glid¶

Configure global limit ID

glid Specification¶

Parameter Value

Type Collection

Object Key(s) name

Collection Name glid-list

Collection URI /axapi/v3/glid

Element Name glid

Element URI /axapi/v3/glid/{name}

Element Attributes glid_attributes

Partition Visibility shared

Schema glid schema

Operations Allowed:

Operation	Method	URI	Payload
Create Object	POST	/axapi/v3/glid	glid attributes
POST /axapi/v3/glid/ Payload: { "glid": { "name": "1", "user-tag": "a" } }
Create List	POST	/axapi/v3/glid	glid attributes
Get Object	GET	/axapi/v3/glid/{name}	glid attributes
GET /axapi/v3/glid/1 Reponse: { "glid": { "name": "1", "dns": { "action": "cache-disable" }, "dns64": { "disable": 0, "exclusive-answer": 0 }, "over-limit-cfg": { "over-limit-action": 0 }, "uuid": "56a2163e-50f9-11ee-a47e-3b140db7f68c", "user-tag": "a", "a10-url": "/axapi/v3/glid/1" } }
Get List	GET	/axapi/v3/glid	glid-list
Modify Object	POST	/axapi/v3/glid/{name}	glid attributes
Replace Object	PUT	/axapi/v3/glid/{name}	glid attributes
PUT /axapi/v3/glid/1 Payload: { "glid": { "name": "1", "user-tag": "abcd" } }
Replace List	PUT	/axapi/v3/glid	glid-list
Delete Object	DELETE	/axapi/v3/glid/{name}	glid attributes
DELETE /axapi/v3/glid/1 Reponse: { "response": { "http-status": 200, "status": "OK", "msg": "Success" } }

glid-list¶

glid-list is JSON List of glid attributes

glid-list : [

{ glid attributes },

{ glid attributes },

…

]

glid attributes¶

bit-rate-limit

Description Kibit (kibibit / 1024-bit) rate limit per rate-interval

Type: number

Range: 1-16000000

conn-limit

Description Connection Limit for the GLID (PBSLB range 1-1048575)

Type: number

Range: 1-16000000

conn-rate-limit

Description Connection rate limit per rate-interval (TPS range 1-16000000)

Type: number

Range: 1-2147483647

conn-rate-limit-interval

Description

Type: number

Range: 1-65535

description

Description Description for glid

Type: string

Format: string-rlx

Maximum Length: 63 characters

Maximum Length: 1 characters

dns

Description: dns is a JSON Block. Please see below for dns

Type: Object

dns64

Description: dns64 is a JSON Block. Please see below for dns64

Type: Object

frag-pkt-rate-limit

Description Fragmented packet rate limit per rate-interval

Type: number

Range: 1-16000000

name

Description Global Limit ID Name (PBSLB allows number only)

Type: string

Format: string-rlx

Maximum Length: 63 characters

Maximum Length: 1 characters

over-limit-cfg

Description: over-limit-cfg is a JSON Block. Please see below for over-limit-cfg

Type: Object

pkt-rate-limit

Description Packet rate limit per rate-interval

Type: number

Range: 1-16000000

rate-unit

Description ‘1sec’: 1sec for internal glid rate unit; ‘system-global-setting’: use global rate interval;

Type: string

Supported Values: 1sec, system-global-setting

Default: system-global-setting

request-limit

Description Request limit

Type: number

Range: 1-1048575

request-rate-limit

Description Request rate limit

Type: number

Range: 1-4294967295

request-rate-limit-interval

Description Number of 100ms

Type: number

Range: 1-65535

syn-cookie-thr

Description Syn Cookie threshold for the GLID

Type: number

Range: 1-16

use-nat-pool

Description Use NAT pool specified to do reverse NAT for class list members bound to the lid

Type: string

Maximum Length: 63 characters

Maximum Length: 1 characters

user-tag

Description Customized tag

Type: string

Format: string-rlx

Maximum Length: 127 characters

Maximum Length: 1 characters

uuid

Description uuid of the object

Type: string

Maximum Length: 64 characters

Maximum Length: 1 characters

over-limit-cfg¶

Specification Value

Type object

action-type

Description ‘drop’: Silently Drop the new connection / new packet when it exceeds limit; ‘blacklist-src’: Black List source entry for X minutes (only applied to src and src-dst entries);

Type: string

Supported Values: drop, blacklist-src

action-value

Description ‘drop’: Silently Drop the new connection / new packet when it exceeds limit; ‘dns-cache-disable’: Disable dns cache when it exceeds limit; ‘dns-cache-enable’: Enable dns cache when it exceeds limit; ‘forward’: Forward the traffic even it exceeds limit; ‘reset’: Reset the connection when it exceeds limit;

Type: string

Supported Values: drop, dns-cache-disable, dns-cache-enable, forward, reset

blacklist-src-min

Description Black List source entry for X minutes

Type: number

Range: 1-30

lockout

Description Don’t accept any new connection for certain time (Lockout duration in minutes)

Type: number

Range: 1-1023

log

Description Log a message

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

log-interval

Description Log interval (minute, by default system will log every over limit instance)

Type: number

Range: 1-255

over-limit-action

Description Action to take when limit(s) exceeds

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

dns64¶

Specification Value

Type object

disable

Description Disable

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

exclusive-answer

Description Exclusive Answer in DNS Response

Type: boolean

Supported Values: true, false, 1, 0

Default: 0

prefix

Description IPv6 prefix

Type: string

Format: ipv6-address-plen

dns¶

Specification Value

Type object

action

Description ‘cache-disable’: Disable dns cache; ‘cache-enable’: Enable dns cache;

Type: string

Supported Values: cache-disable, cache-enable

Default: cache-disable

ttl

Description TTL for cache entry (TTL in seconds)

Type: number

Range: 1-65535

weight

Description Weight for cache entry

Type: number

Range: 1-7