Configuring Storm Control

Similar documents
Configuring Storm Control

Configuring Storm Control

Configuring Port-Based Traffic Control

Configuring Storm Control

Configuring Port-Based Traffic Control

Configuring Port-Based Traffic Control

Configuring Traffic Storm Control

Configuring Interfaces

Configuring Port-Based Traffic Control

Configuring Traffic Storm Control

Configuring Port-Based Traffic Control

Configuring Interfaces

EtherChannel Between a Cisco Catalyst Switch That Runs Cisco IOS and a Workstation or Server Configuration Example

Configuring Interfaces

Configuring Interfaces

Configuring Interfaces

Storm Control over EVC

Configuring Interfaces

squelch through system jumbomtu

Configuring IGMP Snooping and Filtering

Configuring EtherChannels and Link-State Tracking

Configuring EtherChannels

Configuring EtherChannels and Layer 2 Trunk Failover

Configuring EtherChannels and Layer 2 Trunk Failover

Configuring SPAN and RSPAN

Configuring EtherChannels and Link-State Tracking

Configuring IGMP Snooping and Filtering

Configuring VLANs. Understanding VLANs CHAPTER

VLAN Trunking Protocol (VTP)

2.2 Cisco IOS Commands for the Catalyst 4500 Series Switches snmp ifindex clear. This command has no arguments or keywords.

Configuring Port Security

Configuring VLANs. Understanding VLANs CHAPTER

Using Switches with a PS Series Group

Configuring SPAN and RSPAN

Configuring SPAN and RSPAN

ISP /24. Fas0/0. Fas1/0/1. Fas1/0/22 NYCORE1. Cisco PS. Fas0/1. Lab Nic /24

Configuring Interface Characteristics

Configuring SPAN. Understanding SPAN CHAPTER. This chapter describes how to configure Switched Port Analyzer (SPAN) and on the Catalyst 2960 switch.

VLAN Configuration. Understanding VLANs CHAPTER

Configuring ISL Trunking Between Catalyst Switches Running CatOS and Cisco IOS System Software

Cisco IOS Commands for the Catalyst 4500 Series Switches

Configuring IEEE 802.3ad Link Bundling and Load Balancing

Configuring EtherChannels

Managing Your Switches

Configuring SPAN and RSPAN

Configuring Dynamic VLAN Membership

Configuring VLANs. Understanding VLANs CHAPTER

Cisco IOS Commands for the Catalyst 4500 Series Switches

Configuring Interface Characteristics

Configuring VLANs. Understanding VLANs CHAPTER

Configuring VLANs. Understanding VLANs CHAPTER

Configuring SPAN and RSPAN

Configuring VLANs. Understanding VLANs CHAPTER

2] Chapter 2 Cisco IOS Commands traceroute mac

Configuring EtherChannel Between Catalyst 2900XL/3500XL Switches and CatOS Switches

Configuring Interface Characteristics

Configuring PFC QoS CHAPTER

Configuring VLANs. Understanding VLANs CHAPTER

Configuring VLANs. Understanding VLANs CHAPTER

Configuring VLANs. Understanding VLANs CHAPTER

Configuring VTP. Understanding VTP CHAPTER

Configuring CDP. Understanding CDP CHAPTER. This chapter describes how to configure Cisco Discovery Protocol (CDP) on the Catalyst 3560 switch.

EtherChannel, Neighbor View, and Trap Receiver Table

Configuring Voice VLAN

Configuring Local SPAN and ERSPAN

Catalyst 4500 Series IOS Commands

Configuring Interface Characteristics

Configuring QoS. Finding Feature Information. Prerequisites for QoS. General QoS Guidelines

Configuring IGMP Snooping and MVR

Configuring IEEE 802.3ad LACP EtherChannels on the Cisco MWR 2941

Cisco IOS Commands for the Catalyst 4500 Series Switches

Configuring Web Cache Services By Using WCCP

Cisco IOS Commands for the Catalyst 4500 Series Switches

Understanding and Configuring VTP

Configuring QoS. Finding Feature Information. Prerequisites for QoS

Configuring RMON. Understanding RMON CHAPTER

Monitor Commands. monitor session source, page 2 monitor session destination, page 4

Configuring Layer 2 Switching

Configuring Port Channels

Configuring VTP. Understanding VTP CHAPTER

Using the Command-Line Interface

Using the Command-Line Interface

Configuring Flex Links and the MAC Address-Table Move Update Feature

Configuring SPAN and RSPAN

For information about configuring these settings from Cluster Management Suite (CMS), refer to the online help.

Network Management Commands

22 Cisco IOS Commands for the Catalyst 4500 Series Switches interface

Configuring VTP. Understanding How VTP Works CHAPTER

Configuring Dynamic ARP Inspection

Configuring VLAN Trunks

Configuring STP. Understanding Spanning-Tree Features CHAPTER

Configuring DHCP Features and IP Source Guard

Cisco IOS Commands. abort CHAPTER

Configuring IEEE 802.1Q Tunneling and Layer 2 Protocol Tunneling

Configuring VLANs. Finding Feature Information. Prerequisites for VLANs

Configuring MLD Snooping

Configuring Link Aggregation on the ML-MR-10 card

2V] Chapter 2 Catalyst 3560 Switch Cisco IOS Commands shutdown. This command has no arguments or keywords.

Configuring EtherChannels

Configuring Flex Links and the MAC Address-Table Move Update Feature

Transcription:

40 CHAPTER This chapter describes how to configure port-based traffic control on the Catalyst 4500 series switch. For complete syntax and usage information for the switch commands used in this chapter, refer to the Catalyst 4500 Series Switch Cisco IOS Command Reference and related publications at this location: http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124cr/index.htm. This chapter consists of these sections: Overview of Storm Control, page 40-1 Enabling Storm Control, page 40-3 Disabling Storm Control, page 40-4 Displaying Storm Control, page 40-5 Multicast Storm Control, page 40-6 Overview of Storm Control This section contains the following subsections: Hardware-based Storm Control Implementation, page 40-2 Software-based Storm Control Implementation, page 40-2 Storm control prevents LAN interfaces from being disrupted by a broadcast storm. A broadcast storm occurs when broadcast packets flood the subnet, creating excessive traffic and degrading network performance. Errors in the protocol-stack implementation or in the network configuration can cause a broadcast storm. Storm control is supported in hardware on all ports on the WS-X4516 supervisor engine. In contrast, the supervisor engines WS-X4515, WS-X4014, and WS-X4013+ support storm control in hardware on n-blocking gigabit ports and in software on all other ports, implying that the counters for these interfaces are approximate and computed. Multicast storm control is only supported on the WS-X4516 supervisor engine. 40-1

Overview of Storm Control Chapter 40 Hardware-based Storm Control Implementation Broadcast suppression uses filtering that measures broadcast activity in a subnet over a one-second interval and compares the measurement with a predefined threshold. If the threshold is reached, further broadcast activity is suppressed for the duration of the interval. Broadcast suppression is disabled by default. Figure 40-1 shows the broadcast traffic patterns on a LAN interface over a given interval. In this example, broadcast suppression occurs between times T1 and T2 and between T4 and T5. During those intervals, the amount of broadcast traffic exceeded the configured threshold. Figure 40-1 Storm Control Example - Hardware-based Implementation The broadcast suppression threshold numbers and the time interval combination make the broadcast suppression algorithm work with different levels of granularity. A higher threshold allows more broadcast packets to pass through. Broadcast suppression on the Catalyst 4500 series switches is implemented in hardware. The suppression circuitry monitors packets passing from a LAN interface to the switching bus. If the packet destination address is broadcast, then the broadcast suppression circuitry tracks the current count of broadcasts within the one-second interval, and when a threshold is reached, it filters out subsequent broadcast packets. Because hardware broadcast suppression uses a bandwidth-based method to measure broadcast activity, the most significant implementation factor is setting the percentage of total available bandwidth that can be used by broadcast traffic. Because packets do t arrive at uniform intervals, the one-second interval during which broadcast activity is measured can affect the behavior of broadcast suppression. Software-based Storm Control Implementation When storm control is enabled on an interface, the switch monitors packets received on the interface and determines whether or t the packets are broadcast. The switch monitors the number of broadcast packets received within a one-second time interval. When the interface threshold is met, all incoming data traffic on the interface is dropped. This threshold is specified as a percentage of total available bandwidth that can be used by broadcast traffic. If the lower threshold is specified, all data traffic is forwarded as soon as the incoming traffic falls below that threshold. 40-2

Chapter 40 Enabling Storm Control Enabling Storm Control You cant configure Storm Control on some of the members of an EtherChannel; Storm Control must be configured on all or ne of the ports. If you configure Storm Control on only some of the ports, those ports will be dropped from the EtherChannel interface (put in suspended state). Therefore, you should configure Storm Control at the EtherChannel Interface level, and t at the physical interface level. To enable storm control, perform this task: Command Purpose Step 1 configure terminal Enters global configuration mode. Step 2 Switch(config)# interface interface-id Enters interface configuration mode and enter the port to configure. Step 3 Switch(config-if)# storm-control broadcast level [high level] [lower level] Step 4 Switch(config-if)# storm-control action {shutdown trap} Configures broadcast storm control. Specifies the upper threshold levels for broadcast traffic. The storm control action occurs when traffic utilization reaches this level. (Optional) Specifies the falling threshold level. The rmal transmission restarts (if the action is filtering) when traffic drops below this level for interfaces that support software-based suppression. For ports that perform hardware-based suppression, the lower threshold is igred. Specifies the action to be taken when a storm is detected. The default is to filter out the broadcast traffic and t to send out traps. The shutdown keyword sets the port to error-disable state during a storm. If the recover interval is t set, the port remains in shutdown state. The trap keyword generates an SNMP trap when a storm is detected. This keyword is available but t supported in Cisco IOS Release 12.1(19)EW. Step 5 Switch(config-if)# exit Returns to configuration mode. Step 6 Switch(config)# end Returns to privileged EXEC mode. Step 7 show storm-control [interface] Displays the number of packets suppressed. broadcast Step 8 copy running-config startup-config (Optional) Saves your entries in the configuration file. The following example shows how to enable storm control on interface. configure terminal Enter configuration commands, one per line. End with CNTL/Z. Switch(config)# interface fa3/1 Switch(config-if)# storm-control broadcast level 50 Switch(config-if)# end write memory 40-3

Disabling Storm Control Chapter 40 Building configuration... 00:11:06: %SYS-5-CONFIG_I: Configured from console by consolecompressed configuration from 5394 bytes to 1623 bytes[ok] sh stor sh storm-control Interface Filter State Upper Lower Current --------- ------------- ------- ------- ------- Fa3/1 Forwarding 50.00% 50.00% 0.00% Disabling Storm Control To disable storm control, perform this task: Command Purpose Step 1 configure terminal Enters global configuration mode. Step 2 Switch(config)# interface Enters interface configuration mode and enter the port to configure. interface-id Step 3 Switch(config-if)# storm-control broadcast level Disables port storm control. Step 4 Switch(config-if)# storm-control action {shutdown trap} Step 5 Switch(config-if)# exit Returns to configuration mode. Step 6 Switch(config)# end Returns to privileged EXEC mode. Step 7 Step 8 show storm-control broadcast copy running-config startup-config Disables the specified storm control action and returns to default filter action. Verifies your entries. (Optional) Saves your entries in the configuration file. The following example shows how to disable storm control on interface. configure terminal Enter configuration commands, one per line. End with CNTL/Z. Switch(config)#int fa3/1 Switch(config-if)# storm-control broadcast level Switch(config-if)# end wr Building configuration... 00:12:09: %SYS-5-CONFIG_I: Configured from console by consolecompressed configuration from 5357 bytes to 1594 bytes[ok] show sto show storm-control Interface Filter State Upper Lower Current --------- ------------- ------- ------- ------- 40-4

Chapter 40 Displaying Storm Control Displaying Storm Control Use the show interface capabilities command to determine the mode in which storm control is supported on an interface. The following example shows an interface that supports broadcast suppression in software (sw). show interfaces g4/4 capabilities show interfaces g4/4 capabilities GigabitEthernet4/4 Model: WS-X4418-Gbic Type: 1000BaseSX Speed: 1000 Duplex: full Trunk encap. type: 802.1Q Trunk mode: on,off,desirable,negotiate Channel: Broadcast suppression: percentage(0-100), sw Flowcontrol: rx-(off,on,desired),tx-(off,on,desired) VLAN Membership: static, dynamic Fast Start: Queuing: rx-(n/a), tx-(4q1t, Shaping) CoS rewrite: ToS rewrite: Inline power: SPAN: source/destination UDLD: Link Debounce: Link Debounce Time: Port Security: Dot1x: Maximum MTU: 1552 bytes (Baby Giants) Media Type: The following example shows an interface that supports broadcast suppression in hardware (hw). show interfaces g4/1 capabilities show interfaces g4/1 capabilities GigabitEthernet4/1 Model: WS-X4418-Gbic Type: No Gbic Speed: 1000 Duplex: full Trunk encap. type: 802.1Q,ISL Trunk mode: on,off,desirable,negotiate Channel: Broadcast suppression: percentage(0-100), hw Flowcontrol: rx-(off,on,desired),tx-(off,on,desired) VLAN Membership: static, dynamic Fast Start: Queuing: rx-(n/a), tx-(4q1t, Sharing/Shaping) CoS rewrite: ToS rewrite: Inline power: SPAN: source/destination UDLD: 40-5

Multicast Storm Control Chapter 40 Link Debounce: Link Debounce Time: Port Security: Dot1x: Maximum MTU: Media Type: 1552 bytes (Baby Giants) Use the show interfaces counters storm-control command to display a count of discarded packets. show interfaces counters storm-control Port BcastSuppLevel TotalSuppressedPackets Gi4/4 2.00% 0 Use the show storm-control command to display the configured thresholds and status of storm on an interface. show storm-control Interface Filter State Upper Lower Current --------- ------------- ------- ------- ------- Gi4/4 Forwarding 2.00% 2.00% N/A Switch In the example shown above, current represents the percentage of traffic suppressed at a given instant, and the value is N/A for ports that perform suppression in hardware. Multicast Storm Control When a large amount of broadcast (and/or multicast) packets congest a network, the event is referred to as a broadcast storm. A LAN broadcast storm affects network performance and could paralyze the whole network. Multicast storm control is available only on WS-X4516 supervisors; only a hardware-based solution is provided. Multicast Suppression on the WS-X4516 Supervisor Engine Multicast suppression can be enabled on a WS-X4516 supervisor engine for all ports that have storm control enabled. Multicast suppression applies to all ports that have broadcast suppression configured on them. It also applies to ports that are configured for broadcast storm-control in the future; you cant suppress multicast traffic only. Beginning in Cisco IOS Release 12.2(18)EW, the counters displayed with the show interface counters storm-control command includes any multicast packets that were dropped. Separate thresholds cant be provided for broadcast and/or multicast traffic. The threshold you configure for broadcast suppression applies to both the incoming multicast traffic and broadcast traffic. 40-6

Chapter 40 Multicast Storm Control To enable multicast suppression, perform this task: Command Purpose Step 1 configure terminal Enters global configuration mode. Step 2 Switch(config)# [] storm-control broadcast include multicast Enable multicast suppression. Step 3 Switch(config)# end Returns to privileged EXEC mode. The following example shows how to enable multicast suppression on ports that have broadcast suppression already enabled: configure terminal Enter configuration commands, one per line. End with CNTL/Z. Switch(config)# storm-control broadcast include multicast Switch(config)# end Multicast Suppression on the WS-X4515, WS-X4014, and WS-X4013+ Supervisor Engines Hardware does t provide support for multicast suppression on the WS-X4515, WS-X4014, and WS-X4013+ supervisor engines. One consequence of using software-based broadcast suppression on these modules is that all incoming data packets are dropped. Irrespective of your selecting to configure broadcast suppression only, multicast packets are filtered as well on stub and blocking gigabit ports. The n blocking gigabit ports that do provide broadcast suppression in hardware also do t filter multicast packets. 40-7

Multicast Storm Control Chapter 40 40-8

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback