Hi,

I need to configure the control plane policing at catalyst 6509e for prevent propagation network traffic by tcp:4899

Policy is works, but I want to block all network traffic that was matched by ACL 109.

!

class-map match-any CoPP
  match access-group 109
!
policy-map CoPP
  class CoPP
   police 32000    conform-action drop     exceed-action drop
!

access-list 109 permit tcp any any eq 4899

!

control-plane
service-policy input CoPP
!

#sh policy-map control-plane all

Control Plane Interface

  Service-policy input: CoPP

  Hardware Counters:

    class-map: CoPP (match-any)
      Match: access-group 109
      police :
        32000 bps 1000 limit 1000 extended limit
      Earl in slot 6 :
        11328 bytes
        5 minute offered rate 48 bps
        aggregate-forwarded 66 bytes action: drop
        exceeded 11262 bytes action: drop
        aggregate-forward 0 bps exceed 0 bps

  Software Counters:

    Class-map: CoPP (match-any)
      23 packets, 1426 bytes
      5 minute offered rate 0 bps, drop rate 0 bps
      Match: access-group 109
        23 packets, 1426 bytes
        5 minute rate 0 bps
      police:
          cir 32000 bps, bc 1500 bytes
        conformed 5 packets, 310 bytes; actions:
          drop
        exceeded 0 packets, 0 bytes; actions:
          drop
        conformed 0 bps, exceed 0 bps

    Class-map: class-default (match-any)
      65139 packets, 6062297 bytes
      5 minute offered rate 14000 bps, drop rate 0 bps
      Match: any
        65139 packets, 6062297 bytes
        5 minute rate 14000 bps

For example on router 3825 possibly

!

class-map match-any CoPP
   match access-group 109
!
policy-map CoPP
   class CoPP
    drop
!

access-list 109 permit tcp any any eq 4899

!

control-plane
  service-policy input CoPP
!

How can I do this on 6509?

Thanks for advice,

Vladimir