Dynamic Blacklist
Context
When detecting flood attacks or brute force password cracking attacks from a device, an AP reports the device to the AC, and the AC adds the device to a dynamic blacklist. Any packets sent from the device are rejected until the dynamic blacklist entry ages.
Only the S5720-HI, S5730-HI, S5731-H, S5731S-H, S5732-H, S6730-H, S6730S-H, and S6720-HI support Dynamic Blacklist.
This node is only available in the NAC unified and non-NETCONF modes.
The web system is applicable to wireless service deployment on small- and middle-sized networks. For large-sized networks, use other network management systems, such as eSight.
Procedure
- View the dynamic blacklist.
- Choose . On the Dynamic Blacklist page that is displayed, view dynamic blacklist information.
Table 1 Dynamic blacklist parameters Item
Description
MAC Address
MAC address of the device in the dynamic blacklist.
Aging Time (s)
Left aging time for the device in the dynamic blacklist.
Validity Time (s)
Time when the device is added to the dynamic blacklist.
Add to Blacklist Cause
Reason why the device is added to the dynamic blacklist.
- Choose . On the Dynamic Blacklist page that is displayed, view dynamic blacklist information.
- Delete one dynamic blacklist entry or clear the dynamic blacklist.
- Select the target dynamic blacklist entry and click Delete.
- Click Clear to delete all dynamic blacklist entries.