Junos OS

 View Only

IMPORTANT MODERATION NOTICE

This community is currently under full moderation, meaning  all posts will be reviewed before appearing in the community. Please expect a brief delay—there is no need to post multiple times. If your post is rejected, you'll receive an email outlining the reason(s). We've implemented full moderation to control spam. Thank you for your patience and participation.



  • 1.  seeking help for pps limit(per ip) under specific interface

    Posted 12-15-2021 14:42
    need help about pps limit for per ip under specific interface

    device: Juniper MX204
    os version: 21.1R1.11

    ------------------------------
    UJJAL BS
    ------------------------------


  • 2.  RE: seeking help for pps limit(per ip) under specific interface

     
    Posted 12-16-2021 05:49
    There is a term in firewall filters for limiting by pps.

    But I've only seen it use to limit overall pps as a routing engine protection.  I don't think you can future add further per ip limits.

    https://www.juniper.net/documentation/us/en/software/junos/routing-policy/topics/ref/statement/if-exceeding-pps-edit-firewall.html

    ------------------------------
    Steve Puluka BSEET - Juniper Ambassador
    IP Architect - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
    http://puluka.com/home
    ------------------------------



  • 3.  RE: seeking help for pps limit(per ip) under specific interface

    Posted 12-17-2021 09:28
    This is an EX example, also EX does not allow to match on pps only bps
    Like Steve posted a policer is what your wanting , but you use it inside your filter.
    In your filter term to match ip 
    from source-address 0/0
    then {
    policer 3meg;