Security
7450 ESS System Mangement Guide Page 215
Description This command configures CPU protection policies.
The no form of the command deletes the specified policy from the configuration.
Policies 254 and 255 are reserved as the default access and network interface policies, and cannot de
deleted. The parameters within these policies can be modified. An event will be logged (warning)
when the default policies are modified.
Default Policy 254 (default access interface policy):
per-source-rate: max (no limit)
overall-rate : 6000
out-profile–rate: 6000
alarm
Policy 255 (default network interface policy):
per-source-rate: max (no limit)
overall-rate : max (no limit)
out-profile-rate: 3000
alarm
Parameters cpu-protection-policy-id — Assigns a policy ID to the specific CPU protection policy.
Values 1 — 255
create — Keyword used to create CPU protection policy. The create keyword requirement can be
enabled/disabled in the environment>create context.
alarm
Syntax [no] alarm
Context config>sys>security>cpu-protection>policy
Description This command enables the generation of an event when a rate is exceed. The event includes
information about the offending source. Only one event is generated per monitor period.
The no form of the command disables the notifications.
Default no alarm
eth-cfm
Syntax eth-cfm
no eth-cfm
Context config>sys>security>cpu-protection>policy
To Next Page
Loading...
