display auto-port-defend whitelist

Function

The display auto-port-defend whitelist command displays information about the interface attack defense whitelist.

Format

display auto-port-defend whitelist [ slot slot-id ]

Parameters

Parameter	Description	Value
slot slot-id	Specifies a slot ID if stacking is not configured. Specifies a stack ID in a stack.	Set the value according to the device configuration.

Views

All views

Default Level

1: Monitoring level

Usage Guidelines

After the whitelist for port attack defense is configured or when you locate faults on network, run the display auto-port-defend whitelist command to verify whitelist information. If no whitelist is configured, the command displays no whitelist information.

Example

# Display information about the interface attack defense whitelist.

<HUAWEI> display auto-port-defend whitelist
  Protocol       Interface                 IP                   ACL      Status
-------------------------------------------------------------------------------
    --            Eth-Trunk0               --                   --        auto
    --            GE0/0/1                  --                   --       manual
    --              --                     --                  2000      manual

**Table 1** Description of the **display auto-port-defend whitelist** command output
Item	Description
Protocol	Protocol type of packets free from the interface attack defense action. If no packet protocol type is specified in the whitelist rule, this field displays --.
Interface	Interface free from the attack defense action. If the whitelist is configured based on ACL rules, this field displays --.
IP	Source IP address of packets free from the interface attack defense action. If the whitelist is configured based on interfaces or automatically delivered, this field displays --.
ACL	ACL number specified in a manually configured whitelist rule.
Status	Type of the whitelist rule, which can be: auto: An automatically delivered whitelist rule is triggered by services. manual: You can run the auto-port-defend whitelist whitelist-number { acl acl-number \| interface interface-type interface-number } command in the attack defense policy view to configure a whitelist for port attack defense.