
Chapter 2: User Interface
Provide information about the commands used to switch between five CLI Command Modes.
Chapter 3: IEEE 802.1Q VLAN Commands
Provide information about the commands used for configuring IEEE 802.1Q VLAN.
Chapter 4: Protocol VLAN Commands
Provide information about the commands used for configuring Protocol VLAN.
Chapter 5: VLAN-VPN Commands
Provide information about the commands used for configuring VLAN-VPN (Virtual Private Network)
function.
Chapter 6: V
Provide information about the commands used for configuring Voice VLAN.
Chapter 7: Private VLAN Commands
Provide information about the commands used for configuring Private VLAN.
Chapter 8: GVRP Commands
Provide information about the commands used for configuring GVRP (GARP VLAN registration
protocol).
Chapter 9: L
oice VLAN Commands
AG Commands
Provide information about the commands used for configuring LAG (Link Aggregation Group).
Chapter 10
Provide information about the commands used for configuring LACP (Link Aggregation Control
Protocol).
Chapter 1
Provide information about the commands used for user management.
: LACP Commands
1: User Manage Commands
1
Chapter 12: Binding Table Commands
Provide information about the commands used for binding the IP address, MAC address, VLAN
and the conn
ected Port number of the Host together.
Chapter 13: ARP Inspection Commands
Provide information about the commands used for protecting the switch from the ARP
cheating or
ARP Attack.
Chapter 14: IP Source Guard Commands
Provide information about the commands used for guarding the IP Source by filtering the IP
packets based on the IP-MAC Binding entries.
Chapter 15: DoS Defend Command
Provide information about the commands used for DoS defend and detecting the DoS attack.
Chapter 16
: IEEE 802.1X Commands
Provide information about the commands used for configuring IEEE 802.1X function.
Chapter 17: Log Comma
nds
Provide information about the commands used for configuring system log.
Chapter 18: SSH Commands
Provide information about the commands used for configuring and managing SSH (Security
Shell).
Chapter 19: SSL Commands
Provide information about the commands used for configuring and managing SSL (Secure
Sockets Layer).
Chapter 20: Address Commands
Provide information about the commands used for Address configuration.
Chapter 21: System Commands
Provide information about the commands used for configuring the System information and System
IP, reboot and reset the switch, upgrade the switch system and other operations.
Chapter 22: Ethernet Configuration Commands
Provide information about the commands used for configuring the Bandwidth Control, Negotiation
Mode, and Storm Control for Ethernet ports.
Chapter 23: QoS Commands
Provide information about the commands used for configuring the QoS function.
Chapter 24: Port Mirror Commands
Provide information about the commands used for configuring the Port Mirror function.
Chapter 25: Port isolation Commands
Provide information about the commands used for configuring the Port isolation function.
2
Chapter 26: ACL Commands
Provide information about the commands used for configuring the ACL (Access Control List).
Chapter 27: MSTP Commands
Provide information about the commands used for configuring the MSTP (Multiple Spanning Tree
Protocol).
Chapter 28: IGMP Commands
Provide information about the commands used for configuring the IGMP Snooping (Internet Group
Management Protocol Snooping).
Chapter 29: SNMP Commands
Provide information about the commands used for configuring the SNMP (Simple Network
Management Protocol) functions.
Chapter 30: Cluster Commands
Provide information about the commands used for configuring the Cluster Management function.
Chapter 31: LLDP Commands
Provide information about the commands used for configuring the LLDP function.
3

Chapter 1 Using the CLI

1.1 Accessing the CLI

You can log on to the switch and access the CLI by the following two methods:
1. Log on to the switch by the console port on the switch.
2. Log on to the switch remotely by a Telnet or SSH connection through an Ethernet port.

1.1.1 Logon by a console port

To log on to the switch by the console port on the switch, please take the following steps:
1. Connect the PCs or Terminals to the console port on the switch by a provided cable.
2. Click Start
open the Hyper Terminal as the figure 1-1 shown.
All Programs Accessories Communications Hyper Terminal to
Figure 1-1 Open
3. The Connection Description Window will prompt as figure1-2. Enter a name into the
Name field and click OK.
Hyper Terminal
4
Figure 1-2 Connection Description
4. Select the port to connect in figure 1-3, and click OK.
Figure 1-3 Select the port to connect
5. Configure the port selected in the step above as the following figure1-4 shown. Configure Bits
per second as 38400, Data bits as 8, Parity as None, Stop bits as 1, Flow control as None,
and then click OK.
5
Figure 1-4 Port Settings
6. Type the User name and Password in the Hyper Terminal window, the factory default value for
both of them is admin. The DOS prompt” TP-LINK>” will appear after pressing the Enter
button as figure1-5 shown. It indicates that you can use the CLI now.
Figure 1-5 Log in the Switch

1.1.2 Logon by Telnet

To log on to the switch by a Telnet connection, please take the following steps:
1. Make sure the switch and the PC are in the same LAN.
2. Click Start Run to open the Run window.
6
Figure 1-6 Open the Run window
3. Type cmd in the prompt Run window as figure 1-7 and click OK.
Figure 1-7 Run Window
4. Type telnet 192.168.0.1 in the command prompt shown as figure1-8, and press the Enter
button.
Figure 1-8 Connecting to the Switch
7
5. Type the User name and Password (the factory default value for both of them is admin) and
press the Enter button, then you can use the CLI now, which is shown as figure1-9.
Figure 1-9 Log in the Switch

1.2 CLI Command Modes

The CLI is divided into different command modes: User EXEC Mode, Privileged EXEC Mode,
Global Configuration Mode, Interface Configuration Mode and VLAN Database (VLAN
Configuration Mode). Interface Configuration Mode can also be divided into Interface Ethernet,
Interface link-aggregation and some other modes, which is shown as the following diagram.
The following table gives detailed information about the Accessing path, Prompt of each mode and
how to exit the current mode and access the next mode.
8
Mode Accessing Path Prompt
Primary mode once
User EXEC Mode
Privileged EXEC Mode
Global Configuration
it is connected with the switch.
Use the enable command to enter this mode from User EXEC mode.
Use the configure command to enter this mode from Privileged EXEC mode.
TP-LINK>
TP-LINK#
TP-LINK(config)#
Mode
Logout or Access the next
mode
Use the exit command to disconnect the switch (except that the switch is connected through the Console port).
Use the enable command to access Privileged EXEC mode.
Use the exit command to disconnect the switch (except that the switch is connected through the Console port).
Enter the disable command to return to User EXEC mode.
Enter configure command to access Global Configuration mode.
Use the exit or the end command or press Ctrl+Z to return to Privileged EXEC mode.
Use the interface type number command to access interface Configuration mode.
Use the vlan database to access VLAN Configuration mode.
Interface Configuration Mode
VLAN Configuration Mode
Use the interface
type number
command to enter this mode from Global Configuration mode.
Use the vlan database command to enter this mode from Global Configuration mode.
TP-LINK(config-if)#
TP-LINK(config-vlan)#
Use the end command or press Ctrl+Z to return to Privileged EXEC mode.
Enter exit command to return to Global Configuration mode.
A port number must be specified in the interface command.
Use the end command or press Ctrl+Z to return to Privileged EXEC mode.
Enter the exit command to return to Global configuration mode.
Note:
1. The user is automatically in User EXEC Mode after the connection between the PC and the
switch is established by a console port or by a telnet connection.
2. Each command mode has its own set of specific commands. To configure some commands,
you should access the corresponding command mode firstly.
Global Configuration Mode: In this mode, global commands are provided, such as the
Spanning Tree, Schedule Mode and so on.
Interface Configuration Mode: In this mode, users can configure one or several ports,
different ports corresponds to different commands
9
a). Interface Ethernet: Configure parameters for an Ethernet port, such as Duplex-mode,
flow control status.
b). Interface range Ethernet: The commands contained are the same as that of the
Interface Ethernet. Configure parameters for several Ethernet ports.
c). Interface link-aggregation: Configure parameters for a link-aggregation, such as
broadcast storm.
d). Interface range link-aggregation: Configure parameters for multi-trunks.
e). Interface vlan: Configure parameters for the vlan-port.
Vlan Configuration Mode: In this mode, users can create a VLAN and add a specified
port to the VLAN.
3. Some commands are global, that means they can be performed in all modes:
show: display all information of switch, for example: statistic information, port information,
VLAN information.
history: Display the commands history.

1.3 Security Levels

This switch’s security is divided into two levels: User level and Admin level.
User level only allows users to do some simple operations in User EXEC Mode; Admin level
allows you to monitor, configure and manage the switch in Privileged EXEC Mode, Global
Configuration Mode, Interface Configuration Mode and VLAN Configuration Mode.
Users get the privilege to the User level once connecting console port with the switch or logging in
by Telnet. However, Guest users are restricted to access the CLI.
Users can enter Privileged EXEC mode from User EXEC mode by using the enable command. In
default case, no password is needed. In Global Configuration Mode, you can configure password
for Admin level by enable password command. Once password is configured, you are required to
enter it to access Privileged EXEC mode.

1.4 Conventions

1.4.1 Format Conventions

The following conventions are used in this Guide:
Items in square brackets [ ] are optional
10
Items in braces { } are required
Alternative items are grouped in braces and separated by vertical bars. For example: speed
{10 | 100 | 1000 }
Bold indicates an unalterable keyword. For example: show logging
Normal Font indicates a constant (several options are enumerated and only one can be
selected). For example: switchport type { access | trunk | general }
Italic Font indicates a variable (an actual value must be assigned). For example: bridge
aging-time aging-time

1.4.2 Special Characters

You should pay attentions to the description below if the variable is a character string:
These six characters ” < > , \ & can not be input.
If a blank is contained in a character string, single or double quotation marks should be used,
for example ’hello world’, ”hello world”, and the words in the quotation marks will be identified
as a string. Otherwise, the words will be identified as several strings.

1.4.3 Parameter Format

Some parameters must be entered in special formats which are shown as follows:
MAC Address must be enter in the format of xx:xx:xx:xx:xx:xx
One or several values can be typed for a port-list or a vlan-list using comma to separate. Use
a hyphen to designate a range of values, for instance, 1,3-5,7 indicates choosing 1,3,4,5,and
7.
11

Chapter 2 User Interface

enable

Description
The enable command is used to access Privileged EXEC Mode from User EXEC Mode.
Syntax
enable
Command Mode
User EXEC Mode
Example
If you have set the password to access Privileged EXEC Mode from User EXEC Mode:
TP-LINK>enable
Enter password
TP-LINK#

enable password

Description
The enable password command is used to set the password for users to access Privileged EXEC Mode from User EXEC Mode. To return to the default configuration, please use no enable password command.
Syntax
enable password password
no enable password
Parameter
password —— super password , which contains 16 characters at most, composing digits, English letters and underdashes only. By default, it is empty.
Command Mode
Global Configuration Mode
Example
Set the super password as admin to access Privileged EXEC Mode from User EXEC Mode:
TP-LINK(config)# enable password admin
12

disable

Description
Syntax
Command Mode
Example
The disable command is used to return to User EXEC Mode from Privileged EXEC Mode.
disable
Privileged EXEC Mode
Return to User EXEC Mode from Privileged EXEC Mode:
TP-LINK# disable
TP-LINK>

configure

Description
Syntax
Command Mode
Example
The configure command is used to access Global Configuration Mode from Privileged EXEC Mode.
configure
Privileged EXEC Mode
Access Global Configuration Mode from Privileged EXEC Mode:
TP-LINK# configure
TP-LINK(config)#

exit

Description
The exit command is used to return to the previous Mode from the current Mode.
Syntax
exit
13
end
Command Mode
Any Configuration Mode
Example
Return to Global Configuration Mode from Interface Configuration Mode, and then return to Privileged EXEC Mode:
TP-LINK(config-if)# exit
TP-LINK(config)#exit
TP-LINK#
Description
The end command is used to return to Privileged EXEC Mode.
Syntax
end
Command Mode
Any Configuration Mode
Example
Return to Privileged EXEC Mode from Interface Configuration Mode:
TP-LINK(config-if)#end
TP-LINK#
14

Chapter 3 IEEE 802.1Q VLAN Commands

VLAN (Virtual Local Area Network) technology is developed for the switch to divide the LAN into
multiple logical LANs flexibly. Hosts in the same VLAN can communicate with each other,
regardless of their physical locations. VLAN can enhance performance by conserving bandwidth,
and improve security by limiting traffic to specific domains.

vlan database

Description
The vlan database command is used to access VLAN Configuration Mode for creating, deleting 802.1Q VLAN and other operations.
Syntax
vlan database

vlan

Command Mode
Global Configuration Mode
Example
Access VLAN Configuration Mode:
TP-LINK(config)# vlan database
TP-LINK(config-vlan)#
Description
The vlan command is used to create IEEE 802.1Q VLAN. To delete the IEEE
802.1Q VLAN, please use no vlan command.
Syntax
vlan vlan-id-list
no vlan vlan-id-list
Parameter
vlan-id-list ——VLAN ID, ranging from 2 to 4094.
Command Mode
VLAN Configuration Mode
15
Example
Create a VLAN, the vid of which is 12:
TP-LINK(config)# vlan database
TP-LINK(config-vlan)#vlan 12

interface vlan

Description

The interface vlan command is used to access VLAN Interface Mode to configure the specified VLAN.
Syntax
interface vlan vlan-id
Parameter
vlan-id ——VLAN ID, ranging from 1 to 4094.
Command Mode
Global Configuration Mode
Example
Configure the VLAN2:
TP-LINK(config)# interface vlan 2
TP-LINK(config-if)#
description
Description
The description command is used to assign a description string to a VLAN. To clear the description, please use no description command.
Syntax
description descript
no description
Parameter
descript ——String to describe the VLAN, which contains 16 characters at most.
Command Mode
Interface Configuration Modeinterface vlan
16
Example
Specify the description string of the VLAN 2 as “vlan2”:
TP-LINK(config)# interface vlan 2
TP-LINK(config-if)#description vlan2

switchport type

Description
The switchport type command is used to configure the Link Types for the ports.
Syntax
switchport type { access | trunk | general }
Parameter
access | trunk | general —— Link Types. There are three Link Types for the ports.
Command Mode
Interface Configuration Mode ( interface ethernet / interface range ethernet )
Example
Specify the Link Type of port 5 as general:
TP-LINK(config)# interface ethernet 5
TP-LINK(config-if)#switchport type general

switchport allowed vlan

Description
The switchport allowed vlan command is used to add the desired port to IEEE
802.1Q VLAN, or to remove a port from the corresponding VLAN.
Syntax
switchport allowed vlan add vlan-list
switchport allowed vlan remove vlan-list
Parameter
vlan-list —— VLAN ID list, it is multi-optional.
Command Mode
Interface Configuration Mode ( interface ethernet / interface range ethernet )
17
Example
Add port 2 to IEEE 802.1Q VLAN:
TP-LINK(config)# interface ethernet 2
TP-LINK(config-if)# switchport allowed vlan add 2

switchport pvid

Description
The switchport pvid command is used to configure the PVID for the switch ports.
Syntax
switchport pvid vlan-id
Parameter
vlan-id —— VLAN ID, ranging from 1 to 4094.
Command Mode
Interface Configuration Mode (interface ethernet / interface range ethernet )
Example
Specify the PVID of port 2 as 2:
TP-LINK(config)# interface ethernet 2
TP-LINK(config-if)# switchport pvid 2

switchport general egress-rule

Description
The switchport general egress-rule command is used to configure the egress-rule of the general port.
Syntax
switchport general egress-rule vlan-id { untagged | tagged }
Parameter
vlan-id —— VLAN ID, ranging from 1 to 4094.
untagged | tagged ——egress-ruleuntagged or tagged
Command Mode
Interface Configuration Mode ( interface ethernet / interface range ethernet )
Example
18
Loading...
+ 186 hidden pages