< Home

service-security policy

Function

The service-security policy command creates an MPAC policy and displays its view.

The undo service-security policy command deletes an MPAC policy.

By default, no MPAC policy exists on a device.

Format

service-security policy { ipv4 | ipv6 } security-policy-name

undo service-security policy { ipv4 | ipv6 } [ security-policy-name ]

Parameters

Parameter Description Value
ipv4 Creates an IPv4 MPAC policy and displays its view. -
ipv6 Creates an IPv6 MPAC policy and displays its view. -
security-policy-name Specifies the name of an MPAC policy. The value is a string of 1 to 31 case-sensitive characters without spaces. It must start with a letter.

Views

System view

Default Level

2: Configuration level

Usage Guidelines

Some attackers may pose as authorized users to send protocol packets to network devices or control these devices. Such attacks affect network running. You can configure MPAC on network devices to allow the specified protocol packets to be sent to the CPUs or discard these packets, improving device security and reliability.

Example

# Create an IPv4 MPAC policy.

<HUAWEI> system-view
[HUAWEI] service-security policy ipv4 huawei
[HUAWEI-service-sec-huawei]

# Create an IPv6 MPAC policy.

<HUAWEI> system-view
[HUAWEI] service-security policy ipv6 huawei1
[HUAWEI-service6-sec-huawei1]
Parent Topic: MPAC Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >