RedMax EXtreme EX-LRT Guía para resolver problemas descargar pdf (Pagina 43)

Oracle SBC Security Guide

Define a number to set the maximum rate of call (per second) this session agent will allow. Once

the rate limit is reached, the SBC will start rejecting new service with 503 Exceed Constraints

until the number of seconds in time-to-resume has elapsed.

 max-sustain-rate - Z

In general, set this to the average call rate (per second) which that SA can sustain. Once the

average rate limit calculated in

(Calls made in current + previous window) / Delta (current second – start of previous window),

exceeds the limit Z , the SBC will be start rejecting new service with 503 Exceed Constraints

until the number of seconds in time-to-resume has elapsed.

session-router->access-control

Parameter

Realm

realm-id

peer

core

source-address

n.n.n.n/[mask bit is

optional]

(peer SA IP, or non-SA IP)

[m.m.m.m]/ [mask bit is

optional]

(core SA IP or non-SA IP)

application-protocol

SIP

transport

ALL

access

permit

trust-level

high

minimum-reserved-bandwidth

invalid-signal-threshold

maximum-signal-threshold

untrusted-signal-threshold

deny-period

In core realm, it is recommended to configure an access-control on per session-agent basis instead of

putting it into a single source-subnet/mask. That will give the core session-agent its own flow versus

sharing one flow for multiple devices or the entire subnet.

DDOS Configuration Parameter Settings

Below are the recommended parameters setting for each platform in a SIP Peering model. The non-

default values are in bold.

Changes under media-manager require system reboot to take effect. Be sure to follow precautions to

reboot SBC(s) to unnecessary service outage during this execution.

1 2 ... 38 39 40 41 42 43 44 45 46 47 48 ... 141 142

Comentarios a estos manuales

Sin comentarios

RedMax EXtreme EX-LRT Guía para resolver problemas Pagina 43

Comentarios a estos manuales

Relacionado con productos y manuales para Cortadoras De Césped RedMax EXtreme EX-LRT