The firewall dataplane to manageplane car type command sets application-layer protocol types and CAR values for flows sent to a single CPU of the device.
The undo firewall dataplane to manageplane car type command cancels the settings.
firewall dataplane to manageplane car type type rate rate
undo firewall dataplane to manageplane car type type
| Parameter | Description | Value |
|---|---|---|
type |
Specifies the application-layer protocol type of traffic sent to a single CPU of the device. |
- |
rate |
Specifies the CAR value of traffic sent to a single CPU of the device. |
The value is an integer ranging from 0 to 10000 (0 to 50000 in case of L2TP), in pps. |
If services of a specific protocol are enabled, the bandwidth of the protocol's services must be the same as that set in the command for the protocol.
If no service of a specific protocol is enabled, the type value is other.
Protocol |
Description |
Default CAR Value |
|---|---|---|
arp-miss |
Rate limiting for ARP MISS packets |
|
arp-request |
Rate limiting for ARP request messages |
1000 |
arp-reply |
Rate limiting for ARP reply messages |
1000 |
cluster |
Rate limiting for cluster packets NOTE:
Only the USG6610E/6620E, USG6615E/6625E, USG6630E/6650E, USG6635E/6655E, USG6680E, and USG6712E/6716E support this parameter. |
2048 |
icmp |
Rate limiting for ICMP packets destined to the local device |
800 |
vrrp |
Rate limiting for VRRP packets destined to the local device |
1024 |
udp |
Rate limiting for common UDP packets destined to the local device |
100 |
hrp |
Rate limiting for HRP packets |
1024 |
bgp |
Rate limiting for BGP packets destined to the local device |
1024 |
tcp |
TCP |
1024 |
ospf |
Rate limiting for OSPF packets destined to the local device |
1024 |
snmp |
Rate limiting for SNMP packets destined to the local device |
1024 |
rip |
Rate limiting for RIP packets destined to the local device |
1024 |
dhcp-relay |
Rate limiting for DHCP packets |
256 |
ipcar |
Rate limiting for IPCAR log messages |
256 |
packet-capture |
Rate limiting for local packet capture traffic |
60 |
other |
Other protocols |
100 |
icmp-fragment |
Rate limiting for ICMP fragmented packets destined to the local device |
400 |
um |
Rate limiting for user login and logout log messages |
1024 |
ttl |
Rate limiting for IP TTL timeout packets |
40 |
packet-trace |
Rate limiting for packet tracing |
1024 |
log |
Rate limiting for the log information of the service processing plane |
1000 |
broadcast |
Rate limiting for broadcast packets |
256 |
dataplane-debug |
Rate limiting for the debugging information of the service processing plane |
1024 |
bfd |
Rate limiting for BFD packets destined to the local device |
4096 |
bfd-message |
Rate limiting for BFD messages |
4096 |
bfd-packet |
Rate limiting for BFD packets |
4096 |
ldp-tcp |
Rate limiting for LDP TCP fragmented packets destined to the local device |
1024 |
ldp-udp |
Rate limiting for LDP UDP fragmented packets destined to the local device |
1024 |
ntp |
Rate limiting for NTP fragmented packets destined to the local device |
256 |
igmp |
Rate limiting for IGMP fragmented packets destined to the local device |
1024 |
pim |
Rate limiting for PIM fragmented packets destined to the local device |
1024 |
mc-data |
Rate limiting for fragmented multicast data packets destined to the local device |
1024 |
auto-rp |
Rate limiting for AUTO RP packets destined to the local device |
1024 |
isis |
Rate limiting for IS-IS fragmented packets destined to the local device |
1024 |
ddos |
Rate limiting for Anti-DDoS fragmented packets destined to the local device |
1024 |
debug-info |
Rate limiting for debugging information |
1000 |
healthcheck |
Health link |
1024 |
ipv6-nd |
Rate limiting for IPV6 ND fragmented packets destined to the local device |
256 |
ipv6-ns |
Rate limiting for IPV6 NS fragmented packets destined to the local device |
256 |
icmpv6 |
Rate limiting for ICMPv6 fragmented packets destined to the local device |
256 |
icmp-error |
Rate limiting for ICMP error packets destined to the local device |
800 |
ipv6 too big |
Rate limiting for IPv6 packets that exceed the MTU of the outbound interface |
256 |
ipv6 redirect |
Rate limiting for IPv6 packets whose outbound and inbound interfaces are the same |
256 |
ipv6 fib miss |
Rate limiting for IPv6 packets that have no matching routing entry |
256 |
ecm |
Rate limiting for ECM packets destined to the local device |
2000 |
lldp |
Rate limiting for LLDP packets destined to the local device |
1024 |
ip-option |
Rate limiting for packets with IP options |
500 |
l2tp |
Rate limiting for L2TP packets destined to the local device |
50000 |
l2tp-sccrq |
Rate limiting for the first L2TP packet |
60 |
mgmtport-arp |
Rate limiting for ARP packets on the management interface |
1000 |
monitor-session |
Rate limiting for service flow status records |
100 |
nhrp-miss |
Rate limiting for NHRP Miss packets |
2000 |
nhrp-packet |
Rate limiting for NHRP packets destined to the local device |
1000 |
portal2.0 |
Rate limiting for Portal 2.0 packets |
600 |
sesslog-drop |
Rate limiting for sampling packets in packet loss logs |
1 |
gre |
Rate limiting for GRE packets destined to the local device |
8192 |
ipsec |
Rate limiting for IPSec packets destined to the local device |
1024 |
ftp-server |
Rate limiting for FTP server packets destined to the local device |
1024 |
ssh-server |
Rate limiting for SSH server packets destined to the local device |
1024 |
telnet-server |
Rate limiting for Telnet server packets destined to the local device |
1024 |
tftp |
Rate limiting for TFTP packets destined to the local device |
1024 |
rsvp |
Rate limiting for RSVP packets destined to the local device |
256 |
msdp |
Rate limiting for MSDP packets destined to the local device |
256 |
nd-miss |
Rate limiting for ND MISS messages |
|
mld |
Rate limiting for MLD packets destined to the local device |
256 |
sftp-server |
Rate limiting for SFTP server packets destined to the local device |
1024 |
ftp-client |
Rate limiting for FTP client packets destined to the local device |
1024 |
telnet-client |
Rate limiting for Telnet client packets destined to the local device |
1024 |
ssh-client |
Rate limiting for SSH client packets destined to the local device |
1024 |
sftp-client |
Rate limiting for SFTP client packets destined to the local device |
1024 |
radius |
Rate limiting for RADIUS packets destined to the local device |
256 |
hwtacacs |
Rate limiting for HWTACACS packets destined to the local device |
256 |
lspping |
Rate limiting for LSPPING packets destined to the local device |
256 |
vgmp |
Rate limiting for VGMP packets destined to the local device |
256 |
nqa |
Rate limiting for NQA packets destined to the local device |
256 |
dns-client |
Rate limiting for DNS client packets destined to the local device |
1024 |
dnsv6 |
Rate limiting for IPv6 DNS client packets destined to the local device |
1024 |
mplsoam |
Rate limiting for MPLSOAM client packets destined to the local device |
256 |
rrpp |
Rate limiting for RRPP client packets destined to the local device |
256 |
802.1ag |
Rate limiting for 802.1AG client packets destined to the local device |
256 |
802.3ah |
Rate limiting for 802.3AH client packets destined to the local device |
256 |
lacp |
Rate limiting for LACP client packets destined to the local device |
256 |
http-client |
Rate limiting for HTTP client packets destined to the local device |
1024 |
http-server |
Rate limiting for HTTP server packets destined to the local device |
1024 |
acr |
Rate limiting for ACR client packets destined to the local device |
256 |
https-client |
Rate limiting for HTTPS client packets destined to the local device |
1024 |
https-server |
Rate limiting for HTTPS server packets destined to the local device |
1024 |
web-auth-server |
Rate limiting for web authentication server packets destined to the local device |
256 |
ipfpm |
Rate limiting for IPFPM packets destined to the local device |
256 |
soap |
Rate limiting for SOAP packets destined to the local device |
256 |
ripng |
Rate limiting for RIPng packets destined to the local device |
1024 |
ospfv3 |
Rate limiting for OSPFv3 packets destined to the local device |
1024 |
pimv6 |
Rate limiting for PIMv6 packets destined to the local device |
1024 |
telnetv6–client |
Rate limiting for IPv6 Telnet client packets destined to the local device |
1024 |
tftpv6 |
Rate limiting for IPv6 TFTP packets destined to the local device |
1024 |
sshv6–server |
Rate limiting for IPv6 SSH server packets destined to the local device |
1024 |
sshv6–client |
Rate limiting for IPv6 SSH client packets destined to the local device |
1024 |
ftpv6–server |
Rate limiting for IPv6 FTP server packets destined to the local device |
1024 |
ftpv6–client |
Rate limiting for IPv6 FTP client packets destined to the local device |
1024 |
bgpv6 |
Rate limiting for BGP4+ client packets destined to the local device |
1024 |
httpv6–server |
Rate limiting for IPv6 HTTP server packets destined to the local device |
1024 |
https6–server |
Rate limiting for IPv6 HTTPS server packets destined to the local device |
1024 |
poe-trig |
Rate limiting for PPPoE dialup packets destined to the local device |
10 |
pppoe |
Rate limiting for PPPoE packets destined to the local device |
1000 |