New Training: Configure and Verify Control Plane Policing (CoPP)
In this 5-video skill, CBT Nuggets trainer Keith Barker teaches you how to configure and verify Control Plane Policing (CoPP) as part of infrastructure security. Watch this new Cisco training.
Learn Cisco networking with one of these courses:
This training includes:
25 minutes of training
You’ll learn these topics in this skill:
Welcome to CoPP
Service Policy for the Control-Plane
What is Control Plane Policing (CoPP)?
Control Plane Policing (CoPP) is a Cisco IOS feature that allows you to manage the traffic flow of your network devices. It has been specifically designed to prevent the degradation of system performance that comes when unnecessary traffic overwhelms route processors, such as during a DoS attack on the control plane of your network.
CoPP works by treating route processor resources as separate entities. Because of this, you can stop attacks by developing and applying a CoPP policy specifically on the packets within the control plane that define traffic classification, queue mapping or queue shaping.
In essence, CoPP extends Receive Access Control Lists (rACLs), which place permit and deny filters on router traffic, by letting you configure a quality of service (QoS) filter that can further rate-limit the traffic.
You can extend CoPP through Cisco Control Plane Protection (CPPr), which enables the classification and throttling of control plane traffic.