3com MSR 20-20 참조 매뉴얼
2028
C
HAPTER
133: NAT C
ONFIGURATION
C
OMMANDS
per-destination: Limits connections based upon the destination address.
per-service: Limits connections based upon the service type.
per-source: Limits connections based upon the source address.
amount: Limits the number of connections.
max-amount: Maximum connection number, in the range 1 to 4294967295
min-amount: Minimum connection number, a value smaller than the upper limit,
in the range 0 to 4294967295.
in the range 0 to 4294967295.
Description
Use the limit acl command to configure a rule in a connection-limit policy.
Use the undo limit command to remove the configuration
Example
# Configure connection-limit policy 1. Set the maximum and minimum number of
connections to a destination IP address 1.1.1.1 as 200 and 100 respectively.
Configure ACL 2001, defining that only connections initiated from
192.168.0.0/24 are limited. This means that the number of user connections
which initiated from 192.168.0.0/24 and connecting to public server 1.1.1.1
cannot exceed 200.
connections to a destination IP address 1.1.1.1 as 200 and 100 respectively.
Configure ACL 2001, defining that only connections initiated from
192.168.0.0/24 are limited. This means that the number of user connections
which initiated from 192.168.0.0/24 and connecting to public server 1.1.1.1
cannot exceed 200.
<Sysname> system-view
[Sysname] acl number 2001
[Sysname-acl-basic-2001] rule permit source 192.168.0.0 0.0.0.255
[Sysname-acl-basic-2001] quit
[Sysname] connection-limit policy 1
[Sysname-connection-limit-policy-1] limit 1 acl 2001 per-destination
amount 200 100
limit mode
Syntax
limit mode amount
undo limit mode
View
Connection-limit policy view
Parameter
None
Description
Use the limit mode amount command to specify a connection-limit mode.
Use the undo limit mode command to remove the configuration and restore
the default.
the default.
By default, the connection number is limited.
Example
# Specify a connection-limit mode for connection-limit policy 1.