Brocade Communications Systems Brocade ICX 6650 6650 User Manual

Page 295

Advertising
background image

Brocade ICX 6650 Security Configuration Guide

275

53-1002601-01

Port-based rate limiting

Configuration notes for port-based fixed rate limiting

Rate limiting is available only on inbound ports.

The rate limit on IPv6 hardware takes several seconds to take effect at higher configured rate
limit values. For example, if the configured rate limit is 1500000 packets/second, line-rate
limiting could take up to 43 seconds to take effect.

Configuring a port-based fixed rate limiting policy

To configure rate limiting on a port, enter commands such as the following.

Brocade(config)# interface ethernet 1/2/4
Brocade(config-if-e10000-1/2/4)# rate input fixed 500

These commands configure a fixed rate limiting policy that allows port 24 to receive a maximum of
500 packets per second. If the port receives additional packets during a given one-second interval,
the port drops all inbound packets on the port until the next one-second interval starts.

Syntax: [no] rate-limit input fixed average-rate

For Brocade ICX 6650 devices, the average-rate parameter specifies the maximum number of
packets per second (pkts/s) the port can receive. The minimum rate that can be configured is 125
pkts/s.

Displaying the port-based fixed rate limiting configuration

To display the fixed rate limiting configuration on the device, use the show rate-limit input
command as shown below.

Syntax: show rate-limit input

This command lists the ports on which fixed rate limiting is configured, and provides the
information listed in

Table 66

for each of the ports.

TABLE 66

CLI display of Fixed rate limiting information

Field

Description

Total rate-limited interface count

The total number of ports that are configured for Fixed rate limiting.

Port

The port number.

Configured Input Rate

The maximum rate requested for inbound traffic. The rate is measured
in packets per second (pkts/s).

Actual Input Rate

The actual maximum rate provided by the hardware. The rate is
measured in packets per second (pkts/s).

Brocade# show rate-limit input
Total rate-limited interface count: 5.
Port Configured Input Rate Actual Input Rate
1/1/1 65000 pkts/sec 65000 pkts/sec
1/1/2 95000 pkts/sec 195000 pkts/sec
1/1/6 1950 pkts/sec 1950 pkts/sec
1/2/2 230432 pkts/sec 230000 pkts/sec
1/2/6 234113 pkts/sec 234000 pkts/sec

Advertising
Popular Brands
Popular manuals