New Skills

New Training: Configure and Verify Control Plane Policing (CoPP)

by Team Nuggets
New Training: Identity Sources for vSphere picture: A
Published on February 23, 2021

In this 5-video skill, CBT Nuggets trainer Keith Barker teaches you how to configure and verify Control Plane Policing (CoPP) as part of infrastructure security. Watch this new Cisco training.

Learn Cisco networking with one of these courses:

This training includes:

  • 5 videos

  • 25 minutes of training

You’ll learn these topics in this skill:

  • Welcome to CoPP

  • MQC Overview

  • Class Maps

  • Policy Maps

  • Service Policy for the Control-Plane

What is Control Plane Policing (CoPP)?

Control Plane Policing (CoPP) is a Cisco IOS feature that allows you to manage the traffic flow of your network devices. It has been specifically designed to prevent the degradation of system performance that comes when unnecessary traffic overwhelms route processors, such as during a DoS attack on the control plane of your network.

CoPP works by treating route processor resources as separate entities. Because of this, you can stop attacks by developing and applying a CoPP policy specifically on the packets within the control plane that define traffic classification, queue mapping or queue shaping.

In essence, CoPP extends Receive Access Control Lists (rACLs), which place permit and deny filters on router traffic, by letting you configure a quality of service (QoS) filter that can further rate-limit the traffic.

You can extend CoPP through Cisco Control Plane Protection (CPPr), which enables the classification and throttling of control plane traffic.

Recommended Articles