CoPP

control plane policing urls summary urls summary url get post patch put delete /rest/v1/running/copp y n y n n /rest/v1/running/copp/group/{name} y y y n y examples examples get all copp configurations get all copp configurations get https //{switch ip}/rest/v1/running/copp create a copp group create a copp group post https //{switch ip}/rest/v1/running/copp/group { "name" "copp system lldp", "cir" null, "cbs" null } properties descriptions properties descriptions copp groups copp groups tree diagrams + rw copp + rw group \[name] + rw name + ro trap ids + ro queue? + ro trap priority? + ro trap action? + ro mode? + ro meter type? + rw cbs? + rw cir? + ro red packet action? + ro green packet action? + ro yellow packet action? table of properties name required type/range description copp m path only node, has no configurable value copp group configuration group m (sub property of copp) path only node, has no configurable value list of copp group name m "copp system ttl err" "copp system static fdb move" "copp system bgp" "copp system bfd" "copp system ospf" "copp system vrrp" "copp system isis" "copp system lacp" "copp system stp" "copp system arp" "copp system neigh discovery" "copp system macsec" "copp system lldp" "copp system igmp" "copp system udld" "copp system pim" "copp system dhcp relay" "copp system sflow" "copp system ip2me" "copp system nat" "copp system ptp" "copp system pvrst" "copp system vrrpv6" "copp system mld" "copp system ssh" "copp system snmp" "copp system l3 mtu error" "copp system ldp" (sub property of group) copp group class name; current platform support names like "copp system xxx" that define specific class trap ids ro "bgp" "bgpv6" "bfd" "bfdv6" "ospf" "ospfv6" "vrrp" "isis" "lacp" "stp" "arp req" "arp resp" "neigh discovery" "eapol" "src nat miss" "dest nat miss" "lldp" "udld" "dhcp" "dhcpv6" "ip2me" "igmp query" "igmp leave" "igmp v1 report" "igmp v2 report" "igmp v3 report" "sample packet" "static fdb move" "ttl error" "pim" "ptp" "pvrst" "vrrpv6" "mld v1 v2" "mld v1 report" "mld v2 report" "mld v1 done" "ssh" "l3 mtu error" "snmp" "ldp" (sub property of group) value of trap ids does not support to configure; trap ids mostly is associated with class name, for examle isis is the trap id of copp system isis here're some special trap ids worthy of remark bgp, bgpv6 > copp system bgp bfd, bfdv6 > copp system bfd ospf, ospfv6 > copp system ospf arp req, arp resp > copp system arp src nat miss, dest nat miss > copp system nat igmp query, igmp leave, igmg v1 report, igmp v2 report, igmp v3 report > copp system igmp queue ro 0 7 (sub property of group) cpu rx queue default value 0 trap priority ro 0 255 (sub property of group) trap priority; normally the same as queue trap action ro "drop" "trap" "copy" "forward" (sub property of group) copp trap action refers to how a network device responds when it detects traffic that exceeds the configured limits or matches specific policies mode ro "sr tcm" "tr tcm" (sub property of group) policer mode default value "sr tcm" meter type ro "packets" "bytes" (sub property of group) policer meter type default value "bytes" cbs o 0 1000 400000000000 (sub property of group) committed burst size for the dual rate token bucket policer this value represents the depth of the token bucket if platform is innovium, the value of cbs must greater than (cir 128 / 1000000) cir o 0 1000 400000000000 (sub property of group) committed information rate for the dual rate token bucket policer this value represents the rate at which tokens are added to the primary bucket red packet action ro "drop" "trap" "copy" "forward" (sub property of group) red packet action refers to a specific action taken when packets that are deemed critical or potentially harmful are detected default value "drop" green packet action ro "drop" "trap" "copy" "forward" (sub property of group) green packet action refers to handling packets that are considered safe and fall within acceptable limits yellow packet action ro "drop" "trap" "copy" "forward" (sub property of group) yellow packet action refers to how a network device handles packets that are classified as potentially problematic but not immediately harmful