deception whitelist

Function

The deception whitelist command sets a deception whitelist.

The undo deception whitelist command deletes a deception whitelist.

Format

deception whitelist [ id id-number ] { destination | source } ip-address [ mask ] [ vpn-instance vpn-instance-name ]

undo deception whitelist { all | id id-number }

Parameters

Parameter	Description	Value
id id-number	Specifies a whitelist ID.	The value is an integer ranging from 1 to 50.
destination	Indicates the destination address whitelist.	-
source	Indicates the source address whitelist.	-
ip-address	Specifies a whitelisted IP address.	The value is in dotted decimal notation.
mask	Specifies the mask of the whitelisted IP address.	The value is in dotted decimal notation.
vpn-instance vpn-instance-name	Specifies the VPN instance of the whitelisted IP address.	The VPN instance must be an existing one on the device. The deception view of virtual systems does not support this parameter.
all	Indicates all whitelists.	-

Views

Deception view

Default Level

2: Configuration level

Usage Guidelines

By default, there is no deception whitelist.

You can configure destination address whitelists and source address whitelists:

Source address whitelist: The addresses of devices (such as the NMS) that proactively detect the network can be whitelisted to prevent deception.
Destination address whitelist: The addresses of devices (such as old-fashioned printers) that do not respond to ARP requests or port connection requests can be whitelisted to prevent deception.

Before deleting a whitelist, run the display deception whitelist command or run the display this command in the deception view to view the whitelist ID.

Example

# Configure a destination address whitelist for 1.1.1.1.

<FW> system-view
[FW] deception
[FW-deception] deception whitelist id 1 destination 1.1.1.1