EasyManuals Logo

Cisco ME 3400 User Manual

Cisco ME 3400
1138 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #621 background imageLoading...
Page #621 background image
32-3
Cisco ME 3400 Ethernet Access Switch Software Configuration Guide
OL-9639-07
Chapter 32 Configuring Control-Plane Security
Understanding Control-Plane Security
The switch automatically allocates 27 control-plane security policers for CPU protection. At system
bootup, it assigns a policer to each port numbered 0 to 26. The policer assigned to a port determines if
the protocol packets arriving on the port are rate-limited or dropped. A policer of 26 means a drop policer
and is a global policer; any traffic type shown as 26 on any port is dropped. A policer of a value of 0 to
Ta b l e 32-1 Control-Plane Security Actions on Layer 2 Protocol Packets Received on a UNI or ENI
Protocol Default When Feature Is Enabled
When Layer 2
Protocol Tunneling
Is Enabled
1
1. Layer 2 protocol traffic is rate-limited when Layer 2 protocol tunneling is enabled for any protocol on any port.
STP Dropped Rate limited
Note STP can be enabled only on ENIs.
Rate-limited
RSVD_STP (reserved IEEE
802.1D addresses)
Dropped When the Ethernet Link Management Interface
(ELMI) is enabled, globally or on a per-port basis
whichever is configured last, a throttle policer is
assigned to a port. When ELMI is disabled (globally or
on a port, whichever is configured last), a drop policer
is assigned to a port.
PVST+ Dropped – Rate limited
LACP Dropped Rate limited
Note LACP can be enabled only on ENIs.
Rate limited
PAgP Dropped Rate limited
Note PAgP can be enabled only on ENIs.
Rate limited
IEEE 802.1x Dropped Rate limited –
CDP Dropped Rate limited
Note CDP can be enabled only on ENIs.
Rate limited
LLDP Dropped Rate limited
Note LLDP can be enabled only on ENIs.
Rate limited
DTP Dropped – –
UDLD Dropped Rate limited Rate limited
VTP Dropped – Rate limited
CISCO_L2 (any other Cisco
Layer 2 protocols with the MAC
address 01:00:0c:cc:cc:cc)
Dropped – Rate limited if
CD P, DT P, U DL D ,
PAGP, or VTP are
Layer 2 tunneled
KEEPALIVE (MAC address,
SNAP encapsulation, LLC, Org
ID, or HDLC packets)
Rate-limited – –
Ethernet Connectivity Fault
Management (CFM)
No policer
assigned
When CFM is enabled globally, a throttle policer is
assigned to all ports. When CFM is disabled globally,
a NULL policer is assigned to all ports.
–

Table of Contents

Other manuals for Cisco ME 3400

Preview: Command Reference Guide
Command Reference Guide872 pages
Preview: Command Reference
Command Reference950 pages
Preview: Getting Started Guide
Getting Started Guide32 pages
Preview: Hardware Installation Guide
Hardware Installation Guide88 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco ME 3400 and is the answer not in the manual?

Cisco ME 3400 Specifications

General IconGeneral
CategorySwitch
Rack MountableYes
Jumbo Frame SupportYes
Authentication MethodRADIUS, TACACS+
RAM128 MB
Flash Memory32 MB
Power DeviceInternal power supply
ModelME 3400
LayerLayer 2
MAC Address Table Size8000 entries
Remote Management ProtocolSNMP, Telnet, SSH, HTTP, HTTPS
FeaturesVLAN support, IGMP snooping, Quality of Service (QoS)
Compliant StandardsIEEE 802.3, IEEE 802.3u, IEEE 802.1D, IEEE 802.1Q, IEEE 802.3ab, IEEE 802.3x
Memory128 MB
Power SupplyAC 120/230 V (50/60 Hz)
Dimensions (H x W x D)4.4 cm x 44.5 cm x 24.2 cm
Routing ProtocolStatic routing

Related product manuals