TP-Link TL-SG3216 - Manual

12.3.2 Event Config .................................................................................................. 176 12.3.3 Alarm Config .................................................................................................. 177 Chapter 13 Cluster.......................................

Package Contents The following items should be found in your box: ¾ One JetStream L2 Lite Managed Switch ¾ One power cord ¾ One console cable ¾ Two mounting brackets and other fittings ¾ Installation Guide ¾ Resource CD for TL-SG3216/TL-SG3424 Switch, including: • This User Guide • Other Helpful Inf...

Chapter 1 About this Guide This User Guide contains information for setup and management of TL-SG3216/TL-SG3424 JetStream L2 Lite Managed Switch. Please read this guide carefully before operation. 1.1 Intended Readers This Guide is intended for network managers familiar with IT concepts and network ...

Chapter Introduction Chapter 14 Maintenance This module is used to assemble the commonly used system tools to manage the switch. Here mainly introduces: z System Monitor: Monitor the memory and CPU of the switch. z Log: View configuration parameters on the switch. z Device Diagnose: Test the connect...

Chapter 2 Introduction Thanks for choosing the TL-SG3216/TL-SG3424 JetStream L2 Lite Managed Switch! 2.1 Overview of the Switch Designed for workgroups and departments, TL-SG3216/TL-SG3424 from TP-LINK provides wire-speed performance and full set of layer 2 management features. It provides a variety...

2.3 Appearance Description 2.3.1 Front Panel Figure 2-1 Front Panel The following parts are located on the front panel of the Switch: ¾ 10/100/1000Mbps Ports: Designed to connect to the device with a bandwidth of 10Mbps, 100Mbps or 1000Mbps. Each has a corresponding 1000Mbps LED. ¾ SFP Ports: Design...

Chapter 3 Login to the Switch 3.1 Login 1) To access the configuration utility, open a web-browser and type in the default address http://192.168.0.1 in the address field of the browser, then press the Enter key. Figure 3-1 Web-browser Tips: To log in to the Switch, the IP address of your PC should ...

Figure 3-3 Main Setup-Menu Note: Clicking Apply can only make the new configurations effective before the switch is rebooted. If you want to keep the configurations effective even the switch is rebooted, please click Saving Config . You are suggested to click Saving Config before cutting off the pow...

Chapter 4 System The System module is mainly for system configuration of the switch, including four submenus: System Info , User Manage, System Tools and Access Security . 4.1 System Info The System Info, mainly for basic properties configuration, can be implemented on System Summary , Device Descri...

3. To avoid damage, please don't turn off the device while upgrading. 4. After upgrading, the device will reboot automatically. 5. You are suggested to backup the configuration before upgrading. 4.3.4 System Reboot On this page you can reboot the switch and return to the login page. Please save the ...

Choose the menu System → Access Security → Access Control to load the following page. Figure 4-14 Access Control The following entries are displayed on this screen: ¾ Access Control Config Control Mode: Select the control mode for users to log on to the Web management page. z IP-based: Select this o...

Figure 4-15 SSL Config The following entries are displayed on this screen: ¾ Global Config SSL: Select Enable/Disable the SSL function on the switch. ¾ Certificate Download Certificate File: Select the desired certificate to download to the switch. The certificate must be BASE64 encoded. ¾ Key Downl...

Key Type: Select the type of SSH Key to download. The switch supports three types: SSH-1 RSA, SSH-2 RSA and SSH-2 DSA. Key File: Select the desired key file to download. Download: Click the Download button to download the desired key file to the switch. Note: 1. Please ensure the key length of the d...

Application Example 2 for SSH: ¾ Network Requirements 1. Log on to the switch via password authentication using SSH and the SSH function is enabled on the switch. 2. PuTTY client software is recommended. ¾ Configuration Procedure 1. Select the key type and key length, and generate SSH key. Note: 1. ...

Chapter 5 Switching Switching module is used to configure the basic functions of the switch, including four submenus: Port , LAG , Traffic Monitor and MAC Address . 5.1 Port The Port function, allowing you to configure the basic features for the port, is implemented on the Port Config , Port Mirror ...

Group: Displays the mirror group number. Mirroring: Displays the mirroring port number. Mode: Displays the mirror mode, the value can be "Ingress", "Egress", "Both" or "None". Mirrored Port: Displays the mirrored ports. Operation: Click Edit to configure the mirror gr...

Note: 1. The LAG member can not be selected as the mirrored port or mirroring port. 2. A port can not be set as the mirrored port and the mirroring port simultaneously. 3. The Port Mirror function can take effect span the multiple VLANs. 5.1.3 Port Security MAC Address Table maintains the mapping re...

Tips: 1. Calculate the bandwidth for a LAG: If a LAG consists of the four ports in the speed of 1000Mbps Full Duplex, the whole bandwidth of the LAG is up to 8000Mbps (2000Mbps * 4) because the bandwidth of each member port is 2000Mbps counting the up-linked speed of 1000Mbps and the down-linked spe...

member. The port with smaller Port Priority will be considered as the preferred one. If the two port priorities are equal; the port with smaller port number is preferred. Status: Enable/Disable the LACP feature for your selected port. LAG: Displays the LAG number which the port belongs to. 5.3 Traff...

Auto Refresh: Allows you to Enable/Disable refreshing the Traffic Summary automatically. Refresh Rate: Enter a value in seconds to specify the refresh interval. ¾ Statistics Port: Enter a port number and click the Select button to view the traffic statistics of the corresponding port. Received: Disp...

Chapter 6 VLAN The traditional Ethernet is a data network communication technology based on CSMA/CD (Carrier Sense Multiple Access/Collision Detect) via shared communication medium. Through the traditional Ethernet, the overfull hosts in LAN will result in serious collision, flooding broadcasts, poo...

packets of different VLANs. The switch can analyze the received untagged packets on the port and match the packets with the MAC VLAN, Protocol VLAN and 802.1Q VLAN in turn. If a packet is matched, the switch will add a corresponding VLAN tag to it and forward it in the corresponding VLAN. 6.1 802.1Q...

（ 2 ） TRUNK: The TRUNK port can be added in multiple VLANs, and the egress rule of the port is TAG. The TRUNK port is generally used to connect the cascaded network devices for it can receive and forward the packets of multiple VLANs. When the packets are forwarded by the TRUNK port, its VLAN tag wi...

Link Type: Select the Link Type from the pull-down list for the port. • ACCESS: The ACCESS port can be added in a single VLAN, and the egress rule of the port is UNTAG. The PVID is same as the current VLAN ID. If the current VLAN is deleted, the PVID will be set to 1 by default. • TRUNK: The TRUNK p...

¾ Encapsulation Format of Ethernet Data This section simply introduces the common used encapsulation format of Ethernet data to understand the procedure for the switch to identify the protocol of packets. At present there are two encapsulation formats of Ethernet data, Etthernet II encapsulation and...

¾ The Implementation of Protocol VLAN This Switch can match packets through protocol template and transmit packets in the specific VLAN according to the protocol. Protocol template, comprising encapsulation format and protocol type, is the standard to determine the protocol which a packet belongs to...

The following entries are displayed on this screen: ¾ Create Protocol Template Protocol Name: Give a name for the Protocol Template. Ether Type: Enter the Ethernet protocol type field in the protocol template. Frame Type: Select a Frame Type for the Protocol Template. ¾ Protocol Template Table Selec...

6.5 Application Example for MAC VLAN ¾ Network Requirements z Switch A and Switch B are connected to meeting room A and meeting room B respectively, and the two rooms are for all departments; z Notebook A and Notebook B, special for meeting room, are of two different departments; z The two departmen...

z Configure Switch B Step Operation Description 1 Configure the Link Type of the ports Required. On VLAN → 802.1Q VLAN → Port Config page, configure the link type of Port 21 and Port 22 as GENERAL and TRUNK respectively. 2 Create VLAN10 Required. On VLAN → 802.1Q VLAN → VLAN Config page, create a VL...

and deregisters the attribute information if it does not receives a Join message again before the timer times out. • LeaveAll Timer: Once a GARP entity starts up, it starts the LeaveAll timer, and sends out a LeaveALL message after the timer times out, so that other GARP entities can re-register all...

Chapter 7 Spanning Tree STP (Spanning Tree Protocol), subject to IEEE 802.1D standard, is to disbranch a ring network in the Data Link layer in a local network. Devices running STP discover loops in the network and block ports by exchanging information, in that way, a ring network can be disbranched...

Figure 7-1 Basic STP diagram ¾ STP Timers Hello Time: Hello Time ranges from 1 to 10 seconds. It specifies the interval to send BPDU packets. It is used to test the links. Max. Age: Max. Age ranges from 6 to 40 seconds. It specifies the maximum time the switch can wait without receiving a BPDU befor...

Figure 7-6 Port Config The following entries are displayed on this screen: ¾ Port Config Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered. Select: Select the desired port for STP configuration. It is multi-optional. Port: Displays the p...

Note: The port status of one port in different spanning tree instances can be different. Global configuration Procedure for Spanning Tree function: Step Operation Description 1 Make clear roles the switches play in spanning tree instances: root bridge or designated bridge Preparation. 2 Globally con...

Figure 7-10 Port Protect The following entries are displayed on this screen: ¾ Port Protect Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered. Select: Select the desired port for port protect configuration. It is multi-optional. Port: Di...

7.4.2 TC Protect When TC Protect is enabled for the port on Port Protect page, the TC threshold and TC protect cycle need to be configured on this page. Choose the menu Spanning Tree → STP Security → TC Protect to load the following page. Figure 7-11 TC Protect The following entries are displayed on...

z For Instance 2 (VLAN 102, 104 and 106), the blue paths in the following figure are connected links; the gray paths are the blocked links. ¾ Suggestion for Configuration z Enable TC Protect function for all the ports of switches. z Enable Root Protect function for all the ports of root bridges. z E...

Chapter 8 Multicast ¾ Multicast Overview In the network, packets are sent in three modes: unicast, broadcast and multicast. In unicast, the source server sends separate copy information to each receiver. When a large number of users require this information, the server must send many pieces of infor...

Figure 8-5 Port Config The following entries are displayed on this screen: ¾ Port Config Port Select: Click the Select button to quick-select the corresponding port based on the port number you entered. Select: Select the desired port for IGMP Snooping feature configuration. It is multi-optional. Po...

Figure 8-6 VLAN Config The following entries are displayed on this screen: ¾ VLAN Config VLAN ID: Enter the VLAN ID to enable IGMP Snooping for the desired VLAN. Router Port Time: Specify the aging time of the router port. Within this time, if the switch doesn’t receive IGMP query message from the r...

VLAN ID: Displays the VLAN ID. Router Port Time: Displays the router port time of the VLAN. Member Port Time: Displays the member port time of the VLAN. Leave Time: Displays the leave time of the VLAN. Router Port: Displays the router port of the VLAN. Note: The settings here will be invalid when mu...

Figure 8-7 Multicast VLAN The following entries are displayed on this screen: ¾ Multicast VLAN Multicast VLAN: Select Enable/Disable Multicast VLAN feature. VLAN ID: Enter the VLAN ID of the multicast VLAN. Router Port Time: Specify the aging time of the router port. Within this time, if the switch ...

Choose the menu Multicast → Multicast IP → Static Multicast IP to load the following page. Figure 8-9 Static Multicast IP Table The following entries are displayed on this screen: ¾ Create Static Multicast Multicast IP: Enter static multicast IP address. VLAN ID: Enter the VLAN ID of the multicast I...

Bound IP-Range (ID): Enter the IP-rang ID the port will be bound to. Max Groups: Specify the maximum number of multicast groups to prevent some ports taking up too much bandwidth. LAG: Displays the LAG number which the port belongs to. Note: 1. Multicast Filter feature can only have effect on the VL...

Chapter 9 QoS QoS (Quality of Service) functions to provide different quality of service for various network applications and requirements and optimize the bandwidth resource distribution so as to provide a network service experience of a better quality. ¾ QoS This switch classifies the ingress pack...

Figure 9-2 802.1Q frame As shown in the figure above, each 802.1Q Tag has a Pri field, comprising 3 bits. The 3-bit priority field is 802.1p priority in the range of 0 to 7. 802.1P priority determines the priority of the packets based on the Pri value. On the Web management page of the switch, you c...

Figure 9-9 DSCP Priority The following entries are displayed on this screen: ¾ DSCP Priority Config DSCP Priority: Select Enable or Disable DSCP Priority. ¾ Priority Level DSCP: Indicates the priority determined by the DS region of IP datagram. It ranges from 0 to 63. Priority: Indicates the 802.1P ...

9.2 Bandwidth Control Bandwidth function, allowing you to control the traffic rate and broadcast flow on each port to ensure network in working order, can be implemented on Rate Limit and Storm Control pages. 9.2.1 Rate Limit Rate limit functions to control the ingress/egress traffic rate on each po...

Note: 1. If you enable ingress rate limit feature for the storm control-enabled port, storm control feature will be disabled for this port. 2. When egress rate limit feature is enabled for one or more ports, you are suggested to disable the flow control on each port to ensure the switch works normal...

Aging Time: Specifies the living time of the member port in auto mode after the OUI address is aging out. Priority: Select the priority of the port when sending voice data. 9.3.2 Port Config Before the voice VLAN function is enabled, the parameters of the ports in the voice VLAN should be configured...

Port Mode: Select the mode for the port to join the voice VLAN. z Auto: In this mode, the switch automatically adds a port to the voice VLAN or removes a port from the voice VLAN by checking whether the port receives voice data or not z Manual: In this mode, you can manually add a port to the voice ...

Select: Select the desired entry to view the detailed information. OUI: Displays the OUI address of the voice device. Mask: Displays the OUI address mask of the voice device. Description: Displays the description of the OUI. Configuration Procedure of Voice VLAN: Step Operation Description 1 Configu...

Chapter 10 ACL ACL (Access Control List) is used to filter packets by configuring match rules and process policies of packets in order to control the access of the illegal users to the network. Besides, ACL functions to control traffic flows and save network resources. It provides a flexible and sec...

10.1.2 Time-Range Create On this page you can create time-ranges. Choose the menu ACL → Time-Range → Time-Range Create to load the following page. Figure 10-2 Time-Range Create Note: To successfully configure time-ranges, please firstly specify time-slices and then time-ranges. The following entries...

IP ToS: Enter the IP-ToS contained in the rule. IP Pre: Enter the IP Precedence contained in the rule. Time-Range: Select the time-range for the rule to take effect. 10.3 Policy Config A Policy is used to control the data packets those match the corresponding ACL rules by configuring ACLs and action...

Select Policy: Select the name of the policy. Select ACL: Select the ACL for configuration in the policy. S-Mirror: Select S-Mirror to mirror the data packets in the policy to the specific port. S-Condition: Select S-Condition to limit the transmission rate of the data packets in the policy. z Rate:...

Figure10-14 Bind the policy to the VLAN The following entries are displayed on this screen: ¾ VLAN-Bind Config Policy Name: Select the name of the policy you want to bind. VLAN ID: Enter the ID of the VLAN you want to bind. ¾ VLAN-Bind Table Index: Displays the index of the binding policy. Policy Na...

Chapter 11 Network Security Network Security module is to provide the multiple protection measures for the network security, including four submenus: IP-MAC Binding , ARP Inspection , DoS Defend and 802.1X . Please configure the functions appropriate to your need. 11.1 IP-MAC Binding The IP-MAC Bind...

11.1.3 ARP Scanning ARP (Address Resolution Protocol) is used to analyze and map IP addresses to the corresponding MAC addresses so that packets can be delivered to their destinations correctly. IP address is the address of the Host on Network layer. MAC address, the address of the Host on Data link...

network configuration protocol optimized and developed based on the BOOTP, functions to solve the above mentioned problems. ¾ DHCP Working Principle DHCP works via the “Client/Server” communication mode. The Client applies to the Server for configuration. The Server assigns the configuration informa...

Option 82 can contain 255 sub-options at most. If Option 82 is defined, at least a sub-option should be defined. This Switch supports two sub-options: Circuit ID and Remote ID. Since there is no universal standard about the content of Option 82, different manufacturers define the sub-options of Opti...

Choose the menu Network Security → IP-MAC Binding → Binding Table to load the following page. Figure 11-8 DHCP Snooping Note: If you want to enable the DHCP Snooping feature for the member port of LAG, please ensure the parameters of all the member ports are the same. The following entries are displ...

11.2 ARP Inspection According to the ARP Implementation Procedure stated in 11.1.3 ARP Scanning, it can be found that ARP protocol can facilitate the Hosts in the same network segment to communicate with one another or access to external network via Gateway. However, since ARP protocol is implemente...

Figure 11-10 ARP Attack – Cheating Gateway As the above figure shown, the attacker sends the fake ARP packets of Host A to the Gateway, and then the Gateway will automatically update its ARP table after receiving the ARP packets. When the Gateway tries to communicate with Host A in LAN, it will enca...

Figure 11-11 ARP Attack – Cheating Terminal Hosts As the above figure shown, the attacker sends the fake ARP packets of Host A to Host B, and then Host B will automatically update its ARP table after receiving the ARP packets. When Host B tries to communicate with Host A, it will encapsulate this fa...

Figure 11-12 Man-In-The-Middle Attack Suppose there are three Hosts in LAN connected with one another through a switch. Host A: IP address is 192.168.0.101; MAC address is 00-00-00-11-11-11. Host B: IP address is 192.168.0.102; MAC address is 00-00-00-22-22-22. Attacker: IP address is 192.168.0.103;...

DoS Attack Type Description Land Attack The attacker sends a specific fake SYN packet to the destination Host. Since both the source IP address and the destination IP address of the SYN packet are set to be the IP address of the Host, the Host will be trapped in an endless circle for building the in...

Figure 11-16 DoS Defend The following entries are displayed on this screen: ¾ Configure DoS Defend: Enable/Disable DoS Defend function. ¾ Defend Table Select: Select the entry to enable the corresponding Defend Type. Defend Type: Displays the Defend Type name. Tips: You are suggested to take the fol...

802.1X adopts a client/server architecture with three entities: a supplicant system, an authenticator system, and an authentication server system, as shown in the following figure. Figure 11-17 Architecture of 802.1X authentication （ 1 ） Supplicant System: The supplicant system is an entity in LAN a...

¾ 802.1X Authentication Procedure An 802.1X authentication can be initiated by supplicant system or authenticator system. When the authenticator system detects an unauthenticated supplicant in LAN, it will initiate the 802.1X authentication by sending EAP-Request/Identity packets to the supplicant. ...

Primary IP: Enter the IP address of the authentication server. Secondary IP: Enter the IP address of the alternate authentication server. Authentication Port: Set the UDP port of authentication server(s). The default port is 1812 Authentication KEY: Set the shared password for the switch and the aut...

Chapter 12 SNMP ¾ SNMP Overview SNMP (Simple Network Management Protocol) has gained the most extensive application on the UDP/IP networks. SNMP provides a management frame to monitor and maintain the network devices. It is used for automatically managing the various network devices no matter the ph...

SNMP v1: SNMP v1 adopts Community Name authentication. The community name is used to define the relation between SNMP Management Station and SNMP Agent. The SNMP packets failing to pass community name authentication are discarded. The community name can limit access to SNMP Agent from SNMP NMS, func...

Figure 12-6 SNMP User The following entries are displayed on this screen: ¾ User Config User Name: Enter the User Name here. User Type: Select the type for the User. • Local User: Indicates that the user is connected to a local SNMP engine. • Remote User: Indicates that the user is connected to a re...

Figure 12-11 Alarm Config The following entries are displayed on this screen: ¾ Alarm Table Select: Select the desired entry for configuration. Index: Displays the index number of the entry. Variable: Select the alarm variables form the pull-sown list. Port: Select the port on which the Alarm entry ...

Chapter 13 Cluster With the development of network technology, the network scale is getting larger and more network devices are required, which may result in a more complicated network management system. As a large number of devices need to be assigned different network addresses and every managemen...

Hops: Displays the hop count from this device to the switch. Neighbor Info: Click the Detail button to view the complete information of this device and its neighbors. Collect Topology: Click the Collect Topology button to collect NTDP information of the switch so as to collect the latest network top...

Figure 13-14 Cluster Configuration for Individual Switch The following entries are displayed on this screen: ¾ Current Role Role: Displays the role the current switch plays in the cluster. ¾ Role Change Candidate: Select this option to change the role of the switch to be candidate switch. 13.4 Appli...

Chapter 14 Maintenance Maintenance module, assembling the commonly used system tools to manage the switch, provides the convenient method to locate and solve the network problem. （ 1 ） System Monitor: Monitor the utilization status of the memory and the CPU of switch. （ 2 ） Log: View the configurati...

Figure 14-1 CPU Monitor Click the Monitor button to enable the switch to monitor and display its CPU utilization rate every four seconds. 14.1.2 Memory Monitor Choose the menu Maintenance → System Monitor → Memory Monitor to load the following page. 196

Figure 14-2 Memory Monitor Click the Monitor button to enable the switch to monitor and display its Memory utilization rate every four seconds. 14.2 Log The Log system of switch can record, classify and manage the system information effectively, providing powerful support for network administrator t...

The following entry is displayed on this screen: ¾ Backup Log Backup Log: Click the Backup Log button to save the log as a file to your computer. Note: It will take a few minutes to backup the log file. Please wait without any operation. 14.3 Device Diagnose This switch provides Cable Test and Loopb...

Note: 1. The Length displayed here is the length of pair cable not that of the physical cable. 2. The test result is just for your reference. 14.3.2 Loopback Loopback test function, looping the sender and the receiver of the signal, is used to test whether the port of the switch is available as well...

Figure 14-10 Tracert The following entries are displayed on this screen: ¾ Tracert Config Destination IP: Enter the IP address of the destination device. Max Hop: Specify the maximum number of the route hops the test data can passthrough. Return to CONTENTS 204

Appendix A: Specifications IEEE802.3 10Base-T Ethernet IEEE802.3u 100Base-TX/100Base-FX Fast Ethernet IEEE802.3ab 1000Base-T Gigabit Ethernet IEEE802.3z 1000Base-X Gigabit Ethernet IEEE802.3x Flow Control IEEE802.1p Priority IEEE802.1q VLAN Bridge Standards IEEE802.1X Port-based Access Authenticatio...

Appendix B: Configuring the PCs In this section, we’ll introduce how to install and configure the TCP/IP correctly in Windows 2000. First make sure your Ethernet Adapter is working, refer to the adapter’s manual if necessary. 1) On the Windows taskbar, click the Start button, and then click Control ...

Figure B-2 5) The following TCP/IP Properties window will display and the IP Address tab is open on this window by default. 207

6) Select Use the following IP address . And the following items will be available. If the switch's IP address is 192.168.0.1, specify IP address as 192.168.0.x (x is from 2 to 254), and the Subnet mask as 255.255.255.0. Now: Click OK to save your settings. Return to CONTENTS 208

Appendix C: Load Software using FTP If there is something wrong with the firmware of the switch and the switch can not be launched, you can load firmware to the switch via FTP function. FTP (File Transfer Protocol), a protocol in the application layer, is mainly used to transfer files between the re...

Figure C-2 Open Hyper Terminal 2 ） The Connection Description Window will prompt shown as Figure C-3. Enter a name into the Name field and click OK . Figure C-3 Connection Description 3 ） Select the port to connect in the following figure and then click OK . 210

Figure C-4 Select the port to connect 4 ） Configure the port selected in the step above shown as the following figure. Configure Bits per second as 38400, Data bits as 8, Parity as None, Stop bits as 1, Flow control as None, and then click OK . Figure C-5 Port Settings 3. Download Firmware via bootU...

Figure C-6 bootUtil Menu As the prompt is displayed for a short time, you are suggested not to release the CTRL-B key until you enter into bootUtil menu after powering on the switch. 3 ） After entering into bootUtil menu, please firstly configure the IP parameters of the switch. The format is: ifcon...

[TP-LINK] : start Start . . . . . . . . . . * * * * * * * * * * * * * * * * * * * * * * User Access Login * * * * * * * * * * * * * * * * * * * * * * User : Return to CONTENTS 213

Appendix D: 802.1X Client Software In 802.1X mechanism, the supplicant Client should be equipped with the corresponding client software complied with 802.1X protocol standard for 802.1X authentication. When the switch TL-SG3216 works as the authenticator system, please take the following instruction...

Figure D-5 Install the Program 6) The InstallShield Wizard is installing TpSupplicant-V2.0 shown as the following screen. Please wait. Figure D-6 Setup Status 7) On the following screen, click Finish to complete the installation. 216

Figure D-7 InstallShield Wizard Complete Note: Please pay attention to the tips on the above screen. If you have not installed WinPcap 4.0.2 or the higher version on your computer, the 802.1X Client Software TpSupplicant can not work. It’s recommended to go to http://www.winpcap.org to download the ...

Appendix E: Glossary Access Control List (ACL) ACLs can limit network traffic and restrict access to certain users or devices by checking each packet for certain IP or MAC (i.e., Layer 2) information. Boot Protocol (BOOTP) BOOTP is used to provide bootup information for network devices, including IP...

switch. Simple Network Management Protocol (SNMP) The application protocol in the Internet suite of protocols which offers network management services. Simple Network Time Protocol (SNTP) SNTP allows a device to set its internal clock based on periodic updates from a Network Time Protocol (NTP) serv...