Users Guide
For complete information about creating ACL rules and QoS policies, see Access Control Lists (ACLs) and
Quality of Service (QoS).
1. Create a Layer 2 extended ACL for specified protocol traffic.
CONFIGURATION mode
mac access-list extended name cpu-qos
permit {arp | frrp | gvrp | isis | lacp | lldp | stp}
2. Create a Layer 3 extended ACL for specified protocol traffic.
CONFIGURATION mode
ip access-list extended name cpu-qos
permit {bgp | dhcp | dhcp-relay | ftp | icmp | igmp | msdp | ntp
| ospf | pim | rip | ssh | telnet | vrrp}
3. Create an IPv6 ACL for specified protocol traffic.
CONFIGURATION mode
ipv6 access-list name cpu-qos
permit {bgp | icmp | icmp-nd-na | icmp-nd-ns | icmp-rd-ra | icmp-
rd-rs | ospf | vrrp}
4. Create a QoS input policy to rate limit input traffic.
CONFIGURATION mode
qos-policy-input name cpu-qos
rate-police [rate-kbps] [burst-kbytes] peak [rate-kbps] [burst-
kbytes]
5. Create a QoS class map to filter protocol traffic.
CONFIGURATION mode
class-map match-any name cpu-qos
match [ ip | ipv6 | mac ] access-group name
6. Create a QoS input-policy map to associate filtered protocol traffic with the rate limiting
configuration.
CONFIGURATION mode
policy-map-input name cpu-qos
class-map name qos-policy name
7. Enter Control Plane configuration mode.
CONFIGURATION mode
control-plane-cpuqos
8. Apply the QoS input policy-map that configures rate limiting on specified protocol traffic on the
control plane.
CONTROL-PLANE mode
service-policy rate-limit-protocols input-policy-map
Control Plane Policing (CoPP)
255