Filter
Top Products
2-623
Catalyst 6500 Series Switch Command Reference—Release 8.4
OL-6244-01
Chapter 2 Catalyst 6500 Series Switch and ROM Monitor Commands
set security acl feature ratelimit
set security acl feature ratelimit
To specify a rate limit in packets per second for ARP inspection, DHCP snooping, and 802.1X DHCP
features, use the set security acl feature ratelimit command.
set security acl feature ratelimit rate
Syntax Description
Defaults The rate is 1000 pps.
Command Types Switch command.
Command Modes Privileged.
Usage Guidelines The set security acl feature ratelimit command sets the rate at which packets are sent to the
supervisor engine for processing by the ARP inspection, DHCP snooping, and 802.1X DHCP features.
If you want to disable rate limiting, enter a rate value of 0. We strongly recommend, however, that you
do not disable rate limiting because traffic that is redirected by various security features might flood the
supervisor engine and diminish system performance.
The rate limit is shared by multiple features. To display the features sharing rate limiting, enter the show
security acl feature ratelimit command.
The rate limit is available on the PFC2 or later.
To specify the rate limit for the number of ARP inspection packets that are sent to the CPU on a per-port
basis, use the set port arp-inspection command.
Examples This example shows how to set the global rate limit to 600:
Console> (enable) set security acl feature ratelimit 600
ARP Inspection, DHCP Snooping, and Dot1x DHCP global rate limit set to 600 pps.
Console> (enable)
This example shows how to disable rate limiting:
Console> (enable) set security acl feature ratelimit 0
CAUTION:ARP Inspection, DHCP Snooping, and Dot1x DHCP global rate limit is disabled.
Console> (enable) 2004 Feb 04 16:17:17 %ACL-4-ARPINSPECTRATELIMITDISABLED:ARP Inspection,
DHCP Snooping, and Dot1x DHCP global rate is disabled
Console> (enable)
Related Commands set port arp-inspection
show security acl feature ratelimit
rate Number of packets; valid values are 0 and from 500 to 2000 packets per second. See the
“Usage Guidelines” section for more information.