[c-nsp] SUP720 - 12.2(18)SXF17
Bob Snyder
rsnyder at toontown.erial.nj.us
Wed Oct 7 15:19:21 EDT 2009
On Mon, Oct 5, 2009 at 5:43 AM, Phil Mayers <p.mayers at imperial.ac.uk> wrote:
> mls rate-limit all ttl-failure 100 10
> mls rate-limit all mtu-failure 100 10
>
> There's no reason not to have the TTL failure rate limit enabled AFAIK.
> Choose a value appropriate to you, obviously.
One gotcha here is that busy routers will start dropping traceroute
packets as the trace hits routers that are actively rate-limiting.
Even through end to end traffic isn't affected, you may get user calls
(or confused network admins) complaining about packet loss because of
a misleading traceroute.
Still definitely a good idea, but something to consider when setting
thresholds and managing expectations.
Bob
More information about the cisco-nsp
mailing list