Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

PP8600 - packet rate limiter 1

Status
Not open for further replies.
Brat2

Brat2

IS-IT--Management
May 6, 2004
51
Hi all,

I want to surpress excesive packet attacks on my Nortel Pasport 8600 switch. Does anyone know if it is possible to rate limit not only broadcast/multicast packets?

thanks in advance,
brat
 
Sort by date Sort by votes
By 'not only bcast/mcast packets' do you mean that you want to limit unicast packets as well?

CP-limit is the way to limit bcast/mcast packets, this CLI command will get you started:
config ethernet 1/1 cp-limit ?

The 8600 can also be configured to limit ARP requests, directed broadcasts, multicast learning, and other things that could be used to DoS the CPU. I'm not sure if you could rate-limit packets to the 8600s IP addresses but I'd bet you could create traffic filters to drop packets from all but a few (known secure) management addresses.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

atascoman
  • Locked
  • Question
SPB packet routing question
Replies
1
Views
62
andy88
andy88
atascoman
  • Locked
  • Question
usmStatsDecryptionErrors: The packet can't be decrypted error when testing SNMP-v3 with JDM
Replies
0
Views
47
atascoman
atascoman
eseboli
  • Locked
  • Question
IP Software-level Packet Data
Replies
0
Views
32
eseboli
eseboli
dane775
  • Locked
  • Question
PP8600 - lost pings and high CPU Util
Replies
12
Views
43
andy88
andy88
snarf2948
  • Locked
  • Question
PP8600
Replies
1
Views
67
DaddyOfThree
DaddyOfThree

Part and Inventory Search

Sponsor

Back
Top