Chapter 9
| Access Control Lists
MAC ACLs
– 338 –
mac access-group This command binds a MAC ACL to a port. Use the no form to remove the port.
Syntax
mac access-group acl-name {in |
out}
[time-range time-range-name] [counter]
acl-name – Name of the ACL. (Maximum length: 16 characters)
in – Indicates that this list applies to ingress packets.
out – Indicates that this list applies to egress packets.
time-range-name - Name of the time range. (Range: 1-30 characters)
counter – Enables counter for ACL statistics.
Default Setting
None
Command Mode
Interface Configuration (Ethernet)
Command Usage
If an ACL is already bound to a port and you bind a different ACL to it, the switch
will replace the old binding with the new one.
Example
Console(config)#interface ethernet 1/2
Console(config-if)#mac access-group jerry in
Console(config-if)#
Related Commands
show mac access-group (338)
Time Range (141)
show mac
access-group
This command shows the ports assigned to MAC ACLs.
Command Mode
Privileged Exec
Example
Console#show mac access-group
Interface ethernet 1/5
MAC access-list M5 in
Console#
Related Commands
mac access-group (338)
To Next Page
Loading...
