155
Cisco Nexus 5500 Series NX-OS Security Command Reference
OL-27883-02
Chapter P Commands
permit (ARP)
Usage Guidelines A newly created ARP ACL contains no rules.
If you do not specify a sequence number, the device assigns to the rule a sequence number that is 10
greater than the last rule in the ACL.
When the device applies an ARP ACL to a packet, it evaluates the packet with every rule in the ACL.
The device enforces the first rule that has conditions that are satisfied by the packet. When the conditions
of more than one rule are satisfied, the device enforces the rule with the lowest sequence number.
Examples This example shows how to enter ARP access list configuration mode for an ARP ACL named
copp-arp-acl and add a rule that permits ARP request messages that contain a sender IP address that is
within the 192.0.32.14/24 subnet and associate them with the copp-arp-acl class:
switch# configure terminal
switch(config)# arp access-list copp-arp-acl
switch(config-arp-acl)# permit ip 192.0.32.14 255.255.255.0 mac any
switch(config-arp-acl)#
Related Commands Command Description
deny (ARP) Configures a deny rule in an ARP ACL.
arp access-list Configures an ARP ACL.
remark Configures a remark in an ACL.
show arp access-lists Displays all ARP ACLs or one ARP ACL.
To Next Page
Loading...
