Enabling log non-aggregation for single-packet attack events
Log aggregation aggregates all logs generated in a period and sends one log. The logs with the same attributes for the following items can be aggregated:
Interface where the attack is detected.
Attack type.
Attack defense action.
Source and destination IP addresses.
VPN instance to which the victim IP address belongs.
As a best practice, do not disable log aggregation. A large number of logs will consume the display resources of the console.
To enable log non-aggregation for single-packet attack events:
Step | Command | Remarks |
---|---|---|
1. Enter system view. | system-view | N/A |
2. Enable log non-aggregation for single-packet attack events. | attack-defense signature log non-aggregate | By default, log non-aggregation is disabled for single-packet attack events. |