Nat Blacklist Limit Amount - H3C S9500 Series Command Manual

Command Manual – NAT
H3C S9500 Series Routing Switches

1.1.16 nat blacklist limit amount

Syntax
nat blacklist limit amount [ [ vpn-instance vpn-name ] source user-ip ] max-amount
undo nat blacklist limit amount [ [ vpn-instance vpn-name ] source user-ip ]
View
System view
Parameters
vpn-instance vpn-name: Name of a VPN instance. When this argument is specified,
the IP address configured in the blacklist is the IP address in VPN.
user-ip: IP address of the specified user.
max-amount: Upper threshold value for the total number of NAT connections that a
user can set up, in the range of 20 to 20,000. The max-amount argument is 500 by
default.
Description
Use the nat blacklist limit amount command to set the threshold value for the user
connections.
Use the undo nat blacklist limit amount command to restore the threshold value for
the user connections to the default value.
If the source keyword is not specified, this configuration is effective for the global
users.
If the source keyword is not specified, this configuration is effective for the users
of the specified source IP address.
Caution:
During the system running, if the reset nat session command is not executed after you
have configured the number of global user connections, the number of connections
exceeding the upper limit cannot be deleted directly until the stream is aged.
Examples
# Set the threshold value for the number of global connections.
<H3C> system-view
[H3C] nat blacklist limit amount 2222
Chapter 1 NAT Configuration Commands
1-14