The ipv6 nd send multicast rate-limit command configures a rate limit for sending ND multicast messages, that is, the maximum number of ND multicast messages that can be sent per second.
The undo ipv6 nd send multicast rate-limit command restores the default configuration.
By default, the rate limit for sending ND multicast messages is not configured, and ND messages are sent at a globally configured rate limit.
| Parameter | Description | Value |
|---|---|---|
| rs |
Specifies a rate limit for sending RS multicast messages. |
- |
| ns |
Specifies a rate limit for sending NS multicast messages. |
- |
| na |
Specifies a rate limit for sending NA multicast messages. |
- |
| rate-limit rate-limit |
Specifies a rate limit for sending ND multicast messages. |
The value is an integer, in messages/second. If the message type is NA multicast, the value ranges from 1 to 10240; if the message type is NS, RS, or RA multicast, the value ranges from 1 to 1000. |
| ra |
Specifies a rate limit for sending RA multicast messages. |
- |
Usage Scenario
If a device is attacked, it receives a large number of ND or ND Miss messages within a short period. As a result, the device consumes many CPU resources to learn and respond to ND entries, affecting the processing of other services. To resolve this issue, configure a rate limit for sending ND multicast messages on the device. After the configuration is complete, the device counts the number of ND multicast messages sent per period. If the number exceeds the configured limit, the device delays scheduling or ignores excess ND multicast messages.
<HUAWEI> system-view [~HUAWEI] ipv6 nd ns send multicast rate-limit 550
<HUAWEI> system-view [~HUAWEI] ipv6 nd ra send multicast rate-limit 550