350-401 · Question #294
When you implement CoPP on your network, what is its default action?
The correct answer is A. permit all traffic. When CoPP is implemented, its default behavior without specific configuration is to permit all control plane traffic.
Question
When you implement CoPP on your network, what is its default action?
Options
- Apermit all traffic
- Brate-limit bidirectional traffic to the control plane
- Cdrop management ingress traffic to the control plane
- Dmonitor ingress and egress traffic to the control plane by using access groups that are applied to
- Eblock all traffic
How the community answered
(37 responses)- A86% (32)
- C8% (3)
- D3% (1)
- E3% (1)
Why each option
When CoPP is implemented, its default behavior without specific configuration is to permit all control plane traffic.
Before any CoPP policy is applied, all traffic destined for the router's control plane is permitted by default. CoPP is an opt-in feature designed to add restrictions, so the baseline state is unconstrained forwarding to the control plane.
CoPP does not rate-limit traffic to the control plane by default; rate-limiting requires explicit configuration of a policy map and service policy.
CoPP does not drop management traffic by default; a CoPP policy must be configured with a `drop` action for specific traffic types.
CoPP's default action is not to monitor traffic with access groups; monitoring and applying access groups are parts of a configured CoPP policy, not its default state.
CoPP does not block all traffic to the control plane by default, as this would make the router unable to function or be managed.
Concept tested: Control Plane Policing (CoPP) default behavior
Source: https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_data_path_protect/configuration/15-mt/sec-data-path-protect-15-mt-book/sec-control-plane-policing.html
Topics
Community Discussion
No community discussion yet for this question.