Cisco Switch設定防止廣播風暴發生

當區網裡的某台電腦中了ARP病毒後，會一直送出ARP廣播封包，造成Broadcast Storm
解決方法：
Step 1:
先利用軟體找出中了ARP病毒電腦的MAC地址(可用wireshark分析)

Step 2:
show mac-address-table address 0030.8812.bf7b(中毒電腦的MAC)找到其所在的port
Switch#show mac-address-table address 0030.8812.bf7b
Mac Address Table
-------------------------------
Vlan Mac Address Type Ports
---- ----------- -------- -----
112 0030.8812.bf7b DYNAMIC Gi1/1/1
Total Mac Addresses for this criterion: 1

Step 3:
在Interface設定模式下使用storm-control broadcast level pps 300 150 指令來設定阻攔規則
當該port發送廣播封包達到300個/s的廣播封包時開始blocking，低於150個/s廣播封包時停止blocking

Switch#show run int Gi1/1/1
Building configuration...

Current configuration : 366 bytes
!
interface GigabitEthernet1/1/1
no switchport
bandwidth 6000
ip address 192.72.143.21 255.255.255.252
no ip redirects
no ip proxy-arp
load-interval 30
speed 100
duplex full
storm-control broadcast level pps 300 150
storm-control multicast level pps 300 150
storm-control action shutdown
storm-control action trap
end