< Home

policy syslog rate-limit

Function

The policy syslog rate-limit command sets the rate for sending security policy-matching logs in syslog format.

The undo policy syslog rate-limit command cancels the settings.

Format

policy syslog rate-limit rate-limit

undo policy syslog rate-limit

Parameters

Parameter Description Value

rate-limit rate-limit

Specifies the maximum rate.

The value is an integer ranging from 1 to MAX. MAX is:

  • USG6510E/6510E-POE/6530E: 15000
  • USG6515E: 15000
  • USG6550E/6560E/6580E: 40000
  • USG6525E: 15000
  • USG6555E/6565E/6575E-B/6585E/6605E-B: 40000
  • USG6630E/6650E: 200000
  • USG6635E/6655E/USG6680E and USG6712E/6716E: 200000
  • USG6615E/6610E/6620E: 150000
  • USG6625E: 200000

Views

Security policy view

Default Level

2: Configuration level

Usage Guidelines

By default, the device limits the rate for sending policy-matching logs with the action being deny to 1/10 of the maximum rate allowed (MAX) but does not limit the rate for sending policy-matching logs with the action being permit.

However, when the function of sending policy-matching logs in syslog format is enabled, CPU usage is increased. If the CPU usage is high or the log server has limited capability in receiving logs, you can limit the rate of sending policy-matching logs. Then the device limits the rate of logs and discards logs randomly.

Example

# Set the maximum rate for sending security policy matching logs to 1500. That is, a maximum of 1500 logs can be sent each second.

<sysname> system-view
[sysname] security-policy
[sysname-policy-security] policy syslog rate-limit 1500
Parent Topic: Security Policy Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >