2-55
Cisco ME 3800X and ME 3600X Switch Command Reference
OL-28238-01
Chapter 2 Cisco ME 3800X and ME 3600X Switch Cisco IOS Commands
deny (MAC access-list configuration)
deny (MAC access-list configuration)
To prevent non-IP traffic from being forwarded if the conditions are matched, use the deny command in
MAC access-list configuration mode. To remove a deny condition from the named MAC access list, use
the no form of this command.
deny {any | host src-MAC-addr | src-MAC-addr mask} {any | host dst-MAC-addr | dst-MAC-addr
mask} [type mask | aarp | amber | cos cos | dec-spanning | decnet-iv | diagnostic | dsm |
etype-6000 | etype-8042 | lat | lavc-sca | lsap lsap mask |mop-console | mop-dump | msdos |
mumps | netbios | vines-echo | vines-ip | xns-idp]
no deny {any | host src-MAC-addr | src-MAC-addr mask} {any | host dst-MAC-addr |
dst-MAC-addr mask} [type mask | aarp | amber | cos cos | dec-spanning | decnet-iv |
diagnostic | dsm | etype-6000 | etype-8042 | lat | lavc-sca | lsap lsap mask | mop-console |
mop-dump | msdos | mumps | netbios | vines-echo | vines-ip | xns-idp]
Syntax Description any Keyword to specify to deny any source or destination MAC address.
host src MAC-addr |
src-MAC-addr mask
Defines a host MAC address and optional subnet mask. If the source
address for a packet matches the defined address, non-IP traffic from that
address is denied.
host dst-MAC-addr |
dst-MAC-addr mask
Defines a destination MAC address and optional subnet mask. If the
destination address for a packet matches the defined address, non-IP
traffic to that address is denied.
type mask (Optional) Uses the Ethertype number of a packet with Ethernet II or
SNAP encapsulation to identify the protocol of the packet.
• The type is 0 to 65535, specified in hexadecimal.
• The mask is a mask of don’t care bits applied to the Ethertype before
testing for a match.
aarp (Optional) Selects Ethertype AppleTalk Address Resolution Protocol that
maps a data-link address to a network address.
amber (Optional) Selects EtherType DEC-Amber.
cos cos (Optional) Selects a class of service (CoS) number from 0 to 7 to set
priority. Filtering on CoS can be performed only in hardware. A warning
message reminds the user if the cos option is configured.
dec-spanning (Optional) Selects EtherType Digital Equipment Corporation (DEC)
spanning tree.
decnet-iv (Optional) Selects EtherType DECnet Phase IV protocol.
diagnostic (Optional) Selects EtherType DEC-Diagnostic.
dsm (Optional) Selects EtherType DEC-DSM.
etype-6000 (Optional) Selects EtherType 0x6000.
etype-8042 (Optional) Selects EtherType 0x8042.
lat (Optional) Selects EtherType DEC-LAT.
lavc-sca (Optional) Selects EtherType DEC-LAVC-SCA.
To Next Page
Loading...
Need help?
General