Send feedback to nx5000-docfeedback@cisco.com
1-10
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01
Chapter 1 Configuring ACLs
Configuring MAC ACLs
• Removing a MAC ACL, page 1-11
• Changing Sequence Numbers in a MAC ACL, page 1-12
• Applying a MAC ACL as a Port ACL, page 1-12
• Applying a MAC ACL as a VACL, page 1-13
• Verifying MAC ACL Configurations, page 1-13
• Displaying and Clearing MAC ACL Statistics, page 1-13
Creating a MAC ACL
To create a MAC ACL and add rules to it, perform this task:
The following example shows how to create a MAC ACL and add rules to it:
switch# configure terminal
switch(config)# mac access-list acl-mac-01
switch(config-mac-acl)# permit 00c0.4f00.0000 0000.00ff.ffff any
switch(config-mac-acl)# statistics
switch(config-mac-acl)# show mac access-lists acl-mac-01
switch(config-mac-acl)# copy running-config startup-config
Changing a MAC ACL
In an existing MAC ACL, you can add and remove rules. You cannot change existing rules. Instead, to
change a rule, you can remove it and recreate it with the desired changes.
Command Purpose
Step 1
switch# configure terminal
Enters global configuration mode.
Step 2
switch# mac access-list name
Creates the MAC ACL and enters ACL
configuration mode.
Step 3
switch(config-mac-acl)# {permit | deny}
source destination protocol
Creates a rule in the MAC ACL.
The permit and deny options support many ways of
identifying traffic. For more information, see the
Cisco Nexus 5000 Series Command Reference.
Step 4
switch(config-mac-acl)# statistics
(Optional) Specifies that the switch maintains
global statistics for packets matching the rules in
the ACL.
Step 5
switch(config-mac-acl)# show mac
access-lists name
(Optional) Displays the MAC ACL configuration.
Step 6
switch(config-mac-acl)# copy
running-config startup-config
(Optional) Copies the running configuration to the
startup configuration.
To Next Page
Loading...
