Hi,

 

This might be a little too platform/vendor specific for this group so I apologize in advance if that is the case.

 

Does anyone have a working example of CoPP on NXOS which limits things like BGP, SSH, and the NXAPI HTTPS interface to a specific remote /32 and blocks everything else that is not specifically allowed in the ACLs attached to the classes?

 

I’ve had a ticket open /w TAC for a month and I’m actually getting nowhere.

 

Thank you so much,

-Drew