beautypg.com

Disabling icmp messages – Brocade Multi-Service IronWare Switching Configuration Guide (Supporting R05.6.00) User Manual

Page 811

background image

Multi-Service IronWare Switching Configuration Guide

781

53-1003036-02

Configuring the maximum ICMP error message rate

19

Since the ICMP error metering code implementation is similar between the Management Module
and Interface Module code, this change will also affect the Management Module ICMP error rate.

To configure the maximum ICMP error rate, enter the following command.

Brocade(config)# ip icmp max-err-msg-rate 600

Syntax: [no] ip icmp max-err-msg-rate error per second

The error per second variable specifies the maximum error rate in errors per second. The maximum
configured value has a range from 0 (minimum) to 5000 (maximum) error message per second.
The default value is 400.

Disabling ICMP messages

The Brocade device is enabled to reply to ICMP echo messages and send ICMP Destination
Unreachable messages by default.

You can selectively disable the following types of Internet Control Message Protocol (ICMP)
messages:

Echo messages (ping messages) – The Brocade device replies to IP pings from other IP
devices.

Destination Unreachable messages – If the Brocade device receives an IP packet that it
cannot deliver to its destination, the Brocade device discards the packet and sends a message
back to the device that sent the packet. The message informs the device that the destination
cannot be reached by the Brocade device.

Disabling replies to broadcast ping requests
By default, the Brocade device is enabled to respond to broadcast ICMP echo packets, which are
ping requests.

To disable response to broadcast ICMP echo packets (ping requests), enter the following command.

Brocade(config)# no ip icmp echo broadcast-request

Syntax: [no] ip icmp echo broadcast-request

If you need to re-enable response to ping requests, enter the following command.

Brocade(config)# ip icmp echo broadcast-request

Disabling ICMP destination unreachable messages
By default, when the Brocade device receives an IP packet that the device cannot deliver, the
device sends an ICMP Unreachable message back to the host that sent the packet. You can
selectively disable a Brocade device’s response to the following types of ICMP Unreachable
messages:

Administration – The packet was dropped by the device due to a filter or ACL configured on the
device.

Fragmentation-needed – The packet has the Do not Fragment bit set in the IP Flag field, but
the Brocade device cannot forward the packet without fragmenting it.

Host – The destination network or subnet of the packet is directly connected to the Brocade
device, but the host specified in the destination IP address of the packet is not on the network.

Network – The Brocade device cannot reach the network specified in the destination IP
address of the packet.

See also other documents in the category Brocade Computer Accessories: