Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

flood (Security ICMP)

Syntax

Hierarchy Level

Description

Configure the device to detect and prevent Internet Control Message Protocol (ICMP) floods. An ICMP flood occurs when ICMP echo requests are broadcast with the purpose of flooding a system with so much data that it first slows down, and then times out and is disconnected. The threshold defines the number of ICMP packets per second allowed to ping the same destination address before the device rejects further ICMP packets.

Options

threshold number —Number of ICMP packets per second allowed to ping the same destination address before the device rejects further ICMP packets.

  • Range: 1 through 1,000,000 per second

  • Default: 1,000 per second

Note:

For SRX Series Firewalls the applicable range is 1 through 4,000,000 per second.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Release Information

Statement modified in Junos OS Release 9.2.

Related Documentation