ltm global-settings traffic-control

ltm global-settings traffic-control(1)		  BIG-IP TMSH Manual	       ltm global-settings traffic-control(1)

NAME
       traffic-control - Configures the global settings that pertain to traffic control for the BIG-IP(r) and
       VIPRION(r) local traffic management systems.

MODULE
       ltm global-settings

SYNTAX
       Configure the traffic-control component within the ltm global-settings module using the syntax shown in the
       following sections.

   MODIFY
	modify traffic-control
	  options:
	    accept-ip-options [disabled | enabled]
	    accept-ip-source-route [disabled | enabled]
	    allow-ip-source-route [ disabled | enabled]
	    continue-matching [ disabled | enabled]
	    max-icmp-rate [integer value: 0 ~ 2147483647]
	    max-reject-rate [ integer value: 1 ~ 1000]
	    max-reject-rate-timeout [ integer value: 0 ~ 300]
	    min-path-mtu [ integer value: 68 ~ 1500]
	    path-mtu-discovery [disabled | enabled]
	    port-find-linear [ integer value: 0 ~ 61439]
	    port-find-random [ integer value: 0 ~ 1024]
	    port-find-threshold-warning [disabled | enabled]
	    port-find-threshold-trigger [integer value: 1 ~ 12]
	    port-find-threshold-timeout [integer value: 0 ~ 300]
	    reject-unmatched [ disabled | enabled]

   DISPLAY
	list traffic-control
	list traffic-control [option name]
	show running-config traffic-control
	show running-config traffic-control [option name]
	  options:
	    all-properties
	    non-default-properties
	    one-line

DESCRIPTION
       You can use the traffic-control component to modify how the system processes local traffic.

EXAMPLES
       modify traffic-control accept-ip-options enabled
	    Specifies that the system accepts IPv4 packets with IP options.

       list traffic-control
	    Displays the local traffic control global settings.

OPTIONS
       accept-ip-options
	    Specifies whether the system accepts IPv4 packets with IP options. The default value is disabled.

       accept-ip-source-route
	    Specifies whether the system accepts IPv4 packets with IP source route options that are destined for
	    Traffic Management Microkernel (TMM). The default value is disabled.

	    To enable this option, you must also enable the accept-ip-options option.

       allow-ip-source-route
	    Specifies whether the system allows IPv4 packets with IP source route options enabled to be routed
	    through Traffic Management Microkernel (TMM). The default value is disabled.

	    To enable this option, you must also enable the accept-ip-options option.

       continue-matching
	    Specifies whether the system matches against a less-specific virtual server when the more-specific one is
	    disabled. When continue-matching is disabled, the default value, the system drops connections that
	    request a disabled virtual server. In this case, the system rejects or drops packets depending on the
	    value of the reject-unmatched option.

       max-icmp-rate
	    Specifies the maximum rate per second at which the system issues Internet Control Message Protocol (ICMP)
	    errors. The default value is 100 errors per second. The range is from 0 (zero) to 2147483647 errors per
	    second. This option is useful for preventing ICMP-message storms.

       max-reject-rate
	    Specifies the maximum rate per second at which the system issues reject packets (TCP RST or ICMP port
	    unreach). The default value is 250 per second. The range is from 1 to 1000 per second.

       max-reject-rate-timeout
	    Specifies the time in seconds which the system ignores icmp port unreach and tcp rst ratelimits on
	    becoming active after a failover. The default value is 30 seconds. The range is from 0 to 300 seconds.

       min-path-mtu
	    Specifies the minimum packet size that can traverse the path without suffering fragmentation, also known
	    as path Maximum Transmission Unit(MTU). The default value is 296. The range is from 68 to 1500.

       path-mtu-discovery
	    Specifies, when enabled, that the system discovers the maximum transmission unit (MTU) that it can send
	    over a path, without fragmenting TCP packets. The default value is enabled.

       port-find-linear
	    Specifies the maximum of ports to linearly search for outbound connections. The default value is 16. The
	    range is from 0 to 61439.

       port-find-random
	    Specifies the maximum of ports to randomly search for outbound connections. The default value is 16. The
	    range is from 0 to 1024.

       port-find-threshold-warning
	    Specifies if the ephemeral port-exhaustion threshold warning is to be monitored. The default is enabled.

       port-find-threshold-trigger
	    Specifies the threshold warning's trigger which is the value of random port attempts when attempting to
	    find an unused outbound port for a connection. The default is 8. The valid range is 1 - 12.

       port-find-threshold-timeout
	    Specifies the threshold warning's timeout. This is the time in seconds since the last trigger value was
	    hit and will drop the tuple if not hit. The default is 30 (1/2 minute) with range from 0 - 300.

       reject-unmatched
	    Specifies, when enabled, that the system returns a TCP RESET or ICMP_UNREACH packet if no virtual servers
	    on the system match the destination address of the incoming packet. When this option is disabled, the
	    system silently drops the unmatched packet. The default value is enabled.

SEE ALSO
       list, ltm node, modify, show, tmsh

COPYRIGHT
       No part of this program may be reproduced or transmitted in any form or by any means, electronic or
       mechanical, including photocopying, recording, or information storage and retrieval systems, for any purpose
       other than the purchaser's personal use, without the express written permission of F5 Networks, Inc.

       F5 Networks and BIG-IP (c) Copyright 2009-2013, 2015-2016. All rights reserved.

BIG-IP						      2016-03-14	       ltm global-settings traffic-control(1)