This is a linux kernel module to prevent BUM storm in layer 2 network.
By using this module, you can limit a specific traffic at the interface you specified.
The reason I implemented is there wasn't Storm control function in Linux.
When a packet come in the interface you specified,
this module use netdev_rx_handler to check a packet type and mesure a traffic amount following the setting.
Then, by one minute, this module check whethere tha traffic amount are more than the threshold or not.
If the blocking started, the traffic amount is checked based on the low threshold.
We tested this module on
$ sudo apt install flex bison # for iproute2
$ git clone https://github.com/shiibaryu/storm_control.git
$ cd storm_control
$ make # compile a object file for ubuntu version as is.In addition to the kernel module and tools, a modified iproute2 will
be compiled.
If some compilation in this iproute2 files may be failed, you don't neet to mind.(it will not affect)
$ cd storm_control
$ sudo make install
$ cd k_mod
$ insmod test.koThe modified iproute2 contained in this repository can configure the setting using ip command.
$ ./iproute2-4.10.0/ip/ip storm help
"Usage: ip storm add dev NAME"
" type { broadcast | multicast | unknown_unicast }"
" { pps | bps | level } threshold low_threshold"
" ip storm del dev NAME"
" ip storm show\n"
"
);
$ sudo /sbin/ip storm add dev ens0 type broadcast pps 1000 100We should mesure the performance of it's module and put those results together in a report.