Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
518
Views
0
Helpful
2
Replies

c6500 and CoPP

Alex M
Level 1
Level 1

‎09-20-2016 10:17 AM - edited ‎03-05-2019 07:06 AM

Hello,

Could anybody explain me about sh policy-map control-plane command on c6500? I'm implementing CoPP on my cisco switch. I've created ACLs, class-maps and policy. After that, I entered sh policy-map control-plane CLI command:

#sh policy-map control-plane input class coppICMP

Hardware Counters:
class-map: coppICMP (match-all)
 Match: access-group name coppICMP
 police :
 200000 bps 6250 limit 6250 extended limit
 Earl in slot 5 :
 70236427 bytes
 5 minute offered rate 3584 bps
 aggregate-forwarded 70236427 bytes action: transmit
 exceeded 0 bytes action: transmit
 aggregate-forward 2688 bps exceed 0 bps

Software Counters:
Class-map: coppICMP (match-all)
 982268 packets, 76165155 bytes
 5 minute offered rate 3000 bps, drop rate 0000 bps
 Match: access-group name coppICMP
 police:
 cir 200000 bps, bc 6250 bytes
 conformed 980789 packets, 74476259 bytes; actions:
 transmit 
 exceeded 1479 packets, 1688896 bytes; actions:
 transmit 
 conformed 3000 bps, exceed 0000 bps

ACL:
#sh ip access-lists coppICMP
10 permit icmp any any (982479 matches)

There are Hardware and Software counters in the command's output. Software counters increase when switch uses MSFC for traffic rejecting. Am I right? And if that's true. Why do software counters increase for ICMP traffic? I read that MSFC is used for broadcast and multicast traffic in policy-map. However, my ICMP is absolutely unicast :)

Labels:
0 Helpful
2 Replies 2

Georg Pauwen
VIP
VIP

‎09-20-2016 12:34 PM

Hello,

I was trying to find a comprehensive list of which features and packets go to software and whichto hardware. The closest I could find was this document, which lists 'Packets that require Internet Control Message Protocol (ICMP) messages from the RP or SP' as traffic that goes to software. That could explain why your software counters increase for ICMP traffic:

http://www.cisco.com/c/en/us/support/docs/switches/catalyst-6500-series-switches/63992-6k-high-cpu.html#situations

0 Helpful

Alex M
Level 1
Level 1
In response to Georg Pauwen

‎09-21-2016 04:22 AM

Thank you for your reply!

I read this article, but I'm trying to make control-plane policy for controlling this traffic (For example ICMP traffic). And I can't understand why software counters in my policy-map increase. Does it mean that switch uses MSFC for traffic rejection?

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card