Configuration of the User Against Malicious Attacks-HUAWEI

*******User Against Malicious Attacks********

To enable anti-IP spoofing for service port 1 in service VLAN 10, do as follows:

OLT(config)#security anti-ipspoofing enable
OLT(config)#vlan service-profile profile-id 2
OLT(config-vlan-srvprof-2)#security anti-ipspoofing enable
  Info: Please use the commit command to make modifications take effect
OLT(config-vlan-srvprof-2)#commit
OLT(config-vlan-srvprof-2)#quit
OLT(config)#vlan bind service-profile 10 profile-id 2
OLT(config)#security anti-ipspoofing service-port 1 enable

Assume that service port 2 is in VLAN 10. To enable anti-MAC spoofing for VLAN 10, and set the maximum number of MAC addresses that can be bound to service port 2 to 7, do as follows:

OLT(config)#security anti-macspoofing enable
OLT(config)#security anti-macspoofing vlan 10 enable
OLT(config)#security anti-macspoofing max-mac-count service-port 2 7 

                               *******END******

Be the first to comment

Leave a Reply

Your email address will not be published.


*


For security, use of Google's reCAPTCHA service is required which is subject to the Google Privacy Policy and Terms of Use.

I agree to these terms.