After the USG5360 Interworks With NIP, the USG5360 Fails to Control Source Attack IP Addresses

Publication Date:  2012-07-17 Views:  136 Downloads:  0
Issue Description
At an office site, after the USG5360 interworks with NIP, the USG5360 fails to control source attack IP addresses.
Alarm Information
None.
Handling Process
Check the configuration on the USG5360. The blacklist function is not enabled. Enable the function. The problem is rectified.
 [USG5360]firewall blacklist enable
Root Cause
Captured packets reveal that the IP address that attacks the host is not blocked on the USG5360.
Suggestions
When you configure interworking between the USG5360 and NIP, you must enable the blacklist function on the firewall in addition to configuring the link between the USG5360 and the NIP, if you need policy-driven control of IP addresses.  

END