Contents

A - B - C - D - E - F - G - I - L - M - N - P - R - S - T - U - V -

Index

A

AAA
accounting 1
authentication 2
benefits 3
configuring console login 4
configuring for RADIUS servers 5
default settings 6
description 7
enabling MSCHAP authentication 8
example configuration 9
guidelines 10
limitations 11
prerequisites 12
user login process 13
verifying configurations 14
AAA accounting
configuring default methods 1
AAA accounting logs
clearing 1
displaying 2
AAA authorization
configuring on TACACS+ servers 1
AAA logins
enabling authentication failure messages 1
AAA protocols
RADIUS 1
TACACS+ 2
AAA server groups
description 1
AAA servers
specifying SNMPv3 parameters 1 2
specifying user roles 2
specifying user roles in VSAs 3
AAA services
configuration options 1
remote 2
accounting
description 1
ACL TCAM regions
configuring 1
reverting to default sizes 2
ACLs
identifying traffic by protocols 1
VLAN 2
authentication
description 1
local 2
methods 3
remote 4
user login 5
authorization
user login 1
verifying commands 2

B

BGP
using with Unicast RPF 1

C

changed information
description 1
Cisco
vendor ID 1 2
cisco-av-pair
specifying AAA user parameters 1 2
class maps
configuring for CoPP 1
CoPP 2
commands
disabing authorization verification 1
enabing authorization verification 2
configuration example 1
configuration examples
CoPP 1
configuration status
CoPP 1
control plane class maps
verifying the configuration 1
control plane policy maps
verifying the configuration 1
control plane protection
classification 1
description 2
packet types 3
rate controlling mechanisms 4
control plane service policy, configuring
CoPP 1
CoPP
class maps 1
configuration examples 2
configuration status 3
configuring class maps 4
configuring policy maps 5
control plane service policy, configuring 6
default policy 7
description 8
guidelines 9
licensing 10
limitations 11
monitoring 12
policy templates 13
restrictions for management interfaces 14
upgrade guidelines 15
verifying the configuration 16
CoPP policy
layer 2 1
CoPP policy maps
configuring 1

D

DAI
default settings 1
guidelines 2
limitations 3
default CoPP policy 1
default settings
AAA 1
DAI 2
denial-of-service attacks
IP address spoofing, mitigating 1
DHCP binding database 1
See DHCP snooping binding database 1
DHCP relay agent
enabling or disabling 1
enabling or disabling Option 82 2
enabling or disabling VRF support 3
VRF support 4
DHCP relay binding database
description 1
DHCP server addresses
configuring 1
dhcp snooping
licensing 1
prerequisites 2
DHCP snooping
binding database 1
default settings 2
description 3
guidelines 4
limitations 5
overview 6
DHCP snooping binding database 1
described 1
description 2
entries 3
See DHCP snooping binding database 4
DoS attacks
Unicast RPF, deploying 1
dynamic ARP inspection
ARP cache poisoning 1
ARP requests 2
ARP spoofing attack 3
DHCP snooping binding database 4
function of 5
interface trust states 6
logging of dropped packets 7
network security issues and interface trust states 8
Dynamic Host Configuration Protocol snooping 1
See DHCP snooping 1

E

examples
AAA configurations 1

F

feature history
CoPP 1

G

guidelines
CoPP 1
DAI 2
DHCP snooping 3

I

IDs
Cisco vendor ID 1 2
IP ACLs
description 1

L

layer 2
CoPP policy 1
licensing
CoPP 1
dhcp snooping 2
Unicast RPF 3
limitations
CoPP 1
DAI 2
DHCP snooping 3
login
RADIUS servers 1

M

management interfaces
CoPP restrictions 1
monitoring
CoPP 1
RADIUS 2
RADIUS servers 3
MSCHAP
enabling authentication 1

N

new information
description 1

P

policy templates
description 1
prerequisites
dhcp snooping 1
preshared keys
TACACS+ 1
privilege level support for TACACS+ authorization
configuring 1
privilege roles
permitting or denying commands for 1

R

RADIUS
configuring servers 1
configuring timeout intervals 2
configuring transmission retry counts 3
default settings 4
description 5
example configurations 6
monitoring 7
network environments 8
operations 9
prerequisites 10
statistics, displaying 11
RADIUS server groups
global source interfaces 1
RADIUS server preshared keys 1
RADIUS servers
allowing users to specify at login 1
configuring AAA for 2
configuring timeout interval 3
configuring transmission retry count 4
deleting hosts 5
displaying statistics 6
example configurations 7
manually monitoring 8
RADIUS statistics
clearing 1
RADIUS, global preshared keys 1
RADIUS, periodic server monitoring 1
RADIUS, server hosts
configuring 1

S

sample configuration 1
server groups 1
servers
RADIUS 1
SNMPv3
specifying AAA parameters 1
specifying parameters for AAA servers 2
source interfaces
RADIUS server groups 1
TACACS+ server groups 2
SSH
description 1
statistics
TACACS+ 1

T

TACACS+
advantages over RADIUS 1
configuring 2
configuring global timeout interval 3
description 1 2
displaying statistics 5
example configurations 6
field descriptions 7
global preshared keys 8
limitations 9
prerequisites 10
preshared key 11
user login operation 12
verifying command authorization 13
verifying configuration 14
TACACS+ command authorization
configuring 1
testing 2
TACACS+ server groups
global source interfaces 1
TACACS+ servers
configuring hosts 1
configuring TCP ports 2
configuring timeout interval 3
displaying statistics 4
field descriptions 5
manually monitoring 6
verifying configuration 7
TCAMs
configuring 1
reverting to default sizes 2
TCP ports
TACACS+ servers 1
Telnet
description 1

U

Unicast RPF
BGP attributes 1
BOOTP and 2
default settings 3
deploying 4
description 5
DHCP and 6
example configurations 7
FIB 8
guidelines 9
implementation 10
licensing 11
limitations 12
loose mode 13
statistics 14
strict mode 15
tunneling and 16
verifying configuration 17
upgrade
guidelines for CoPP 1
user login
authentication process 1
authorization process 2
user roles
specifying on AAA servers 1 2

V

vendor-specific attributes 1
VLAN ACLs
information about 1
VSAs
format 1
protocol options 2
support description 3