< Home

firewall icmp-error rate-limit

Function

The firewall icmp-error rate-limit command sets the limit value for the rate of ICMP error packets.

The undo firewall icmp-error rate-limit command restores the default setting.

Format

firewall icmp-error rate-limit rate

undo firewall icmp-error rate-limit

Parameters

Parameter Description Value

rate

Specifies the rate limit value.

The value is an integer ranging from 1 to 500000, in packets/second.

Views

System view

Default Level

2: Configuration level

Usage Guidelines

By default, the rate of ICMP error packets is limited, and the limit value is 50000 packets per second. For the USG6635E/6655E, USG6680E and USG6712E/6716E, the rate refers to the number of ICMB error packets processed by a single CPU per second.

ICMB error packets are processed one by one. If the device needs to process a large number of ICMB error packets, the CPU usage is affected. Therefore, you can run the firewall icmp-error rate-limit command to limit the rate of ICMB error packets.

Example

# Set the limit value for the rate of ICMB error packets to 40000 packets per second.

<sysname> system-view
[sysname] firewall icmp-error rate-limit 40000
Parent Topic: IP Performance Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >