R2511-HP MSR Router Series Security Command Reference(V5)
481
Syntax
attack-defense policy policy-number [ interface interface-type interface-number ]
undo attack-defense policy policy-number [ interface interface-type interface-number ]
Default
No attack protection policy is created.
Views
System view
Default command level
2: System level
Parameters
policy-number: Specifies the sequence number of an attack protection policy, in the range of 1 to 128.
interface interface-type interface-number: Specifies the interface that uses the policy exclusively. If you
specify an interface, the policy is applied to the interface only. Otherwise, the policy is applied to
multiple interfaces.
Examples
# Create attack protection policy 1.
<Sysname> system-view
[Sysname] attack-defense policy 1
[Sysname-attack-defense-policy-1]
Related commands
display attack-defense policy
blacklist enable
Use blacklist enable to enable the blacklist function.
Use undo blacklist enable to restore the default.
Syntax
blacklist enable
undo blacklist enable
Default
The blacklist function is disabled.
Views
System view
Default command level
2: System level
Usage guidelines
After the blacklist function is enabled, you can add blacklist entries manually or configure the device to
add blacklist entries automatically. The auto-blacklist function must cooperate with the scanning attack