< Home

default action (SSL-encrypted traffic detection policy view)

Function

The default action command configures the default action for the SSL-encrypted traffic detection policy.

Format

default action { deny | no-decrypt }

Parameters

Parameter Description Value
deny Indicates the deny action. -
no-decrypt Indicates the no-decrypt action. -

Views

SSL-encrypted traffic detection policy view

Default Level

2: Configuration level

Usage Guidelines

By default, the action for the SSL-encrypted traffic detection policy is no-decrypt.

If the action is set to deny, the device directly discards SSL-encrypted traffic that matches the policy. If the action is set to no-decrypt, the device directly allows SSL-encrypted traffic that matches the policy to pass through.

Example

# Set the default action for the SSL-encrypted traffic detection policy to no-decrypt.

<sysname> system-view
[sysname] decryption-policy
[sysname-policy-decryption] default action no-decrypt
Parent Topic: SSL-Encrypted Traffic Detection Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >