ddos dst entry port-range¶
DDOS Port-Range & Protocol configuration
port-range Specification¶
Type Collection Object Key(s) port-range-start, port-range-end, protocol Collection Name port-range-list Collection URI /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range Element Name port-range Element URI /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range/{port-range-start}+{port-range-end}+{protocol} Element Attributes port-range_attributes Statistics Data URI /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range/{port-range-start}+{port-range-end}+{protocol}/stats Operational Data URI /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range/{port-range-start}+{port-range-end}+{protocol}/oper Schema port-range schemaOperations Allowed:
| Operation | Method | URI | Payload | |
|---|---|---|---|---|
Create Object | POST | /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range | ||
Create List | POST | /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range | ||
Get Object | GET | /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range/{port-range-start}+{port-range-end}+{protocol} | ||
Get List | GET | /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range | ||
Modify Object | POST | /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range/{port-range-start}+{port-range-end}+{protocol} | ||
Replace Object | PUT | /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range/{port-range-start}+{port-range-end}+{protocol} | ||
Replace List | PUT | /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range | ||
Delete Object | DELETE | /axapi/v3/ddos/dst/entry/{dst-entry-name}/port-range/{port-range-start}+{port-range-end}+{protocol} |
port-range-list¶
port-range-list is JSON List of port-range attributes
port-range-list : [
]
port-range attributes¶
capture-config
Description: capture-config is a JSON Block. Please see below for capture-config
Type: Object
deny
Description Blacklist and Drop all incoming packets for protocol
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
detection-enable
Description Enable ddos detection
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
enable-top-k
Description Enable ddos top-k entries
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
glid
Description Global limit ID
Type: string
Format: string-rlx
Maximum Length: 63 characters
Maximum Length: 1 characters
Refernce Object: /axapi/v3/glid
port-range-end
Description Port-Range End Port Number
Type: number
Range: 1-65535
port-range-start
Description Port-Range Start Port Number
Type: number
Range: 1-65535
protocol
Description ‘dns-tcp’: DNS-TCP Port; ‘dns-udp’: DNS-UDP Port; ‘http’: HTTP Port; ‘tcp’: TCP Port; ‘udp’: UDP Port; ‘ssl-l4’: SSL-L4 Port;
Type: string
Supported Values: dns-tcp, dns-udp, http, tcp, udp, ssl-l4
sflow
Description: sflow is a JSON Block. Please see below for sflow
Type: Object
template
Description: template is a JSON Block. Please see below for template
Type: Object
uuid
Description uuid of the object
Type: string
Maximum Length: 64 characters
Maximum Length: 1 characters
capture-config¶
Specification Type object capture-config-mode
Description ‘drop’: Apply capture-config to dropped packets; ‘forward’: Apply capture-config to forwarded packets; ‘all’: Apply capture-config to both dropped and forwarded packets;
Type: string
Supported Values: drop, forward, all
capture-config-name
Description Capture-config name
Type: string
Format: string-rlx
Maximum Length: 128 characters
Maximum Length: 1 characters
sflow¶
Specification Type object polling
Description: polling is a JSON Block. Please see below for sflow_polling
Type: Object
sflow_polling¶
Specification Type object sflow-http
Description Enable sFlow HTTP counter polling
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
sflow-packets
Description Enable sFlow packet-level counter polling
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
sflow-tcp
Description: sflow-tcp is a JSON Block. Please see below for sflow_polling_sflow-tcp
Type: Object
sflow_polling_sflow-tcp¶
Specification Type object sflow-tcp-basic
Description Enable sFlow basic TCP counter polling
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
sflow-tcp-stateful
Description Enable sFlow stateful TCP counter polling
Type: boolean
Supported Values: true, false, 1, 0
Default: 0
template¶
Specification Type object dns
Description DDOS dns template
Type: string
Format: string-rlx
Maximum Length: 128 characters
Maximum Length: 1 characters
http
Description DDOS http template
Type: string
Format: string-rlx
Maximum Length: 128 characters
Maximum Length: 1 characters
ssl-l4
Description DDOS SSL-L4 template
Type: string
Format: string-rlx
Maximum Length: 128 characters
Maximum Length: 1 characters
tcp
Description DDOS tcp template
Type: string
Format: string-rlx
Maximum Length: 128 characters
Maximum Length: 1 characters
udp
Description DDOS udp template
Type: string
Format: string-rlx
Maximum Length: 128 characters
Maximum Length: 1 characters
stats dns-tcp-port¶
| Counter | Size | Description | |
|---|---|---|---|
| src_ack_auth_fail | 8 | Src ACK Retry Failed | |
| src_ack_retry_init | 8 | Src ACK Retry Init | |
| tcp_rexmit_syn_limit_drop | 8 | TCP SYN Retransmit Exceeded Drop | |
| outbound_port_bytes_sent | 8 | Outbound Bytes Forwarded | |
| src_rate_limit_type0 | 8 | Src Request Rate 1 Exceeded | |
| fqdn_rate_by_label_count_check | 8 | FQDN Rate by Label Count Checked | |
| query_type_srv | 8 | Query Type SRV | |
| src_ack_retry_gap_drop | 8 | Src ACK Retry Retry-Gap Failed | |
| req_sent | 8 | DNS Requests Forwarded | |
| sess_aged | 8 | Sessions Aged Out | |
| tcp_auth_resp | 8 | TCP Auth Responded | |
| conn_close | 8 | Connections Closed | |
| syn_auth_fail | 8 | SYN Auth Failed | |
| syn_retry_init | 8 | SYN Retry Init | |
| conn_zwindow_rate_excd | 8 | TCP Conn Zero-Window Rate Exceeded | |
| src_dns_fqdn_label_len_exceed | 8 | Src FQDN Label Length Exceeded | |
| wellknown_sport_drop | 8 | TCP SrcPort Wellknown | |
| query_type_cname | 8 | Query Type CNAME | |
| src_fqdn_label_count_exceed | 8 | Src FQDN Label Count Exceeded | |
| dns_query_class_chaos | 8 | Query Class CHAOS | |
| conn_rexmit_rate_excd | 8 | TCP Conn Retransmit Rate Exceeded | |
| outbound_port_bytes | 8 | Outbound Bytes Received | |
| out_of_seq_excd | 8 | Out-Of-Seq Exceeded | |
| dg_action_default | 8 | Domain Group Action Default | |
| filter_action_default_pass | 8 | Filter Action Default Pass | |
| src_ack_retry_rto_progress | 8 | Src ACK Retry RTO Progress | |
| fqdn_label_count_exceed | 8 | FQDN Label Count Exceeded | |
| src_filter_action_blacklist | 8 | Src Filter Action Blacklist | |
| src_retransmit_excd | 8 | Src Retransmit Exceeded | |
| tcp_rexmit_syn_limit_bl | 8 | TCP SYN Retransmit Exceeded Blacklist | |
| conn_close_w_rst | 8 | RST Connections Closed | |
| outbound_port_drop | 8 | Outbound Packets Dropped | |
| src_syn_auth_fail | 8 | Src SYN Auth Failed | |
| filter5_match | 8 | Filter5 Match | |
| tcp_auth_drop | 8 | TCP Auth Dropped | |
| syn_retry_rto_pass | 8 | SYN Retry RTO Passed | |
| src_filter_action_default_pass | 8 | Src Filter Action Default Pass | |
| syn_cookie_fail | 8 | SYN Cookie Failed | |
| query_type_any | 8 | Query Type ANY | |
| src_well_known_port | 8 | Src TCP SrcPort Wellknown | |
| src_syn_retry_rto_fail | 8 | Src SYN Retry RTO Failed | |
| syn_retry_rto_progress | 8 | SYN Retry RTO Progress | |
| src_conn_rexmit_rate_excd | 8 | Src TCP Conn Retransmit Rate Exceeded | |
| port_kbit_rate_exceed_pkt | 8 | KiBit Rate Exceeded Count | |
| rst_cookie_fail | 8 | RST Cookie Failed | |
| ack_retry_rto_fail | 8 | ACK Retry RTO Failed | |
| dg_action_permit | 8 | Domain Group Action Permit | |
| frag_rcvd | 8 | Frag Received | |
| src_syn_retry_init | 8 | Src SYN Retry Init | |
| outbound_port_bytes_drop | 8 | Outbound Bytes Dropped | |
| query_type_aaaa | 8 | Query Type AAAA | |
| bl | 8 | Dst Blacklisted | |
| filter1_match | 8 | Filter1 Match | |
| port_bytes | 8 | Inbound Bytes Received | |
| sess_create_inbound | 8 | Inbound Sessions Created | |
| filter_auth_fail | 8 | Filter Auth Failed | |
| conn_create_from_syn | 8 | Connections Created From SYN | |
| exceed_drop_brate_src_pkt | 8 | Src KiBit Rate Exceeded Count | |
| req_incomplete | 8 | TCP Request Incomplete | |
| rate_limit_type4 | 8 | Dst Request Rate 5 Exceeded | |
| rate_limit_type3 | 8 | Dst Request Rate 4 Exceeded | |
| rate_limit_type2 | 8 | Dst Request Rate 3 Exceeded | |
| rate_limit_type1 | 8 | Dst Request Rate 2 Exceeded | |
| rate_limit_type0 | 8 | Dst Request Rate 1 Exceeded | |
| rrtype_drop | 8 | Record Type Dropped | |
| req_retrans | 8 | Request Retransmit | |
| ack_auth_fail | 8 | ACK Retry Failed | |
| filter_total_not_match | 8 | Filter Total Not Matched | |
| src_drop | 8 | Src Packets Dropped | |
| query_type_a | 8 | Query Type A | |
| dg_action_deny | 8 | Domain Group Action Deny | |
| query_type_mx | 8 | Query Type MX | |
| syn_retry_gap_drop | 8 | SYN Retry-Gap Failed | |
| conn_create_from_ack | 8 | Connections Created From ACK | |
| filter_none_match | 8 | Filter Not Matched | |
| src_syn_retry_gap_drop | 8 | Src SYN Retry-Gap Failed | |
| syn_drop | 8 | SYN Dropped | |
| port_conn_rate_exceed | 8 | Conn Rate Exceeded | |
| src_dns_malform | 8 | Src Malform Query | |
| req_size_exceed | 8 | Request Size Exceeded | |
| query_type_soa | 8 | Query Type SOA | |
| syn_retry_pass | 8 | SYN Retry Passed | |
| dns_malform_drop | 8 | Malform Query Dropped | |
| unauth_drop | 8 | TCP Unauth Dropped | |
| dns_query_class_in | 8 | Query Class INTERNET | |
| src_syn_cookie_sent | 8 | Src SYN Cookie Sent | |
| port_bytes_sent | 8 | Inbound Bytes Forwarded | |
| exceed_drop_brate_src | 8 | Src KiBit Rate Exceeded | |
| src_out_of_seq_excd | 8 | Src Out-Of-Seq Exceeded | |
| port_kbit_rate_exceed | 8 | KiBit Rate Exceeded | |
| src_unauth_drop | 8 | Src TCP Unauth Dropped | |
| filter_action_whitelist | 8 | Filter Action WL | |
| src_conn_pkt_rate_excd | 8 | Src TCP Conn Pkt Rate Exceeded | |
| port_src_bl | 8 | Src Blacklisted | |
| dg_request_check_fail | 8 | Domain Group Request Check Fail | |
| dns_fqdn_label_len_exceed | 8 | FQDN Label Length Exceeded | |
| outbound_port_pkt_sent | 8 | Outbound Packets Forwarded | |
| sess_create_outbound | 8 | Outbound Sessions Created | |
| conn_close_w_fin | 8 | FIN Connections Closed | |
| src_zero_window_excd | 8 | Src Zero-Window Exceeded | |
| src_conn_zwindow_rate_excd | 8 | Src TCP Conn Zero-Window Rate Exceeded | |
| sess_create | 8 | Session Create | |
| nxdomain_rate_exceed | 8 | NXDOMAIN Response Rate Exceeded | |
| filter_action_blacklist | 8 | Filter Action Blacklist | |
| dns_query_class_csnet | 8 | Query Class CSNET | |
| port_pkt_sent | 8 | Inbound Packets Forwarded | |
| syn_auth_pass | 8 | SYN Auth Passed | |
| src_dns_malform_drop | 8 | Src Malform Query Dropped | |
| query_type_opt | 8 | Query Type OPT | |
| syn_retry_rto_fail | 8 | SYN Retry RTO Failed | |
| syn_cookie_sent | 8 | SYN Cookie Sent | |
| retransmit_excd | 8 | Retransmit Exceeded | |
| filter4_match | 8 | Filter4 Match | |
| src_filter_action_whitelist | 8 | Src Filter Action WL | |
| zero_window_excd | 8 | Zero-Window Exceeded | |
| src_query_type_any_drop | 8 | Src Query Type ANY Dropped | |
| conn_ofo_rate_excd | 8 | TCP Conn Out-Of-Seq Rate Exceeded | |
| force_tcp_auth_pass | 8 | Auth Force-TCP Passed | |
| filter2_match | 8 | Filter2 Match | |
| frag_drop | 8 | Frag Dropped | |
| dns_query_class_hs | 8 | Query Class HESIOD | |
| dns_query_class_none | 8 | Query Class NONE | |
| port_conn_limm_exceed | 8 | Conn Limit Exceeded | |
| filter3_match | 8 | Filter3 Match | |
| ack_retry_pass | 8 | ACK Retry Passed | |
| src_policy_drop | 8 | Src Policy Dropped | |
| conn_close_w_idle | 8 | Idle Connections Closed | |
| is_nxdomain | 8 | NXDOMAIN Response | |
| dns_malform | 8 | Malform Query | |
| port_bytes_drop | 8 | Inbound Bytes Dropped | |
| exceed_drop_prate_src | 8 | Src Pkt Rate Exceeded | |
| src_rate_limit_type4 | 8 | Src Request Rate 5 Exceeded | |
| src_rate_limit_type2 | 8 | Src Request Rate 3 Exceeded | |
| src_rate_limit_type3 | 8 | Src Request Rate 4 Exceeded | |
| exceed_drop_climit_src | 8 | Src Conn Limit Exceeded | |
| src_rate_limit_type1 | 8 | Src Request Rate 2 Exceeded | |
| query_type_any_drop | 8 | Query Type ANY Dropped | |
| nxdomain_bl_drop | 8 | NXDOMAIN Response Blacklisted | |
| src_syn_cookie_fail | 8 | Src SYN Cookie Failed | |
| syn_retry_failed | 8 | SYN Retry Failed | |
| ack_retry_init | 8 | ACK Retry Init | |
| policy_drop | 8 | Policy Dropped | |
| query_type_ns | 8 | Query Type NS | |
| ack_retry_gap_drop | 8 | ACK Retry Retry-Gap Failed | |
| nxdomain_drop | 8 | NXDOMAIN Response Dropped | |
| src_syn_retry_failed | 8 | Src SYN Retry Failed | |
| filter_action_drop | 8 | Filter Action Drop | |
| src_ack_retry_rto_fail | 8 | Src ACK Retry RTO Failed | |
| dns_fqdn_stage_2_rate_exceed | 8 | FQDN Rate Exceeded | |
| src_conn_ofo_rate_excd | 8 | Src TCP Conn Out-Of-Seq Rate Exceeded | |
| dns_query_class_whitelist_miss | 8 | Query Class Whitelist Miss | |
| ack_retry_rto_progress | 8 | ACK Retry RTO Progress | |
| port_pkt_rate_exceed | 8 | Packet Rate Exceeded | |
| port_drop | 8 | Inbound Packets Dropped | |
| ack_retry_rto_pass | 8 | ACK Retry RTO Passed | |
| outbound_port_rcvd | 8 | Outbound Packets Received | |
| dns_query_class_any | 8 | Query Class ANY | |
| src_syn_retry_rto_pass | 8 | Src SYN Retry RTO Passed | |
| port_rcvd | 8 | Inbound Packets Received | |
| conn_close_half_open | 8 | Half Open Connections Closed | |
| src_syn_retry_rto_progress | 8 | Src SYN Retry RTO Progress | |
| src_ack_retry_rto_pass | 8 | Src ACK Retry RTO Passed | |
| conn_prate_excd | 8 | TCP Conn Pkt Rate Exceeded | |
| exceed_drop_crate_src | 8 | Src Conn Rate Exceeded | |
| src_rst_cookie_fail | 8 | Src RST Cookie Failed | |
| src_filter_action_drop | 8 | Src Filter Action Drop | |
| fqdn_rate_by_label_count_exceed | 8 | FQDN Rate by Label Count Exceeded |
stats dns-udp-port¶
| Counter | Size | Description | |
|---|---|---|---|
| nxdomain_rate_exceed | 8 | NXDOMAIN Response Rate Exceeded | |
| outbound_port_bytes_sent | 8 | Outbound Bytes Forwarded | |
| fqdn_rate_by_label_count_check | 8 | FQDN Rate by Label Count Checked | |
| query_type_srv | 8 | Query Type SRV | |
| req_sent | 8 | DNS Requests Forwarded | |
| spoof_detect_fail | 8 | UDP Retry Failed | |
| sess_aged | 8 | Sessions Aged Out | |
| force_tcp_auth_timeout | 8 | Auth Force-TCP With UDP Timeout | |
| udp_auth_pass | 8 | Auth UDP Passed | |
| src_dns_fqdn_label_len_exceed | 8 | Src FQDN Label Length Exceeded | |
| udp_auth | 8 | Auth UDP Init | |
| wellknown_sport_drop | 8 | UDP SrcPort Wellknown | |
| query_type_cname | 8 | Query Type CNAME | |
| fqdn_stage_2_rate_exceed | 8 | FQDN Rate Exceeded | |
| src_udp_retry_init | 8 | Src UDP Retry Init | |
| src_payload_too_small | 8 | Src UDP Payload Too Small | |
| src_fqdn_label_count_exceed | 8 | Src FQDN Label Count Exceeded | |
| udp_retry_init | 8 | UDP Retry Init | |
| outbound_port_bytes | 8 | Outbound Bytes Received | |
| dg_action_default | 8 | Domain Group Action Default | |
| port_bytes | 8 | Inbound Bytes Received | |
| fqdn_label_count_exceed | 8 | FQDN Label Count Exceeded | |
| dns_auth_drop | 8 | DNS Auth Dropped | |
| outbound_port_drop | 8 | Outbound Packets Dropped | |
| filter5_match | 8 | Filter5 Match | |
| src_udp_auth_fail | 8 | Src Auth UDP Failed | |
| src_filter_action_default_pass | 8 | Src Filter Action Default Pass | |
| query_type_any | 8 | Query Type ANY | |
| filter4_match | 8 | Filter4 Match | |
| bl | 8 | Dst Blacklisted | |
| dg_action_permit | 8 | Domain Group Action Permit | |
| src_filter_action_blacklist | 8 | Src Filter Action Blacklist | |
| payload_too_small | 8 | UDP Payload Too Small | |
| frag_rcvd | 8 | Frag Received | |
| outbound_port_bytes_drop | 8 | Outbound Bytes Dropped | |
| query_type_aaaa | 8 | Query Type AAAA | |
| fqdn_label_len_exceed | 8 | FQDN Label Length Exceeded | |
| filter1_match | 8 | Filter1 Match | |
| ntp_monlist_resp | 8 | NTP Monlist Response | |
| sess_create_inbound | 8 | Inbound Sessions Created | |
| filter_auth_fail | 8 | Filter Auth Failed | |
| exceed_drop_brate_src_pkt | 8 | Src KiBit Rate Exceeded Count | |
| dns_auth_resp | 8 | DNS Auth Responded | |
| rate_limit_type4 | 8 | Dst Request Rate 5 Exceeded | |
| rate_limit_type3 | 8 | Dst Request Rate 4 Exceeded | |
| rate_limit_type2 | 8 | Dst Request Rate 3 Exceeded | |
| rate_limit_type1 | 8 | Dst Request Rate 2 Exceeded | |
| rate_limit_type0 | 8 | Dst Request Rate 1 Exceeded | |
| rrtype_drop | 8 | Record Type Dropped | |
| req_retrans | 8 | Request Retransmit | |
| udp_auth_retry_gap_drop | 8 | Auth UDP Retry-Gap Failed | |
| src_drop | 8 | Src Packets Dropped | |
| query_type_a | 8 | Query Type A | |
| dg_action_deny | 8 | Domain Group Action Deny | |
| udp_auth_retry_fail | 8 | Auth UDP Retry Failed | |
| query_type_mx | 8 | Query Type MX | |
| port_drop | 8 | Inbound Packets Dropped | |
| filter_none_match | 8 | Filter Not Matched | |
| ntp_monlist_req | 8 | NTP Monlist Request | |
| payload_too_big | 8 | UDP Payload Too Large | |
| port_conn_rate_exceed | 8 | Conn Rate Exceeded | |
| src_dns_malform | 8 | Src Malform Query | |
| req_size_exceed | 8 | Request Size Exceeded | |
| query_type_soa | 8 | Query Type SOA | |
| port_kbit_rate_exceed_pkt | 8 | KiBit Rate Exceeded Count | |
| dns_malform_drop | 8 | Malform Query Dropped | |
| dns_query_class_in | 8 | Query Class INTERNET | |
| port_bytes_sent | 8 | Inbound Bytes Forwarded | |
| exceed_drop_brate_src | 8 | Src KiBit Rate Exceeded | |
| udp_retry_pass | 8 | UDP Retry Passed | |
| port_kbit_rate_exceed | 8 | KiBit Rate Exceeded | |
| udp_retry_gap_drop | 8 | UDP Retry Retry-Gap Failed | |
| filter_action_whitelist | 8 | Filter Action Whitelist | |
| src_conn_pkt_rate_excd | 8 | Src UDP Conn Pkt Rate Exceeded | |
| port_src_bl | 8 | Src Blacklisted | |
| dg_request_check_fail | 8 | Domain Group Request Check Fail | |
| src_udp_auth | 8 | Src Auth UDP Init | |
| outbound_port_pkt_sent | 8 | Outbound Packets Forwarded | |
| sess_create_outbound | 8 | Outbound Sessions Created | |
| sess_create | 8 | Session Create | |
| src_well_known_port | 8 | Src UDP SrcPort Wellknown | |
| filter_action_blacklist | 8 | Filter Action Blacklist | |
| dns_query_class_csnet | 8 | Query Class CSNET | |
| port_pkt_sent | 8 | Inbound Packets Forwarded | |
| src_dns_malform_drop | 8 | Src Malform Query Dropped | |
| query_type_opt | 8 | Query Type OPT | |
| src_filter_action_whitelist | 8 | Src Filter Action Whitelist | |
| src_query_type_any_drop | 8 | Src Query Type ANY Dropped | |
| src_payload_too_big | 8 | Src UDP Payload Too Large | |
| filter2_match | 8 | Filter2 Match | |
| frag_drop | 8 | Frag Dropped | |
| dns_query_class_hs | 8 | Query Class HESIOD | |
| dns_query_class_none | 8 | Query Class NONE | |
| port_conn_limm_exceed | 8 | Conn Limit Exceeded | |
| filter3_match | 8 | Filter3 Match | |
| src_ntp_monlist_resp | 8 | Src NTP Monlist Response | |
| src_rate_limit_type0 | 8 | Src Request Rate 1 Exceeded | |
| src_rate_limit_type1 | 8 | Src Request Rate 2 Exceeded | |
| is_nxdomain | 8 | NXDOMAIN Response | |
| dns_malform | 8 | Malform Query | |
| port_bytes_drop | 8 | Inbound Bytes Dropped | |
| exceed_drop_prate_src | 8 | Src Pkt Rate Exceeded | |
| src_rate_limit_type4 | 8 | Src Request Rate 5 Exceeded | |
| src_rate_limit_type2 | 8 | Src Request Rate 3 Exceeded | |
| src_rate_limit_type3 | 8 | Src Request Rate 4 Exceeded | |
| exceed_drop_climit_src | 8 | Src Conn Limit Exceeded | |
| udp_auth_drop | 8 | UDP Auth Dropped | |
| query_type_any_drop | 8 | Query Type ANY Dropped | |
| src_ntp_monlist_req | 8 | Src NTP Monlist Request | |
| nxdomain_bl_drop | 8 | NXDOMAIN Response Blacklisted | |
| dns_query_class_chaos | 8 | Query Class CHAOS | |
| query_type_ns | 8 | Query Type NS | |
| filter_action_default_pass | 8 | Filter Action Default Pass | |
| nxdomain_drop | 8 | NXDOMAIN Response Dropped | |
| filter_action_drop | 8 | Filter Action Drop | |
| dns_query_class_whitelist_miss | 8 | Query Class Whitelist Miss | |
| port_pkt_rate_exceed | 8 | Packet Rate Exceeded | |
| outbound_port_rcvd | 8 | Outbound Packets Received | |
| dns_query_class_any | 8 | Query Class ANY | |
| port_rcvd | 8 | Inbound Packets Received | |
| src_force_tcp_auth | 8 | Src Auth Force-TCP | |
| force_tcp_auth | 8 | Auth Force-TCP | |
| conn_prate_excd | 8 | UDP Conn Pkt Rate Exceeded | |
| exceed_drop_crate_src | 8 | Src Conn Rate Exceeded | |
| udp_auth_fail | 8 | Auth UDP Failed | |
| src_filter_action_drop | 8 | Src Filter Action Drop | |
| fqdn_rate_by_label_count_exceed | 8 | FQDN Rate by Label Count Exceeded |
stats http-port¶
| Counter | Size | Description | |
|---|---|---|---|
| req_sz_32k | 8 | Request Payload Size Less Than 32K | |
| syn_retry_rto_progress | 8 | SYN Retry RTO Progress | |
| src_ack_retry_init | 8 | Src ACK Retry Init | |
| fail_alloc_hdr | 8 | Alloc Header Failed | |
| src_challenge_js_fail | 8 | Src Challenge Javascript Failed | |
| req_get | 8 | Request Method GET | |
| tcp_rexmit_syn_limit_drop | 8 | TCP SYN Retransmit Exceeded Drop | |
| negative_resp_remain | 8 | Negative Response Remain | |
| resp_code_4xx | 8 | HTTP Status Code 4XX | |
| outbound_port_bytes_sent | 8 | Outbound Bytes Forwarded | |
| chunk_sz_2k | 8 | Payload Chunk Size Less Than 2K | |
| user_agent_filter_blacklist | 8 | Agent Filter Blacklisted | |
| invalid_hdr_val | 8 | HTTP Header Value Invalid | |
| pkts_retrans_rst | 8 | TCP Retransmit RST | |
| req_put | 8 | Request Method PUT | |
| filter2_drop | 8 | Filter2 Match Dropped | |
| req_sz_gt_256k | 8 | Request Payload Size Larger or Equal to 256K | |
| sess_aged | 8 | Sessions Aged Out | |
| tcp_auth_resp | 8 | TCP Auth Responded | |
| parsereq_fail | 8 | Parse Request Failed | |
| tcp_filter_action_blacklist | 8 | Filter Action Blacklist | |
| src_js_challenge_sent | 8 | Src Challenge Javascript Sent | |
| resp_code_5xx | 8 | HTTP Status Code 5XX | |
| filter10_drop | 8 | Filter10 Match Dropped | |
| req_sz_2k | 8 | Request Payload Size Less Than 2K | |
| syn_retry_init | 8 | SYN Retry Init | |
| filter10_match | 8 | Filter10 Match | |
| parse_bad_chunk | 8 | Malform Bad Chunk | |
| window_small_drop | 8 | Window Size Small Dropped | |
| er_condition | 8 | Error Condition | |
| tcp_filter5_match | 8 | Filter5 Match | |
| req_post | 8 | Request Method POST | |
| src_ack_auth_fail | 8 | Src ACK Retry Failed | |
| rsp_chunk | 8 | Response Chunk | |
| filter9_drop | 8 | Filter9 Match Dropped | |
| filter3_drop | 8 | Filter3 Match Dropped | |
| req_ofo | 8 | Out-Of-Order Request | |
| src_ack_retry_gap_drop | 8 | Src ACK Retry Retry-Gap Failed | |
| chunk_sz_1k | 8 | Payload Chunk Size Less Than 1K | |
| pkts_retrans_push | 8 | TCP Retransmit PSH | |
| window_small | 8 | Window Size Small | |
| conn_rexmit_rate_excd | 8 | TCP Conn Retransmit Rate Exceeded | |
| outbound_port_bytes | 8 | Outbound Bytes Received | |
| resp_code_other | 8 | HTTP Status Code OTHER | |
| syn_cookie_sent | 8 | SYN Cookie Sent | |
| fail_alloc | 8 | Alloc Failed | |
| user_agent_filter_match | 8 | Agent Filter Match | |
| port_bytes | 8 | Inbound Bytes Received | |
| src_ack_retry_rto_progress | 8 | Src ACK Retry RTO Progress | |
| src_filter_action_blacklist | 8 | Src Filter Action Blacklist | |
| processed | 8 | Packets Processed | |
| parse_header_name_too_long | 8 | Malform Header Name Too Long | |
| src_retransmit_excd | 8 | Src Retransmit Exceeded | |
| tcp_filter_none_match | 8 | Filter Not Matched | |
| out_of_seq_excd | 8 | Out-Of-Seq Exceeded | |
| filter1_drop | 8 | Filter1 Match Dropped | |
| conn_close_w_rst | 8 | RST Connections Closed | |
| outbound_port_drop | 8 | Outbound Packets Dropped | |
| src_syn_auth_fail | 8 | Src SYN Auth Failed | |
| outbound_port_bytes_drop | 8 | Outbound Bytes Dropped | |
| header_processing_time_0 | 8 | Header Process Time Less Than 1s | |
| client_rst | 8 | Client TCP RST Received | |
| header_processing_time_2 | 8 | Header Process Time Less Than 30S | |
| header_processing_time_3 | 8 | Header Process Time Larger or Equal to 30s | |
| chunk_sz_512 | 8 | Payload Chunk Size Less Than 512K | |
| parse_line_too_long | 8 | Malform Line Too Long | |
| tcp_auth_drop | 8 | TCP Auth Dropped | |
| chunk_sz_4k | 8 | Payload Chunk Size Less Than 4K | |
| src_filter_action_default_pass | 8 | Src Filter Action Default Pass | |
| req_sz_4k | 8 | Request Payload Size Less Than 4K | |
| req_sz_256k | 8 | Request Payload Size Less Than 256K | |
| src_well_known_port | 8 | Src TCP SrcPort Wellknown | |
| chunk_sz_gt_4k | 8 | Payload Chunk Size Larger or Equal to 4K | |
| conn_ofo_rate_excd | 8 | TCP Conn Out-Of-Seq Rate Exceeded | |
| invalid_hdr_name | 8 | HTTP Header Name Invalid | |
| req_trace | 8 | Request Method TRACE | |
| req | 8 | Request Total | |
| src_conn_rexmit_rate_excd | 8 | Src TCP Conn Retransmit Rate Exceeded | |
| filter4_match | 8 | Filter4 Match | |
| rst_cookie_fail | 8 | RST Cookie Failed | |
| challenge_failed | 8 | Challenge Failed | |
| tcp_filter_action_whitelist | 8 | Filter Action WL | |
| src_req_rate_exceed | 8 | Src Request Rate Exceeded | |
| frag_rcvd | 8 | Frag Received | |
| src_syn_retry_init | 8 | Src SYN Retry Init | |
| exceed_drop_climit_src | 8 | Src Conn Limit Exceeded | |
| filter6_match | 8 | Filter6 Match | |
| syn_retry_rto_pass | 8 | SYN Retry RTO Passed | |
| bl | 8 | Dst Blacklisted | |
| sess_create_inbound | 8 | Inbound Sessions Created | |
| filter1_match | 8 | Filter1 Match | |
| unauth_drop | 8 | TCP Unauth Dropped | |
| filter_auth_fail | 8 | Filter Auth Failed | |
| conn_create_from_syn | 8 | Connections Created From SYN | |
| exceed_drop_brate_src_pkt | 8 | Src KiBit Rate Exceeded Count | |
| ack_retry_pass | 8 | ACK Retry Passed | |
| src_post_rate_exceed | 8 | Src Post Rate Exceeded | |
| src_challenge_ud_fail | 8 | Src Challenge URL Redirect Failed | |
| dst_resp_rate_exceed | 8 | Dst Response Rate Exceeded | |
| filter7_drop | 8 | Filter7 Match Dropped | |
| filter_not_match | 8 | Filter Not Match | |
| pkts_ofo | 8 | Out-Of-Order Packets | |
| tcp_filter_action_drop | 8 | Filter Action Drop | |
| ud_challenge_failed | 8 | Challenge URL Redirect Failed | |
| tcp_rexmit_syn_limit_bl | 8 | TCP SYN Retransmit Exceeded Blacklist | |
| ack_auth_fail | 8 | ACK Retry Failed | |
| src_drop | 8 | Src Packets Dropped | |
| resp_code_1xx | 8 | HTTP Status Code 1XX | |
| filter9_match | 8 | Filter9 Match | |
| filter4_drop | 8 | Filter4 Match Dropped | |
| conn_close | 8 | Connections Closed | |
| src_conn_ofo_rate_excd | 8 | Src TCP Conn Out-Of-Seq Rate Exceeded | |
| js_challenge_sent | 8 | Challenge Javascript Sent | |
| port_drop | 8 | Inbound Packets Dropped | |
| resp_mib_chunk_bad | 8 | Bad HTTP Response Chunk | |
| filter_match | 8 | Filter Total Match | |
| conn_create_from_ack | 8 | Connections Created From ACK | |
| filter_none_match | 8 | Filter Total Not Matched | |
| syn_auth_fail | 8 | SYN Auth Failed | |
| pkts_retrans_fin | 8 | TCP Retransmit FIN | |
| syn_drop | 8 | SYN Dropped | |
| too_many_headers | 8 | HTTP Header Too Many | |
| filter6_drop | 8 | Filter6 Match Dropped | |
| content_length_too_long | 8 | Malform Content Length Too Long | |
| port_conn_rate_exceed | 8 | Conn Rate Exceeded | |
| ack_retry_rto_progress | 8 | ACK Retry RTO Progress | |
| ofo_queue_sz_exceed | 8 | Out-Of-Order Queue Exceeded | |
| ack_retry_rto_fail | 8 | ACK Retry RTO Failed | |
| ofo_timer_expired | 8 | Out-Of-Order Timeout | |
| req_content_len | 8 | Request Content Length Received | |
| filter8_match | 8 | Filter8 Match | |
| new_syn | 8 | TCP SYN | |
| src_syn_cookie_sent | 8 | Src SYN Cookie Sent | |
| port_bytes_sent | 8 | Inbound Bytes Forwarded | |
| header_processing_incomplete | 8 | Header Process Incomplete | |
| exceed_drop_brate_src | 8 | Src KiBit Rate Exceeded | |
| src_out_of_seq_excd | 8 | Src Out-Of-Seq Exceeded | |
| parse_too_many_headers | 8 | Malform Too Many Headers | |
| port_kbit_rate_exceed | 8 | KiBit Rate Exceeded | |
| referer_filter_match | 8 | Referer Filter Match | |
| dst_req_rate_exceed | 8 | Dst Request Rate Exceeded | |
| http_auth_drop | 8 | HTTP Auth Dropped | |
| policy_violation | 8 | Policy Violation | |
| src_unauth_drop | 8 | Src TCP Unauth Dropped | |
| filter_action_whitelist | 8 | Filter Action Whitelist | |
| src_conn_pkt_rate_excd | 8 | Src TCP Conn Pkt Rate Exceeded | |
| port_src_bl | 8 | Src Blacklisted | |
| dst_post_rate_exceed | 8 | Dst Post Rate Exceeded | |
| tcp_filter2_match | 8 | Filter2 Match | |
| outbound_port_pkt_sent | 8 | Outbound Packets Forwarded | |
| src_syn_retry_gap_drop | 8 | Src SYN Retry-Gap Failed | |
| sess_create_outbound | 8 | Outbound Sessions Created | |
| slow_post | 8 | Slow Post | |
| negative_req_remain | 8 | Negative Request Remain | |
| conn_close_w_fin | 8 | FIN Connections Closed | |
| src_zero_window_excd | 8 | Src Zero-Window Exceeded | |
| src_conn_zwindow_rate_excd | 8 | Src TCP Conn Zero-Window Rate Exceeded | |
| req_delete | 8 | Request Method DELETE | |
| filter_action_blacklist | 8 | Filter Action Blacklist | |
| tcp_filter4_match | 8 | Filter4 Match | |
| port_pkt_sent | 8 | Inbound Packets Forwarded | |
| less_than_mss_exceed | 8 | Min Payload Size Fail Exceeded | |
| filter5_drop | 8 | Filter5 Match Dropped | |
| filter5_match | 8 | Filter5 Match | |
| syn_retry_rto_fail | 8 | SYN Retry RTO Failed | |
| header_processing_time_1 | 8 | Header Process Time Less Than 10s | |
| req_unknown | 8 | Request Method UNKNOWN | |
| retransmit_excd | 8 | Retransmit Exceeded | |
| req_options | 8 | Request Method OPTIONS | |
| src_filter_action_whitelist | 8 | Src Filter Action WL | |
| zero_window_excd | 8 | Zero-Window Exceeded | |
| src_ud_challenge_sent | 8 | Src Challenge URL Redirect Sent | |
| filter2_match | 8 | Filter2 Match | |
| syn_auth_pass | 8 | SYN Auth Passed | |
| frag_drop | 8 | Frag Dropped | |
| js_challenge_failed | 8 | Challenge Javascript Failed | |
| use_hdr_src_ip | 8 | Use IP In Header As Src | |
| fail_get_line | 8 | Get Line Failed | |
| port_conn_limm_exceed | 8 | Conn Limit Exceeded | |
| ack_retry_gap_drop | 8 | ACK Retry Retry-Gap Failed | |
| filter3_match | 8 | Filter3 Match | |
| req_sz_8k | 8 | Request Payload Size Less Than 8K | |
| src_policy_drop | 8 | Src Policy Dropped | |
| conn_close_w_idle | 8 | Idle Connections Closed | |
| sess_create | 8 | Session Create | |
| port_bytes_drop | 8 | Inbound Bytes Dropped | |
| exceed_drop_prate_src | 8 | Src Pkt Rate Exceeded | |
| req_retran | 8 | Request Retransmit | |
| filter7_match | 8 | Filter7 Match | |
| ud_challenge_sent | 8 | Challenge URL Redirect Sent | |
| header_name_too_long | 8 | Header Name Too Long | |
| chunk_bad | 8 | Bad Payload Chunk | |
| tcp_filter_total_not_match | 8 | Filter Total Not Matched | |
| pkts_retrans | 8 | TCP Retransmit | |
| src_http_auth_drop | 8 | Src HTTP Auth Dropped | |
| wellknown_sport_drop | 8 | TCP SrcPort Wellknown | |
| src_syn_cookie_fail | 8 | Src SYN Cookie Failed | |
| syn_retry_failed | 8 | SYN Retry Failed | |
| invalid_header | 8 | HTTP Header Invalid | |
| ack_retry_init | 8 | ACK Retry Init | |
| tcp_filter1_match | 8 | Filter1 Match | |
| src_dos_policy_violation | 8 | Src Policy Violation | |
| parse_req_line_too_long | 8 | Malform Request Line Too Long | |
| req_http10 | 8 | Request HTTP 1.0 | |
| req_http11 | 8 | Request HTTP 1.1 | |
| req_connect | 8 | Request Method CONNECT | |
| policy_drop | 8 | Policy Dropped | |
| filter_action_default_pass | 8 | Filter Action Default Pass | |
| tcp_filter_action_default_pass | 8 | Filter Action Default Pass | |
| uri_filter_match | 8 | URI Filter Match | |
| syn_retry_pass | 8 | SYN Retry Passed | |
| tcp_filter3_match | 8 | Filter3 Match | |
| syn_cookie_fail | 8 | SYN Cookie Failed | |
| req_head | 8 | Request Method HEAD | |
| src_syn_retry_failed | 8 | Src SYN Retry Failed | |
| filter_action_drop | 8 | Filter Action Drop | |
| src_ack_retry_rto_fail | 8 | Src ACK Retry RTO Failed | |
| conn_zwindow_rate_excd | 8 | TCP Conn Zero-Window Rate Exceeded | |
| req_sz_16k | 8 | Request Payload Size Less Than 16K | |
| idle_timeout | 8 | Idle Timeout | |
| req_sz_64k | 8 | Request Payload Size Less Than 64K | |
| partial_header | 8 | Partial Header | |
| referer_filter_blacklist | 8 | Referer Filter Blacklisted | |
| port_pkt_rate_exceed | 8 | Packet Rate Exceeded | |
| syn_retry_gap_drop | 8 | SYN Retry-Gap Failed | |
| ack_retry_rto_pass | 8 | ACK Retry RTO Passed | |
| outbound_port_rcvd | 8 | Outbound Packets Received | |
| filter8_drop | 8 | Filter8 Match Dropped | |
| resp_code_2xx | 8 | HTTP Status Code 2XX | |
| line_too_long | 8 | Line Too Long | |
| src_syn_retry_rto_pass | 8 | Src SYN Retry RTO Passed | |
| port_rcvd | 8 | Inbound Packets Received | |
| src_syn_retry_rto_fail | 8 | Src SYN Retry RTO Failed | |
| conn_close_half_open | 8 | Half Open Connections Closed | |
| req_sz_1k | 8 | Request Payload Size Less Than 1K | |
| http_auth_resp | 8 | HTTP Auth Responded | |
| src_syn_retry_rto_progress | 8 | Src SYN Retry RTO Progress | |
| src_ack_retry_rto_pass | 8 | Src ACK Retry RTO Passed | |
| port_kbit_rate_exceed_pkt | 8 | KiBit Rate Exceeded Count | |
| conn_prate_excd | 8 | TCP Conn Pkt Rate Exceeded | |
| exceed_drop_crate_src | 8 | Src Conn Rate Exceeded | |
| src_rst_cookie_fail | 8 | Src RST Cookie Failed | |
| resp_code_3xx | 8 | HTTP Status Code 3XX | |
| src_filter_action_drop | 8 | Src Filter Action Drop |
stats l4-ssl-port¶
| Counter | Size | Description | |
|---|---|---|---|
| filter_none_match | 8 | Filter Not Matched | |
| src_well_known_port | 8 | Src TCP SrcPort Wellknown | |
| src_ack_auth_fail | 8 | Src ACK Retry Failed | |
| src_conn_rexmit_rate_excd | 8 | Src TCP Conn Retransmit Rate Exceeded | |
| tcp_rexmit_syn_limit_drop | 8 | TCP SYN Retransmit Exceeded Drop | |
| outbound_port_bytes_sent | 8 | Outbound Bytes Forwarded | |
| filter_total_not_match | 8 | Filter Total Not Matched | |
| src_ack_retry_gap_drop | 8 | Src ACK Retry Retry-Gap Failed | |
| filter4_match | 8 | Filter4 Match | |
| src_filter_action_drop | 8 | Src Filter Action Drop | |
| sess_aged | 8 | Sessions Aged Out | |
| tcp_auth_resp | 8 | TCP Auth Responded | |
| conn_close | 8 | Connections Closed | |
| syn_auth_fail | 8 | SYN Auth Failed | |
| syn_retry_init | 8 | SYN Retry Init | |
| renegotiation_exceed | 8 | Renegotiation Exceeded | |
| er_condition | 8 | Error Condition | |
| wellknown_sport_drop | 8 | TCP SrcPort Wellknown | |
| conn_rexmit_rate_excd | 8 | TCP Conn Retransmit Rate Exceeded | |
| outbound_port_bytes | 8 | Outbound Bytes Received | |
| out_of_seq_excd | 8 | Out-Of-Seq Exceeded | |
| conn_close_w_rst | 8 | RST Connections Closed | |
| filter_action_default_pass | 8 | Filter Action Default Pass | |
| src_ack_retry_rto_progress | 8 | Src ACK Retry RTO Progress | |
| src_filter_action_blacklist | 8 | Src Filter Action Blacklist | |
| processed | 8 | Packets Processed | |
| src_retransmit_excd | 8 | Src Retransmit Exceeded | |
| tcp_rexmit_syn_limit_bl | 8 | TCP SYN Retransmit Exceeded Blacklist | |
| reset_while_other_in_handshake | 8 | Reset While Others in Handshake | |
| drop_packet | 8 | Packets Dropped | |
| outbound_port_drop | 8 | Outbound Packets Dropped | |
| filter5_match | 8 | Filter5 Match | |
| tcp_auth_drop | 8 | TCP Auth Dropped | |
| src_filter_action_default_pass | 8 | Src Filter Action Default Pass | |
| syn_cookie_fail | 8 | SYN Cookie Failed | |
| src_syn_retry_rto_fail | 8 | Src SYN Retry RTO Failed | |
| syn_retry_rto_progress | 8 | SYN Retry RTO Progress | |
| ssl_auth_drop | 8 | SSL Auth Dropped | |
| syn_retry_pass | 8 | SYN Retry Passed | |
| rst_cookie_fail | 8 | RST Cookie Failed | |
| ack_retry_rto_fail | 8 | ACK Retry RTO Failed | |
| is_ssl3 | 8 | SSL v3 | |
| src_req_rate_exceed | 8 | Src Request Rate Exceeded | |
| frag_rcvd | 8 | Frag Received | |
| src_syn_retry_init | 8 | Src SYN Retry Init | |
| outbound_port_bytes_drop | 8 | Outbound Bytes Dropped | |
| syn_retry_rto_pass | 8 | SYN Retry RTO Passed | |
| bl | 8 | Dst Blacklisted | |
| filter1_match | 8 | Filter1 Match | |
| port_bytes | 8 | Inbound Bytes Received | |
| sess_create_inbound | 8 | Inbound Sessions Created | |
| unauth_drop | 8 | TCP Unauth Dropped | |
| filter_auth_fail | 8 | Filter Auth Failed | |
| conn_create_from_syn | 8 | Connections Created From SYN | |
| do_auth_handshake | 8 | Auth Handshake | |
| auth_handshake_bl | 8 | Auth Handshake Blacklisted | |
| src_zero_window_excd | 8 | Src Zero-Window Exceeded | |
| ack_auth_fail | 8 | ACK Retry Failed | |
| src_drop | 8 | Src Packets Dropped | |
| exceed_drop_brate_src_pkt | 8 | Src KiBit Rate Exceeded Count | |
| src_conn_ofo_rate_excd | 8 | Src TCP Conn Out-Of-Seq Rate Exceeded | |
| syn_retry_gap_drop | 8 | SYN Retry-Gap Failed | |
| conn_create_from_ack | 8 | Connections Created From ACK | |
| auth_handshake_fail | 8 | Auth Handshake Fail | |
| src_syn_retry_gap_drop | 8 | Src SYN Retry-Gap Failed | |
| syn_drop | 8 | SYN Dropped | |
| port_conn_rate_exceed | 8 | Conn Rate Exceeded | |
| port_kbit_rate_exceed_pkt | 8 | KiBit Rate Exceeded Count | |
| new_syn | 8 | TCP SYN | |
| src_policy_reset | 8 | Src Policy Reset | |
| src_syn_cookie_sent | 8 | Src SYN Cookie Sent | |
| port_bytes_sent | 8 | Inbound Bytes Forwarded | |
| exceed_drop_brate_src | 8 | Src KiBit Rate Exceeded | |
| auth_handshake_success | 8 | Auth Handshake Success | |
| src_out_of_seq_excd | 8 | Src Out-Of-Seq Exceeded | |
| ssl_auth_resp | 8 | SSL Auth Responded | |
| port_kbit_rate_exceed | 8 | KiBit Rate Exceeded | |
| dst_req_rate_exceed | 8 | Dst Request Rate Exceeded | |
| src_ssl_auth_drop | 8 | Src SSL Auth Dropped | |
| src_unauth_drop | 8 | Src TCP Unauth Dropped | |
| filter_action_whitelist | 8 | Filter Action WL | |
| src_conn_pkt_rate_excd | 8 | Src TCP Conn Pkt Rate Exceeded | |
| port_src_bl | 8 | Src Blacklisted | |
| outbound_port_pkt_sent | 8 | Outbound Packets Forwarded | |
| sess_create_outbound | 8 | Outbound Sessions Created | |
| conn_close_w_fin | 8 | FIN Connections Closed | |
| auth_handshake_timeout | 8 | Auth Handshake Timeout | |
| src_ack_retry_rto_pass | 8 | Src ACK Retry RTO Passed | |
| src_conn_zwindow_rate_excd | 8 | Src TCP Conn Zero-Window Rate Exceeded | |
| src_ack_retry_init | 8 | Src ACK Retry Init | |
| filter_action_blacklist | 8 | Filter Action Blacklist | |
| port_pkt_sent | 8 | Inbound Packets Forwarded | |
| syn_auth_pass | 8 | SYN Auth Passed | |
| syn_retry_rto_fail | 8 | SYN Retry RTO Failed | |
| syn_cookie_sent | 8 | SYN Cookie Sent | |
| retransmit_excd | 8 | Retransmit Exceeded | |
| src_syn_auth_fail | 8 | Src SYN Auth Failed | |
| src_filter_action_whitelist | 8 | Src Filter Action WL | |
| zero_window_excd | 8 | Zero-Window Exceeded | |
| conn_ofo_rate_excd | 8 | TCP Conn Out-Of-Seq Rate Exceeded | |
| filter2_match | 8 | Filter2 Match | |
| frag_drop | 8 | Frag Dropped | |
| port_conn_limm_exceed | 8 | Conn Limit Exceeded | |
| filter3_match | 8 | Filter3 Match | |
| exceed_drop_climit_src | 8 | Src Conn Limit Exceeded | |
| conn_close_w_idle | 8 | Idle Connections Closed | |
| sess_create | 8 | Session Create | |
| port_bytes_drop | 8 | Inbound Bytes Dropped | |
| exceed_drop_prate_src | 8 | Src Pkt Rate Exceeded | |
| ack_retry_pass | 8 | ACK Retry Passed | |
| is_tls1_2 | 8 | TLS v1.2 | |
| is_tls1_1 | 8 | TLS v1.1 | |
| is_tls1_0 | 8 | TLS v1.0 | |
| policy_reset | 8 | Policy Reset | |
| syn_retry_failed | 8 | SYN Retry Failed | |
| ack_retry_init | 8 | ACK Retry Init | |
| policy_drop | 8 | Policy Dropped | |
| ack_retry_gap_drop | 8 | ACK Retry Retry-Gap Failed | |
| src_syn_retry_failed | 8 | Src SYN Retry Failed | |
| filter_action_drop | 8 | Filter Action Drop | |
| src_ack_retry_rto_fail | 8 | Src ACK Retry RTO Failed | |
| conn_zwindow_rate_excd | 8 | TCP Conn Zero-Window Rate Exceeded | |
| renegotiation_incomplete | 8 | Renegotiation Incomplete | |
| ack_retry_rto_progress | 8 | ACK Retry RTO Progress | |
| port_pkt_rate_exceed | 8 | Packet Rate Exceeded | |
| port_drop | 8 | Inbound Packets Dropped | |
| ack_retry_rto_pass | 8 | ACK Retry RTO Passed | |
| outbound_port_rcvd | 8 | Outbound Packets Received | |
| src_syn_cookie_fail | 8 | Src SYN Cookie Failed | |
| src_syn_retry_rto_pass | 8 | Src SYN Retry RTO Passed | |
| port_rcvd | 8 | Inbound Packets Received | |
| is_renegotiation | 8 | SSL Renegotiation | |
| conn_close_half_open | 8 | Half Open Connections Closed | |
| src_syn_retry_rto_progress | 8 | Src SYN Retry RTO Progress | |
| conn_prate_excd | 8 | TCP Conn Pkt Rate Exceeded | |
| exceed_drop_crate_src | 8 | Src Conn Rate Exceeded | |
| src_rst_cookie_fail | 8 | Src RST Cookie Failed | |
| src_drop_packet | 8 | Src Packets Dropped |
stats tcp-port¶
| Counter | Size | Description | |
|---|---|---|---|
| src_ack_auth_fail | 8 | Src ACK Retry Failed | |
| src_well_known_port | 8 | Src TCP SrcPort Wellknown | |
| tcp_rexmit_syn_limit_drop | 8 | TCP SYN Retransmit Exceeded Drop | |
| outbound_port_bytes_sent | 8 | Outbound Bytes Forwarded | |
| filter_total_not_match | 8 | Filter Total Not Matched | |
| src_ack_retry_gap_drop | 8 | Src ACK Retry Retry-Gap Failed | |
| filter4_match | 8 | Filter4 Match | |
| sess_aged | 8 | Sessions Aged Out | |
| tcp_auth_resp | 8 | TCP Auth Responded | |
| conn_close | 8 | Connections Closed | |
| syn_auth_fail | 8 | SYN Auth Failed | |
| syn_retry_init | 8 | SYN Retry Init | |
| wellknown_sport_drop | 8 | TCP SrcPort Wellknown | |
| conn_rexmit_rate_excd | 8 | TCP Conn Retransmit Rate Exceeded | |
| outbound_port_bytes | 8 | Outbound Bytes Received | |
| out_of_seq_excd | 8 | Out-Of-Seq Exceeded | |
| conn_close_w_rst | 8 | RST Connections Closed | |
| filter_action_default_pass | 8 | Filter Action Default Pass | |
| src_ack_retry_rto_progress | 8 | Src ACK Retry RTO Progress | |
| src_filter_action_blacklist | 8 | Src Filter Action Blacklist | |
| src_retransmit_excd | 8 | Src Retransmit Exceeded | |
| tcp_rexmit_syn_limit_bl | 8 | TCP SYN Retransmit Exceeded Blacklist | |
| outbound_port_drop | 8 | Outbound Packets Dropped | |
| filter5_match | 8 | Filter5 Match | |
| tcp_auth_drop | 8 | TCP Auth Dropped | |
| src_filter_action_default_pass | 8 | Src Filter Action Default Pass | |
| syn_cookie_fail | 8 | SYN Cookie Failed | |
| src_syn_retry_rto_fail | 8 | Src SYN Retry RTO Failed | |
| syn_retry_rto_progress | 8 | SYN Retry RTO Progress | |
| src_conn_rexmit_rate_excd | 8 | Src TCP Conn Retransmit Rate Exceeded | |
| src_out_of_seq_excd | 8 | Src Out-Of-Seq Exceeded | |
| rst_cookie_fail | 8 | RST Cookie Failed | |
| ack_retry_rto_fail | 8 | ACK Retry RTO Failed | |
| frag_rcvd | 8 | Frag Received | |
| src_syn_retry_init | 8 | Src SYN Retry Init | |
| outbound_port_bytes_drop | 8 | Outbound Bytes Dropped | |
| syn_retry_rto_pass | 8 | SYN Retry RTO Passed | |
| bl | 8 | Dst Blacklisted | |
| filter1_match | 8 | Filter1 Match | |
| port_bytes | 8 | Inbound Bytes Received | |
| sess_create_inbound | 8 | Inbound Sessions Created | |
| filter_auth_fail | 8 | Filter Auth Failed | |
| conn_create_from_syn | 8 | Connections Created From SYN | |
| exceed_drop_brate_src_pkt | 8 | Src KiBit Rate Exceeded Count | |
| src_zero_window_excd | 8 | Src Zero-Window Exceeded | |
| ack_auth_fail | 8 | ACK Retry Failed | |
| src_drop | 8 | Src Packets Dropped | |
| src_conn_ofo_rate_excd | 8 | Src TCP Conn Out-Of-Seq Rate Exceeded | |
| syn_retry_gap_drop | 8 | SYN Retry-Gap Failed | |
| conn_create_from_ack | 8 | Connections Created From ACK | |
| filter_none_match | 8 | Filter Not Matched | |
| src_syn_retry_gap_drop | 8 | Src SYN Retry-Gap Failed | |
| syn_drop | 8 | SYN Dropped | |
| port_conn_rate_exceed | 8 | Conn Rate Exceeded | |
| port_kbit_rate_exceed_pkt | 8 | KiBit Rate Exceeded Count | |
| unauth_drop | 8 | TCP Unauth Dropped | |
| src_syn_cookie_sent | 8 | Src SYN Cookie Sent | |
| port_bytes_sent | 8 | Inbound Bytes Forwarded | |
| exceed_drop_brate_src | 8 | Src KiBit Rate Exceeded | |
| port_kbit_rate_exceed | 8 | KiBit Rate Exceeded | |
| src_unauth_drop | 8 | Src TCP Unauth Dropped | |
| filter_action_whitelist | 8 | Filter Action WL | |
| src_conn_pkt_rate_excd | 8 | Src TCP Conn Pkt Rate Exceeded | |
| port_src_bl | 8 | Src Blacklisted | |
| outbound_port_pkt_sent | 8 | Outbound Packets Forwarded | |
| sess_create_outbound | 8 | Outbound Sessions Created | |
| conn_close_w_fin | 8 | FIN Connections Closed | |
| src_ack_retry_rto_pass | 8 | Src ACK Retry RTO Passed | |
| src_conn_zwindow_rate_excd | 8 | Src TCP Conn Zero-Window Rate Exceeded | |
| src_ack_retry_init | 8 | Src ACK Retry Init | |
| filter_action_blacklist | 8 | Filter Action Blacklist | |
| port_pkt_sent | 8 | Inbound Packets Forwarded | |
| syn_auth_pass | 8 | SYN Auth Passed | |
| syn_retry_rto_fail | 8 | SYN Retry RTO Failed | |
| syn_cookie_sent | 8 | SYN Cookie Sent | |
| retransmit_excd | 8 | Retransmit Exceeded | |
| src_syn_auth_fail | 8 | Src SYN Auth Failed | |
| src_filter_action_whitelist | 8 | Src Filter Action WL | |
| zero_window_excd | 8 | Zero-Window Exceeded | |
| conn_ofo_rate_excd | 8 | TCP Conn Out-Of-Seq Rate Exceeded | |
| filter2_match | 8 | Filter2 Match | |
| frag_drop | 8 | Frag Dropped | |
| port_conn_limm_exceed | 8 | Conn Limit Exceeded | |
| filter3_match | 8 | Filter3 Match | |
| exceed_drop_climit_src | 8 | Src Conn Limit Exceeded | |
| conn_close_w_idle | 8 | Idle Connections Closed | |
| sess_create | 8 | Session Create | |
| port_bytes_drop | 8 | Inbound Bytes Dropped | |
| exceed_drop_prate_src | 8 | Src Pkt Rate Exceeded | |
| ack_retry_pass | 8 | ACK Retry Passed | |
| src_syn_cookie_fail | 8 | Src SYN Cookie Failed | |
| syn_retry_failed | 8 | SYN Retry Failed | |
| ack_retry_init | 8 | ACK Retry Init | |
| ack_retry_gap_drop | 8 | ACK Retry Retry-Gap Failed | |
| syn_retry_pass | 8 | SYN Retry Passed | |
| src_syn_retry_failed | 8 | Src SYN Retry Failed | |
| filter_action_drop | 8 | Filter Action Drop | |
| src_ack_retry_rto_fail | 8 | Src ACK Retry RTO Failed | |
| conn_zwindow_rate_excd | 8 | TCP Conn Zero-Window Rate Exceeded | |
| ack_retry_rto_progress | 8 | ACK Retry RTO Progress | |
| port_pkt_rate_exceed | 8 | Packet Rate Exceeded | |
| port_drop | 8 | Inbound Packets Dropped | |
| ack_retry_rto_pass | 8 | ACK Retry RTO Passed | |
| outbound_port_rcvd | 8 | Outbound Packets Received | |
| src_syn_retry_rto_pass | 8 | Src SYN Retry RTO Passed | |
| port_rcvd | 8 | Inbound Packets Received | |
| conn_close_half_open | 8 | Half Open Connections Closed | |
| src_syn_retry_rto_progress | 8 | Src SYN Retry RTO Progress | |
| conn_prate_excd | 8 | TCP Conn Pkt Rate Exceeded | |
| exceed_drop_crate_src | 8 | Src Conn Rate Exceeded | |
| src_rst_cookie_fail | 8 | Src RST Cookie Failed | |
| src_filter_action_drop | 8 | Src Filter Action Drop |
stats udp-port¶
| Counter | Size | Description | |
|---|---|---|---|
| filter_none_match | 8 | Filter Not Matched | |
| port_conn_limm_exceed | 8 | Conn Limit Exceeded | |
| filter3_match | 8 | Filter3 Match | |
| ntp_monlist_req | 8 | NTP Monlist Request | |
| outbound_port_drop | 8 | Outbound Packets Dropped | |
| payload_too_big | 8 | UDP Payload Too Large | |
| sess_create | 8 | Session Create | |
| port_conn_rate_exceed | 8 | Conn Rate Exceeded | |
| filter5_match | 8 | Filter5 Match | |
| exceed_drop_prate_src | 8 | Src Pkt Rate Exceeded | |
| outbound_port_bytes_sent | 8 | Outbound Bytes Forwarded | |
| exceed_drop_climit_src | 8 | Src Conn Limit Exceeded | |
| udp_auth_drop | 8 | UDP Auth Dropped | |
| src_udp_retry_gap_drop | 8 | Src UDP Retry Retry-Gap Failed | |
| src_ntp_monlist_req | 8 | Src NTP Monlist Request | |
| filter4_match | 8 | Filter4 Match | |
| spoof_detect_fail | 8 | UDP Retry Failed | |
| sess_create_outbound | 8 | Outbound Sessions Created | |
| sess_aged | 8 | Sessions Aged Out | |
| port_bytes_sent | 8 | Inbound Bytes Forwarded | |
| exceed_drop_brate_src | 8 | Src KiBit Rate Exceeded | |
| port_kbit_rate_exceed_pkt | 8 | KiBit Rate Exceeded Count | |
| port_kbit_rate_exceed | 8 | KiBit Rate Exceeded | |
| udp_retry_gap_drop | 8 | UDP Retry Retry-Gap Failed | |
| payload_too_small | 8 | UDP Payload Too Small | |
| src_ntp_monlist_resp | 8 | Src NTP Monlist Response | |
| filter_action_default_pass | 8 | Filter Action Default Pass | |
| filter_action_whitelist | 8 | Filter Action Whitelist | |
| src_conn_pkt_rate_excd | 8 | Src UDP Conn Pkt Rate Exceeded | |
| port_src_bl | 8 | Src Blacklisted | |
| src_filter_action_default_pass | 8 | Src Filter Action Default Pass | |
| outbound_port_bytes_drop | 8 | Outbound Bytes Dropped | |
| outbound_port_pkt_sent | 8 | Outbound Packets Forwarded | |
| wellknown_sport_drop | 8 | UDP SrcPort Wellknown | |
| udp_retry_init | 8 | UDP Retry Init | |
| bl | 8 | Dst Blacklisted | |
| sess_create_inbound | 8 | Inbound Sessions Created | |
| ntp_monlist_resp | 8 | NTP Monlist Response | |
| filter_action_drop | 8 | Filter Action Drop | |
| filter1_match | 8 | Filter1 Match | |
| filter_auth_fail | 8 | Filter Auth Failed | |
| src_udp_retry_init | 8 | Src UDP Retry Init | |
| exceed_drop_brate_src_pkt | 8 | Src KiBit Rate Exceeded Count | |
| src_payload_too_big | 8 | Src UDP Payload Too Large | |
| src_well_known_port | 8 | Src UDP SrcPort Wellknown | |
| filter_action_blacklist | 8 | Filter Action Blacklist | |
| port_pkt_rate_exceed | 8 | Packet Rate Exceeded | |
| port_pkt_sent | 8 | Inbound Packets Forwarded | |
| udp_retry_pass | 8 | UDP Retry Passed | |
| src_filter_action_blacklist | 8 | Src Filter Action Blacklist | |
| outbound_port_rcvd | 8 | Outbound Packets Received | |
| port_bytes_drop | 8 | Inbound Bytes Dropped | |
| outbound_port_bytes | 8 | Outbound Bytes Received | |
| port_rcvd | 8 | Inbound Packets Received | |
| src_filter_action_whitelist | 8 | Src Filter Action Whitelist | |
| src_drop | 8 | Src Packets Dropped | |
| port_bytes | 8 | Inbound Bytes Received | |
| frag_rcvd | 8 | Frag Received | |
| src_payload_too_small | 8 | Src UDP Payload Too Small | |
| conn_prate_excd | 8 | UDP Conn Pkt Rate Exceeded | |
| exceed_drop_crate_src | 8 | Src Conn Rate Exceeded | |
| filter2_match | 8 | Filter2 Match | |
| frag_drop | 8 | Frag Dropped | |
| port_drop | 8 | Inbound Packets Dropped | |
| src_filter_action_drop | 8 | Src Filter Action Drop |
operational data¶
| Counter | Size | Description | |
|---|---|---|---|
| app-stat | flag | app-stat | |
| resource-usage | flag | resource-usage | |
| reource-limit-alloc | string | reource-limit-alloc | |
| all-ip-protos | flag | all-ip-protos | |
| all-src-ports | flag | all-src-ports | |
| entry-displayed-count | number | entry-displayed-count | |
| ddos_entry_list | ddos_entry_list | ||
| service-displayed-count | number | service-displayed-count | |
| all-ports | flag | all-ports | |
| resource-limit-config | string | resource-limit-config | |
| sflow-source-id | flag | sflow-source-id | |
| port-protocol | string | port-protocol | |
| resource-limit-remain | string | resource-limit-remain |