Table of Contents
Advertisement
Each device can have only one attack defense policy applied. If you execute this command multiple
times, the most recent configuration takes effect.
Examples
# Apply attack defense policy atk-policy-1 to the device.
<Sysname> system-view
[Sysname] attack-defense local apply policy atk-policy-1
Related commands
attack-defense policy
display attack-defense policy
attack-defense login block-timeout
Use attack-defense login block-timeout to set the block period during which a login attempt is
blocked.
Use undo attack-defense login block-timeout to restore the default.
Syntax
attack-defense login block-timeout minutes
undo attack-defense login block-timeout
Default
The block period is 60 minutes.
Views
System view
Predefined user roles
network-admin
mdc-admin
Parameters
minutes: Specifies the block period in minutes, in the range of 1 to 2880.
Usage guidelines
After a user fails the maximum number of login attempts, login attack prevention triggers the blacklist
module to add the user's IP address to the blacklist. The block period determines how long the user
is on the blacklist. During the period, login attempts from the user are blocked.
Examples
# Set the block period to 5 minutes.
<Sysname> system-view
[Sysname] attack-defense login block-timeout 5
attack-defense login enable
Use attack-defense login enable to enable login attack prevention.
Use undo attack-defense login enable to disable login attack prevention.
Syntax
attack-defense login enable
524
Advertisement
Table of Contents
