3Com Switch 8800 Advanced Software V5 Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 9400sl 4-Port 10-GbE Module

981

982

983

984

985

986

987

988

989

990

Configuring User Resource Limit 995

■ The IP address of the NAT log server must be a valid unicast address.

■ As for the UDP port number of the log server, you are recommended to use a

port number greater than 1024 to avoid conflicts with the system-defined port

numbers.

Configuring User

Resource Limit

Introduction to User

Resource Limit

User resource limit is a function that defines the maximum number of ordinary

users (non-VPN users in an internal network) or VPN users as well as their

connections in accessing external network(s). This can help distributing resources

more reasonably.

This function only applies to NAPT with its application layer gateway function not

enabled.

Configuring User

Resource Limit

Follow these steps to configure user resource limit:

■ On a newly started system without any configuration, the system resources are

completely occupied by ordinary users.

■ Before a user resource limit is configured for public network users, resources

are allocated from those for public network users to a VPN user until the public

network user resources are used up.

■ After the administrator configures a limit on the resources for public network

users, resources can be allocated only from the remaining resources to a VPN

user until the remaining system resources are used up.

■ The user resource configuration is performed on a single L3+NAT module, but

takes effect to all L3+NAT modules if there are multiple L3+NAT modules.

Specify the IP address and

UDP port number of the NAT

log server

userlog nat export [ slot

slot-number ] host ip-address

udp-port

Required

Specify the source IP address

of the UDP packet that carries

NAT logs

userlog nat export

source-ip ip-address

Optional

By default, the source IP

address is the interface IP

address through which the

packet is sent.

Specify the version number of

NAT logs

userlog nat export version

version-number

Optional

Version 1 is used by default

To do... Use the command... Remarks

Enter system view system-view -

Set limits for ordinary users or

VPN users.

nat limit { public |

vpn-instance

vpn-instance-name }

user-amount user-limit

connection-amount

connection-limit

Optional

By default, the ordinary users

occupy all the system

resources.