Configuring Attack Source Tracing - Huawei Quidway S3700 Series Configuration Manual
Hide thumbs
Also See for Quidway S3700 Series:
- Configuration manual (398 pages) ,
- Quick start manual (70 pages) ,
- Manual (69 pages)
Table of Contents
Advertisement
Quidway S3700 Series Ethernet Switches
Configuration Guide - Security
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
cpu-defend policy policy-name
An attack defense policy is created and the attack defense policy view is displayed.
The S3700 supports up to 13 attack defense policies. Attack defense policy default is
automatically generated in the system by default and is applied to all boards. Attack defense
policy default cannot be deleted and its parameters cannot be modified. The rest of 12 policies
can be created and deleted.
Step 3 (Optional) Run:
description text
The description of the attack defense policy is set.
----End
6.4.3 Configuring Attack Source Tracing
Configuring attack source tracing involves the configuration of automatic attack source tracing
and the alarm function of attack source tracing.
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
cpu-defend policy policy-name
The attack defense policy view is displayed.
Step 3 Run:
auto-defend enable
Automatic attack source tracing is enabled.
By default, automatic attack source tracing is disabled.
Step 4 Run:
auto-defend threshold threshold
The threshold of attack source tracing is set.
By default, the threshold of attack source tracing is 128 pps.
Step 5 (Optional) Run:
auto-defend alarm enable
The alarm function of attack source tracing is enabled.
Issue 01 (2011-07-15)
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
6 Local Attack Defense Configuration
185
Advertisement
Table of Contents
