Chapter 10
| Access Control Lists
MAC ACLs
– 340 –
no
{
permit
|
deny
}
{
any
|
host
source | source address-bitmask}
{
any
|
host
destination | destination address-bitmask}
[
cos
cos cos-bitmask] [
vid
vid vid-bitmask]
[
ethertype
ethertype [ethertype-bitmask]]
Note:
The default is for Ethernet II packets.
{
permit
|
deny
}
tagged-eth2
{
any
|
host
source | source address-bitmask}
{
any
|
host
destination | destination address-bitmask}
[
cos
cos cos-bitmask] [
vid
vid vid-bitmask]
[
ethertype
ethertype [ethertype-bitmask]]
[
time-range
time-range-name]
no
{
permit
|
deny
}
tagged-eth2
{
any
|
host
source | source address-bitmask}
{
any
|
host
destination | destination address-bitmask}
[
cos
cos cos-bitmask] [
vid
vid vid-bitmask]
[
ethertype
ethertype [ethertype-bitmask]]
{
permit
|
deny
}
untagged-eth2
{
any
|
host
source | source address-bitmask}
{
any
|
host
destination | destination address-bitmask}
[
ethertype
ethertype [ethertype-bitmask]]
[
time-range
time-range-name]
no
{
permit
|
deny
}
untagged-eth2
{
any
|
host
source | source address-bitmask}
{
any
|
host
destination | destination address-bitmask}
[
ethertype
ethertype [ethertype-bitmask]]
{
permit
|
deny
}
tagged-802.3
{
any
|
host
source | source address-bitmask}
{
any
|
host
destination | destination address-bitmask}
[
cos
cos cos-bitmask] [
vid
vid vid-bitmask]
[
time-range
time-range-name]
no
{
permit
|
deny
}
tagged-802.3
{
any
|
host
source | source address-bitmask}
{
any
|
host
destination | destination address-bitmask}
[
cos
cos cos-bitmask] [
vid
vid vid-bitmask]
{
permit
|
deny
}
untagged-802.3
{
any
|
host
source | source address-bitmask}
{
any
|
host
destination | destination address-bitmask}
[
time-range
time-range-name]
no
{
permit
|
deny
}
untagged-802.3
{
any
|
host
source | source address-bitmask}
{
any
|
host
destination | destination address-bitmask}
tagged-eth2
– Tagged Ethernet II packets.
untagged-eth2
– Untagged Ethernet II packets.
To Next Page
Loading...
Need help?
General