Checking the storm control configuration on an S series switch

2

For S series switches, you can run the display storm-control [ interface ] command in any view to check information about storm control on an interface.

Other related questions:
Configuring traffic suppression and storm control on S series switches
For S series switches (except S1700 switches): Traffic suppression and storm control are two security technologies used to limit rates of broadcast, unknown multicast, and unknown unicast packets to prevent storms caused by these packets. Traffic suppression limits traffic rates using traffic rate thresholds, while storm control prevents traffic storms by shutting down interfaces. You can run the following commands to configure traffic suppression: [HUAWEI] interface gigabitethernet 1/0/0 [HUAWEI-GigabitEthernet1/0/0] broadcast-suppression cir 100 //Configure broadcast traffic suppression and set the CIR, that is the allowed rate at which broadcast traffic can pass through, to 100 kbit/s. [HUAWEI-GigabitEthernet1/0/0] multicast-suppression 80 //Configure unknown multicast traffic suppression and limit the rate of unknown multicast packets to 80%. [HUAWEI-GigabitEthernet1/0/0] unicast-suppression cir 100 //Configure unknown unicast traffic suppression and set the CIR, that is the allowed rate at which unknown unicast traffic can pass through, to 100 kbit/s. [HUAWEI-GigabitEthernet1/0/0] quit To block outgoing packets on an interface, run the following commands: [HUAWEI] interface gigabitethernet 1/0/0 [HUAWEI-GigabitEthernet1/0/0] broadcast-suppression block outbound //Block outgoing broadcast packets on the interface. [HUAWEI-GigabitEthernet1/0/0] multicast-suppression block outbound //Block outgoing unknown multicast packets on the interface. [HUAWEI-GigabitEthernet1/0/0] unicast-suppression block outbound //Block outgoing unknown unicast packets on the interface. [HUAWEI-GigabitEthernet1/0/0] quit You can run the following commands to configure storm control: [HUAWEI] interface gigabitethernet 1/0/0 [HUAWEI-GigabitEthernet1/0/0] storm-control broadcast min-rate 1000 max-rate 2000 //Configure storm control on broadcast packets. [HUAWEI-GigabitEthernet1/0/0] storm-control multicast min-rate 1000 max-rate 2000 //Configure storm control on unknown multicast packets. [HUAWEI-GigabitEthernet1/0/0] storm-control unicast min-rate 1000 max-rate 2000 //Configure storm control on unknown unicast packets. [HUAWEI-GigabitEthernet1/0/0] storm-control action block //Set the storm control action to block. [HUAWEI-GigabitEthernet1/0/0] storm-control enable log //Configure the device to record a log when detecting a storm. [HUAWEI-GigabitEthernet1/0/0] storm-control interval 90 //Set the interval for detecting storms. [HUAWEI-GigabitEthernet1/0/0] quit Note: If the storm control action on an interface is block, the interface restores the normal forwarding state when the traffic falls below the lower threshold. If the storm control action is shutdown, the interface cannot restore automatically and you need to run the undo shutdown command to restore it manually.

Differences between traffic suppression and storm control on S series switches
For S series switches, the differences between traffic suppression and storm control are as follows: Traffic suppression aims at controlling traffic rates within an acceptable range to limit incoming and outgoing traffic on interfaces. If the rate of incoming broadcast, multicast, or unknown unicast packets on an interface exceeds the threshold, a switch discards the packets exceeding the threshold and only allows the packets within the threshold to pass through. Take traffic suppression of unknown unicast packets for example. Assume that the traffic suppression threshold of unknown unicast packets is 100 pps. That is, the switch allows only 100 packets to pass through within one second, and discards the excess packets. Within the next second, the switch also allows only 100 packets to pass through. If the rate of outgoing broadcast, multicast, or unknown unicast packets on an interface exceeds the threshold, the switch blocks all packets of this type. That is, the interface does not forward packets of this type. Storm control aims at preventing broadcast storms. A switch with storm control configured only controls incoming traffic on interfaces. If the average rate of unknown unicast packets received by an interface of a switch within the storm control interval is higher than the specified upper threshold, the switch blocks packets on the interface or shuts down the interface according to the configured penalty action. If the interface has been blocked, when the rate of packets received by the interface falls below the lower threshold, the switch unblocks the interface. If the interface has been shut down, you need to run the undo shutdown command to enable the interface. Take storm control on unknown unicast packets for example. Assume that the upper threshold for storm control on unknown unicast packets is 100 pps, the lower threshold is 20 pps, and the storm control detection interval is 5 seconds. If the interface receives more than 500 (100 x 5) packets within 5 seconds, the switch shuts down the interface. The interface can receive packets only after its status recovers to Up. Alternatively, the switch blocks all unknown unicast packets on the interface until the 5 seconds expire. When the number of packets received by the interface falls below 100 (20 x 5), the switch allows the interface to receive unknown unicast packets. For the incoming packets of the same type on an interface, only traffic suppression or storm control can be configured.

How to configure broadcast storm control on an interface of a CE series switch
Excessive broadcast packets on inbound and outbound interfaces of a switch will cause broadcast storms. To limit the rate of broadcast packets on an interface, you can configure broadcast storm control on the interface.
For example, you can configure broadcast storm control on 10GE1/0/1.
<HUAWEI> system-view
[~HUAWEI] interface 10ge 1/0/1
[~HUAWEI-10GE1/0/1] storm control broadcast min-rate 1000 max-rate 2000 //Set the lower threshold for storm control to 1000 pps and upper threshold to 2000 pps.
[*HUAWEI-10GE1/0/1] storm control action error-down //Configure the switch to shut down the interface when detecting a broadcast storm.
[*HUAWEI-10GE1/0/1] commit

Checking configurations of an S series switch
You can run the following commands to check configuratio of an S series switch (except the S1700): 1. Run the display current-configuration command to check the current valid configurations. This command does not display parameters that use default settings. 2. Run the display saved-configuration command to check the configuration file to be used for the next startup. 3. Run the display startup command to check the system software, backup system software, configuration file, license file, patch file, and voice file for the current and next startup.

Checking historical operation records on an S series switch
By default, an S series switch (except the S1700) saves a maximum of 10 historical commands for each user. You can run the history-command max-size size-value command in the user interface view to reset the number of historical commands that can be saved. The maximum number is 256. You can also run the display history-command [ all-users ] command in any view to check historical commands stored on a switch. Note: If all-users is not specified in this command, the historical commands entered by the current user are displayed. If all-users is specified in this command, the historical commands entered by all users are displayed. (Only users at level 3 or a higher level can specify this parameter in this command.)

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top