3Configuring Device Security

This section provides access to security pages that contain fields for setting security parameters for ports and device management methods. This section contains the following topics:

Configuring Traffic Control

Defining Access Control Lists

Configuring Traffic Control

This section contains information for managing both port security and storm control, and includes the following topics:

Enabling Storm Control

Managing Port Security

Enabling Storm Control

Storm control limits the amount of Broadcast, Multicast and Unknown Unicast frames accepted and forwarded by the device. When Layer 2 frames are forwarded, Broadcast, Multicast and Unknown Unicast frames are flooded to all ports on the relevant VLAN. This occupies bandwidth, and loads all nodes on all ports.

A Packet Storm is a result of an excessive amount of either Broadcast or Multicast or Unknown Unicast messages simultaneously transmitted across a network by a single port. Forwarded message responses are heaped onto the network, straining network resources or causing the network to time out.

Storm control is enabled for all ports by defining the packet type and the rate the packets are transmitted. The system measures the incoming Broadcast, Multicast or Unknown Unicast frame rates separately on each port, and discards the frames when the rate exceeds a user-defined rate.

The Storm Control Page provides fields for configuring packet storm control.

Intel® Gigabit Ethernet Switch AXXSW1GB User Guide

11

Page 24
Image 24
Intel AXXSW1GB manual Configuring Device Security, Configuring Traffic Control