HP StorageWorks 1606 Brocade Converged Enhanced Ethernet Command Reference v6. - Page 134

permit extended ACLs, Use the format HHHH.HHHH.HHHH.

Get HP StorageWorks 1606 - Extension SAN Switch PDF manuals and user guides View all HP StorageWorks 1606 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 134 highlights

8 permit (extended ACLs) permit (extended ACLs) Configures a MAC address rule to permit traffic based on the source and destination MAC addresses. Synopsis permit {any | host MAC _ACL| MAC_ACL} {any | host MAC _ACL| MAC _ACL} [EtherType | arp | fcoe | ipv4] [count] no permit {any | host MAC _ACL| MAC_ACL} {any | host MAC _ACL| MAC _ACL} [EtherType | arp | fcoe| ipv4] Operands any host MAC_ACL MAC_ACL any host MAC_ACL MAC_ACL Ethertype arp fcoe ipv4 count Specifies any source MAC address. Specifies the source host MAC address for which to set permit conditions. Use the format HHHH.HHHH.HHHH. Specifies the source host MAC address for which to set permit conditions. Use the format HHHH.HHHH.HHHH. Specifies any destination MAC address. Specifies the destination host address for which to set permit conditions. Use the format HHHH.HHHH.HHHH. Specifies the destination host address for which to set permit conditions. Use the format HHHH.HHHH.HHHH. Specifies the protocol number for which to set the permit conditions. The range of valid values is 1536-65535. Specifies to permit the Address Resolution Protocol (0x0806). Specifies to permit the Fibre Channel over Ethernet Protocol (0x8906). Specifies to permit the IPv4 protocol (0x0800). Enables counting of the packets matching the filter rule. Defaults By default, no MAC ACLs are configured. Command Feature Access Control List Configuration mode Modes Description Use this command to configure rules to match and to permit traffic based on the source and destination MAC addresses, and the protocol type. You can also enable counters for a specific rule. There are 255 ACL counters supported per port group. Use the no permit command to remove a rule from the MAC ACL. Usage Guidelines The first set of {any | host MAC_ACL | MAC_ACL} parameters is specific to the source MAC address. The second set of {any | host MAC_ACL | MAC_ACL} parameters is specific to the destination MAC address. Example To create a rule in a MAC extended ACL to permit IPv4 traffic from the source MAC address 0022.3333.4444 to the destination MAC address 0022.3333.5555 and to enable the counting of packets: switch(conf-macl-ext)#permit 0022.3333.4444 0022.3333.5555 ipv4 count 116 Converged Enhanced Ethernet Command Reference 53-1001347-01

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
116
Converged Enhanced Ethernet Command Reference
53-1001347-01
permit (extended ACLs)
8
permit (extended ACLs)
Configures a MAC address rule to permit traffic based on the source and destination MAC
addresses.
Synopsis
permit
{
any
|
host
MAC _ACL
|
MAC_ACL
} {
any
|
host
MAC _ACL| MAC _ACL
} [
EtherType |
arp
|
fcoe
|
ipv4
] [
count
]
no permit {any | host
MAC _ACL
|
MAC_ACL
} {
any | host
MAC _ACL| MAC _ACL
} [
EtherType |
arp |
fcoe| ipv4
]
Operands
any
Specifies any source MAC address.
host
MAC_ACL
Specifies the source host MAC address for which to set permit conditions.
Use the format HHHH.HHHH.HHHH.
MAC_ACL
Specifies the source host MAC address for which to set permit conditions.
Use the format HHHH.HHHH.HHHH.
any
Specifies any destination MAC address.
host
MAC_ACL
Specifies the destination host address for which to set permit conditions. Use
the format HHHH.HHHH.HHHH.
MAC_ACL
Specifies the destination host address for which to set permit conditions. Use
the format HHHH.HHHH.HHHH.
Ethertype
Specifies the protocol number for which to set the permit conditions. The
range of valid values is 1536-65535.
arp
Specifies to permit the Address Resolution Protocol (0x0806).
fcoe
Specifies to permit the Fibre Channel over Ethernet Protocol (0x8906).
ipv4
Specifies to permit the IPv4 protocol (0x0800).
count
Enables counting of the packets matching the filter rule.
Defaults
By default, no MAC ACLs are configured.
Command
Modes
Feature Access Control List Configuration mode
Description
Use this command to configure rules to match and to permit traffic based on the source and
destination MAC addresses, and the protocol type. You can also enable counters for a specific rule.
There are 255 ACL counters supported per port group. Use the
no permit
command to remove a
rule from the MAC ACL.
Usage
Guidelines
The first set of {
any
|
host
MAC_ACL
|
MAC_ACL
} parameters is specific to the source MAC
address. The second set of {
any
|
host
MAC_ACL
|
MAC_ACL
} parameters is specific to the
destination MAC address.
Example
To create a rule in a MAC extended ACL to permit IPv4 traffic from the source MAC address
0022.3333.4444
to the destination MAC address
0022.3333.5555
and to enable the counting of
packets:
switch(conf-macl-ext)#
permit 0022.3333.4444 0022.3333.5555 ipv4 count