Manualshelf

R3721-F3210-F3171-HP High-End Firewalls Access Control Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
41424344454647484950
43
Table 17 Command output
Field Descri
p
tion
Connection-limit policy Number of the connection limit policy
refcount 1, 2 limits Number of times that the policy is applied and number of rules in the policy.
limit Rule in the policy. For more information, see the limit command.
limit
Syntax
limit limit-id { source ip { ip-address mask-length | any } [ source-vpn src-vpn-name ] | destination ip
{ ip-address mask-length | any } [ destination-vpn dst-vpn-name ] } * protocol { dns | http | ip | tcp |
udp } max-connections max-num [ per-destination | per-source | per-source-destination ]
undo limit limit-id
View
Connection limit policy view
Default level
2: System level
Parameters
limit-id: ID of a rule in the connection limit policy. The value ranges from 0 to 255.
source ip: Specifies the source IP address of the connections to be limited.
ip-address mask-length: IP address and its mask length. The mask-length argument is in the range of 1 to
32.
any: Specifies all IP addresses on the specified network. For example, source ip any specifies all hosts on
the source network.
source-vpn src-vpn-name: Specifies a source VPN to which the connections belong, where src-vpn-name
is a case-sensitive string of 1 to 31 characters. If the connections are in the public network, do not specify
this option.
destination ip: Specifies the destination IP address of the connections to be limited.
destination-vpn dst-vpn-name: Specifies a destination VPN to which the connections belong, where
dst-vpn-name is a case-sensitive string of 1 to 31 characters. If the connections are in the public network,
do not specify this option.
protocol: Specifies the protocol of the connections.
dns: Specifies the DNS protocol.
http: Specifies the HTTP protocol.
ip: Specifies the IP protocol.
tcp: Specifies the TCP protocol.
udp: Specifies the UDP protocol.
max-connections max-num: Maximum number of the connections. The value ranges from 1 to 1000000.
per-destination: Limits connections by destination IP address.