Hide Navigation Pane
Show Navigation Pane
Feedback
Download
SHA1
ip-connection--rate-limit
Syntax
ip-connection-rate-limit value;
Hierarchy Level
[edit security idp idp-polciy policy-name rulebase-ddos rule rule-name then ip-action]
Release Information
Statement introduced in Release 10.2 of Junos OS.
Description
When a match is made in a rulebase-ddos rule you can set the then action to ip-connection-rate-limit, which will rate limit future connections based on a connections per second limit that you set. This can be used to reduce the number of attacks from a client.
Options
value —Defines the connection rate limit per second on the matched host.
- Range: 1 to the maximum connections per second capability of the device.
Usage Guidelines
For configuration instructions and examples, see the Junos OS Security Configuration Guide.
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
