Configuring vlan cpu protection, Command changes to support gen-2 modules – Brocade Multi-Service IronWare Switching Configuration Guide (Supporting R05.6.00) User Manual
Page 223
Multi-Service IronWare Switching Configuration Guide
193
53-1003036-02
Command changes to support Gen-2 modules
7
Configuring VLAN CPU protection
VLAN CPU protection is recommended for the VLANs which are intended for pure Layer 2 use. This
feature will protect the CPU from the flooding of unknown-unicast or multicast or broadcast Layer 2
packets on that VLAN.
When using routing protocols (like OSPF etc.) on a specific VLAN, you need to disable VLAN CPU
protection for it to work. This feature is intended for Layer 2 applications and not for Layer 3 routing
applications.
CPU protection can be configured on VLANs regardless of whether there are virtual-interface
configured on them (Previously, CPU protection was only configurable if a virtual-interface was not
configured on the VLAN).
There is a difference in the behavior of CPU protection in each of the following situations:
•
When virtual-interfaces are configured on a VLAN, the CPU-protection is done only on
unknown-unicast packets from the VLAN. Multicast and broadcast packets from the VLAN will
be sent to the CPU. This allows the CPU to process packets such as ARP and OSPF "hello"
packets that may be relevant to the device.
•
When virtual-interface is not configured on the VLAN, the CPU-protection is performed for all
packets (unknown-unicast, multicast and broadcast) from the CPU.
NOTE
This feature is enabled by default on the Brocade NetIron CES devices and cannot be disabled.
VLAN CPU protection is enabled per VLAN. To enable VLAN CPU protection on a VLAN, enter the
following command.
Brocade(config)# vlan 24
Brocade(config-vlan-24)# vlan-cpu-protection
Syntax: [no] vlan-cpu-protection
Command changes to support Gen-2 modules
The following commands changed to support Gen-2 modules.
Deprecated commands:
•
The vlan-counter exclude-overhead command has been deprecated. The new command is the
statistics - exclude-ethernet-overhead command.
•
The byte-accounting command under a VLAN has been deprecated. It is replaced by the
vlan-accounting on | off command. In addition, a new global vlan-policy - vlan-accounting
command has been introduced to enable/disable accounting for all VLANs.
•
The clear vlan byte-accounting all-vlans command has been deprecated. The new command is
the clear vlan all-vlan statistics command.
•
The clear vlan byte-accounting command has been has been deprecated. The new command
is the clear vlan statistics command.
Existing display command:
•
Options are available in the show vlan command to display VLAN counters for the 8x10G
module.