No relevant resource is found in the selected language.
Enterprise
Worldwide
Huawei Global - English
Support Documentation
WLAN AC V200R010C00 Command Reference
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
auto-defend action

auto-defend action

Function

The auto-defend action command configures the device to discard packets sent from attack sources.

The undo auto-defend action command configures the device not to discard packets sent from attack sources.

By default, the device does not discard packets sent from attack sources.

Format

auto-defend action deny [ timer time-length ]

undo auto-defend action

Parameters

Parameter

Description

Value

deny

Configures the device to discard packets sent from an attack source.

-

timer time-length

Specifies the duration in which the device discards packets sent from an attack source.

The value is an integer that ranges from 5 to 86400, in seconds.

Views

Attack defense policy view

Default Level

2: Configuration level

Usage Guidelines

Usage Scenario

The attack source tracing process consists of four phases: packet parsing, traffic analysis, attack source identification, and attack source punishment. The auto-defend action command is applied to the attack source punishment phase. The device discards the packets sent from the identified source.

The auto-defend action command configures the device to punish attack sources. When the device detects an attacker, it discards packets sent from the attack source. This protects the device against attacks.

Prerequisites

Attack source tracing has been enabled using the auto-defend enable command.

Precautions

The device punishes an attack source during the duration specified by timer time-length. When the duration expires, the device stops discarding packets sent from this attack source. If the attack source continues attacking the device, the device starts to discard packets sent from this attack source again.

Example

# Configure the device to discard packets sent from an attack source, and set the duration to 20000 seconds.

<AC6605> system-view
[AC6605] cpu-defend policy mypolicy
[AC6605-cpu-defend-policy-mypolicy] auto-defend enable
[AC6605-cpu-defend-policy-mypolicy] auto-defend action deny timer 20000
Translation
简体中文
Download
Updated: 2021-02-27

Document ID: EDOC1100064351

Views: 3169775

Downloads: 595

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Share
Previous Next
Huawei e+ App Huawei e+

Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :