Configuring Traffic Storm Control

Similar documents
Configuring Traffic Storm Control

Configuring Rate Limits

Configuring Storm Control

Configuring sflow. Information About sflow. sflow Agent. This chapter contains the following sections:

Configuring Layer 2 Switching

Configuring Rate Limits

Configuring Layer 2 Switching

Configuring Port-Based Traffic Control

Configuring Password Encryption

Configuring IP TCP MSS

Configuring Private VLANs Using NX-OS

Configuring Port-Based Traffic Control

Configuring EEE. Finding Feature Information. This chapter describes how to configure Energy Efficient Ethernet (EEE) on Cisco NX-OS devices.

Configuring Unicast RPF

Configuring Port-Based Traffic Control

Configuring Q-in-Q VLAN Tunnels

Configuring IGMP Snooping

Configuring Storm Control

Configuring DNS. Finding Feature Information. Information About DNS Clients. DNS Client Overview

Configuring Storm Control

Configuring SPAN. Finding Feature Information. About SPAN. SPAN Sources

Configuring MAC Address Tables

Managing the Unicast RIB and FIB, page 5

Configuring Policy-Based Routing

Configuring Port-Based Traffic Control

Configuring Storm Control

Configuring STP Extensions Using Cisco NX-OS

Managing the Unicast RIB and FIB, on page 5

Configuring Layer 3 Interfaces

Configuring DHCP. Finding Feature Information

Configuring IPv4. Finding Feature Information. This chapter contains the following sections:

Configuring Mutation Mapping

Configuring Static Routing

vpc Configuration Synchronization

Configuring Layer 3 Interfaces

Configuring Rate Limits

Configuring Layer 3 Virtualization

Configuring Policy-Based Routing

Configuring Session Manager

Configuring Local SPAN and ERSPAN

Configuring Fabric QoS Mapping

Configuring DHCP Snooping

Configuring Network QoS

Configuring WCCPv2. Information About WCCPv2. Send document comments to CHAPTER

Configuring sflow. About sflow. sflow Agent

Configuring Q-in-Q VLAN Tunnels

Configuring Port Channels

Storm Control over EVC

Configuring MAC Address Tables

Finding Feature Information, page 2 Information About DHCP Snooping, page 2 Information About the DHCPv6 Relay Agent, page 8

Configuring EtherChannels

This chapter describes how to configure the NetFlow feature on Cisco NX-OS devices.

Monitoring QoS Statistics

Configuring ECMP for Host Routes

Configuring Network QoS

Configuring the MAC Address Table

Configuring Queuing and Flow Control

Configuring Online Diagnostics

Configuring 802.1X. Finding Feature Information. Information About 802.1X

Configuring Ingress Policing

This chapter describes how to configure the Network Time Protocol (NTP) on Cisco NX-OS devices. This chapter includes the following sections:

Configuring SPAN. About SPAN. SPAN Sources

Configuring Online Diagnostics

Configuring MST Using Cisco NX-OS

Configuring Queuing and Flow Control

Configuring DHCP. About DHCP Snooping, page 2 About the DHCPv6 Relay Agent, page 8

Configuring NTP. Information About NTP. This chapter contains the following sections:

Configuring EtherChannels

Configuration Examples for DHCP, on page 37 Configuration Examples for DHCP Client, on page 38 Additional References for DHCP, on page 38

Configuring MAC Address Tables

Class-based Quality-of-Service MIB

On the Cisco Nexus 5548 Switch, Fibre Channel ports and VSAN ports cannot be configured as ingress source ports in a SPAN session.

Configuring Online Diagnostics

Configuring IPv6 First-Hop Security

Configuring LDAP. Finding Feature Information

Cisco Nexus 7000 Series NX-OS Layer 2 Switching Configuration Guide

Configuring NTP. Information About NTP. This chapter contains the following sections:

Configuring a MAC ACL

Configuring Rapid PVST+ Using NX-OS

Configuring Ethernet OAM

Configuring TAP Aggregation and MPLS Stripping

Configuring the Embedded Event Manager

Configuring Q-in-Q VLAN Tunnels

Configuring NetFlow. About NetFlow. This chapter describes how to configure the NetFlow feature on Cisco NX-OS devices.

Managing the Unicast RIB and FIB

Configuring MAC Address Tables

Configuring PIM. Information About PIM. Send document comments to CHAPTER

Configuring SPAN. Configuring SPAN. SPAN Sources. This chapter includes the following sections: Configuring SPAN, page 1

Configuring Access and Trunk Interfaces

Configuring Port Channels

Configuring TAP Aggregation and MPLS Stripping

With 802.1X port-based authentication, the devices in the network have specific roles.

Configuring EtherChannels

Configuring PTP. Information About PTP. This chapter contains the following sections:

With 802.1X port-based authentication, the devices in the network have specific roles.

Configuring Priority Flow Control

Configuring MLD Snooping

Congestion Avoidance. Finding Feature Information

Configuring User Accounts and RBAC

Configuring Priority Flow Control

Transcription:

This chapter describes how to configure traffic storm control on the Cisco NX-OS device. This chapter includes the following sections: Finding Feature Information, page 1 Information About Traffic Storm Control, page 2 Virtualization Support for Traffic Storm Control, page 3 Licensing Requirements for Traffic Storm Control, page 3 Guidelines and Limitations for Traffic Storm Control, page 3 Default Settings for Traffic Storm Control, page 4, page 4 Verifying Traffic Storm Control Configuration, page 5 Monitoring Traffic Storm Control Counters, page 6 Configuration Example for Traffic Storm Control, page 6 Additional References for Traffic Storm Control, page 6 Feature History for Traffic Storm Control, page 7 Finding Feature Information Your software release might not support all the features documented in this module. For the latest caveats and feature information, see the Bug Search Tool at https://tools.cisco.com/bugsearch/ and the release notes for your software release. To find information about the features documented in this module, and to see a list of the releases in which each feature is supported, see the "New and Changed Information"chapter or the Feature History table in this chapter. OL-25776-03 1

Information About Traffic Storm Control Information About Traffic Storm Control A traffic storm occurs when packets flood the LAN, creating excessive traffic and degrading network performance. You can use the traffic storm control feature to prevent disruptions on Layer 2 ports by a broadcast, multicast, or unicast traffic storm on physical interfaces. (also called traffic suppression) allows you to monitor the levels of the incoming broadcast, multicast, and unicast traffic over a 10-millisecond interval. During this interval, the traffic level, which is a percentage of the total available bandwidth of the port, is compared with the traffic storm control level that you configured. When the ingress traffic reaches the traffic storm control level that is configured on the port, traffic storm control drops the traffic until the interval ends. This table shows the broadcast traffic patterns on a Layer 2 interface over a given interval. In this example, traffic storm control occurs between times T1 and T2 and between T4 and T5. During those intervals, the amount of broadcast traffic exceeded the configured threshold. Figure 1: Broadcast Suppression The traffic storm control threshold numbers and the time interval allow the traffic storm control algorithm to work with different levels of granularity. A higher threshold allows more packets to pass through. on the Cisco NX-OS device is implemented in the hardware. The traffic storm control circuitry monitors packets that pass from a Layer 2 interface to the switching bus. Using the Individual/Group bit in the packet destination address, the circuitry determines if the packet is unicast or broadcast, tracks the current count of packets within the 10-millisecond interval, and filters out subsequent packets when a threshold is reached. uses a bandwidth-based method to measure traffic. You set the percentage of total available bandwidth that the controlled traffic can use. Because packets do not arrive at uniform intervals, the 10-millisecond interval can affect the behavior of traffic storm control. The following are examples of traffic storm control behavior: If you enable broadcast traffic storm control, and broadcast traffic exceeds the level within the 10-millisecond interval, traffic storm control drops all broadcast traffic until the end of the interval. If you enable broadcast and multicast traffic storm control, and the combined broadcast and multicast traffic exceeds the level within the 10-millisecond interval, traffic storm control drops all broadcast and multicast traffic until the end of the interval. 2 OL-25776-03

Virtualization Support for Traffic Storm Control If you enable broadcast and multicast traffic storm control, and broadcast traffic exceeds the level within the 10-millisecond interval, traffic storm control drops all broadcast and multicast traffic until the end of the interval. If you enable broadcast and multicast traffic storm control, and multicast traffic exceeds the level within the 10-millisecond interval, traffic storm control drops all broadcast and multicast traffic until the end of the interval. By default, the Cisco NX-OS software takes no corrective action when the traffic exceeds the configured level. However, you can configure an Embedded Event Management (EEM) action to error-disable an interface if the traffic does not subside (drop below the threshold) within a certain time period. For information on configuring EEM, see the Cisco Nexus 7000 Series NX-OS System Management Command Reference. Virtualization Support for Traffic Storm Control configuration and operation are local to the virtual device context (VDC). For more information on VDCs, see the Cisco Nexus 7000 Series NX-OS Virtual Device Context Configuration Guide. Licensing Requirements for Traffic Storm Control The following table shows the licensing requirements for this feature: Product Cisco NX-OS License Requirement requires no license. Any feature not included in a license package is bundled with the Cisco NX-OS system images and is provided at no extra charge to you. For an explanation of the Cisco NX-OS licensing scheme, see the Cisco NX-OS Licensing Guide. Guidelines and Limitations for Traffic Storm Control When configuring the traffic storm control level, note the following guidelines and limitations: You can configure traffic storm control on a port-channel interface. Do not configure traffic storm control on interfaces that are members of a port-channel interface. Configuring traffic storm control on interfaces that are configured as members of a port channel puts the ports into a suspended state. on all Cisco FEX devices connected to Cisco Nexus 7000 series switches has following guidelines and limitations: is not supported on HIF ports. is supported only on NIF ports. OL-25776-03 3

Default Settings for Traffic Storm Control Specify the level as a percentage of the total interface bandwidth: The level can be from 0 to 100. The optional fraction of a level can be from 0 to 99. 100 percent means no traffic storm control. 0.0 percent suppresses all traffic. Because of hardware limitations and the method by which packets of different sizes are counted, the level percentage is an approximation. Depending on the sizes of the frames that make up the incoming traffic, the actual enforced level might differ from the configured level by several percentage points. Note If you are familiar with the Cisco IOS CLI, be aware that the Cisco NX-OS commands for this feature might differ from the Cisco IOS commands that you would use. Default Settings for Traffic Storm Control This table lists the default settings for traffic storm control parameters. Table 1: Default Traffic Storm Control Parameters Parameters Threshold percentage Default Disabled 100 You can set the percentage of total available bandwidth that the controlled traffic can use. Note uses a 10-millisecond interval that can affect the behavior of traffic storm control. SUMMARY STEPS 1. configure terminal 2. interface {ethernet slot/port port-channel number} 3. storm-control {broadcast multicast unicast} level percentage[.fraction] 4. exit 5. (Optional) show running-config interface {ethernet slot/port port-channel number} 6. (Optional) copy running-config startup-config 4 OL-25776-03

Verifying Traffic Storm Control Configuration DETAILED STEPS Step 1 Command or Action configure terminal Purpose Enters global configuration mode. Step 2 switch# configure terminal switch(config)# interface {ethernet slot/port port-channel number} Enters interface configuration mode. Step 3 Step 4 switch# interface ethernet 1/1 switch(config-if)# storm-control {broadcast multicast unicast} level percentage[.fraction] switch(config-if)# storm-control unicast level 40 exit Configures traffic storm control for traffic on the interface. The default state is disabled. Note The storm-control unicast command configures traffic storm control for all the unicast packets. Exits interface configuration mode. Step 5 switch(config-if)# exit switch(config)# show running-config interface {ethernet slot/port port-channel number} (Optional) Displays the traffic storm control configuration. Step 6 switch(config)# show running-config interface ethernet 1/1 copy running-config startup-config switch(config)# copy running-config startup-config (Optional) Copies the running configuration to the startup configuration. Verifying Traffic Storm Control Configuration To display traffic storm control configuration information, perform one of the following tasks: Command show interface [ethernet slot/port port-channel number] counters storm-control show running-config interface Purpose Displays the traffic storm control configuration for the interfaces. Displays the traffic storm control configuration. OL-25776-03 5

Monitoring Traffic Storm Control Counters For detailed information about the fields in the output from these commands, see the Cisco Nexus 7000 Series NX-OS Security Command Reference. Monitoring Traffic Storm Control Counters You can monitor the counters the Cisco NX-OS device maintains for traffic storm control activity. SUMMARY STEPS 1. show interface [ethernet slot/port port-channel number] counters storm-control DETAILED STEPS Step 1 Command or Action show interface [ethernet slot/port port-channel number] counters storm-control Purpose Displays the traffic storm control counters. switch# show interface counters storm-control Configuration Example for Traffic Storm Control The following example shows how to configure traffic storm control: interface Ethernet1/1 storm-control broadcast level 40 storm-control multicast level 40 storm-control unicast level 40 Additional References for Traffic Storm Control This section includes additional information related to implementing traffic storm control. Related Documents Related Topic Cisco NX-OS Licensing Command reference Document Title Cisco NX-OS Licensing Guide Cisco Nexus 7000 Series NX-OS Security Command Reference 6 OL-25776-03

Feature History for Traffic Storm Control Feature History for Traffic Storm Control This table lists the release history for this feature. Table 2: Feature History for Traffic Storm Control Feature Name Releases 6.0(1) 5.2(1) 5.1(1) 5.0(2) 4.2(1) Feature Information No change from Release 5.2. No change from release 5.1. No change from Release 5.0. No change from Release 4.2. No change from Release 4.1. OL-25776-03 7

Feature History for Traffic Storm Control 8 OL-25776-03

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback