When there is no need to filter out invalid management protocol packets to be sent to the CPU using hardware, run the management-acl disable command to disable the management protocol ACL delivering function. The management-acl disable command takes effect for FTP, Telnet, SSH, and SNMP. For example, if an FTP ACL is configured and the management-acl disable command is run, the FTP ACL does not take effect.
In VS mode, this feature is supported only by the admin VS.
The system view is displayed.
The attack defense policy view is displayed.
The management protocol ACL delivering function is enabled.
The configuration is committed.
After configuring interface-based CAR, check the configurations.
Run the display cpu-defend policy policy-number command to view information about the user-defined attack defense policy.