Firewall Policy Storm Control

About this task

The firewall maintains a facility to control packet storms. Storms are packet bombardments that exceed the high threshold value configured for an interface. During a storm, packets are throttled until the rate falls below the configured rate, severely impacting performance for the RF Domain manager interface. Thresholds are configured in terms of packets per second.

To define a storm control configuration for a Firewall policy:

Procedure

  1. Select the Storm Control tab from the Firewall Policy configuration page.
    Click to expand in new window
    Wireless Firewall - Add/Edit - Storm Control Screen
  2. Refer to the Storm Control Settings field to set the following:
    Traffic Type Use the drop-down menu to define the traffic type for which the Storm Control configuration applies. Options include ARP, Broadcast, Multicast and Unicast.
    Interface Type Use the drop-down menu to define the interface for which the Storm Control configuration is applied. Only the specified interface uses the defined filtering criteria. Options include Ethernet, WLAN and Port Channel.
    Interface Name Use the drop-down menu to refine the interface selection to a specific WLAN or physical port. This helps with threshold configuration for potentially impacted interfaces.
    Packets per Second Select the check box to activate the spinner control used for specifying the packets per second threshold for activating the Storm Control mechanism.
  3. Select + Add Row as needed to add additional Storm Control configurations for other traffic types or interfaces.
    Select the Delete icon as required to remove selected rows.
  4. Refer to the Storm Control Logging field to define how storm events are logged.
    Traffic Type Use the drop-down menu to define the traffic type for which the Storm Control logging configuration applies. Options include ARP, Broadcast, Multicast and Unicast.
    Logging Select the check box to activate the spinner control used for specifying the standard log level used if a Storm Control attack is detected. The default log level is Warning.
  5. Select + Add Row as needed to add additional Storm Control log entries for other interfaces.
    Select the Delete icon as required to remove selected rows.
  6. Select OK to update the Storm Control settings.
    Select Reset to revert to the last saved configuration.
9036512-01 Rev AB