CoPP uses a dedicated control plane configuration through the modular QoS CLI (MQC) to provide filtering and rate-limiting capabilities for the control plane packets. You can use CoPP to protect the control and management planes, and ensure routing stability, reachability, and packet delivery. The majority of traffic managed by the RP is handled by way of the control and management planes. When enabling the special-case rate limiters, the special-case rate limiters override the CoPP policy for packets matching the rate-limiter criteria. The PFC3 supports the built-in "special case" rate limiters that can be used when an ACL cannot classify particular scenarios, such as IP options cases, TTL and MTU failure cases, packets with errors, and multicast packets. The PFC3 and DFC3 provide hardware support for CoPP. The control plane policing (CoPP) feature increases security on the switch by protecting the RP from unnecessary or DoS traffic and giving priority to important control plane and management traffic. The traffic managed by the RP is divided into three functional components or planes: CoPP Configuration Guidelines and Restrictions.This chapter describes how to configure control plane policing (CoPP) with Cisco IOS Software Release 12.2SX. Sample Basic ACLs for CoPP Traffic Classification CoPP Configuration Guidelines and Restrictions
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |