Subject: Re: Rate limiting ICMP responses?
To: Matt Thomas , <>
From: John Klos <>
List: tech-net
Date: 01/13/2002 20:21:07

> It's already in there.  From sysctl(2):
>       net.inet.icmp.errppslimit                    integer       yes

That, apparently, limits the rate of some error or other. For example:
reva: {31} sysctl net.inet.icmp.errppslimit
net.inet.icmp.errppslimit = 10

Then, from another host:
xira: {1} ping -f reva
PING ( 56 data bytes
^C PING Statistics----
779 packets transmitted, 779 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 0.005/2.463/24.300/3.130 ms
  368.7 packets/sec sent,  368.5 packets/sec received

Obviously, reva is not limiting ICMP responses to 10 a second... So what
DOES net.inet.icmp.errppslimit do? Searching NetBSD gives no clues.

John Klos
Sixgirls Computing Labs