2.5.1 Message Rate Monitoring (MsgRateMon)

This countermeasure screens various ingress diameter request message to check if the current aggregate request message rate for a given diameter message type is less than the threshold value.

The option is available to configure the threshold value for various diameter message types (that is, Application-ID and Command-Code combinations) used by this countermeasure for screening.

For each diameter message type, aggregate rate is maintained foreign peers (the foreign peers list is the Foreign_WL_Peer_Cfg_Set of Security_Countermeasure_Config Table for this countermeasure).

This countermeasure considers the ingress diameter request message as vulnerable if the current aggregate request message rate of the diameter message type and ingress peer combination is greater than the configured threshold value.

Apart from the mandatory configuration in DSA Mandatory Configuration, configure the tables outlined in this section.