09-16-2022 06:02 AM
I have a quick question and looking for guidance.
I'm currently working on hardening a switch and I'm checking out storm control.
What is usually the best default to keep storm control at? Also, is it something that should always be added no matter what environment it's thrown into?
Another thing is with STP, is it good practice to configure BPDUGuard and Portfast?
09-16-2022 06:46 AM
For storm control check this thread as an example : https://community.cisco.com/t5/switching/recommended-levels-for-storm-control/td-p/4186816 , for STP use BPDUguard on ports configured in access mode or globaly
M.
09-17-2022 03:59 PM - edited 09-17-2022 04:00 PM
What is usually the best default to keep storm control at? Also, is it something that should always be added no matter what environment it's thrown into?
the limit is depend on your network, but check when CPU is low the interface multicast and broadcast count and use it as ref. for your config
Another thing is with STP, is it good practice to configure BPDUGuard and Portfast?
Sure portfast will reduce the time before the port is UP if the port connect to PC and Server
NOTE:- portfast never config in port connect to other SW
BPDUguard, if by mistake somebody connect portfast port to SW the BPDUgurad will protect SW from short time Loop.
NOTE:- since the BPDUguard is config with portfast so it always connect to port connect to PC or server not to other SW
09-18-2022 02:39 AM
Hello
One way woull to enable storm control over a certain time period with a high rate to capturea baseline for current BC/MC traffic levels then based on that discovery you can then set definitive levels for your network.thereafter.
Int x/x
load-interval 30
storm-control broadcast level 99.00
storm-control multicast level 99.00
sh storm-control broadcast
sh storm-control multicast
Note:
If you enable both SC for both BC/MC traffic and either traffic exceeds that certain defined level within its default 1 second interval then SC will drop all BC/MC traffic until the end of the traffic storm interval isn’t exceeded.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide