beautypg.com

Packet storm protection (ar750s only), Virtual lans – Allied Telesis AR700 SERIES Software Release 2.7.1 User Manual

Page 69

background image

69

Software Release 2.7.1
C613-02047-00 REV A

Packet Storm Protection (AR750S only)

Using the packet storm protection feature, you can set limits on the reception
rate of broadcast, multicast and destination lookup failure packets. Packet
storm protection limits are set on a per port basis, beyond which each of the
different packet types are discarded.

By default, packet storm protection is set to NONE, that is, disabled. Packet
storm protection can be enabled, and each of the limits set, using the command:

set switch port=port-list polarity={mdi|mdix}

[bclimit={none|limit}] [dlflimit={none|limit}]

[mclimit={none|limit}] [other-options...]

Three sets of options are allowed for packet storm protection:

broadcast limit only (BCLIMIT)

broadcast limit and multicast limit (BCLIMIT and MCLIMIT)

broadcast limit, multicast limit, and destination lookup failure limit
(BCLIMIT, MCLIMIT, and DLFLIMIT)

The limit specified for each option, i.e the number of kilobytes per second
(Kbps), must be the same for all modes of storm protection selected. The limit
is set to the most recent limit specified. For example:

set swi port=1 polarity=mdi bclimit=256 mclimit=256

dlflimit=256

To display the packet storm protection settings, use the command:

show switch port[={port-list|all}]

For more information about limiting switch traffic, see the SET SWITCH PORT
command in the Switching chapter in the Software Reference.

Virtual LANs

A Virtual LAN (VLAN) is a software-defined broadcast domain. The router’s
VLAN feature allows you to segment a network by software management to
improve network performance. You can group workstations, servers, and other
network equipment connected to the router according to similar data and
security requirements. This is done by allocating the switch ports on the router
to VLANs, each of which is a separate broadcast domain.

By default, the router has one VLAN, the default VLAN, with a VLAN
Identifier (VID) of 1. All switch ports belong to the default VLAN, and all ports
send untagged packets. You cannot delete the default VLAN from the router.

If all you want the router to do is switch traffic on your LAN using the default
VLAN configuration, you need not perform any configuration. Simply power
up the router and connect devices to the switch ports. Switch learning is
enabled by default, and all valid packets are forwarded.

To create a new VLAN on the router, specify a vlanname and VID that are
unique in the router. Enter the command:

create vlan=vlanname vid=2..4094

See also other documents in the category Allied Telesis Computer hardware: