2-164
Catalyst4500 Series SwitchCiscoIOS Command Reference—Release 12.2(18)EW
78-16201-01
Chapter2Cisco IOS Commands for the Catalyst 4500 Series Switches
mac access-list extended
Table2-8 describes mapping an Ethernet packet to a protocol family.
When you enter the src-mac mask or dest-mac mask value, follow these guidelines:
• Enter MAC addresses as three 4-byte values in dotted hexadecimal format; for example,
0030.9629.9f84.
• Enter MAC address masks as three 4-byte values in dotted hexadecimal format. Use 1 bit as a
wildcard. For example, to match an address exactly, use 0000.0000.0000 (can be entered as 0.0.0).
• For the optional protocol parameter, you can enter either the ethertype or the keyword.
• Entries without a protocol parameter match any protocol.
• Access lists entries are scanned in the order you enter them. The first matching entry is used. To
improve performance, place the most commonly used entries near the beginning of the access list.
• An implicit deny any any entry exists at the end of an access list unless you include an explicit
permit any any entry at the end of the list.
• All new entries to an existing list are placed at the end of the list. You cannot add entries to the
middle of a list.
dest-mac mask (Optional) Destination MAC address in the form:
dest-mac-address dest-mac-address-mask.
protocol-family (Optional) Name of the protocol family. Table2-8 explains which packets are
mapped to a particular protocol family.
Table2-7 mac access-list extended Subcommands (continued)
Subcommand Description
Table2-8 Mapping an Ethernet Packet to a Protocol Family
Protocol Family Ethertype in Packet Header
Appletalk 0x809B, 0x80F3
Arp-Non-Ipv4 0x0806 and protocol header of Arp is a non-Ip protocol family
Decnet 0x6000-0x6009, 0x8038-0x8042
Ipx 0x8137-0x8138
Ipv6 0x86DD
Rarp-Ipv4 0x8035 and protocol header of Rarp is Ipv4
Rarp-Non-Ipv4 0x8035 and protocol header of Rarp is a non-Ipv4 protocol family
Vines 0x0BAD, 0x0BAE, 0x0BAF
Xns 0x0600, 0x0807
To Next Page
Loading...
Need help?
General
