[j-nsp] Rate limit ARP per interface (or JUNOS bug)?
Andrew Jimmy
good1 at live.com
Fri May 15 03:17:17 EDT 2009
This policer thing seems fine. Can you please write what to police under arp
FOO firewall. It would be great if you can write the complete firewall.
Regards,
AW
-----Original Message-----
From: juniper-nsp-bounces at puck.nether.net
[mailto:juniper-nsp-bounces at puck.nether.net] On Behalf Of Pekka Savola
Sent: Friday, May 15, 2009 7:36 AM
To: Chris Adams
Cc: juniper-nsp at puck.nether.net
Subject: Re: [j-nsp] Rate limit ARP per interface (or JUNOS bug)?
On Thu, 14 May 2009, Chris Adams wrote:
> Is this behavior a JUNOS bug or am I supposed to be rate-limiting ARP
> requests (on a per-VLAN basis) somehow?
I've seen LAN loops etc cause junos problems. That's why you need to
add 'policer arp FOO' under interfaces,unit,family inet. I'd have
hoped Juniper would have sane defaults but ....
--
Pekka Savola "You each name yourselves king, yet the
Netcore Oy kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
_______________________________________________
juniper-nsp mailing list juniper-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
More information about the juniper-nsp
mailing list