Displaying System-Guard; System-Guard Configuration Example; Network Requirements; Configuration Procedure - HP 5120 SI Series Security Configuration Manual
Hide thumbs
Also See for 5120 SI Series:
- Command reference manual (395 pages) ,
- Installation manual (48 pages) ,
- Specification (33 pages)
Table of Contents
To do...
Set the aging time for system-guard
Set a system-guard rate limit for the
specified queues
Enter Layer 2 Ethernet port view
Enable system-guard on the port
Enable the system-guard control
function on the port
Displaying system-guard
To do...
Display system-guard configuration
System-guard configuration example
Network requirements
Enable system-guard on access layer devices to effectively prevent attacks caused by large amounts of
packets.
Configuration procedure
# Set the packet rate limit to 200 pps.
[Sysname] system-guard detect-threshold 200
# Enable system-guard on GigabitEthernet 1/0/1.
[Sysname-GigabitEthernet1/0/1] system-guard enable
# Display the system-guard configuration.
[Sysname-GigabitEthernet1/0/1] display system-guard
system-guard detect-threshold:
system-guard aging-time
system-guard rate-limit
queue0
queue4 1500 queue5
Use the command...
system-guard aging-time time
system-guard rate-limit queue
queue-number rate &<1-8>
interface interface-type
interface-number
system-guard enable
system-guard control
Use the command...
display system-guard [ | { begin | exclude |
include } regular-expression ]
:
:
360 queue1
360 queue2
360 queue6
200pps
60s
360 queue3
360
360 queue7
360
334
Remarks
Optional
By default, the aging time of
system-guard is 60 seconds.
Optional
By default, the rate limit is 1500
pps for queue 4 and 360 pps for
other queues.
—
Optional
Disabled by default.
Optional
Disabled by default.
Remarks
Available in any view
Table of Contents
Troubleshooting
