Port mirroring and flooding

[tcpipv6]

I'm having problems with this extreme Summit48si, every 20 or 30 days i have to reboot the switch because i start loosing paquets.

If any one can help. thanks in advance.
--
# Full Detail Configuration


#
# Summit48si Configuration generated Thu Jan 10 09:32:59 2008
# Software Version 7.6.2.3 [non-ssh] [base] by Release_Master on 08/29/06 07:16:04

# Configuration Mode
configure configuration-mode standard
configure dot1q ethertype 8100
configure dot1p type dot1p_priority 0 qosprofile QP1
configure dot1p type dot1p_priority 1 qosprofile QP2
configure dot1p type dot1p_priority 2 qosprofile QP3
configure dot1p type dot1p_priority 3 qosprofile QP4
configure dot1p type dot1p_priority 4 qosprofile QP5
configure dot1p type dot1p_priority 5 qosprofile QP6
configure dot1p type dot1p_priority 6 qosprofile QP7
configure dot1p type dot1p_priority 7 qosprofile QP8
enable sys-health-check
configure sys-health-check alarm-level Log
configure sys-health-check scan recovery remap
configure fdb-scan period 30
configure fdb-scan failure-action log
disable fdb-scan
configure bus-stats window history 3
configure bus-stats window errors 3
configure bus-stats threshold slow-path 2
configure bus-stats threshold fast-path 1
enable bus-stats
configure sys-recovery-level none
disable sys-hardware-recovery polling
configure sys-hardware-recovery poll-interval 30
enable system-watchdog
configure reboot-loop-protection threshold 0
enable esrp-aware
configure qosprofile QP1 minbw 0% maxbw 100% priority Low minbuf 0% maxbuf 0 K
configure qosprofile QP2 minbw 0% maxbw 100% priority LowHi minbuf 0% maxbuf 0 K
configure qosprofile QP3 minbw 0% maxbw 100% priority Normal minbuf 0% maxbuf 0 K
configure qosprofile QP4 minbw 0% maxbw 100% priority NormalHi minbuf 0% maxbuf 0 K
configure qosprofile QP5 minbw 0% maxbw 100% priority Medium minbuf 0% maxbuf 0 K
configure qosprofile QP6 minbw 0% maxbw 100% priority MediumHi minbuf 0% maxbuf 0 K
configure qosprofile QP7 minbw 0% maxbw 100% priority High minbuf 0% maxbuf 0 K
configure qosprofile QP8 minbw 0% maxbw 100% priority HighHi minbuf 0% maxbuf 0 K
configure qostype priority source-mac 7
configure qostype priority dest-mac 8
configure qostype priority access-list 11
configure qostype priority vlan 1
configure qostype priority diffserv 3
configure qostype priority dot1p 2
configure red drop-probability 0
delete protocol ip
delete protocol ipx
delete protocol netbios
delete protocol decnet
delete protocol appletalk
delete protocol ipx_8022
delete protocol ipx_snap
create protocol ipx_snap
create protocol ipx_8022
create protocol appletalk
create protocol decnet
create protocol netbios
create protocol ipx
create protocol IP
configure vlan default delete ports all
create vlan "swiss"
create vlan "floo"
create vlan "prueba"
create vlan "ccenter"

#
# Route Map Configuration.
#

#
# Config information for VLAN Default.
configure vlan "Default" tag 1 # VLAN-ID=0x1 Global Tag 1
configure stpd s0 add vlan "Default"
configure vlan "Default" protocol "ANY"
configure vlan "Default" qosprofile "QP1"
enable bootp vlan "Default"
# No port is associated with VLAN Default.
#
# Config information for VLAN MacVlanDiscover.
# No VLAN-ID is associated with VLAN MacVlanDiscover.
# No IP address is configured for VLAN MacVlanDiscover.
# No port is associated with VLAN MacVlanDiscover.
#
# Config information for VLAN swiss.
# No VLAN-ID is associated with VLAN swiss.
configure vlan "swiss" protocol "ANY"
configure vlan "swiss" qosprofile "QP1"
configure vlan "swiss" ipaddress 192.168.101.7 255.255.255.0
configure vlan "swiss" add port 1 untagged

#
# Config information for VLAN floo.
# No VLAN-ID is associated with VLAN floo.
configure vlan "floo" protocol "ANY"
configure vlan "floo" qosprofile "QP1"
# No IP address is configured for VLAN floo.
configure vlan "floo" add port 17 untagged

configure vlan "floo" add port 18 untagged

configure vlan "floo" add port 19 untagged

configure vlan "floo" add port 20 untagged

configure vlan "floo" add port 21 untagged

configure vlan "floo" add port 22 untagged

#
# Config information for VLAN prueba.
# No VLAN-ID is associated with VLAN prueba.
configure vlan "prueba" protocol "ANY"
configure vlan "prueba" qosprofile "QP1"
# No IP address is configured for VLAN prueba.
# No port is associated with VLAN prueba.
#
# Config information for VLAN ccenter.
configure vlan "ccenter" tag 300 # VLAN-ID=0x12c Global Tag 6
configure vlan "ccenter" protocol "ANY"
configure vlan "ccenter" qosprofile "QP1"
# No IP address is configured for VLAN ccenter.
configure vlan "ccenter" add port 15 untagged

configure vlan "ccenter" add port 16 untagged

configure vlan "ccenter" add port 13 tagged
configure vlan "ccenter" add port 14 tagged

# Boot information
use image primary

#Configuration Information
use configuration primary
delete account user
configure account admin encrypted
.S/o6u$yl8noAaA.dMZzRqe9h38G/
.S/o6u$yl8noAaA.dMZzRqe9h38G/
create account user "user" encrypted "yN/PEs$Wlmic.BJhdjSg3HJ5AHti."
create account admin "smg_admin" encrypted "mz23Sj$uCH31tTJZqNQ47FRvkhqd."
enable telnet access-profile none port 23
#
# Banner Configuration
#
configure banner


configure banner netlogin


enable web
enable web access-profile none port 80
# SNMP Configuration

configure snmp access-profile readonly None
configure snmp access-profile readwrite None
enable snmp access
disable snmp dot1dTpFdbTable
enable snmp trap
enable snmp traps port-up-down ports 1
enable snmp traps port-up-down ports 2
enable snmp traps port-up-down ports 3
enable snmp traps port-up-down ports 4
enable snmp traps port-up-down ports 5
enable snmp traps port-up-down ports 6
enable snmp traps port-up-down ports 7
enable snmp traps port-up-down ports 8
enable snmp traps port-up-down ports 9
enable snmp traps port-up-down ports 10
enable snmp traps port-up-down ports 11
enable snmp traps port-up-down ports 12
enable snmp traps port-up-down ports 13
enable snmp traps port-up-down ports 14
enable snmp traps port-up-down ports 15
enable snmp traps port-up-down ports 16
enable snmp traps port-up-down ports 17
enable snmp traps port-up-down ports 18
enable snmp traps port-up-down ports 19
enable snmp traps port-up-down ports 20
enable snmp traps port-up-down ports 21
enable snmp traps port-up-down ports 22
enable snmp traps port-up-down ports 23
enable snmp traps port-up-down ports 24
enable snmp traps port-up-down ports 25
enable snmp traps port-up-down ports 26
enable snmp traps port-up-down ports 27
enable snmp traps port-up-down ports 28
enable snmp traps port-up-down ports 29
enable snmp traps port-up-down ports 30
enable snmp traps port-up-down ports 31
enable snmp traps port-up-down ports 32
enable snmp traps port-up-down ports 33
enable snmp traps port-up-down ports 34
enable snmp traps port-up-down ports 35
enable snmp traps port-up-down ports 36
enable snmp traps port-up-down ports 37
enable snmp traps port-up-down ports 38
enable snmp traps port-up-down ports 39
enable snmp traps port-up-down ports 40
enable snmp traps port-up-down ports 41
enable snmp traps port-up-down ports 42
enable snmp traps port-up-down ports 43
enable snmp traps port-up-down ports 44
enable snmp traps port-up-down ports 45
enable snmp traps port-up-down ports 46
enable snmp traps port-up-down ports 47
enable snmp traps port-up-down ports 48
enable snmp traps port-up-down ports 49
enable snmp traps port-up-down ports 50
disable snmp traps mac-security
configure snmp sysName "SWM-2-P7-11"
configure snmp sysLocation "25 de Mayo"
configure snmp sysContact "Redes y Comunicaciones"
disable rmon
disable idletimeouts
config idletimeouts 20
config web login-timeout 30
enable clipaging
enable cli-prompt-number
enable cli-config-logging
configure jumbo-frame size 9216

# Ports AutoNeg Configuration

# Load Sharing Configuration
configure lacp keep-alive 10

# Ports Configuration
disable lbdetect port 1
config port 1 aggregate-bandwidth percent 100
enable smartredundancy 1
disable lbdetect port 2
config port 2 aggregate-bandwidth percent 100
enable smartredundancy 2
disable lbdetect port 3
config port 3 aggregate-bandwidth percent 100
enable smartredundancy 3
disable lbdetect port 4
config port 4 aggregate-bandwidth percent 100
enable smartredundancy 4
disable lbdetect port 5
config port 5 aggregate-bandwidth percent 100
enable smartredundancy 5
disable lbdetect port 6
config port 6 aggregate-bandwidth percent 100
enable smartredundancy 6
disable lbdetect port 7
config port 7 aggregate-bandwidth percent 100
enable smartredundancy 7
disable lbdetect port 8
config port 8 aggregate-bandwidth percent 100
enable smartredundancy 8
disable lbdetect port 9
config port 9 aggregate-bandwidth percent 100
enable smartredundancy 9
disable lbdetect port 10
config port 10 aggregate-bandwidth percent 100
enable smartredundancy 10
disable lbdetect port 11
config port 11 aggregate-bandwidth percent 100
enable smartredundancy 11
disable lbdetect port 12
config port 12 aggregate-bandwidth percent 100
enable smartredundancy 12
disable lbdetect port 13
config port 13 aggregate-bandwidth percent 100
enable smartredundancy 13
disable lbdetect port 14
config port 14 aggregate-bandwidth percent 100
enable smartredundancy 14
disable lbdetect port 15
config port 15 aggregate-bandwidth percent 100
enable smartredundancy 15
disable lbdetect port 16
config port 16 aggregate-bandwidth percent 100
enable smartredundancy 16
disable learning ports 17
disable lbdetect port 17
config port 17 aggregate-bandwidth percent 100
enable smartredundancy 17
disable learning ports 18
disable lbdetect port 18
config port 18 aggregate-bandwidth percent 100
enable smartredundancy 18
disable learning ports 19
disable lbdetect port 19
config port 19 aggregate-bandwidth percent 100
enable smartredundancy 19
disable learning ports 20
disable lbdetect port 20
config port 20 aggregate-bandwidth percent 100
enable smartredundancy 20
disable learning ports 21
disable lbdetect port 21
config port 21 aggregate-bandwidth percent 100
enable smartredundancy 21
disable learning ports 22
disable lbdetect port 22
config port 22 aggregate-bandwidth percent 100
enable smartredundancy 22
disable lbdetect port 23
config port 23 aggregate-bandwidth percent 100
enable smartredundancy 23
disable lbdetect port 24
config port 24 aggregate-bandwidth percent 100
enable smartredundancy 24
disable lbdetect port 25
config port 25 aggregate-bandwidth percent 100
enable smartredundancy 25
disable lbdetect port 26
config port 26 aggregate-bandwidth percent 100
enable smartredundancy 26
disable lbdetect port 27
config port 27 aggregate-bandwidth percent 100
enable smartredundancy 27
disable lbdetect port 28
config port 28 aggregate-bandwidth percent 100
enable smartredundancy 28
disable lbdetect port 29
config port 29 aggregate-bandwidth percent 100
enable smartredundancy 29
disable lbdetect port 30
config port 30 aggregate-bandwidth percent 100
enable smartredundancy 30
disable lbdetect port 31
config port 31 aggregate-bandwidth percent 100
enable smartredundancy 31
disable lbdetect port 32
config port 32 aggregate-bandwidth percent 100
enable smartredundancy 32
disable lbdetect port 33
config port 33 aggregate-bandwidth percent 100
enable smartredundancy 33
disable lbdetect port 34
config port 34 aggregate-bandwidth percent 100
enable smartredundancy 34
disable lbdetect port 35
config port 35 aggregate-bandwidth percent 100
enable smartredundancy 35
disable lbdetect port 36
config port 36 aggregate-bandwidth percent 100
enable smartredundancy 36
disable lbdetect port 37
config port 37 aggregate-bandwidth percent 100
enable smartredundancy 37
disable lbdetect port 38
config port 38 aggregate-bandwidth percent 100
enable smartredundancy 38
disable lbdetect port 39
config port 39 aggregate-bandwidth percent 100
enable smartredundancy 39
disable lbdetect port 40
config port 40 aggregate-bandwidth percent 100
enable smartredundancy 40
disable lbdetect port 41
config port 41 aggregate-bandwidth percent 100
enable smartredundancy 41
disable lbdetect port 42
config port 42 aggregate-bandwidth percent 100
enable smartredundancy 42
disable lbdetect port 43
config port 43 aggregate-bandwidth percent 100
enable smartredundancy 43
disable lbdetect port 44
config port 44 aggregate-bandwidth percent 100
enable smartredundancy 44
disable lbdetect port 45
config port 45 aggregate-bandwidth percent 100
enable smartredundancy 45
disable lbdetect port 46
config port 46 aggregate-bandwidth percent 100
enable smartredundancy 46
disable lbdetect port 47
config port 47 aggregate-bandwidth percent 100
enable smartredundancy 47
disable lbdetect port 48
config port 48 aggregate-bandwidth percent 100
enable smartredundancy 48
disable lbdetect port 49
config port 49 aggregate-bandwidth percent 100
enable smartredundancy 49
disable lbdetect port 50
config port 50 aggregate-bandwidth percent 100
enable smartredundancy 50

# Protocol definitions
configure protocol ipx_snap add snap 8137
configure protocol ipx_8022 add llc e0e0
configure protocol appletalk add snap 809b snap 80f3
configure protocol decnet add etype 6003 etype 6004
configure protocol netbios add llc f0f0 llc f0f1
configure protocol ipx add etype 8137
configure protocol IP add etype 800 etype 806

# Spanning tree information
disable stpd s0

# GVRP configuration

# MAC FDB configuration and static entries
configure fdb agingtime 300

configure ipfdb agingtime 0

# -- Standard Multinetting
disable multinetting standard

# -- IP Interface[0] = "Default"
enable bootp vlan "Default"
enable subvlan-proxy-arp "Default"
configure ip-mtu 1500 vlan "Default"
unconfigure vlan "MacVlanDiscover" ipaddress

# -- IP Interface[1] = "swiss"
enable subvlan-proxy-arp "swiss"
configure ip-mtu 1500 vlan "swiss"
unconfigure vlan "floo" ipaddress
unconfigure vlan "prueba" ipaddress
unconfigure vlan "ccenter" ipaddress

# Global IP settings.
configure irdp 450 600 1800 0
configure irdp broadcast
disable icmp useredirects
enable icmp access-list
disable iproute sharing
configure ipfdb route-add clear-all
disable multinet
disable bootprelay
configure ip-down-vlan-action forward
#
# IP ARP Configuration

configure iparp timeout 20
configure iparp max-entries 8192
configure iparp max-pending-entries 256
enable iparp checking
enable iparp refresh
#
# IP Route Configuration
configure iproute add 192.168.1.0 255.255.255.0 192.168.101.1 1
# Multicast configuration
configure igmp 125 10 1
configure igmp snooping timer 260 260
enable igmp snooping
enable igmp snooping vlan "Default"
enable igmp snooping vlan "MacVlanDiscover"
enable igmp snooping vlan "swiss"
enable igmp snooping vlan "floo"
enable igmp snooping vlan "prueba"
enable igmp snooping vlan "ccenter"
enable igmp snooping with-proxy
configure igmp snooping leave-timeout 1000
configure igmp snooping flood-list "None"
disable pim snooping
disable pim snooping vlan "Default"
disable pim snooping vlan "MacVlanDiscover"
disable pim snooping vlan "swiss"
disable pim snooping vlan "floo"
disable pim snooping vlan "prueba"
disable pim snooping vlan "ccenter"
disable ipmcforwarding vlan "swiss"
enable igmp vlan "swiss"
disable ipmcforwarding vlan "Default"
enable igmp vlan "Default"
# RIP interface configuration
configure rip delete vlan "swiss"
configure rip txmode v2only vlan "swiss"
configure rip rxmode any vlan "swiss"
configure rip vlan "swiss" cost 1
configure rip vlan "swiss" trusted-gateway None
configure rip vlan "swiss" import-filter None
configure rip vlan "swiss" export-filter None
configure rip delete vlan "Default"
configure rip txmode v2only vlan "Default"
configure rip rxmode any vlan "Default"
configure rip vlan "Default" cost 1
configure rip vlan "Default" trusted-gateway None
configure rip vlan "Default" import-filter None
configure rip vlan "Default" export-filter None
# RIP global parameter configuration
disable rip aggregation
enable rip splithorizon
enable rip poisonreverse
enable rip triggerupdate
disable rip export static
disable rip export ospf-intra
disable rip export ospf-inter
disable rip export ospf-extern1
disable rip export ospf-extern2
disable rip export isis-level-1
disable rip export isis-level-2
disable rip export isis-level-1-external
disable rip export isis-level-2-external
disable rip export direct
disable rip export vip
disable rip originate-default
configure rip updatetime 30
configure rip routetimeout 180
configure rip garbagetime 120
# RIP Global enable/disable state
disable rip

#
# DVMRP Router Configuration
#
configure DVMRP timer 60 140
disable DVMRP

#
# PIM Router Configuration
#
disable pim
configure pim crp timer 60
configure pim register-suppress-interval 60 register-probe-interval 5
configure pim register-rate-limit-interval 0
configure pim spt-threshold 0 0
configure pim register-checksum-to include-data

#
# Static MRoute Configuration
#ext-mcast configuration
disable ext-mcast
disable mcast-queue-mgmt

# Ospf Area Configuration
create ospf area 0.0.0.0
configure ospf area 0.0.0.0 interarea-filter "None"
configure ospf area 0.0.0.0 external-filter "None"

# Ospf Range Configuration

# Interface Configuration
configure ospf vlan "swiss" area 0.0.0.0
configure ospf vlan "swiss" priority 1
configure ospf vlan "swiss" timer 5 1 10 40
configure ospf vlan "swiss" authentication none
configure ospf vlan "Default" area 0.0.0.0
configure ospf vlan "Default" priority 1
configure ospf vlan "Default" timer 5 1 10 40
configure ospf vlan "Default" authentication none

# Virtual Link Configuration

# Ospf ASE Summary Configuration

# OSPF Router Configuration
configure ospf lsa-batch-interval 30
configure ospf metric-table 10M 10 100M 5 1G 4 10G 2
configure ospf spf-hold-time 3
enable ospf capability opaque-lsa
configure ospf ase-limit 0 timeout 0

disable ospf export static
disable ospf export direct
disable ospf export rip
disable ospf export bgp
disable ospf export i-bgp
disable ospf export e-bgp
disable ospf export isis
disable ospf export isis-level-1
disable ospf export isis-level-2
disable ospf export isis-level-1-external
disable ospf export isis-level-2-external
disable ospf export vip

# ESRP Interface Configuration
configure vlan "swiss" esrp priority 0
configure vlan "swiss" esrp group 0
configure vlan "swiss" esrp timer 2 esrp-nbr-timeout 6
configure vlan "swiss" esrp esrp-premaster-timeout 0
configure vlan "swiss" esrp elrp-master-poll disable
configure vlan "swiss" esrp elrp-premaster-poll disable
configure vlan "swiss" esrp esrp-election ports-track-priority-mac
configure vlan "floo" esrp priority 0
configure vlan "floo" esrp group 0
configure vlan "floo" esrp timer 2 esrp-nbr-timeout 6
configure vlan "floo" esrp esrp-premaster-timeout 0
configure vlan "floo" esrp elrp-master-poll disable
configure vlan "floo" esrp elrp-premaster-poll disable
configure vlan "floo" esrp esrp-election ports-track-priority-mac
configure vlan "prueba" esrp priority 0
configure vlan "prueba" esrp group 0
configure vlan "prueba" esrp timer 2 esrp-nbr-timeout 6
configure vlan "prueba" esrp esrp-premaster-timeout 0
configure vlan "prueba" esrp elrp-master-poll disable
configure vlan "prueba" esrp elrp-premaster-poll disable
configure vlan "prueba" esrp esrp-election ports-track-priority-mac
configure vlan "ccenter" esrp priority 0
configure vlan "ccenter" esrp group 0
configure vlan "ccenter" esrp timer 2 esrp-nbr-timeout 6
configure vlan "ccenter" esrp esrp-premaster-timeout 0
configure vlan "ccenter" esrp elrp-master-poll disable
configure vlan "ccenter" esrp elrp-premaster-poll disable
configure vlan "ccenter" esrp esrp-election ports-track-priority-mac


#ELRP Configuration

# IPX routing configuration
enable ipxrip
enable ipxsap
configure ipxmaxhops 16

# IPX static routes

# IPX static services
# IS-IS Area Configuration
configure isis Level-2 authentication none
disable isis Level-2 export static
disable isis Level-2 export direct
disable isis Level-2 export rip
disable isis Level-2 export vip
disable isis Level-2 export bgp
disable isis Level-2 export i-bgp
disable isis Level-2 export e-bgp
disable isis Level-2 export ospf
disable isis Level-2 export ospf-intra
disable isis Level-2 export ospf-inter
disable isis Level-2 export ospf-extern1
disable isis Level-2 export ospf-extern2
configure isis Level-2 external-filter None
disable isis Level-2 originate-default
disable isis Level-2 overload at-startup
configure isis Level-2 metric-size regular
# IS-IS Domain Summary Configuration
# IS-IS Interface Configuration
configure isis vlan "swiss" level-1 cost 10
configure isis vlan "swiss" level-1 priority 64
configure isis vlan "swiss" level-1 timer csnp 10
configure isis vlan "swiss" level-1 timer hellotime 10
configure isis vlan "swiss" level-1 hello-multiplier 3
configure isis vlan "swiss" level-1 authentication none
configure isis vlan "swiss" level-1 non-passive
configure isis vlan "swiss" level-2 cost 10
configure isis vlan "swiss" level-2 priority 64
configure isis vlan "swiss" level-2 timer csnp 10
configure isis vlan "swiss" level-2 timer hellotime 10
configure isis vlan "swiss" level-2 hello-multiplier 3
configure isis vlan "swiss" level-2 authentication none
configure isis vlan "swiss" level-2 non-passive
configure isis vlan "Default" level-1 cost 10
configure isis vlan "Default" level-1 priority 64
configure isis vlan "Default" level-1 timer csnp 10
configure isis vlan "Default" level-1 timer hellotime 10
configure isis vlan "Default" level-1 hello-multiplier 3
configure isis vlan "Default" level-1 authentication none
configure isis vlan "Default" level-1 non-passive
configure isis vlan "Default" level-2 cost 10
configure isis vlan "Default" level-2 priority 64
configure isis vlan "Default" level-2 timer csnp 10
configure isis vlan "Default" level-2 timer hellotime 10
configure isis vlan "Default" level-2 hello-multiplier 3
configure isis vlan "Default" level-2 authentication none
configure isis vlan "Default" level-2 non-passive

configure isis system-identifier 0000.0000.0000
configure isis spf-hold-time 3
disable isis ignore-attached-bit
configure isis lsp-holddown-interval 10
configure isis lsp-lifetime 1200
configure isis lsp-refresh-interval 900
disable isis

# SLB Configuration
disable slb
#
# ELSM Configuration

# VRRP Configuration

# Wan configuration data

# EAPS configuration
disable eaps
configure eaps fast-convergence off

# EAPS shared port configuration

# NAT configuration
configure nat timeout 300
configure nat tcp-timeout 120
configure nat udp-timeout 120
configure nat icmp-timeout 3
configure nat finrst-timeout 60
configure nat syn-timeout 60

disable nat
enable mirroring to port 48 untagged
configure mirror add vlan "ccenter" port 13
configure mirror add vlan "ccenter" port 14

# SNTP client configuration
disable sntp-client
configure sntp-client primary server ""
configure sntp-client secondary server ""
configure sntp-client update-interval 64
configure timezone name GMT 0 autodst begins every first Sunday April at 2:00 ends every last Sunday October at 2:00
#
# Radius configuration
#
disable radius
disable radius-accounting

# TACACS configuration
disable tacacs
disable tacacs-authorization
disable tacacs-accounting

# BGP Router Configuration
configure bgp local-preference 100
configure bgp maximum-prefix 0
configure bgp med none
enable bgp deterministic-med
disable bgp always-compare-med
enable bgp synchronization
disable bgp advertise-inactive-route
disable bgp community format AS-number : number
disable bgp aggregation
disable bgp export direct
disable bgp export static
disable bgp export rip
disable bgp export ospf
disable bgp export ospf-intra
disable bgp export ospf-inter
disable bgp export ospf-extern1
disable bgp export ospf-extern2
disable bgp export vip
disable bgp export isis
disable bgp export isis-level-1
disable bgp export isis-level-2
disable bgp export isis-level-1-external
disable bgp export isis-level-2-external

# BGP Peer Group Configuration

# BGP Neighbor Configuration
disable bgp

# Mac Vlan Configurations

#
# System Dump Configuration
#
#
# NetFlow configuration

# NetFlow Filter Specifications Config

# NetFlow Enable/Disable Per Port

# NetFlow Servers Config

# NetFlow Source IP Address

# NetFlow TimeOut Config

# NetFlow Filters Enable/Disable
#
disable flowstats
#

# NetFlow Ping Check Config

## SNMPV3 EngineID Configuration
#
## SNMPV3 USM Users Configuration
#
#
# SNMPV3 MIB Views Configuration
#
#
# SNMPV3 VACM Access Configuration
#
#
# SNMPV3 USM Groups Configuration
#
config snmpv3 add group "v1v2cNotifyGroup" user "v1v2cNotifyUser1" sec-model snmpv2c
#
# SNMPV3 Community Table Configuration
#
config snmpv3 add community encrypted "qanknlkj" name encrypted "qanknlkj" user "v1v2c_rw"
config snmpv3 add community encrypted "qanfko" name encrypted "qanfko" user "v1v2c_rw"
config snmpv3 add community encrypted "qanz#uc" name encrypted "qanz#uc" user "v1v2c_ro"
config snmpv3 add community encrypted "t=#v8iOmpkcxOcdn4" name encrypted "QX'';1465608?8-43>62" user "v1v2cNotifyUser1"
#
# SNMPV3 Target Addr Configuration
#
config snmpv3 add target-addr hex 76:31:76:32:63:4e:6f:74:69:66:79:54:41:64:64:72:31 param hex 76:31:76:32:63:4e:6f:74:69:66:79:50:61:72:61:6d:31 ipaddress 192.168.1.89 transport-port 10550 from 192.168.101.7 tag-list hex 64:65:66:61:75:6c:74:4e:6f:74:69:66:79

config snmpv3 extreme-target-addr-ext hex 76:31:76:32:63:4e:6f:74:69:66:79:54:41:64:64:72:31 mode enhanced ignore-mp-model

#
# SNMPV3 Target Params Configuration
#
config snmpv3 add target-params hex 76:31:76:32:63:4e:6f:74:69:66:79:50:61:72:61:6d:31 user hex 76:31:76:32:63:4e:6f:74:69:66:79:55:73:65:72:31 mp-model snmpv2c sec-model snmpv2c sec-level noauth

#
# SNMPV3 Notify Configuration
#
#
# SNMPV3 Notify Filter Profile Configuration
#
#
# SNMPV3 Notify Filter Configuration
#


# Sflow Configuration
disable sflow
configure sflow sample-rate 400
configure sflow poll-interval 20
disable sflow backoff-threshold
configure sflow backoff-threshold 50
disable sflow port 1
disable sflow port 2
disable sflow port 3
disable sflow port 4
disable sflow port 5
disable sflow port 6
disable sflow port 7
disable sflow port 8
disable sflow port 9
disable sflow port 10
disable sflow port 11
disable sflow port 12
disable sflow port 13
disable sflow port 14
disable sflow port 15
disable sflow port 16
disable sflow port 17
disable sflow port 18
disable sflow port 19
disable sflow port 20
disable sflow port 21
disable sflow port 22
disable sflow port 23
disable sflow port 24
disable sflow port 25
disable sflow port 26
disable sflow port 27
disable sflow port 28
disable sflow port 29
disable sflow port 30
disable sflow port 31
disable sflow port 32
disable sflow port 33
disable sflow port 34
disable sflow port 35
disable sflow port 36
disable sflow port 37
disable sflow port 38
disable sflow port 39
disable sflow port 40
disable sflow port 41
disable sflow port 42
disable sflow port 43
disable sflow port 44
disable sflow port 45
disable sflow port 46
disable sflow port 47
disable sflow port 48
disable sflow port 49
disable sflow port 50


# System-wide Debug Configuration
#No System-wide debug tracing configured

#Vlan Based Debug Configuration
#
#No Vlan-based debug-tracing configured

#Port Based Debug Configuration
#
#No Port based debug-tracing configured

configure red drop-probability 0
# Accounting Configuration
disable accounting
# IP subnet lookup configuration

# Network Login Configuration
configure netlogin base-url "network-access.net"
configure netlogin redirect-page "

http://www.extremenetworks.com"

enable netlogin logout-privilege
configure netlogin mac auth-retry-count 3
configure netlogin mac reauth-period 1800
enable netlogin web-based
enable netlogin dot1x
enable netlogin mac
configure netlogin dot1x timers reauth-period 3600
# Network Login Dot1x Guest Vlan Configuration
configure netlogin dot1x guest-vlan supplicant-response-timeout 30

# Event Management System Configuration

# Event Management System Log Filter Configuration

# Event Management System Log Target Configuration
disable syslog

configure log target nvram filter "DefaultFilter" severity warning
configure log target nvram match ""
configure log target nvram format priority off date mm-dd-yyyy time hundredths host-name off tag-name off tag-id off sequence-number off severity on event-name condition process-name off process-id off source-function off source-line off
enable log target nvram

configure log target memory-buffer number-of-messages 1000
configure log target memory-buffer filter "DefaultFilter" severity debug-data
configure log target memory-buffer match ""
configure log target memory-buffer format priority off date mm-dd-yyyy time hundredths host-name off tag-name off tag-id off sequence-number off severity on event-name condition process-name off process-id off source-function off source-line off
enable log target memory-buffer

configure log target console-display filter "DefaultFilter" severity info
configure log target console-display match ""
configure log target console-display format priority off date mm-dd-yyyy time hundredths host-name off tag-name off tag-id off sequence-number off severity on event-name condition process-name off process-id off source-function off source-line off
disable log target console-display


# cpu denial-of-service protection configuration
disable cpu-dos-protect
config cpu-dos-protect notice-threshold 4000
config cpu-dos-protect alert-threshold 4000
config cpu-dos-protect timeout 15
config cpu-dos-protect filter-type-allowed destination
config cpu-dos-protect trusted-ports none
config cpu-dos-protect filter-precedence 10
config cpu-dos-protect messages on
# Enhanced-dos-protect configuration
disable enhanced-dos-protect ipfdb
disable enhanced-dos-protect rate-limit
# Source IP Guard Configuration
# LLDP
configure lldp transmit-interval 30
configure lldp transmit-hold 4
configure lldp transmit-delay 2
configure lldp reinitialize-delay 2
configure lldp snmp-notification-interval 5
disable lldp ports 1
disable lldp ports 2
disable lldp ports 3
disable lldp ports 4
disable lldp ports 5
disable lldp ports 6
disable lldp ports 7
disable lldp ports 8
disable lldp ports 9
disable lldp ports 10
disable lldp ports 11
disable lldp ports 12
disable lldp ports 13
disable lldp ports 14
disable lldp ports 15
disable lldp ports 16
disable lldp ports 17
disable lldp ports 18
disable lldp ports 19
disable lldp ports 20
disable lldp ports 21
disable lldp ports 22
disable lldp ports 23
disable lldp ports 24
disable lldp ports 25
disable lldp ports 26
disable lldp ports 27
disable lldp ports 28
disable lldp ports 29
disable lldp ports 30
disable lldp ports 31
disable lldp ports 32
disable lldp ports 33
disable lldp ports 34
disable lldp ports 35
disable lldp ports 36
disable lldp ports 37
disable lldp ports 38
disable lldp ports 39
disable lldp ports 40
disable lldp ports 41
disable lldp ports 42
disable lldp ports 43
disable lldp ports 44
disable lldp ports 45
disable lldp ports 46
disable lldp ports 47
disable lldp ports 48
disable lldp ports 49
disable lldp ports 50
# MAC Lockdown with timeout Configuration

#
# End of configuration file for "SWM-2-P7-11".
#

 

[rn4it]

You have port mirroring enabled, this process does have a fair bit of memory utiliztion. If it's not a critical service I'd disable. I only use it for short term trouble shooting, expecially on a S48si. If it is a necessary part of your infrastructure then I'd find a weekly time slot to reboot the S48si.

 

[tcpipv6]

I do need the mirroring and the flooding,, but i don't know why i have to reboot the server, i don't know if the problem is with the config or with the switch.

Thanks

 

[rn4it]

Like I mentioned port mirroring is memory intensive and the S48si is probably not flushing the memory correctly. If the port that is being mirrored has a fairly utilized. There was a known issue with this in extremeware 6.x, I don't know if it was ever corrected. I would never use port mirroring for IDS/IPS applications, I'd use an inline tap.

 

[tcpipv6]

Hello rrn4it,

Please can you explain to me how to change the mirroring for the inline tap.

This switch is used for voip, thats why i have the mirroning, all the info is coming from 6 Medpros.

Thanks in Advance.

 

[rn4it]

The inline tap would be used for IDS/IPS' so for example that patch cable that runs from your firewall into your core switch, would be patched into a IPS, then patched from the IPS into the firewall. The IPS is now just tapping the patch cable and able to read all the traffic running across that cable.

"enable mirroring to port 48 untagged
configure mirror add vlan "ccenter" port 13
configure mirror add vlan "ccenter" port 14"

So what's in port 48? This port can only listen, it doesn't transmit traffic. Port mirroring is typically used for using a sniffer or similiar.

We have a PBX with IP Telephony services and we're not using port mirroriing.

Just trying to understand your setup.

cheers

 

[tcpipv6]

Im using port mirroring from 3 ports to 1 port because the info from the 6 medrpos will go to a Nice Logger system.

Regards

 

[rn4it]

Don't quite get it, but ok.
Are you trying to log the medpro's internal logs or medpro/switch port stat's. could you elaborate?

 

[tcpipv6]

All the info from 6 medrpos are going to the port mirroring, those ports are tagged, and one port is untagged, that port goes to the Nice Logger System.

I'm using a flooding config between tow ports.

Regards