ServerIron ADX Security Guide 27
53-1002440-03
HTTP TRL policy commands 1
Syntax: tftp <tftp-server-addr> <config-file-name>
NOTE
You can save this command with write memory to automatically initiate a download for this policy
after you reload. If you configure more than one policy for TFTP download, and a policy fails the
download, the ServerIron does NOT retry, and the subsequent policy does not initiate a download.
You must manually issue the command to do a TFTP download.
NOTE
When the total number of HTTP TRL entries exceeds 10k, the show run time config command cannot
display an http trl-related configuration. You must use a text file to manage it.
NOTE
When any HTTP TRL policy client entry exceeds 1K, the show run time config command cannot
display a detailed client entry for the HTTP TRL policy.
HTTP TRL policy commands
NOTE
You must configure client HTTP TRL before you configure the client exceed-limit

Client-name <client-name> monitor-interval

Use the client-name <client-name> monitor-interval option in the http-trl-policy configuration mode
to set client rate limitin g parameters.
Syntax: [no] client-name <client-name> monitor-interval <interval-value> <warning-rate>
<shutdown-rate> <holddown-interval>
<interval-value>—specifies monitoring window in 100 ms unit.
<warning-rate>—specifies HTTP connection rate (per second) that causes a warning if exceeded.
<shutdown-rate>—specifies HTTP connection rate (per second) that causes a client to hold down.
<holddown-interval>—specifies the length of hold down period, if client exceeds rate limit in term of
minutes.
NOTE
Value 0 means do not hold down. Hold down holds all traffic.
Example
ServerIronADX(config-http-trl-p1)# client-name c1 monitor-interval 1 10 20 0

Client-name <client-name> max-conn

Use the client-name <client-name> max-conn option in the http-trl-policy configuration mode to set
client maximum connection parameters.
Syntax: [no] client-name <client-name> max-conn <max-conn-value>