The Juniper EX switch must be configured to enable Storm Control on all host-facing access interfaces.

An XCCDF Rule

Description

<VulnDiscussion>A traffic storm occurs when packets flood a LAN, creating excessive traffic and degrading network performance. Traffic storm control prevents network disruption by suppressing ingress traffic when the number of packets reaches configured threshold levels. Traffic storm control monitors ingress traffic levels on a port and drops traffic when the number of packets reaches the configured threshold level during any one-second interval.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-253962r843919_rule
Severity: Low
References: CCI-000366
Updated: 16 days ago

Configure storm control on each host-facing access interface.

set forwarding-options storm-control-profiles profile-percent all bandwidth-percentage (1..100)
set forwarding-options storm-control-profiles profile-level all bandwidth-level (100..100000000 kbps)

set interfaces <interface name> unit 0 family ethernet-switching storm-control <profile name>set interfaces <interface name> unit 0 family ethernet-switching recovery-timeout (10..3600 seconds)

The Juniper EX switch must be configured to enable Storm Control on all host-facing access interfaces.

Description

Remediation - Manual Procedure