There is some default configuration under "Network Analysis policy" and "Intrusion polices" which provides protection against attacks. You can refer to the following doc:
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: