Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2392
Views
0
Helpful
3
Replies

C9800 Control Plane Policing (CoPP)

Johannes Luther
Level 4
Level 4

‎03-21-2021 11:43 PM - edited ‎07-05-2021 01:01 PM

Hi Wireless folks,

I'm playing around with a C9800 and I'm wondering where the CoPP configuration and documentation is. I bet the box does some CoPP out-of-the box and I want to understand how it works and whether it can be tuned.

For example, I'm wondering why my SCP/SFTP transfers to the WLC are ~20MBit/s despite of TCP windows size tuning in a high speed network. I bet this is because of CoPP.

For other platforms this is pretty well documented. As I understood the C9800 platform correctly, it's based on an ASR1k.

Anyway: Any input here for me?

 

Best regards

Johannes

0 Helpful
3 Replies 3

marce1000
Hall of Fame
Hall of Fame

‎03-22-2021 01:50 AM

 

 - FYI : https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9300/software/release/16-12/configuration_guide/sec/b_1612_sec_9300_cg/configuring_control_plane_policing.html

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Johannes Luther
Level 4
Level 4
In response to marce1000

‎03-22-2021 02:01 AM

Cat 9300 != 9800

 

Catalyst 9300:

C9300#show policy-map system-cpp-policy
Policy Map system-cpp-policy
Class system-cpp-police-ios-routing
police rate 13000 pps
conform-action transmit
exceed-action drop
Class system-cpp-police-ios-feature
police rate 6000 pps
conform-action transmit
exceed-action drop
Class system-cpp-police-data
police rate 600 pps
conform-action transmit
exceed-action drop
Class system-cpp-police-sys-data
police rate 200 pps
conform-action transmit
exceed-action drop
Class system-cpp-police-sw-forward
police rate 1000 pps
conform-action transmit
exceed-action drop
[...]

 

Catalyst 9800:

C9800#show policy-map system-cpp-policy
..no output ..
C9800#

 

In a Cat9800, there is the "control-plane" configuration section, where a policy-map might be applied.
Problem: Supported? Yes/No. In the Cat9300 only the default classes may be used. The only thing which is user-tunable are the policer rates. In a Cat9800, there is no predefined CoPP policy...

0 Helpful

marce1000
Hall of Fame
Hall of Fame
In response to Johannes Luther

‎03-22-2021 02:17 AM

 

 - https://cfnng.cisco.com/  , when queried does not list it as being supported for the 9800, check attached document.

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
Preview file
30 KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card