Listing Currently-Blocked Hosts; Unblocking Currently-Blocked Hosts - HP 3500yl Series Access Security Manual
Switch software
Hide thumbs
Also See for 3500yl Series:
- Release notes (219 pages) ,
- Specifications (16 pages) ,
- Features (6 pages)
Table of Contents
Advertisement
Virus Throttling (Connection-Rate Filtering)
Configuring Connection-Rate Filtering
HP Switch(config)#show connection-rate-filter blocked-
hosts
Figure 3-7. Example of Listing Hosts Blocked by Connection-Rate Filtering
3-16
Listing Currently-Blocked Hosts
Syntax: show connection-rate-filter < all-hosts | blocked-hosts | throttled-hosts >
all-hosts: Lists, by VLAN membership, all hosts currently
detected in a throttling or blocking state, along with a state
indicator.
throttled-hosts: Lists, by VLAN membership, the hosts cur-
rently in a throttling state due to connection-rate action.
blocked-hosts: Lists, by VLAN membership, the hosts currently
blocked by connection-rate action.
HP Switch(config)# show connection-rate-filter all-hosts
VLAN ID
| Source IP Address | Filter Mode
-------------+-------------------+------------
10
| 13.28.234.175
10
| 13.28.234.179
15
| 13.28.234.180
Figure 3-6. Example of Listing Hosts in Any Connection-Rate State
VLAN ID
| Source IP Address
-------------+------------------
Unblocking Currently-Blocked Hosts
If a host becomes blocked by triggering connection-rate filtering on a port
configured to block high connection rates, the host remains blocked on all
ports on the switch even if you change the per-port filtering configuration.
(The source IP address block imposed by connection-rate filtering does not
age-out.) This is to help prevent a malicious host from automatically regaining
access to the network.
| THROTTLE
| THROTTLE
| BLOCK
Hide quick links:
Advertisement
Chapters
Table of Contents
