Command Reference Guide
206 ● limit 3Com Router 5000 Family and Router 6000 Family
Command Reference
limit
Purpose Use the limit command to create rule under corresponding connection limit policy.
Use the undo limit command to delete the rule under corresponding connection
limit policy.
Syntax limit limit-id acl acl-number [ { per-source | per-destination |
per-service }* amount upper-limit lower-limit ]
undo limit limit-id
Parameters limit-id
Rule ID for connection limit policy. Valid values are 0 to
255.
acl
Specifies ACL. The connection limit policy uses ACL to
specify the characteristics of connections to be limited.
ACL can be used to specify nearly all connection
characteristics.
acl-number
Specifies ACL number. Valid values are 2000 to 3999.
per-source
Specifies to limit according to each source address.
per-destination
Specifies to limit according to each destination
address.
per-service
Specifies to limit according to each service (destination
port).
amount
Identifies that it is the connection limit that is
configured, but not rate limit, in order to facilitating
adding rate identifier when adding rate limit function
in the future.
upper-limit, lower-limit
Specifies the connection upper limit and lower limit of
this rule. When the connection characteristic meets the
specified rule, the two values are used to limit the
connections. The upper-limit ranges from 1 to
4294967295, and the lower-limit ranges from 1 to
4294967295. When the connection number reaches
the upper limit, it is prohibited to establish new
connection. At this time, to establish new connection
is allowed only when the connection number drops to
be below or equal to the lower limit.
Example Create a rule under policy 1 to use ACL3000 to limit the source address, with the
upper limit being 100 and lower limit being 10.
<3Com> system-view
[3Com] connection-limit policy 1
[3Com-connection-limit-policy-1] limit 0 acl 3000 per-source amount 100
10