Firewall policy storm control – Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Brocade Mobility RFS Controller System Reference Guide

571

53-1003099-01

10

Firewall Policy Storm Control

Adding and Editing Wireless Firewall Policies

The firewall maintains a facility to control packet storms. Storms are packet bombardments that
exceed the high threshold value configured for an interface. During a storm, packets are throttled
until the rate falls below the configured rate, severely impacting performance for the RF Domain
manager interface. Thresholds are configured in terms of packets per second.

To define a storm control configuration for a Firewall policy:

1. Select the Storm Control tab from the Firewall Policy configuration page.

FIGURE 3

Wireless Firewall Add/Edit Storm Control screen

2. Refer to the Storm Control Settings field to set the following:

3. Select + Add Row as needed to add additional Storm Control configurations for other traffic

types or interfaces. Select the Delete icon as required to remove selected rows.

Traffic Type

Use the drop-down menu to define the traffic type for which the Storm Control configuration applies.
Options include ARP, Broadcast, Multicast and Unicast.

Interface Type

Use the drop-down menu to define the interface for which the Storm Control configuration is applied. Only
the specified interface uses the defined filtering criteria. Options include Ethernet, WLAN and Port
Channel.

Interface Name

Use the drop-down menu to refine the interface selection to a specific WLAN or physical port. This helps
with threshold configuration for potentially impacted interfaces.

Packets per Second

Select the check box to activate the spinner control used for specifying the packets per second threshold
for activating the Storm Control mechanism.