At an office site, after the USG5360 interworks with NIP, the USG5360 fails to control source attack IP addresses.
Check the configuration on the USG5360. The blacklist function is not enabled. Enable the function. The problem is rectified.
[USG5360]firewall blacklist enable
Captured packets reveal that the IP address that attacks the host is not blocked on the USG5360.
When you configure interworking between the USG5360 and NIP, you must enable the blacklist function on the firewall in addition to configuring the link between the USG5360 and the NIP, if you need policy-driven control of IP addresses.