Manualshelf

R0106-HP MSR Router Series Security Configuration Guide(V7)

ManualsBrandsHP ManualsNetwork HardwareHP MSR4060 Router Chassis
391392393394395396397398399400
385
the inbound interface, the global policy, and the policy on the outbound interface. Once any upper limit
of the connection is reached, the device cannot accept any new connections.
To apply a connection limit policy to an interface:
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Enter interface view.
interface interface-type
interface-number
N/A
3. Apply a connection limit policy
to an interface.
connection-limit apply
{ ipv6-policy | policy } policy-id
By default, no connection limit is
applied to an interface.
Only one IPv4 connection limit
policy and one IPv6 connection
limit policy can be applied to an
interface. A new IPv4 or IPv6
connection limit policy overwrites
the old one.
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Apply a connection limit policy
globally.
connection-limit apply global
{ ipv6-policy | policy } policy-id
By default, no connection limit is
applied globally.
Only one IPv4 and one IPv6
connection limit policy can be
applied globally. A new IPv4 or
IPv6 connection limit policy
overwrites the old one.
Displaying and maintaining connection limits
Execute display commands in any view and reset commands in user view.
Task Command
Display the connection limit policy
information.
display connection-limit { ipv6-policy | policy } { all | policy-id }
Display the connection limit statistics
globally or on an interface
(MSR2000/MSR3000).
display connection-limit statistics { global | interface interface-type
interface-number }
Display the connection limit statistics
globally or on an interface (MSR4000).
display connection-limit statistics { global | interface interface-type
interface-number } [ slot slot-number ]
Display statistics about IPv6 connections
that match connection limit rules globally
or on an interface
(MSR2000/MSR3000).
display connection-limit { ipv6-stat-nodes | stat-nodes } { global |
interface interface-type interface-number } [ destination
destination-ip | service-port port-number | source source-ip ] *
[ count ]
Display statistics about IPv6 connections
matching connection limit rules globally
or on an interface (MSR4000).
display connection-limit { ipv6-stat-nodes | stat-nodes } { global |
interface interface-type interface-number } [ slot slot-number ]
[ destination destination-ip | service-port port-number | source
source-ip ] * [ count ]