If an attacker connected to a port initiates a DoS attack, a large number of attack packets sent from this port to the CPU occupy bandwidth. As a result, the CPU cannot process the protocol packets sent from other ports, and services are interrupted.
The port attack defense function effectively limits the number of packets sent to the CPU, and prevents DoS attacks targeting at the CPU.
This function is enabled by default. Before configuring the functions related to port attack defense, enable the port attack defense function.