[c-nsp] CoPP on PE router for access network
Saku Ytti
saku+cisco-nsp at ytti.fi
Wed Jul 2 15:11:53 EDT 2008
On (2008-07-01 11:41 -0400), Rodney Dunn wrote:
> Last I checked CoPP was not VRF aware and it applied to any traffic
> punted to the RP that we could match on so it would apply to PE-CE
> links.
Big annoyance is that it most platforms CoPP is evaluated before
labels are popped, so you will blindly accept packets
coming from P side to the PE, assuming it's VRF packet
(or you're running explicit null, in which case also INET
packet will be blindly accepted in most platforms)
--
++ytti
More information about the cisco-nsp
mailing list