Technical Documentation

policer (Configuring)


policer policer-name {logical-bandwidth-policer;if-exceeding {bandwidth-limit rate;bandwidth-percent number;burst-size-limit bytes;}then {policer-action;}}

Hierarchy Level

[edit firewall]

Release Information

Statement introduced before JUNOS Release 7.4.

The out-of-profile policer action added in JUNOS Release 8.1.

The logical-bandwidth-policer statement added in JUNOS Release 8.2.


Configure policer rate limits and actions. To activate a policer, you must include the policer action modifier in the then statement in a firewall filter term or on an interface.


policer-action—One or more actions to take:

  • discard—Discard traffic that exceeds the rate limits.
  • forwarding-class class-name—Specify the particular forwarding class.
  • loss-priority—Set the packet loss priority (PLP) to low or high.
  • out-of-profile—On J Series routers with strict priority queuing, prevent starvation of other queues by rate limiting the data stream entering the strict priority queue, marking the packets that exceed the rate limit as out-of-profile, and dropping the out-of-profile packets if the physical interface is congested.

policer-name—Name that identifies the policer. The name can contain letters, numbers, and hyphens (-), and can be up to 255 characters long. To include spaces in the name, enclose it in quotation marks (“ ”).

then—Actions to take on matching packets.

The remaining statements are explained separately.

Usage Guidelines

See Configuring Multifield Classifiers, Using Multifield Classifiers to Set PLP, and Default Schedulers; for a general discussion of this statement, see the JUNOS Policy Framework Configuration Guide.

Required Privilege Level

firewall—To view this statement in the configuration.

firewall-control—To add this statement to the configuration.

Published: 2010-04-15