Http trl policy commands, Client-name monitor-interval, Client-name max-conn – Brocade Communications Systems ServerIron ADX 12.4.00a User Manual

ServerIron ADX Security Guide

27

53-1002440-03

HTTP TRL policy commands

1

Syntax: tftp

NOTE

You can save this command with write memory to automatically initiate a download for this policy
after you reload. If you configure more than one policy for TFTP download, and a policy fails the
download, the ServerIron does NOT retry, and the subsequent policy does not initiate a download.
You must manually issue the command to do a TFTP download.

NOTE

When the total number of HTTP TRL entries exceeds 10k, the show run time config command cannot
display an http trl-related configuration. You must use a text file to manage it.

NOTE

When any HTTP TRL policy client entry exceeds 1K, the show run time config command cannot
display a detailed client entry for the HTTP TRL policy.

HTTP TRL policy commands

NOTE

You must configure client HTTP TRL before you configure the client exceed-limit

Client-name monitor-interval

Use the client-name monitor-interval option in the http-trl-policy configuration mode
to set client rate limiting parameters.

Syntax: [no] client-name monitor-interval

—specifies monitoring window in 100 ms unit.

—specifies HTTP connection rate (per second) that causes a warning if exceeded.

—specifies HTTP connection rate (per second) that causes a client to hold down.

—specifies the length of hold down period, if client exceeds rate limit in term of
minutes.

NOTE

Value 0 means do not hold down. Hold down holds all traffic.

Example

ServerIronADX(config-http-trl-p1)# client-name c1 monitor-interval 1 10 20 0

Client-name max-conn

Use the client-name max-conn option in the http-trl-policy configuration mode to set
client maximum connection parameters.

Syntax: [no] client-name max-conn