Quick Reference Guide
Access Control | 205
Figure 13-166. Loopback ACL Example
Enabling Broadcast Storm Control
A broadcast storm occurs when incoming packets flood the LAN, degrading network performance. SFTOS
provides broadcast storm control at a global (switch) level, not for individual interfaces.
To enable storm control, execute the command
storm-control broadcast in Global Config mode. Disable
storm control with the command
no storm-control broadcast.
Broadcast storm control is implemented in SFTOS with automated high and low thresholds that are based
on a percentage of link speed. If broadcast traffic on any port exceeds the high threshold percentage (as
represented in the following table) of the link speed, the switch discards the broadcast traffic until the
traffic returns to the low threshold percentage or less.
Use the
show storm-control command to verify the setting.
Use the
show interface-ethernet unit/slot/port command to see the number of packets not forwarded
(highlighted in Figure 13-167) in a broadcast storm condition when broadcast storm control has been
implemented.
Table 13-7. Broadcast Storm Control Thresholds
Link Speed High Low
10M 20 10
100M 5 2
1000M 5 2
Force10 (Config)#access-list 2 permit every
Force10 (Config)#access-list 2 deny 10.240.4.113 255.255.255.0
Force10 (Config)#interface loopback 0
Force10 (Conf-if-lo-0)# ip access-group 2 in 10
Force10 (Conf-if-lo-0)# exit
Force10 #show ip access-lists 2
ACL ID: 2
Interface :loopback
Rule Number: 1
Action......................................... permit
Match All...................................... TRUE
Rule Number: 2
Action......................................... deny
Match All...................................... FALSE
Source IP Address.............................. 10.240.4.113
Source IP Mask................................. 255.255.255.0
--More-- or (q)uit
10 is the priority, an optional parameter.