RE: [fw-wiz] Reducing Broadcast Storms

From: Terry Baranski (tbaranski_at_mail.com)
Date: 03/27/04 

To: "'WEXLER, BEN A (SBCSI)'" <bw3481@sbc.com>
Date: Sat, 27 Mar 2004 16:25:16 -0600

(You'll probably have more luck generating discussion on a Cisco-related
list or newsgroup.)

My advice is to ascertain why packet storms are occurring on your
network and then work on eliminating them as close to the source as
possible. Switch level controls can be useful, but they're more of a
bandaid than a fix. Broadcast/multicast storms generally shouldn't be
happening in the first place (and unicast storms definitely shouldn't be
happening) so it may be beneficial to look at this from a design point
of view -- if the packet storms are the result of a broken network or
broken hosts, switch level rate limiting isn't the optimal solution.

-Terry

> -----Original Message-----
> From: firewall-wizards-admin@honor.icsalabs.com
> [mailto:firewall-wizards-admin@honor.icsalabs.com] On Behalf
> Of WEXLER, BEN A (SBCSI)
> Sent: Wednesday, March 24, 2004 10:30 AM
> To: 'firewall-wizards@honor.icsalabs.com'
> Subject: [fw-wiz] Reducing Broadcast Storms
>
>
> I am looking for some ideas of how to block unicast,
> multicast or broadcast
> storms from within my current network. I have a large network with an
> installed base of various Cisco switches and routers. Upon doing some
> research the only way I can find to limit the effect of a
> broadcast storm is
> to use the port based command storm-control. While this is
> feasible, but
> time consuming, I would like to find a solution that can be
> performed either
> for the entire switch, access router or preferably from the
> distribution
> level of the network.
>
> Any ideas would be appreciated.
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards@honor.icsalabs.com
> http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
>

_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Relevant Pages

  • Re: Using snmp traps to detect broadcast storms
    ... so I'm yet to find network where broadcast ... storms would be caused by something else than STP configuration. ... Fix STP and you wouldn't need to worry about broadcast storm alerts. ...
    (comp.dcom.sys.cisco)
  • [fw-wiz] Reducing Broadcast Storms
    ... I am looking for some ideas of how to block unicast, multicast or broadcast ... storms from within my current network. ... access router or preferably from the distribution ...
    (Firewall-Wizards)
  • Re: Using snmp traps to detect broadcast storms
    ... so I'm yet to find network where broadcast storms would be caused by something else than STP configuration. ... Since you mentioned case with switch plugged into itself causing broadcast storm, ...
    (comp.dcom.sys.cisco)