Release Notes
383 | ids rate-thresholds-profile Dell Networking W-Series ArubaOS 6.4.x| Reference Guide
ids rate-thresholds-profile
ids rate-thresholds-profile <name>
channel-inc-time <seconds>
channel-quiet-time <seconds>
channel-threshold
clone <profile>
no ...
node-quiet-time <seconds>
node-threshold <number>
node-time-interval <seconds>
Description
This command configures thresholds that are assigned to the different frame types for rate anomaly checking.
Syntax
Parameter Description Range Default
<profile>
Name that identifies an instance of the profile. The name
must be 1-63 characters.
— “default”
channel-inc-time
Time, in seconds, in which the threshold must be
exceeded in order to trigger an alarm.
0 -
360000
seconds
15
seconds
channel-quiet-time
After a channel rate anomaly alarm has been triggered,
the time that must elapse before another identical alarm
may be triggered. This option prevents excessive
messages in the log file.
60-
360000
900
seconds
channel-threshold
Number of a specific type of frame that must be
exceeded within a specific interval in an entire channel
to trigger an alarm.
any 300
clone
Name of an existing IDS rate thresholds profile from
which parameter values are copied.
— —
no
Negates any configured parameter. — —
node-quiet-time
After a node rate anomaly alarm has been triggered, the
time, in seconds, that must elapse before another
identical alarm may be triggered. This option prevents
excessive messages in the log file.
60-
360000
900
seconds
node-threshold
Number of a specific type of frame that must be
exceeded within a specific interval for a particular client
MAC address to trigger an alarm.
0 -
100000
frames
200
node-time-interval
Time, in seconds, in which the threshold must be
exceeded in order to trigger an alarm.
1-120 15
seconds
Usage Guidelines
A profile of this type is attached to each of the following 802.11 frame types in the IDS denial of service profile:
l Association frames
l Disassociation frames