Default Configuration - Cisco Catalyst 4500 series Administration Manual
Hide thumbs
Also See for Catalyst 4500 series:
- Software configuration manual (2086 pages) ,
- Configuration manual (1610 pages) ,
- Command reference manual (1230 pages)
Table of Contents
Advertisement
Configuring Control Plane Policing
•
•
•
•
•
Default Configuration
CoPP is disabled by default.
Configuring CoPP for Control Plane Traffic
To configure CoPP for control plane traffic, perform this task:
Command
Step 1
Switch# config terminal
Step 2
Switch(config)# qos
Step 3
Switch(config)#
macro global apply system-cpp
Step 4
Switch(config)# policy-map
system-cpp-policy
Switch(config-pmap)# class
{system-cpp-dot1x | system-cpp-bpdu-range |
system-cpp-cdp | service | system-cpp-sstp
| system-cpp-cgmp | system-cpp-ospf |
system-cpp-igmp | system-cpp-pim |
system-cpp-all-systems-on-subnet |
system-cpp-all-routers-on-subnet |
system-cpp-ripv2 | system-cpp-hsrpv2 |
system-cpp-ip-mcast-linklocal |
system-cpp-dhcp-cs | system-cpp-dhcp-sc |
system-cpp-dhcp-ss}
Switch(config-pmap-c)# police [aggregate
name] rate burst [conform-action {drop |
transmit}] [{exceed-action {drop |
transmit}}]}
Step 5
Switch# show policy-map system-cpp-policy
The following example shows how to police CDP packets:
Switch# config terminal
Enter configuration commands, one per line.
Switch(config)# qos
Switch(config)# macro global apply system-cpp
Switch(config)# policy-map system-cpp-policy
Switch(config-pmap)# class system-cpp-cdp
Switch(config-pmap-c)# police 32000 1000 conform-action transmit exceed-action drop
Switch(config-pmap-c)# end
Software Configuration Guide—Release IOS XE 3.6.0E and IOS 15.2(2)E
51-4
ARP policing is not supported on either the classic series supervisor engines or fixed configuration
switches. It is supported on the Catalyst 4900M and 4948E switches, Supervisor Engine 6-E, and
Supervisor Engine 6L-E (use "match protocol arp" to classify).
Only ingress CoPP is supported. So only input keyword is supported in control-plane related CLIs.
Use ACLs and class-maps to identify data plane and management plane traffic that are handled by
CPU.
The only action supported in CoPP policy-map is police.
Do not use the log keyword in the CoPP policy ACLs.
Chapter 51
Configuring Control Plane Policing and Layer 2 Control Packet QoS
Purpose
Enters global configuration mode.
(Optional) Enables QoS globally.
(Optional) Creates the system-cpp-policy policy
map and attaches it to the control plane.
Associates actions to one or multiple
system-defined control plane traffic in the service
policy map. Repeat this step if necessary.
(Optional) Verifies the configuration.
End with CNTL/Z.
OL_28731-01
Advertisement
Chapters
Table of Contents
Troubleshooting
