HP AP775A Cisco Nexus 5000 Series Command Reference Release 4.0(1a)N2(1) (OL-1 - Page 381
mac access-list
UPC - 884962062708
View all HP AP775A manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 381 highlights
Chapter 6 Security Commands mac access-list Send comments to [email protected] mac access-list To create a Media Access Control (MAC) access control list (ACL) or to enter MAC access list configuration mode for a specific ACL, use the mac access-list command. To remove a MAC ACL, use the no form of this command. mac access-list access-list-name no mac access-list access-list-name Syntax Description access-list-name Name of the MAC ACL. Command Default No MAC ACLs are defined by default. Command Modes Configuration mode Command History Release 4.0(0)N1(1a) Modification This command was introduced. Usage Guidelines Use MAC ACLs to filter non-IP traffic. If you disable packet classification, you can use MAC ACLs to filter all traffic. When you use the mac access-list command, the switch enters MAC access list configuration mode, where you can use the MAC deny and permit commands to configure rules for the ACL. If the ACL specified does not exist, the switch creates it when you enter this command. Use the mac access-group command to apply the ACL to an interface. Every MAC ACL has the following implicit rule as its last rule: deny any any protocol This implicit rule ensures that the switch denies the unmatched traffic, regardless of the protocol specified in the Layer 2 header of the traffic. Examples This example shows how to enter MAC access list configuration mode for a MAC ACL named mac-acl-01: switch(config)# mac access-list mac-acl-01 switch(config-acl)# Related Commands Command deny (MAC) mac access-group Description Configures a deny rule in a MAC ACL. Applies a MAC ACL to an interface. OL-16599-01 Cisco Nexus 5000 Series Command Reference 6-47