Command Reference IP Address/Service Commands
ip icmp error-interval milliseconds [bucket-size]
no ip icmp error-interval milliseconds [ bucket-siz ]
The refresh period of the token bucket, in the range from 0 to
2147483647 in the unit of milliseconds. 0 indicates no limit on
the rate to send ICMP error packets.
The default is 100.
The number of tokens in the bucket, in the range is from 1 to
200. The default is 10.
The default rate is 10 packets per 100 millisecond.
Global configuration mode.
To prevent DoS attack, the token bucket algorithm is adopted to limit the rate to send ICMP error
packets.
If IP packets need to be fragmented while the DF is set to 1, the device sends ICMP destination
unreachable packets numbered 4 to the source IP address for path MTU discovery. Rate limits on
ICMP destination unreachable packets and other error packets are needed to prevent path MTU
discovery failure.
It is recommended to set the refresh period to an integral multiple of 10 milliseconds. If the refresh
period is not an integral multiple of 10 milliseconds, it is adjusted automatically. For example, 1
per 5 milliseconds is adjusted to 2 per 10 milliseconds; 3 per 15 milliseconds is adjusted to 2 per
10 milliseconds.
The following example sets the rate to send the ICMP destination unreachable packets triggered
by DF in the IP header to 100 per second.
Ruijie(config)# ip icmp error-interval DF 1000 100
The following example sets the rate to send other ICMP error packets to 10 per second.
Ruijie(config)# ip icmp error-interval 1000 10
Use this command to configure the RGOS software to respond the ICMP mask request and
To Next Page
Loading...
