The following example uses CP-CAR configuration to describe how to add a trusted network segment to a whitelist.
The system view is displayed.
The advanced ACL is configured.
The trusted network segment is specified in an ACL rule.
The trusted network segment is specified in an ACL rule.
The configuration is committed.
Return to the system view.
An attack defense policy is created.
A whitelist is created.
To disable the whitelist function, run the whitelist disable command.
The bandwidth for incoming packets to be sent to the CPU is configured in the whitelist.
The priority of incoming packets to be sent to the CPU is configured in the whitelist.
The configuration is committed.
Exit from the policy view.
The interface board view is displayed.
The attack defense policy is bound to the interface board.
The attack defense function takes effect on an interface board only after the interface board is bound to an attack defense policy.
The configuration is committed.