[c-nsp] CoPP best practical example on 6500

[Saku Ytti]

On (2006-10-05 08:05 +0300), Saku Ytti wrote:
 
> How I've done it is penultimate rule of catch all IP, and drop even
> conforming traffic and then default policy will allow rest.
> Accompanied with probably even too strict mls qos/rate-limit rules.

Oh yeah, one thing you loose with this is VPN-CAM, populating
VPN-CAM when using class-default is not possible. But 
in most situations this is non-issue.

-- 
  ++ytti