CPU Protection Commands
config
— system
Refer to the OS Services Guide and the Multi-Service ISA Guide for command, syntax, and usage
information about applying CPU Protection policies to interfaces.
CPU protection policies are applied by default (and customer policies can be applied) to a variety of entities
including interfaces and SAPs. Refer to the appropriate guides (See Preface for document titles) for
command syntax and usage for applying CPU protection policies. Examples of entities that can have CPU
protection policies applied to them include:
configure>router>interface>cpu-protection policy-id
configure>service>epipe>sap>cpu-protection policy-id [mac-monitoring]|[eth-cfm-monitoring
[aggregate][car]]
configure>service>epipe>spoke-sdp>cpu-protection policy-id [mac-monitoring]|[eth-cfm-monitoring
[aggregate][car]]
configure>service>ies>interface>cpu-protection policy-id
configure>service>ies>interfac>sap>cpu-protection policy-id [mac-monitoring]|[eth-cfm-monitoring
[aggregate][car]]
configure>service>template>vpls-sap-template>cpu-protection policy-id [mac-monitoring]|[eth-cfm-
monitoring [aggregate][car]]
configure>service>vpls>sap>cpu-protection policy-id [mac-monitoring]|[eth-cfm-monitoring
[aggregate][car]]
7450 ESS System Mangement Guide
— security
—
cpu-protection
— ip-src-monitoring
—
link-specific-rate
— no
link-specific-rate
—
policy
— no
policy
—
port-overall-rate
— no
port-overall-rate
— [no]
—
included-protocols
— [no]
dhcp
— [no]
gtp
— [no]
icmp
— [no]
igmp
packet-rate-limit
cpu-protection-policy-id [create]
cpu-protection-policy-id
— [no]
alarm
—
description
description-string
— no
description
—
eth-cfm
entry entry levels levels opcodes opcodes rate packet-rate-
limit
— no
eth-cfm
—
out-profile-rate
packet-rate-limit [log-events]
— no
out-profile-rate
—
overall-rate
packet-rate-limit
— no
overall-rate
—
per-source-rate
packet-rate-limit
— no
per-source-rate
packet-rate-limit [action-low-priority]
protocol-protection
[allow-sham-links][block-pim-tunneled]
Security
Page 103