Name: Cisco Catalyst 4500 Series
Brand: Cisco
Rating: 4 (1 reviews)

To Next Page

To Previous Page

51-4

Software Configuration Guide—Release IOS XE 3.6.0E and IOS 15.2(2)E

OL_28731-01

Chapter 51 Configuring Control Plane Policing and Layer 2 Control Packet QoS

Configuring Control Plane Policing

• ARP policing is not supported on either the classic series supervisor engines or fixed configuration

switches. It is supported on the Catalyst 4900M and 4948E switches, Supervisor Engine 6-E, and

Supervisor Engine 6L-E (use “match protocol arp” to classify).

• Only ingress CoPP is supported. So only input keyword is supported in control-plane related CLIs.

• Use ACLs and class-maps to identify data plane and management plane traffic that are handled by

CPU.

• The only action supported in CoPP policy-map is police.

• Do not use the log keyword in the CoPP policy ACLs.

Default Configuration

CoPP is disabled by default.

Configuring CoPP for Control Plane Traffic

To configure CoPP for control plane traffic, perform this task:

The following example shows how to police CDP packets:

Switch# config terminal

Enter configuration commands, one per line. End with CNTL/Z.

Switch(config)# qos

Switch(config)# macro global apply system-cpp

Switch(config)# policy-map system-cpp-policy

Switch(config-pmap)# class system-cpp-cdp

Switch(config-pmap-c)# police 32000 1000 conform-action transmit exceed-action drop

Switch(config-pmap-c)# end

Command Purpose

Step 1

Switch# config terminal

Enters global configuration mode.

Step 2

Switch(config)# qos

(Optional) Enables QoS globally.

Step 3

Switch(config)#

macro global apply system-cpp

(Optional) Creates the system-cpp-policy policy

map and attaches it to the control plane.

Step 4

Switch(config)# policy-map

system-cpp-policy

Switch(config-pmap)# class

{system-cpp-dot1x | system-cpp-bpdu-range |

system-cpp-cdp | service | system-cpp-sstp

| system-cpp-cgmp | system-cpp-ospf |

system-cpp-igmp | system-cpp-pim |

system-cpp-all-systems-on-subnet |

system-cpp-all-routers-on-subnet |

system-cpp-ripv2 | system-cpp-hsrpv2 |

system-cpp-ip-mcast-linklocal |

system-cpp-dhcp-cs | system-cpp-dhcp-sc |

system-cpp-dhcp-ss}

Switch(config-pmap-c)# police [aggregate

name] rate burst [conform-action {drop |

transmit}] [{exceed-action {drop |

transmit}}]}

Associates actions to one or multiple

system-defined control plane traffic in the service

policy map. Repeat this step if necessary.

Step 5

Switch# show policy-map system-cpp-policy

(Optional) Verifies the configuration.

Other manuals for Cisco Catalyst 4500 Series

Manual19 pages

Command Reference Guide1230 pages

System Message Guide150 pages

Configuration Guide1610 pages

Software Configuration Guide2086 pages

Message Guide146 pages

Installation Guide194 pages

Datasheet11 pages

Overview46 pages

Quick Reference Guide59 pages

Questions and Answers:

Need help?

Do you have a question about the Cisco Catalyst 4500 Series and is the answer not in the manual?

Cisco Catalyst 4500 Series Specifications

General

Series	Catalyst 4500 Series
Category	Switch
Layer Support	Layer 2, Layer 3
Form Factor	Modular chassis
Stackable	No
Chassis Slots	3, 6, 7, 10
Power Supply Options	AC, DC
Redundancy	Power supply, Supervisor engine
Network Management	Cisco IOS Software CLI, SNMP, Cisco Prime Infrastructure
Features	Security, QoS
Port Density	Up to 384 ports per chassis
Security Features	802.1X, ACLs, DHCP Snooping, Dynamic ARP Inspection, IP Source Guard
Supervisor Engine	8-E