System Firmware Version : 6.07.B048
1. Проблема с port_security
Свич перестает изучать мак на порту, отключаем port_security на порту, флапаем портом мак есть.
Код:
config port_security 1-24 admin_state enable max_learning_addr 3 lock_address_mode DeleteOnTimeout
2. Проблема с igmp_snooping multicast_vlan
2.1 Появляется левый Querier в ISM в следствии пропадает поток
Код:
show igmp_snooping vlanid 4084
IGMP Snooping Global State : Enable
Max Learned Entry Value : 128
Forward Router Only : Disable
VLAN Name : v4084-ISM
Query Interval : 125
Max Response Time : 10
Robustness Value : 2
Last Member Query Interval : 1
Querier State : Disable
Querier Role : Non-Querier
Querier IP : 172.16.0.1
Querier Expiry Time : 0
State : Enable
Fast Leave : Enable
Report Suppression : Enable
Version : 2
Data Driven Learning Aged Out : Enable
Data Driven Learning State : Enable
2.2 Большое количество подписок на порту абона (Leave от клиента прилетают)
Код:
show igmp_snooping group ports 1
Source/Group : NULL/224.0.1.60
VLAN Name/VID : v4084-ISM/4084
Reports : 2
Member Ports : 1, 27-28
Router Ports : 1, 25-28
Up time : 165
Expire Time : 377
Filter Mode : EXCLUDE
Source/Group : NULL/239.0.0.250
VLAN Name/VID : v4084-ISM/4084
Reports : 9
Member Ports : 1, 27-28
Router Ports : 1, 25-28
Up time : 124
Expire Time : 295
Filter Mode : EXCLUDE
........
Total Entries : 14
хотя при show igmp_snooping host ports 1 пусто
в следствии чего имеем 100% загрузку ЦПУ, потери bpdu, перестройку колец и ЛУП на сети...
Код:
config max_mcast_group ports 1-24 ipv4 max_group 3
config max_mcast_group ports 1-24 ipv6 max_group 1
проблему не решает, всё равно много подписок
2.3 router_ports, появляется Dynamic router port когда клиент числиться Untagged Member Ports в ISM
Код:
show router_ports
VLAN Name : v4084-ISM
Static router port : 25-26
Dynamic router port : 4
Forbidden router port :
config router_ports_forbidden vlan_name v4084-ISM add 4
проблему не решает
Сам конфиг
Код:
show config current_config include igmp_sn
enable igmp_snooping multicast_vlan
create igmp_snooping multicast_vlan "v4084-ISM" 4084
config igmp_snooping multicast_vlan "v4084-ISM" add member_port 1-24
config igmp_snooping multicast_vlan "v4084-ISM" add source_port 25-28
config igmp_snooping multicast_vlan "v4084-ISM" state enable
config igmp_snooping multicast_vlan "v4084-ISM" replace_source_ip none
config igmp_snooping multicast_vlan "v4084-ISM" remap_priority 5 replace_priority
enable igmp_snooping
config igmp_snooping all router_timeout 125
config igmp_snooping all host_timeout 420
config igmp_snooping data_driven_learning max_learned_entry 128
disable igmp_snooping forward_mcrouter_only
config igmp_snooping vlanid 1,11,13,66,500-503,512,807,1495 state disable fast_leave disable report_suppression enable
config igmp_snooping vlanid 4084 state enable fast_leave enable report_suppression enable
config igmp_snooping data_driven_learning vlanid 1,11,13,66,500-503,512,807,1495 state disable
config igmp_snooping data_driven_learning vlanid 1,11,13,66,500-503,512,807,1495 aged_out disable
config igmp_snooping data_driven_learning vlanid 4084 state enable
config igmp_snooping data_driven_learning vlanid 4084 aged_out enable
config igmp_snooping querier vlanid 1,11,13,66,500-503,512,807,1495,4084 state disable querier_version 2 last_member_query_interval 1 max_response_time 10 query_interval 125 robustness_variable 2
show config current_config include max_mc
config max_mcast_group ports 1-24 ipv4 max_group 3
config max_mcast_group ports 25-28 ipv4 max_group 256
config max_mcast_group ports 1-24 ipv6 max_group 1
config max_mcast_group ports 25-28 ipv6 max_group 256
show config current_config include router_ports
config router_ports vlan_name "v4084-ISM" add 25-28
config mld_snooping mrouter_ports vlan_name "v4084-ISM" add 25-28
Вход
Регистрация
FAQ
Поиск
