Thanks
From: Kingsley Charles [mailto:[email protected]] Sent: 01 February 2011 02:35 PM To: Johan Bornman Cc: Mark Senteza; [email protected] Subject: Re: [OSL | CCIE_Security] IPS & Interface Rate Limiting Yes it's the percentage of BW available on the interface. With regards Kings On Tue, Feb 1, 2011 at 4:58 PM, Johan Bornman <[email protected]> wrote: Kings, Is "External Rate Limit Percentage - It is police percentage" the percentage of the interface bandwidth? Thanks Johan From: [email protected] [mailto:[email protected]] On Behalf Of Kingsley Charles Sent: 01 February 2011 08:13 AM To: Mark Senteza Cc: [email protected] Subject: Re: [OSL | CCIE_Security] IPS & Interface Rate Limiting External Rate Limit Percentage - It is police percentage. Rate - No in seconds With regards Kings On Tue, Feb 1, 2011 at 8:22 AM, Mark Senteza <[email protected]> wrote: A question concerning "External Rate Limit Percentage" vs "Rate" If for instance, the requirement is to limit offending ICMP traffic to 25 % of the interface bandwidth, would this be the correct way of tuning the signature ? Engine > Flood Host Event Action Settings > Request Rate Limit External Rate Limit type: Percentage External Rate Limit Percentage: 25 Rate: 25 Protocol: ICMP Am I right in saying that: "External Rate Limit Percentage" is the percentage of the interface bandwidth while, "Rate" is the number of packets per interval or maybe its the number of packets that are seen before rate-limiting is triggered. Not entirely sure about this particular value, and need clarification on this. Why would I need to define "25" for both options ? Would not defining the "External Rate Limit Percentage" be all I need to meet the requirement Thanks again, Mark _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
