Log events are supported for DCP to alert the operator to potential attacks or misconfigurations. The DCP log events can be individually enabled or disabled at the DCP policy level as well as globally in the system (in log event-control). DCP throttles the rate of events to avoid event floods when multiple parallel attacks or problems.
Additional statistics are also available using the show router interface dist-cpu-protection command to display packet exceed-count and policer state. Tools commands, such as the tools dump security dist-cpu-protection violators command are used to identify interface violators.
For SNMP support, see the tables and MIB objects with ‟Dcp” or ‟DCpuProt” in their name. These can be found in the following MIBs:
TIMETRA-CHASSIS-MIB
TIMETRA-SECURITY-MIB
TIMETRA-SAP-MIB
TIMETRA-VRTR-MIB