Detections
Analytics
OS10-L2S-000160 - The Dell OS10 Switch must have Storm Control configured on all host-facing switch ports.
Information
A traffic storm occurs when packets flood a LAN, creating excessive traffic and degrading network performance. Traffic storm control prevents network disruption by suppressing ingress traffic when the number of packets reaches a configured threshold level. Traffic storm control monitors ingress traffic levels on a port and drops traffic when the number of packets reaches the configured threshold level during any one-second interval.NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.
Solution
Configure the Dell OS10 Switch to enable storm control is on all host-facing switch ports as shown in the example below:OS10(config)# interface ethernet 1/1/1
OS10(conf-if-eth1/1/1)# storm-control broadcast 1000
OS10(conf-if-eth1/1/1)# storm-control multicast rate 100 Mbps
OS10(conf-if-eth1/1/1)# storm-control unknown-unicast rate 600 Kbps
See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Dell_OS10_Switch_Y24M12_STIG.zip
Item Details
Audit Name: DISA Dell OS10 Switch Layer 2 Switch STIG v1r1
Category: CONFIGURATION MANAGEMENT
References: 800-53|CM-6b., CAT|III, CCI|CCI-000366, Rule-ID|SV-269962r1052327_rule, STIG-ID|OS10-L2S-000160, Vuln-ID|V-269962
Plugin: Dell_OS10
Control ID: e4159bd28128b481513e87d8cd1c06f0002b548abfa526c168a3ea8cbca74bbc