Viewing blacklist entries, Configuring intrusion detection, On msr 900/20-1x routers – H3C Technologies H3C MSR 50 User Manual
Page 192: Figure
171
Figure 172 Add a blacklist entry
Table 96 Configuration items
Item
Description
IP Address
Specify the IP address to be added to the blacklist. This IP address cannot be a
broadcast address, a class D address, a class E address, 127.0.0.0/8, or
255.0.0.0/8.
Hold Time
Configure the entry as a non-permanent entry and specify the hold time of the
blacklist entry.
Permanence
Configure the entry as a permanent entry.
Viewing blacklist entries
Select Security Setup > Attack Defend > Blacklist from the navigation to view blacklist entries.
Table 97 Fields description
Field
Description
IP Address
IP address of the blacklist entry.
Add Method
The way in which the blacklist entry was added, Manual or Automatic.
•
Manual: The entry was added manually or has been modified after being
added automatically.
•
Automatic: The entry was added automatically by the scanning attack
protection function.
IMPORTANT:
Modifying an automatically added entry will change the type of the entry to Manual.
Start Time
The time when the blacklist entry was added.
Hold Time
Duration for which the blacklist entry will be held in the blacklist.
Dropped Count
Number of packets matching the blacklist entry and therefore dropped by the
device.
Configuring intrusion detection
On MSR 900/20-1X routers
Select Security Setup > Attack Defend > Intrusion Detection from the navigation tree to enter the intrusion
detection configuration page, as shown in
. Select the box before Enable attack defense