summaryrefslogtreecommitdiff
path: root/templates
diff options
context:
space:
mode:
authorBob Gilligan <gilligan@vyatta.com>2009-04-03 14:11:06 -0700
committerBob Gilligan <gilligan@vyatta.com>2009-04-03 14:11:06 -0700
commit7f112fb9038fe78e0bd955f5dd5a7a4c55abc9c4 (patch)
treee650396e92c4478cf81b3eb966f80beebe2b2f87 /templates
parent4f89a9ff057c77cea53d8ee0e29ac1efa1fe0df6 (diff)
downloadvyatta-cfg-firewall-7f112fb9038fe78e0bd955f5dd5a7a4c55abc9c4.tar.gz
vyatta-cfg-firewall-7f112fb9038fe78e0bd955f5dd5a7a4c55abc9c4.zip
Bugfix 4261: Add support to configure "limit" in IPv6.
Diffstat (limited to 'templates')
-rw-r--r--templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/burst/node.def3
-rw-r--r--templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/node.def1
-rw-r--r--templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/rate/node.def7
3 files changed, 11 insertions, 0 deletions
diff --git a/templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/burst/node.def b/templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/burst/node.def
new file mode 100644
index 0000000..2739faa
--- /dev/null
+++ b/templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/burst/node.def
@@ -0,0 +1,3 @@
+type: u32
+help: Set maximum number of packets to allow in excess of rate
+syntax:expression: ($VAR(@) >0) ; "Burst should be a value greater then zero"
diff --git a/templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/node.def b/templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/node.def
new file mode 100644
index 0000000..42081fe
--- /dev/null
+++ b/templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/node.def
@@ -0,0 +1 @@
+help: Set to match rule at a limited rate using a token bucket filter
diff --git a/templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/rate/node.def b/templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/rate/node.def
new file mode 100644
index 0000000..de22a6f
--- /dev/null
+++ b/templates/firewall/ipv6-name/node.tag/rule/node.tag/limit/rate/node.def
@@ -0,0 +1,7 @@
+type: txt
+help: Set maximum average matching rate
+syntax:expression: pattern $VAR(@) "^[[:digit:]]+/(second|minute|hour|day)$" ; \
+"Invalid value for rate. Rate should be specified as an integer followed by
+a forward slash '/' and either of these time units - second, minute, hour or day
+eg. 1/second implies rule to be matched at an average of once per second"
+
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-10 09:48:33 +0000