R0106-HP MSR Router Series Security Configuration Guide(V7)
383
Configuring connection limits
In this chapter, "MSR2000" refers to MSR2003. "MSR3000" collectively refers to MSR3012, MSR3024,
MSR3044, MSR3064. "MSR4000" collectively refers to MSR4060 and MSR4080.
Overview
The connection limit feature enables the device to monitor and limit the number of established
connections.
As shown in Figure 113 , the f
ollowing problems might exist:
• If Host B initiates a large number of connections in a short period of time, it might exhaust system
resources and cause Host A unable to access the Internet.
• If the internal server receives a large number of connection requests in a short period of time, the
server cannot process other requests.
To resolve these problems, configure connection limits on the device.
Figure 113 Network diagram
Connection limit configuration task list
Tasks at a
g
lance
(Required.) Creating a connection limit policy
(Required.) Configuring the connection limit policy
(Required.) Applying the connection limit policy
Creating a connection limit policy
A connection limit policy contains a set of connection limit rules, each of which defines a range of
connections and the criteria for limiting the connections.
To create a connection limit policy: