SupportDocumentationSwitchesData Center SwitchCloudEngine 12800&16800Configuration & CommissioningConfiguration Guide

CloudEngine 16800 V200R023C10 Configuration Guide - Security

Example for Configuring Storm Control

Example for Configuring Storm Control

Networking Requirements

As shown in Figure 9-4, Switch A is connected to a Layer 2 network and a Layer 3 router. Switch A needs to be configured to prevent broadcast storms caused by a large number of broadcast packets, multicast packets, or unicast packets forwarded at Layer 2.

Figure 9-4 Networking diagram of storm control

Configuration Roadmap

The configuration roadmap is as follows:

  1. Configure storm control in the interface view of 10GE1/0/1 to prevent broadcast storms caused by a large number of broadcast packets, multicast packets, or unicast packets forwarded at Layer 2.

Procedure

  1. Enter the interface view.

    <HUAWEI> system-view
[~HUAWEI] sysname SwitchA
[*HUAWEI] commit
[~SwitchA] interface 10ge 1/0/1

  2. Configure storm control for broadcast packets.

    [~SwitchA-10GE1/0/1] storm control broadcast min-rate 1000 max-rate 2000

  3. Configure storm control for multicast packets.

    [*SwitchA-10GE1/0/1] storm control multicast min-rate 1000 max-rate 2000

  4. Configure storm control for unicast packets.

    [*SwitchA-10GE1/0/1] storm control unicast min-rate 1000 max-rate 2000

  5. Set the storm control action to error-down.

    [*SwitchA-10GE1/0/1] storm control action error-down

  6. Enable the function of recording logs during storm control.

    [*SwitchA-10GE1/0/1] storm control enable log

  7. Set the detection interval.

    [*SwitchA-10GE1/0/1] storm control interval 90
[*SwitchA-10GE1/0/1] commit
[~SwitchA-10GE1/0/1] quit
[~SwitchA] quit

  8. Verify the configuration.

    Run the display storm control interface command to view storm control configuration on 10GE1/0/1.

    <SwitchA> display storm control interface 10ge 1/0/1
--------------------------------------------------------------------------------
NOTE:
BC = Broadcast; MC = Multicast; UC = Unicast; UUC = Unknown Unicast
Int = Interval value (unit: seconds)
--------------------------------------------------------------------------------
PortName     Type   MaxRate Mode Action    Punish-   Trap Log  Int Last
                                           Status                  Punish-Time
--------------------------------------------------------------------------------
10GE1/0/1    BC        2000 Pps  ErrorDown Normal    Off  On    90 --
10GE1/0/1    MC        2000 Pps  ErrorDown Normal    Off  On    90 --
10GE1/0/1    UC        2000 Pps  ErrorDown Normal    Off  On    90 --

Configuration Files

Configuration file of Switch A

#
sysname SwitchA
#
interface 10GE1/0/1
 storm control broadcast min-rate 1000 max-rate 2000
 storm control multicast min-rate 1000 max-rate 2000
 storm control unicast min-rate 1000 max-rate 2000
 storm control interval 90
 storm control action error-down
 storm control enable log
#
return