Configure a transaction rate limit default – Brocade Virtual ADX Security Guide (Supporting ADX v03.1.00) User Manual
Page 22
10
Brocade Virtual ADX Security Guide
53-1003250-01
Transaction rate limit
1
Configure a transaction rate limit default
You can specify a default transaction rate limit configuration for all other clients that are not
explicitly configured. To create a transaction rate limit default for a group, follow these steps.
1. Enable privileged EXEC mode.
Virtual ADX> enable
2. Enter global configuration mode.
Virtual ADX# configure terminal
3. Specify name of transaction rate limit rule set and enter client transaction rate limit
configuration mode.
Virtual ADX(config)# client-trans-rate-limit tcp TRL1
Syntax: [no] client-trans-rate-limit tcp | udp | icmp name
4. Specify the default trl parameter for this group.
Virtual ADX(config-client-trl)# trl default monitor-interval 3 conn-rate 10
hold-down-time 1
Syntax: [no] trl default monitor-interval mon-value conn-rate con-value hold-down-time
hold-down-value
Configure transaction rate limit for pass through traffic
You can configure transaction rate limit for traffic that is not going to a virtual server. You can
configure only one group for pass through traffic.
To create a transaction rate limit group for pass through traffic, follow these steps.
1. Enable privileged EXEC mode.
Virtual ADX> enable
2. Enter global configuration mode.
Virtual ADX# configure terminal
3. Specify name of BW rule set and enter client bandwidth configuration mode.
Virtual ADX(config)# client-trans-rate-limit tcp default
Syntax: [no] client-trans-rate-limit tcp | udp | icmp default
4. Specify the trl parameter for the client subnet and set a connection rate.
For IPv4:
Virtual ADX(config-client-trl)# trl 10.1.1.0 255.255.255.0 monitor-interval 3
conn-rate 10 hold-down-time 1
For IPv6:
Virtual ADX(config-client-trl)# trl 300:11/128 monitor-interval 3 conn-rate 10
hold-down-time 1
Syntax: [no] trl { client-IPv4 client-mask | client-IPv6 prefix } monitor-interval mon-value
conn-rate con-value hold-down-time hold-down-value