HP ProCurve 7102dl Reference Manual page 433
Secure router sros command line interface
Hide thumbs
Also See for ProCurve 7102dl:
- Configuration manual (1114 pages) ,
- Product end-of-life disassembly instructions (2 pages) ,
- Advanced management and configuration manual (1005 pages)
Table of Contents
Advertisement
SROS Command Line Interface Reference Guide
ip policy-class [<policyname>] [max-sessions <number> |
max-host-sessions <number>]
Use the ip policy-class max-sessions and ip policy-class max-host-sessions commands to create or alter
settings for an access control policy. For more details on IP policy class functionality in the SROS, refer to
ip policy-class <policyname> on page 426. Use the no form of this command to delete an access policy
and all the entries contained in it. Variations of this command include the following:
ip policy-class max-sessions <number>
ip policy-class <policyname> max-host-sessions <number>
ip policy-class <policyname> max-sessions <number>
Syntax Description
<policyname>
max-sessions <number>
max-host-sessions <number> Specifies the maximum number of allowed policy sessions which can be
Default Values
By default, all SROS security features are disabled and there are no configured access lists.
Usage Examples
The following example allows no more than 100 policy sessions to be sourced from a single host IP
address on the Private policy class:
ProCurve(config)#ip policy-class Private max-host-sessions 100
The following example sets a total global limit of 55,700 policy sessions allowed on all policy classes:
ProCurve(config)#ip policy-class max-sessions 55700
The following example allows no more than 100 policy sessions on the Private policy class:
ProCurve(config)#ip policy-class Private max-sessions 100
The following example removes the policy sessions limit on the Private policy class:
ProCurve(config)#no ip policy-class Private max-sessions 100
5991-2114
Identifies the configured access policy using an alphanumeric descriptor
(maximum of 255 characters). All access policy descriptors are
case-sensitive.
Specifies the maximum number of allowed policy sessions. Identifying a
policy name sets the session limit only for the named policy. Using this
command without specifying a policy name sets the limit for the total
number of allowed sessions for all policies on the device.
This number must be within the appropriate range limits. The limits are
1 to 30,000. Setting this value to zero turns the feature off.
created from each unique source address. This command is used in
conjunction with a named policy and only applies the limit to that
particular policy.
The number must be within the appropriate range limits. The limits are
1 to 30,000. Setting this value to 0 turns the feature off.
© Copyright 2007 Hewlett-Packard Development Company, L.P.
Global Configuration Mode Command Set
431
Advertisement
Chapters
Table of Contents
