The Dell OS10 Switch must have Storm Control configured on all host-facing switch ports.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-269962 | OS10-L2S-000160 | SV-269962r1052327_rule | Low |
| Description |
| A traffic storm occurs when packets flood a LAN, creating excessive traffic and degrading network performance. Traffic storm control prevents network disruption by suppressing ingress traffic when the number of packets reaches a configured threshold level. Traffic storm control monitors ingress traffic levels on a port and drops traffic when the number of packets reaches the configured threshold level during any one-second interval. |
| STIG | Date |
| Dell OS10 Switch Layer 2 Switch Security Technical Implementation Guide | 2024-12-11 |
Details
| Check Text (C-73995r1052270_chk) |
| Review the Dell OS10 Switch configuration to verify that storm control is enabled on all host-facing switch ports. For each host-facing switch port: interface ethernet1/1/1 switchport access vlan 100 storm-control broadcast 1000 storm-control multicast rate 100 Mbps storm-control unknown-unicast rate 600 Kbps Note that the rates may be entered in bits per second or packets per second units. If the switch has not enabled storm control on all host-facing switch ports, this is a finding. |
| Fix Text (F-73896r1052271_fix) |
| Configure the Dell OS10 Switch to enable storm control is on all host-facing switch ports as shown in the example below: OS10(config)# interface ethernet 1/1/1 OS10(conf-if-eth1/1/1)# storm-control broadcast 1000 OS10(conf-if-eth1/1/1)# storm-control multicast rate 100 Mbps OS10(conf-if-eth1/1/1)# storm-control unknown-unicast rate 600 Kbps |