Configuring MPAC

Management Plane Access Control (MPAC) policies can be applied to sub-interfaces, to interfaces, or globally to filter packets destined for the CPU.

Usage Scenario

MPAC can be configured to filter packets destined for the CPU, thereby helping protect network devices against Denial of Service (DoS) attacks.

Pre-configuration Tasks

Before configuring MPAC, configure link layer protocol parameters and IP addresses for interfaces to ensure that the link layer protocol on the interfaces is in the Up state.

Configuring an IPv4 MPAC Policy: An IPv4 Management Plane Access Control (MPAC) policy can be configured to filter IPv4 packets destined for the CPU.

Configuring an IPv6 MPAC Policy: An IPv6 Management Plane Access Control (MPAC) policy can be configured to filter IPv6 packets destined for the CPU.

Verifying the MPAC Configuration: After configuring the Management Plane Access Control (MPAC) policy, check the configurations.