Dear Folks and Gurus, One of our client LAN are impacted by broadcast / multicast storm causing very severe intermittent and frequent time out.
Tools used are Cisco Traffic Director, CiscoWorks and Sniffer to collect traffic information. There are several top conversations generated high broadcast/multicast - W2K server with DHCP service generates destination packet broadcast / 255.255.255.255 with protocol Bootps (Bootstrap Protocol server 67/UDP ) - Symantec Ghost disk cloning application generate big packets with destination packet multicast / 224.77.x.x ( interim solution we create vlan / another segment for this application ) - EIGRP hello packet / multicast 224.0.0.10 for backbone routers communication. The LAN has 2 edge big routers and each this router generates accumulative big packet of 224.0.0.10 Please can anyone give advise how to put these kind of broadcast & multicast conversations safe from LAN, since I am afraid that if there is an additional broadcast/multicast load triggered by alien/unknown application... it is gonna be horrible for connection reliability... We are considering to configure broadcast / multicast suppression on each port of core catalyst 6000 and uplink port of cat 3524 PWR-Inline. However I get confused when trying to define the right threshold for those settings. ARP still uses broadcast address for destination, right... Please show us the light how to define this broadcast suppression properly and still allow the "good" broadcast ....? Any tools/way to define the broadcast/multicast threshload ? Thanks and looking forward to your help, guys...... Cheers Hin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=66823&t=66823 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
