provides the system with guidelines for how aggressively it
discards flows from the flow table. You can customize the eviction policy to prevent flow table
attacks, where a large number of slow flows are used to negatively impact system resources. You
can also set how the system responds to such flow problems in an eviction policy, and attach such
eviction policies globally, to route domains, and to virtual servers, to protect the system,
applications, and network segments with a high level of customization.