Ruijie Networks RG-S2600E Series Cli Reference Manual page 835

S2600E CLI Reference Guide
Default
Settings
Command
mode
Usage
guidelines
Examples
Related
commands
Chapter 15 NFPP Configuration Commands
rate-limit-pps
attack-threshold-pps
N/A.
NFPP define configuration mode.
To create a user-defined anti-attack type, the classification
rule for the rate statistics must be specified, that is,
recognize the host based on the source IP address/
source MAC address for the user-defined packets rate
statistics based on the user / port and specify the rate-limit
threshold and attack threshold for each classification. The
rate-limit threshold shall be equal to or greater than the
attack threshold. If the rate is greater than the rate-limit
threshold, the packets that meet this classification rule will
be discarded. If the rate exceeds the attack threshold, the
user will be regarded as an attacker. The log will be
printed and the trap will be sent. For the classification
based on the user, the user will be isolated according to
the isolate period.
Ruijie(config)# nfpp
Ruijie(config-nfpp)# nfpp define tcp
Ruijie(config-nfpp-define)# global-policy per-src-ip 10
20
Ruijie(config-nfpp-define)# global-policy per-port 100
200
Command
nfpp define name
policy
show nfpp define
summary
packets.
Set the rate-limit threshold.
Set the attack threshold.
Description
Set the rate-limit threshold and
attack threshold.
Show the user-defined anti-attack
configurations