How to configure a blacklist on a CE series switch.

To defend against malicious packet attacks, a switch uses ACLs to add users with specific characteristic into a blacklist and discards packets sent by users in the blacklist.
A maximum of eight blacklists can be configured in an attack defense policy on a switch.
Note:
The ACL to be used must have been created.
The following example applies ACL 2001 to blacklist 2.
system-view
[~HUAWEI] cpu-defend policy test
[*HUAWEI-cpu-defend-policy-test] blacklist 2 acl 2001
[*HUAWEI-cpu-defend-policy-test] commit

Scroll to top