fwaccel dos stats

Description

The "fwaccel dos stats" (for IPv4) and "fwaccel6 dos stats" (for IPv6) commands show and clear the DoS real-time statistics in SecureXL.

Important:

  • (missing or bad snippet)

    On Scalable Platforms (ElasticXL, Maestro, Scalable Chassis), you must run the required commands only in this way:

    • On the Security Group command line, only on the SMO Security Group Member.

    • In the Global Gaia Clish (gclish), must run these commands:

      • fwaccel dos <Options>

      • fwaccel6 dos <Options>

    • In the Expert mode, must run these commands (start with the "g_" prefix):

      • g_fwaccel dos <Options>

      • g_fwaccel6 dos <Options>

  • In the VSNext mode / Traditional VSX mode, you must go to the context of an applicable Virtual Gateway / Virtual System.

    • In Gaia Clish, run: set virtual-system <VSID>

    • In the Expert mode, run: vsenv <VSID>

Syntax

{fwaccel | fwaccel6} dos stats

      {-h | --help}

      clear

      get

Parameters

Parameter

Description

No Parameters

Shows the applicable built-in usage.

-h

--help}

Shows the applicable built-in usage.

clear

Clears the real-time statistics counters.

get

Shows the real-time statistics counters.

Note - To see the counters for DoS / Rate Limiting rules, run "fwaccel dos rate counters".

See fwaccel dos rate.

Example - Get the current DoS statistics

[Expert@MyGW:0]# fwaccel dos stats get

Firewall Instances in Aggregate:
    Memory Usage:                      35376
    Total Active Connections:  (FW connection limiting inactive)
    New Connections/Second:    (FW connection limiting inactive)
    Number of Elements in Tables:
        Penalty Box Violating IPs:                     0
        Rate Limit Source Only Tracks:                 0
        Rate Limit Source and Service Tracks:          0
        Rate Limit Dest Only Tracks:                   0
        Rate Limit Dest and Service Tracks:            0

SecureXL:
    Memory Usage:                      12852
    Packets/Second:                    (rate limiting inactive)
    Bytes/Second:                      (rate limiting inactive)
    Reasons Packets Dropped:                  Monitored Only:
        IP Fragment:                0                               0
        IP Option:                  0                               0
        Penalty Box:                0                               0
        Deny List:                  0                               0
        IOC Deny List:              0                               0
        Rate Limit:                 0                               0
    Number of Elements in Tables:
        Penalty Box IPs:                               0
        Deny List IPs:                                 0
        IOC Deny List IPs:                             0
        IOC Monitor-Only IPs:                          0
        IOC External Deny List IPs:                    0
        IOC External Monitor-Only IPs:                 0
        Rate Limit Matches:                            0
        Rate Limit Source Only Tracks:                 0
        Rate Limit Source and Service Tracks:          0
        Rate Limit Dest Only Tracks:                   0
        Rate Limit Dest and Service Tracks:            0
[Expert@MyGW:0]#