This type of traffic is referred to as the control and management plane. The route processor is critical to
network operation. Therefore any service disruption or security compromise to the route processor, and hence
the control and management planes, can result in network outages that impact regular operations. For example,
a DoS attack targeting the route processor typically involves high bursty traffic resulting in excessive CPU
utilization on the route processor. Such attacks can be devastating to network stability and availability. The bulk
of traffic managed by the route processor is handled by way of the control and management planes.
The CoPP feature is used to protect the aforementioned control and management planes; to ensure stability,
reachability, and availability and to block unnecessary or DoS traffic. CoPP uses a dedicated control plane
configuration through the modular QoS CLI (MQC) to provide filtering and rate limiting capabilities for the control
plane packets.
As mentioned earlier, the CoPP feature is available on all major Cisco router series including ISR. Table 4-2
provides a complete list of compatible hardware and software support.
Table 4-2. CoPP Support on Cisco Routers
Router Models Cisco IOS Software Release
Cisco 12000 Series Release 12.
Pages:
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199