Cisco Bug: CSCuk54794 - The rate limiter appears in the documentation as the last block
Feb 22, 2014
- Cisco Guard DDoS Mitigation Appliances
Known Affected Releases
Symptom: Diagrams that appear in the documentation place the rate limiter module as the last processing block in the Guard. In the actual implementation of release 3.0.8 the rate limiter is done before the sampling of the traffic. Only traffic that is forwarded to the zone is sampled and passed to the recognition thus if all malicious traffic is dropped by the rate limiter no dynamic filter are created during attack. Conditions: Relevant only if the total zone rate limiter is configred or there exist a user filter with a rate limiter.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases