Examples
The following example show how to set a permit condition for an access list named L2ACL1:
RP/0/RSP0/CPU0:router(config)# ethernet-services access-list L2ACL1
RP/0/RSP0/CPU0:router(config-es-al)# 10 permit 00ff.eedd.0010 ff00.0000.00ff 0011.ab10.cdef
ffff.0000.ff00 vlan 1000-1100 inner-vlan 100 inner-cos 7 inner-dei
RP/0/RSP0/CPU0:router(config-es-al)# 20 permit any host 000a.000b.000c 0800 vlan 500 cos 2
inner-vlan 600 inner-cos 5 inner-dei
RP/0/RSP0/CPU0:router(config-es-al)# 30 permit any host 000a.000b.000c 8137 vlan 500 cos 2
inner-vlan 600 inner-cos 5 inner-dei
Related Commands
DescriptionCommand
Creates a copy of an existing Ethernet services access list.copy access-list ethernet-service, on page 648
Sets conditions for an Ethernet services access listdeny (ES ACL), on page 650
Controls access to an interface.ethernet-service access-group, on page 653
Defines an Ethernet services (Layer 2) access list by name.ethernet-services access-list, on page 655
Renumbers existing statements and increment subsequent
statements to allow a new Ethernet services access list
statement.
resequence access-list ethernet-service, on page
660
Displays the contents of current Ethernet services access
lists.
show access-lists ethernet-services, on page 662
Displays Ethernet services access list trace information.show access-lists ethernet-services trace, on page
666
Identifies the modes and interfaces on which a particular
ACL is applied.
show access-list ethernet-service usage pfilter,
on page 668
Cisco ASR 9000 Series Aggregation Services Router VPN and Ethernet Services Command Reference, Release
6.1.x
659
Layer 2 Access List Commands
permit (ES ACL)
To Next Page
Loading...
Need help?
General
