Brocade Communications Systems Brocade ICX 6650 6650 Manuel D’Utilisation
Brocade ICX 6650 Security Configuration Guide
299
53-1002601-01
Chapter
13
Limiting Broadcast, Multicast, and Unknown
Unicast Traffic
This chapter describes how rate limiting for broadcast, multicast, and unknown-unicast traffic is
implemented and configured on Brocade ICX 6650.
implemented and configured on Brocade ICX 6650.
Broadcast, unknown Unicast, and Multicast rate limiting
Brocade devices forward all flooded traffic at wire speed within a VLAN. However, some third-party
networking devices cannot handle high rates of broadcast, multicast, or unknown-unicast traffic. If
not controlled such scenarios can result in Denial of Service (DoS).
networking devices cannot handle high rates of broadcast, multicast, or unknown-unicast traffic. If
not controlled such scenarios can result in Denial of Service (DoS).
To control the such traffic from being forwarded to other devices in a VLAN, you can limit the
number of broadcast, multicast, or unknown-unicast (BUM) packets received each second on every
port of Brocade ICX 6650.
number of broadcast, multicast, or unknown-unicast (BUM) packets received each second on every
port of Brocade ICX 6650.
Configuration notes and feature limitations
•
Brocade ICX 6650 supports packet-based limiting only. Limits set on such flooded traffic are
also in terms of packets per second.
also in terms of packets per second.
Configuring rate limiting for BUM traffic
To enable broadcast limiting on a group of ports by counting the number of packets received, enter
the following commands:
the following commands:
Brocade(config)# interface ethernet 1/1/1 to 1/1/8
Brocade(config-mif-1/1/1-1/1/8)# broadcast limit 65536
Brocade(config-mif-1/1/1-1/1/8)# broadcast limit 65536
To include unknown-unicast limiting, enter the unknown-unicast limit command after enabling
broadcast limiting.
broadcast limiting.
Brocade(config-mif-1/1/1-1/1/8)# unknown-unicast limit
To include multicast limiting, enter the multicast limit command after enabling broadcast limiting.
Brocade(config-mif-1/1/1-1/1/8)# multicast limit
Syntax: [no]broadcast limit num
Syntax: [no] multicast limit
Syntax: [no] unknown-unicast limit