Thursday, December 15, 2011

Nexus 7000 Storm Control using EEM 


N7010# sh run int e1/1

!Command: show running-config interface Ethernet1/1
!Time: Thu Dec 15 06:52:24 2011

version 6.0(1)

interface Ethernet1/1
  switchport
  switchport mode trunk
  switchport trunk allowed vlan 101
  storm-control broadcast level 40.00
  storm-control multicast level 40.00

N7010#
N7010# sh run eem

!Command: show running-config eem
!Time: Thu Dec 15 06:27:19 2011

version 6.0(1)
event manager applet SC-applet
  event storm-control
  action 1 cli enable
  action 2 cli configure terminal
  action 3 cli interface $interface
  action 4 cli shutdown
  action 5 syslog msg EEM Storm Control shutdown action is performed upon interface $interface


N7010#
N7010# sh run | in logging
logging logfile messages 6
logging server 192.168.10.10 6
N7010#
N7010# sh logging

Logging console:                enabled (Severity: critical)
Logging monitor:                enabled (Severity: notifications)
Logging linecard:               enabled (Severity: notifications)
Logging timestamp:              Seconds
Logging loopback :              disabled
Logging server:                 enabled
{192.168.10.10}
        server severity:        information
        server facility:        local7
        server VRF:             default
Logging logflash:               enabled (Severity: information)
Logging logfile:                enabled
        Name - messages: Severity - information Size - 4194304

Facility        Default Severity        Current Session Severity

--- output omitted ---
N7010# terminal monitor
N7010# clear log log
2011 Dec 15 06:44:25 N7010 %SYSLOG-1-SYSTEM_MSG : Logging logfile (messages) cleared by user
N7010#
N7010# 2011 Dec 15 06:44:43 N7010 %VPC-2-PEER_KEEP_ALIVE_RECV_FAIL: In domain 1, VPC peer keep-alive receive has failed
2011 Dec 15 06:44:46 N7010 %ETHPORT-5-STORM_CONTROL_ABOVE_THRESHOLD: Traffic in port Ethernet1/1 exceeds the configured threshold 40%
2011 Dec 15 06:44:46 N7010 %ETHPORT-5-IF_DOWN_CFG_CHANGE: Interface Ethernet1/1 is down(Config change)
2011 Dec 15 06:44:46 N7010 %ETHPORT-5-STORM_CONTROL_BELOW_THRESHOLD: Traffic in port Ethernet1/1 has fallen below the configured threshold 40%
2011 Dec 15 06:44:46 N7010 %ETHPORT-5-IF_DOWN_ADMIN_DOWN: Interface Ethernet1/1 is down (Administratively down)
2011 Dec 15 06:44:46 N7010 %VSHD-5-VSHD_SYSLOG_CONFIG_I: Configured from vty by __eemuser on invalid_ip@pts/1
2011 Dec 15 06:44:51 N7010 %ETHPORT-5-STORM_CONTROL_ABOVE_THRESHOLD: Traffic in port Ethernet1/1 exceeds the configured threshold 40%
2011 Dec 15 06:44:51 N7010 %VSHD-5-VSHD_SYSLOG_CONFIG_I: Configured from vty by __eemuser on invalid_ip@pts/1
2011 Dec 15 06:44:56 N7010 %ETHPORT-5-STORM_CONTROL_BELOW_THRESHOLD: Traffic in port Ethernet1/1 has fallen below the configured threshold 40%

N7010#
N7010# sh log log
2011 Dec 15 06:44:25 N7010 %SYSLOG-1-SYSTEM_MSG : Logging logfile (messages) cleared by user
2011 Dec 15 06:44:43 N7010 %VPC-2-PEER_KEEP_ALIVE_RECV_FAIL: In domain 1, VPC peer keep-alive receive has failed
2011 Dec 15 06:44:46 N7010 %ETHPORT-5-STORM_CONTROL_ABOVE_THRESHOLD: Traffic in port Ethernet1/1 exceeds the configured threshold 40%
2011 Dec 15 06:44:46 N7010 %ETHPORT-5-IF_DOWN_CFG_CHANGE: Interface Ethernet1/1 is down(Config change)
2011 Dec 15 06:44:46 N7010 %ETHPORT-5-STORM_CONTROL_BELOW_THRESHOLD: Traffic in port Ethernet1/1 has fallen below the configured threshold 40%
2011 Dec 15 06:44:46 N7010 %ETHPORT-5-IF_DOWN_ADMIN_DOWN: Interface Ethernet1/1 is down (Administratively down)
2011 Dec 15 06:44:46 N7010 %EEM_ACTION-6-INFORM: EEM Storm Control shutdown action is performed upon interface Ethernet1/1
2011 Dec 15 06:44:46 N7010 %VSHD-5-VSHD_SYSLOG_CONFIG_I: Configured from vty by __eemuser on invalid_ip@pts/1
2011 Dec 15 06:44:51 N7010 %ETHPORT-5-STORM_CONTROL_ABOVE_THRESHOLD: Traffic in port Ethernet1/1 exceeds the configured threshold 40%
2011 Dec 15 06:44:51 N7010 %EEM_ACTION-6-INFORM: EEM Storm Control shutdown action is performed upon interface Ethernet1/1
2011 Dec 15 06:44:51 N7010 %VSHD-5-VSHD_SYSLOG_CONFIG_I: Configured from vty by __eemuser on invalid_ip@pts/1
2011 Dec 15 06:44:56 N7010 %ETHPORT-5-STORM_CONTROL_BELOW_THRESHOLD: Traffic in port Ethernet1/1 has fallen below the configured threshold 40%
N7010#
N7010# sh event manager event-types storm_control
Name : storm_control
Description : Traffic on a port exceeds configured thresholds
Event Parameters : interface, cause
Publisher : Ethernet Port Manager
Default Action : None
N7010#
Posted by Yap Chin Hoong at 4:11 AM
Labels: ,

2 comments:

  1. AnonymousDecember 15, 2011 at 10:43 AM

    Does it really work?
    Jen Shen

    ReplyDelete
  2. Yap Chin HoongDecember 15, 2011 at 11:19 PM

    yeah, tested working and the logging messages proven the shutdown action as well. :-)

    ReplyDelete

Subscribe to: Post Comments (Atom)