cp-acl vpn-instance enable

Function

The cp-acl vpn-instance enable command configures the VPN field in an attack defense policy to take effect.

The undo cp-acl vpn-instance enable command configures the VPN field in an attack defense policy not to take effect.

By default, the VPN field in an attack defense policy does not take effect.

Format

cp-acl vpn-instance enable

undo cp-acl vpn-instance enable

Parameters

None

Views

Attack defense policy view

Default Level

2: Configuration level

Task Name and Operations

Task Name Operations
cpu-defend write

Usage Guidelines

Usage Scenario

If a configured ACL contains the vpn-instance field and is configured in a whitelist, blacklist, or user-defined flow that is applied to an attack defense policy, you can run this command to specify whether the VPN field in the ACL takes effect.

In VS mode, this command is supported only by the admin VS.

Example

# Configure the VPN field in attack defense policy 1 to take effect.
<HUAWEI> system-view
[~HUAWEI] cpu-defend policy 1
[~HUAWEI-cpu-defend-policy-1] cp-acl vpn-instance enable
Parent Topic: Local Attack Defense Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >