Cannot add 'policy flowlimit' to a traffic class
search cancel

Cannot add 'policy flowlimit' to a traffic class


Article ID: 165480


Updated On:




A flowlimit policy allows you to limit the rate of new flows to or from a unique host. This command can be used to detect and control a SYN Flood or similar denial-of-service attack directed at a particular host or if the attack is from a specific IP address.

When trying to add a policy flowlimit  to a class, it results in the following error:

policy xxxxxx/xxxxxx not found


The policy flowlimit is associated with a policy rather than the class itself.  If a class does not have a rate or priority policy, the policy flowlimit command will fail.