beautypg.com

Setting a throughput threshold, Setting the maximum number of object policy rules, Setting the maximum number of concurrent sessions – H3C Technologies H3C SecPath F5020 User Manual

Page 77

background image

68

Hardware Resource

limits compatibility

F5020/F5040 No

M9006/M9010/M9014 Yes

VFW1000 No

Setting a throughput threshold

This feature limits the throughput for a context to prevent it from occupying too many shared resources on

a security engine. A context has the same throughput threshold on all security engines.
To configure a throughput threshold for a context:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enter context view.

context context-name

N/A

3.

Set a throughput
threshold.

capability throughput

{

kbps

|

pps

}

value

By default, no throughput threshold is set.

Setting the maximum number of object policy rules

This feature limits the number of object policy rules for each object policy configured for a context. A

large number of rules occupy too much memory. This degrades context performance and affects other

contexts in the same security engine. When the maximum number is reached, you cannot add new rules.

For information about object policies, see Security Configuration Guide.
To set the maximum number of object policy rules for a context:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enter context view.

context context-name

N/A

3.

Set the maximum
number of object policy

rules.

capability object-policy-rule maximum
max-value

By default, the number of object
policy rules is not limited.

Setting the maximum number of concurrent sessions

This feature limits the number of concurrent sessions for a context. A large number of sessions occupy too

much memory. This degrades context performance and affects other contexts in the same security engine.

When the maximum number is reached, sessions cannot be established any more.
To set the maximum number of concurrent sessions for a context:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enter context view.

context context-name

N/A

3.

Set the maximum
number of concurrent

sessions.

capability session maximum max-number

By default, the number of
concurrent sessions is not limited.

This manual is related to the following products:
See also other documents in the category H3C Technologies Safety: