Filter
Top Products
DES-7200 Configuration Guide Chapter 12 NFPP Configuration
12-78
configuration mode:
Command Function
DES-7200#configure terminal
Enter global configuration mode.
DES-7200(config)#nfpp
Enter NFPP configuration mode.
DES-7200(config-nfpp)#define name
Enter NFPP defined guard configuration
mode.
DES-7200(config-nfpp-define)#
define-policy {per-src-ip | per-src-mac}
rate-limit-pps attack-threshold-pps
Configure host-based rate-limiting
threshold and attack threshold.
per-src-ip means to take data rate
statistics of the host detected as per
source IP/VID/port, while per-src-mac
means to take data rate statistics of the
host detected as per source
MAC/VID/port.
Rate-limit-pps means the rate-limiting
threshold (1-9999). By default, no rate
limiting will be implemented. Packets
exceeding the rate-limiting threshold will
be discarded.
Attack-threshold-pps means the attack
threshold (1-9999). When the packets of
defined type exceed the attack
threshold, an attack is considered
existing and will be logged. The traps
will be sent and the user will be isolated
as per the isolation period configured.
By default, no rate limiting will be
implemented.
The attack threshold must be greater
than or equal to the rate-limiting
threshold.
DES-7200(config-nfpp)#end
Return to privileged mode.
DES-7200#configure terminal
Enter global configuration mode.
DES-7200(config)#interface
interface-name
Enter interface configuration mode.