Users Guide
Control Plane Policing (CoPP)
Control plane policing (CoPP) uses access control list (ACL) rules and quality of service (QoS) policies to create lters for a system’s
control plane. That lter prevents trac not specically identied as legitimate from reaching the system control plane, rate-limits, trac to
an acceptable level.
CoPP increases security on the system by protecting the routing processor from unnecessary or DoS trac, giving priority to important
control plane and management trac. CoPP uses a dedicated control plane conguration through the ACL and QoS command line
interfaces (CLIs) to provide ltering and rate-limiting capabilities for the control plane packets.
The following illustration shows an example of the dierence between having CoPP implemented and not having CoPP implemented.
Figure 26. Control Plane Policing
11
218 Control Plane Policing (CoPP)