Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document.
Note: Even the most advanced machine translation cannot match the quality of professional translators.
Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
The Blacklist Does Not Take Effect
Common Causes
Possible causes are as follows:
- Packets do not match the rules in the blacklist.
- ACL resources are insufficient.
Procedure
- Run the display cpu-defend policy [ policy-name ] command to check the attack defense policy.
- Check the ACL of the blacklist in the displayed attack defense policy information, and run the display acl acl-number command to check whether service packets match the ACL rule.
- If service packets do not match the ACL rule, run the rule command in the ACL view to modify the ACL rule. If service packets match the ACL rule, the blacklist may fail to be applied because ACL resources are insufficient.