Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
28969
Views
27
Helpful
7
Replies

Message: connections per minute has exceeded the max limit

Go to solution
maria.melendez
Level 1
Level 1

‎10-21-2015 03:18 PM - edited ‎03-08-2019 02:19 AM

Hello!

Today I noticed that I'm getting the following log message from the last couple of days:

%HTTP-4-SERVER_CONN_RATE_EXCEED: Number of connections per minute has exceeded the maximum limit(250)as specified by the platform.

 

Last week, I updated a couple of 4506 switches with the following IOS 15.2(2) E3 and only 2 of them are not getting the log message. 

Can someone help me to troubleshoot this? 

 

Thank you!

 

 

5 people had this problem
Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni

‎10-22-2015 12:01 AM

Hi there,

Either disable the HTTP server function:

!
no ip http server
no ip http secure-server
!

 

Or if you use the HTTP for administration purposes, apply an ACL to ensure that unwanted traffic is dropped:

!
ip http access-list <ACL_number>
!

 

cheers,

Seb.

View solution in original post

7 Replies 7

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni

‎10-22-2015 12:01 AM

Hi there,

Either disable the HTTP server function:

!
no ip http server
no ip http secure-server
!

 

Or if you use the HTTP for administration purposes, apply an ACL to ensure that unwanted traffic is dropped:

!
ip http access-list <ACL_number>
!

 

cheers,

Seb.

Go to solution
maria.melendez
Level 1
Level 1
In response to Seb Rupik

‎10-22-2015 12:35 PM

Thank you! Seb

0 Helpful

Go to solution
ashleystark
Level 1
Level 1
In response to Seb Rupik

‎06-15-2017 08:56 AM

So mine is doing the same thing but we don't manage switches from http at all. Any idea why all of a sudden request would kick off and fill up the log? I was troubleshooting issues an hour ago and now my log has nothing but this message:

Jun 15 11:21:27 EST: %HTTP-4-SERVER_CONN_RATE_EXCEED: Number of connections per minute has exceeded the maximum limit(500)as specified by the platform.

I took your suggestion and "no" ed out those lines but is that the only thing ip http server controls?

device type: 3850 switch running denali 16.3.3

0 Helpful

Go to solution
justjoe
Level 1
Level 1

‎01-28-2019 06:53 AM

OK removing HTTP from the switch soles a problem, the question is what causes it?  Is it a network breach?

In my case there were over 500 attempts or is it a bug?

%HTTP-4-SERVER_CONN_RATE_EXCEED: Number of connections per minute has exceeded the maximum limit(500)as specified by the platform.

0 Helpful

Go to solution
Mark Malone
VIP Alumni
VIP Alumni
In response to justjoe

‎01-28-2019 06:58 AM

Hi
Is someone scanning your network with a vulnerability scanner through HTTP , raid seven and mcaffe scanner cause this on my switches all the time
Its some software doing it , check with your security team , mine were the cause for me , they do it every week , the switch has a limit and the scanners can overrun it by constantly scanning by http
My switch below being scanned
Jan 13 01:52:46.024 UTC: %HTTP-4-SERVER_CONN_RATE_EXCEED: Number of connections per minute has exceeded the maximum limit(250)as specified by the platform.

Go to solution
AZZUNOCPROF
Level 1
Level 1
In response to Mark Malone

‎02-27-2023 06:46 AM

You are right. Thanks, Mark.

0 Helpful

Go to solution
Roger Moore Jr
Cisco Employee
Cisco Employee
In response to justjoe

‎03-31-2023 09:27 AM

You can use the "show ip http server connection" to see where the connections are originating

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card