Install guide
24 Release Note
Rapier Switch Software Release 2.1.0
C613-10200-01 Rev A
By default, packet storm protection is disabled. It can be enabled, and each of
the limits can be set using the command:
SET SWITCH PORT=port-list [BCLIMIT={NONE|limit}]
[DLFLIMIT={NONE|limit}] [MCLIMIT={NONE|limit}]
The BCLIMIT parameter specifies a limit on the rate of reception of broadcast
packets for the port(s). The value of this parameter represents a per second rate
of packet reception above which packets will be discarded, for broadcast
packets. If the value NONE or 0 is specified, then packet rate limiting for
broadcast packets is turned off. If any other value is specified, the reception of
broadcast packets will be limited to that number of packets per second. See the
note below for important information about packet rate limiting. The default
value for this parameter is NONE.
The DLFLIMIT parameter specifies a limit on the rate of reception of
destination lookup failure packets for the port. The value of this parameter
represents a per second rate of packet reception above which packets will be
discarded, for destination lookup failure packets. If the value NONE or 0 is
specified, then packet rate limiting for destination lookup failure packets is
turned off. If any other value is specified, the reception of destination lookup
failure packets will be limited to that number of packets per second. See the
note below for important information about packet rate limiting. The default
value for this parameter is NONE.
A destination lookup failure packet is one for which the switch hardware does not have
a record of the destination address of the packet, either Layer 2 or Layer 3 address. These
packets are passed to the CPU for further processing, so limiting the rate of reception of
these packets may be a desirable feature to improve system performance.
The LEARN parameter specifies whether or not the security feature of limiting
the number of MAC addresses learned on these port(s) is enabled. If NONE or
0 is specified, there is no limit set on the number of MAC addresses learned on
this port. If a number from 1 to 256 is specified, the switch will stop learning
MAC addresses on these port(s) once the number of MAC addresses has been
reached. Packets received from other addresses after this time are dealt with as
intrusion packets (see the LOCKACTION parameter). The default value for
this parameter is NONE.
The MCLIMIT parameter specifies a limit on the rate of reception of multicast
packets for the port. The value of this parameter represents a per second rate of
packet reception above which packets will be discarded, for multicast packets.
If the value NONE or 0 is specified, then packet rate limiting for multicast
packets is turned off. If any other value is specified, the reception of multicast
packets will be limited to that number of packets per second. See the note
below for important information about packet rate limiting. The default value
for this parameter is NONE.
The ability of the switch to limit packet reception rates for different classes of packets is
dependent on the particular switch hardware. In particular, groups of ports may have to
have the same limits set, and the same limit may be set for the different types of packets,
depending on the hardware. Whenever packet rate limits are set on switches which have
this type of constraint, the latest parameter values entered will supersede earlier values.
Also, a message when commands are entered will clearly indicate the effect of the
command in cases where parameters for other ports have changed.