R0106-HP MSR Router Series Security Command Reference(V7)
498
Field Descri
p
tion
Service
Protocol name and service port number. An unwell-known protocol is displayed as
"unknown(xx)," where "xx" indicates the protocol number. For the ICMP protocol,
"xx" indicates the hexadecimal number of the type and code field, which is
represented in decimal notation.
Sessions threshold
Hi/Lo
Upper connection limit/lower connection limit.
Sessions count Number of current connections.
New session flag
Whether or not new connections can be created:
• Permit—New connections can be created.
• Deny—New connections cannot be created.
Related commands
• connection-limit apply global policy
• connection-limit apply policy
• connection-limit policy
• limit
limit
Use limit to configure a connection limit rule.
Use undo limit to remove the specified connection limit rule.
Syntax
limit limit-id acl [ ipv6 ] { acl-number | name acl-name } [ per-destination | per-service | per-source ] *
amount max-amount min-amount
undo limit limit-id
Default
No connection limit rule exists in the connection limit policy.
Views
IPv4 connection limit policy view, IPv6 connection limit policy view
Predefined user roles
network-admin
Parameters
limit-id: Specifies a connection limit rule by its ID, in the range of 1 to 256.
acl: Specifies the ACL that matches the user range. Only the user connections that match the ACL are
limited.
ipv6: References an IPv6 ACL. If this keyword is not specified, an IPv4 ACL is referenced. This keyword
exists only in IPv6 connection limit policy view.
acl-number: Specifies an ACL by its number in the range of 2000 to 3999.
name acl-name: Specifies an ACL by its name.
per-destination: Limits connections by destination IP address.