Rate Limits Pane
Note You must be administrator to add rate limits.
Use the Rate Limits pane to configure and manage rate limiting. A rate limit restricts the amount of a specified type of traffic that is allowed on a network device interface to a percentage of maximum bandwidth capacity. Traffic that exceeds this percentage is dropped by the network device. A rate limit can restrict traffic to a specified target host, or to all traffic that crosses the configured interface/directions. You can use rate limits permanently or for a specified amount of time. A rate limit is identified by a protocol, an optional destination address, and an optional data value.
Because the rate limit is specified as a percent, it may translate to different actual limits on interfaces with different bandwidth capacities. A rate limit percent value must be an integer between 1 and 100 inclusive.
Adding, Deleting, and Managing Rate Limiting
To add, delete, and manage rate limiting, follow these steps:
Step 1 Log in to the IME using an account with administrator or operator privileges.
Step 2 Choose
Configuration >
sensor_name
> Sensor Management > Time-Based Actions > Rate Limits
, and then click
Add
to add a rate limit.
Step 3 From the Protocol drop-down list, choose the protocol (ICMP, TCP, or UDP) of the traffic you want rate limited.
Step 4 In the Rate field, enter the rate limit (1 to 100) percent.
Step 5 (Optional) In the Source IP field, enter the source IP address.
Step 6 (Optional) In the Source Port field, enter the source port.
Step 7 (Optional) In the Destination IP field, enter the destination IP address.
Step 8 (Optional) In the Destination Port field, enter the destination port.
Step 9 (Optional) To configure the rate limit to use additional data, check the
Use Additional Data
check box.
Step 10 From the Select Data drop-down list, choose the additional data (echo-reply, echo-request, or halfOpenSyn).
Step 11 Configure the timeout:
-
If you do not want to configure the rate limit for a specified amount of time, click the
No Timeout
radio button.
-
If you want to configure a timeout in minutes, click the
Enable Timeout
radio button, and in the Timeout field, enter the amount of time in minutes (1 to 70560).
Tip To discard your changes and close the Add Rate Limit dialog box, click Cancel.
Step 12 Click
Apply
. The new rate limit appears in the list in the Rate Limits pane.
Step 13 Click
Refresh
to refresh the contents of the Rate Limits list.
Step 14 To delete a rate limit, select a rate limit from the list, and click
Delete
. The Delete Rate Limit dialog box asks if you are sure you want to delete this rate limit.
Tip To close the Delete Rate Limit dialog box, click No.
Step 15 Click
Yes
to delete the rate limit. The rate limit no longer appears in the rate limits list.
For More Information
For the procedure for assigning actions to signatures, see Assigning Actions to Signatures.