Displaying ip address with held down traffic – Brocade Communications Systems ServerIron ADX 12.4.00a User Manual

Page 30

Advertising
background image

16

ServerIron ADX Security Guide

53-1002440-03

Transaction Rate Limit (TRL)

1

Syntax: show client-trl <policy-name> { ipv4 | ipv6} <index>

The <policy-name> variable specifies the TRL policy that you want to display rules for.

The show client-trl command displays entries in the TRL policy list, starting from the point specified
with the <index> parameter.

Displaying IP address with held down traffic

To display a list of IPv4 and IPv6 addresses whose traffic has been held down, enter commands
such as the following.

Syntax: rconsole <slotnum> <cpunum>

Syntax: show security holddown

The following table lists the output from the show security holddown command.

Refusing new connections from a specified IP address

Use the security hold-source-ip command to refuse new connections from a specified IP address
for a specified amount of time. This feature applies to all TCP, UDP, and ICMP traffic originating
from the specified IP address.

Syntax: [no] security hold-source-ip <ip-address> <minutes>

TABLE 1

Output from the show security holddown command

Field

Description

source

Source IPv4 or IPv6 address that is currently being held down

destination

TCP, UDP, or ICMP depending on the type of traffic sent by the client.

vers

Used by Brocade Technical Support.

attempt

Number of connection attempts made by the client during the current monitoring interval.

start

Time stamp representing the start of the monitoring interval.

last

Time stamp representing the last time the ServerIron received a connection request from
the client.

HD

Whether the IP address is currently being held down. Y indicates that the address is being
held down. N indicates that it is not.

time

Time remaining for this IP address to be held down, if the HD field contains Y.

ServerIronADX#show client-trl trl-policy1 ipv6 40

Max Count: 2500 Total Count: 2

IP address/Mask

interval

attempts

holddown

---------------

--------

--------

--------

300::3a95/128

1

67

93

300::3a96/128

66

38

34

ServerIronADX# rconsole 2 1

ServerIronADX2/1 #show security holddown

source destination vers attempt start last HD time

192.168.2.30 Any tcp

0

000ab6ae

00000000 Y

9

192.168.2.40 Any tcp

0

000ab6ea

00000000 Y

9

Advertising
Popular Brands
Popular manuals