Http Request Throttle, Allow-Nets | Tut Systems SMS2000 guide

Authentication

HTTP Request Throttle

Setting the HTTP Request Throttle

Use the set http-request throttle command to configure a per-session throttle on the rate at which HTTP requests from that session are handled before authentication. A new session begins with max_requests requests enabled. Every request uses one from a pool of available requests until there are no requests available in the pool. Requests are allocated to the session at request_rate requests per second.

Note: This command has no effect on authenticated subscribers.

To configure a per session throttle on the rate at which HTTP requests from that session are handled before authentication, use this command:

set http-request-throttle max_requests [request_rate]

For example, to enable an HTTP request throttle for each unauthenticated session, starting with 10 requests, and with requests available to that session at one request per second, use:

sms2000% set http-request-throttle 10 1

If the subscriber generates 11 HTTP requests in less than one second, it is ignored. After using all available requests, only 1 request per second is handled and additional requests are ignored.

Deleting the HTTP Request Throttle

To disable the HTTP request throttle for sessions not yet authenticated, use this command:

delete http-request-throttle

For example to turn off the HTTP throttle request setting, type:

sms2000% delete http-request-throttle

Allow-Nets

Allow-nets provide single IP addresses or subnets to which subscribers can send IP data without authentication, the set allow-netcommand supports up to 1000 allow-nets. Beginning with the release of SMS2.3.6, Allow-Nets support DNS names as well as IP addresses.

TUT Systems, Inc

Page 49 of 104

P/N 220-06288-20

Image 49

Tut Systems SMS2000 manual Allow-Nets, Setting the Http Request Throttle, Deleting the Http Request Throttle

Contents

TUT Systems SMS2000 User Guide SMS2000 User’s Guide SMSUser’s Guide Contents Configuring NTP Configuring SmtpConfiguring Snmp Polling Connectivity and Testing Authentication Authentication Configuring the Command ServerAuthentication with Radius Authorization Configuring Radius Using Rule PrioritiesGroups SMS2000 Rules Web Proxy Settings Using Both Radius and OCS AuthenticationSMS2000 Troubleshooting Procedures SMS2000 Status Attributes and Statistics List of Tables Radius Attributes in Access-Accept PacketsList of Figures Audience PrefaceDocumentation available for this Release Related Documentation Introduction Subscriber Management Features Introduction Subscriber Management Components Subscriber Management Components OCS SMS2000 Introduction User Interface Getting Started For example restore config web original-confi g Accessing Help for CommandsIfconfig portnumber ipaddress /masklen Style Conventions Cursor Motion Keystrokes Cursor Movement Click Configure Initial ConfigurationEstablishing a Connection with the SMS2000 Establishing a Connection Via a Serial Interface Establishing a Connection Via Telnet Initial Configuration Changing Your Password Initial ConfigurationSetting the Quick Configuration Disabling Authentication Setting the HostnameSaving the Configuration Verifying the Configuration Rebooting the SystemReboot Configuration E-Mail Settings System AdministrationSetting the Default Configuration E-mail Set config-mailrecipient@SMTPserver SMTPserver Mailing the Current Configuration Configuration and System File ToolsDeleting the Configuration E-mail Committing Configuration Changes Disabling Automatic Configuration Changes Automatically Committing Configuration ChangesCommit auto Commit noauto Loading a Configuration File Saving a ConfigurationRestoring a Previous Configuration Restoring the Default Configuration Configuring SmtpSetting the Smtp Server Deleting the Smtp Server Setting the Smtp ID Configuring NTPSetting the Timezone Set smtpid on off Configuring the NTP server Configuring Snmp PollingSetting the Time Enabling Snmp Polling Disabling Snmp Polling Testing to See if Snmp Polling will WorkSnmp-pollmacaddress Testing Connectivity Connectivity and TestingSetting Specialized System Options System Tools Defining Ports Setting and Deleting Static PortsLeftrighthelp ? Port-definition mixed tut vlan Setting the Syslog Server Disconnecting a Session on a PortEvent Tracking Displaying Log Messages Displaying Version Information System Administration ToolsExiting the Management Session Displaying Control Keys Changing a PasswordPasswd Keys Snmp Agent Snmp ManagementSnmp System Contact Snmp System Location Snmp Trap Recipient Snmp Community System Information Tools Troubleshooting ToolsSMS2000% snmp delete trap-recipient Show snmp trap-recipient Upgrades Subscriber Connectivity CommandsSetting the ARP Failure Limit Setting the ARP Polling Period Archiving SMS2000 Firmware and distributing it from a Server Upgrading from Tut Systems’ Website Returning to an Older Firmware Version Verifying a Successful UpgradeLoading Another Image System Administration Authentication Authentication Setting the Command Server for OCS Interaction Configuring the Command ServerDeleting the Command Server Adding the OCS as the Authentication Server Testing Authentication Deleting an Authentication ServerAuth add web url secret secret cmd-serv Auth on Bypassing Authentication Setting the Authentication IntervalAuth off forcedweb authokurl blockall Auth interval minutes off Http Request Throttle Setting the Http Request ThrottleAllow-Nets Deleting the Http Request Throttle Set allow-netipaddress netmask dns-name Setting an Allow-Net Automatic Redirection URLs Setting the Automatic Redirection URLDeleting an Allow-Net Set authok url Deleting the authok Authentication with RadiusAdding a Radius Server Delete authok Syntax Description Command Default retrans-primary-only is DefaultUsage Guidelines Example Set nas-port-type integer Set NAS port type parameterSet nas-port-type Configuring a Radius SSL Back Channel Testing Authentication on the Radius ServerShow status radius Show status radius Example Authorization AuthorizationAuthorization Server Functionality Accounting AccountingSending Accounting Messages to a Syslog Server Configuring Accounting Parameters Radius Accounting ConfigurationSending Accounting Messages to a Radius Server Deleting a Radius Accounting Server Provisioning Provisioning Billing Billing Groups Service Creation Using Groups and RulesAdding a Group Group add groupname noinherit inherit groupname Subscribers that Cannot Support Authentication Setting the Active Group ContextSetting Maximum Users Per Port Deleting a Group Adding a Rule SMS2000 RulesDeleting a Rule Set rule rulename groupname priority rulestring IP Address Rule Expression ComponentsMAC Address Ip=ipaddress ,netmask Vlan=vlanida-vlanidb Not OperatorTut=ipaddress-linenum*-portnum Or Operator OperatorParenthesis Expression and expression Using Rule Priorities IP Addressing IP AddressingPlug and Play With NAT Dhcp Pools Static Routable Addresses IP Multicasting Static Non-Routable Addresses Iptype default NAT static Dhcp 1to1 1to1Unique Configuring IP TypesUnderstanding 1to1 and 1to1 Unique IP Types Deleting a Configured Source-Net Setting a Source-NetSource-Nets Set source-netstartaddress endaddress subnet-mask Creating Dhcp Pools Setting the DNS Server AddressRemoving a Dhcp Assignment Dhcp-server release macaddress Deleting the DNS Server Address Static RoutesAdding Routes Set dns add ipaddress Printing Setting up the LPR HostSet lpr hostname off queuename maxpages maxbytes Configuring Radius Using SMS2000 with a Radius ServerObtaining the Radius Server Software Adding the SMS2000 as a Client on the Radius Server Configuring Service ParametersAdding Users to the Radius Server Radius Ports Using Real IP Addresses SMS2000 NAS File SMS2000 Status Attributes and StatisticsRadius Attributes Sent in Accounting Messages Radius Attributes Sent In Access Request Packets Using Both Radius and OCS AuthenticationRadius Attributes Received in Access- Accept Packets Deleting Traffic Shaping Setting Traffic ShapingShape xbps/rbps Shape xbps/rbps delete SMS2000 and Property Management Systems PMS Setting the PMS Server TTY ACK-NAK ENQ-ACK-NAK Protocol Modes ENQ-ACK-NAK Mode Loading and Deleting Customized Web Pages Customizing SMS2000 Web Authentication with RadiusFiles For Groups Loading Web Pages or Files Path Components Load web url defaultsImage Links Upgrading Customizing Web PagesDeleting Web Pages or Files Preserving the Web Form Web Page Redirection Size For Web Pages and External Links Viewing Customizations Active Page ComponentsReference Web Proxy Settings Configuring Web Proxy SettingsSetting the Wpad Curl Setting the Wpad Timeout Web Proxy Server Delete proxy-ports port Set proxy-ports portShow proxy-ports SMS2000 Troubleshooting Procedures SMS2000 Troubleshooting Multiple frames opened Snmp PollingBrowser Unable to do credit card Line Verify OCS screens off Radius Attributes in Access-Accept Packets Appendix a Radius Access-Accept Dictionary File Appendix Appendix TUT Systems, Inc 100 Technical Support Appendix B Technical Assistance and Customer SupportInternet Telephone Equipment Return and Repair Hardware Limited Warranty Appendix C SMS2000 Limited WarrantyLimitations of Warranty Exclusive Remedies Tut Systems, Inc., Customer Service Department Electrical Safety AdvisoryAssistance FCC Radio Frequency Interference Statement TUT Systems, Inc 104