The three parameters are Average Rate, Normal Burst Size and Excess Burst
Size respectively.
AR= Bandwidth throughput allowed before the traffice is limited by the NBS
and BS parameters.
NBS = Number of bytes accepted in a burst above the AR limit before some of
the packets get dropped or reclassified etc(exceed-action...). Those
packets that get dropped are measured in a similar manner to those limited
by RED (Random Early Detection).
EBS= Number of bytes accepted in a burst before ALL packets are subject to
your rate limits/measures.
This kind of functionality is what QOS uses and you can find some good
material on CCO which will clarify things succinctly.
Note: I cannot imagine a scenario where you would need to put rate limits on
ICMP traffic, but I would certainly like to hear of one...
----- Original Message -----
From: Yee, Jason <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, November 20, 2000 10:20 PM
Subject: access-list for DDOS attack
>
>
> hi ,
>
> Anyone knows what the parameter in using CAR to rate limit ICMP packets
> means , for example :
>
>
> interface abc
>
> rate-limit output access-group 200 2000000 512000 786000 transmit
> exceed-action drop
>
> access-list 200 permit icmp any any echo-reply
>
>
>
> what does the 2000000, 512000, 786000 means ?
>
>
> thanks
>
> Jason
>
> _________________________________
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
