No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


Fat AP and Cloud AP V200R008C00 CLI-based Configuration Guide

Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Default Configuration

Default Configuration

This section provides the default configuration of local attack defense. You can change the configuration as required.

Table 26-4 and Table 26-5 list the default configuration of local attack defense.

Table 26-4  Default configuration of CPU attack defense
Parameter Default Setting
CPU attack defense policy CPU attack defense policy named default
Rate limit


Rate limit after ALP is enabled During setup of a SSH, Telnet, or FTP connection, if the application-apperceive command is not used, the default rate limit specified by application-apperceive is applied to protocol packets.
  • SSH: 512pps
  • Telnet: 512pps
  • FTP: 1024 pps
Table 26-5  Default configuration of attack source tracing
Parameter Default Setting
Attack defense policy Attack defense policy named default
Automatic attack source tracing Disabled
Threshold for attack source tracing 128 pps
Attack source tracing mode Attack source tracing based on source MAC addresses, source IP addresses, or source ports+VLANs
Types of traced packets

HTTP, HTTPS, FTP, SSH, ARP, CAPWAP, DHCP, ICMP, Telnet, TCP, and TTL-expired packets

Alarm function for attack source tracing Disabled
Alarm threshold for attack source tracing 128 pps
Punishment for attack source tracing Disabled
Updated: 2019-01-11

Document ID: EDOC1000176006

Views: 114077

Downloads: 309

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Previous Next