Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation  Back up to About Overview 
ContentIndex
  
[+] Expand All
[-] Collapse All

No index entries found.

rate-limit (Security Log)

Syntax

rate-limit rate-limit;

Hierarchy Level

[edit security log stream stream-name]

Release Information

Statement introduced in Junos OS Release 12.3X48-D30.

Description

The Integrated Authentication and Enforcement feature sends threat and attack logs generated by the SRX Series device security modules to the ClearPass Policy Manager (CPPM) to use in its security policy assessment.

The logs are sent in stream mode. To avoid overburdening the SRX Series device and the log server, you can control the rate at which these logs are sent. By setting a rate-limit value, you can constrain the number of logs that are sent in 1 second. After the limit is reached, no more logs are sent.

Range: 1 through 65,535.

Note: For high-end multicore systems that use SPUs, the number of log messages sent per SPU is a divided rate:

rate = configured-rate/number-of-SPUs

Rate limiting on high-end platforms is generally not as accurate as it is on low-end platforms, because the generation of logs is not entirely balanced between SPUs.

Required Privilege Level

  • security—To view this statement in the configuration.
  • security-control—To add this statement to the configuration.

Modified: 2016-05-01