[c-nsp] Drop rule at the end of CoPP conflicts with MAC learning
"Rolf Hanßen"
nsp at rhanssen.de
Fri Jun 28 08:14:23 EDT 2013
Hello,
thanks for the info but that does not help in my case, just tried out.
The link confirms:
"if traffic matches a special-case rate limiter, it is never compared
against the hardware CoPP policy. It will only be compared against the
software CoPP policy"
So I guess now it is dropped in software instead of hardware. ;)
kind regards
Rolf
> On 27/06/2013 17:36, "Rolf Hanßen" wrote:
>> Is there a way to match that "destination IP = connected IP without
>> entry
>> in arp table" traffic ? I found no such option in the syntax.
>
> that is a "glean" packet, and is handled using rate limiters, not CoPP:
>
>> Router(config)#mls rate-limit unicast cef glean ?
>> <10-1000000> packets per second
>
> more info here:
>
>> http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps708/prod_white_paper0900aecd802ca5d6.html#wp9000211
>
> Nick
>
>
>
More information about the cisco-nsp
mailing list