Ruijie Community

Title: How to configure New Session Limit on the firewall? [Print this page]

Author: zhangqiao@ruiji Time: 2024-11-28 17:01
Title: How to configure New Session Limit on the firewall?
Application Scenario

：

Configure global new session limiting or configure new session limiting on designated IP addresses. The priority of new session limiting on designated IP addresses is higher than that of global new session limiting. The new session limit prevents a large number of new connections established due to DDoS attacks, which affects normal services.

Procedure

：

(1) Choose Policy> Security Defense > Session Suppression > New Session Limit.

(2) Enable new session suppression.

(3) Configure the maximum number of new sessions.

Global New Session Limiting

(a) Configure the maximum number of new session connections on the entire network.

Global New Session Connections/s : The priority of new session limiting on designated IP addresses is higher than that of global new session limiting. The default value is 0, indicating that the rate is not limited.

(b) Click Save.

New Session Limiting on Designated IP Addresses

(a) Click Create.

(b) Configure new session limiting on designated IP addresses.

Item	Description	Remarks
IP	IP address for which new session connections need to be limited.	Enter a valid IPv4 or IPv6 address. [Example] 192.168.1.1 or 1234::100
New Session Number Limit/s	Number of new sessions per second.	[Example] 10

Click Create to add more IP addresses for new session limiting.
Click Delete to remove the configuration.
Click Refresh to obtain the latest configuration of new session limiting on designated IP addresses.
Click Edit to modify the number of news ession connections per second allowed on a specified IP address.

Welcome to Ruijie Community (https://community.ruijienetworks.com/)