Chapter 9
| Access Control Lists
ARP ACLs
– 339 –
show mac access-list This command displays the rules for configured MAC ACLs.
Syntax
show mac access-list [acl-name]
acl-name – Name of the ACL. (Maximum length: 16 characters)
Command Mode
Privileged Exec
Example
Console#show mac access-list
MAC access-list jerry:
permit any 00-e0-29-94-34-de ethertype 0800
Global
MAC access-list jerry in counter
Console#
Related Commands
permit, deny (336)
mac access-group (338)
ARP ACLs
The commands in this section configure ACLs based on the IP or MAC address
contained in ARP request and reply messages. To configure ARP ACLs, first create an
access list containing the required permit or deny rules, and then bind the access
list to one or more VLANs using the ip arp inspection vlan command.
access-list arp This command adds an ARP access list and enters ARP ACL configuration mode. Use
the no form to remove the specified ACL.
Syntax
[no] access-list arp acl-name
acl-name – Name of the ACL. (Maximum length: 16 characters)
Table 65: ARP ACL Commands
Command Function Mode
access-list arp Creates a ARP ACL and enters configuration mode GC
permit, deny Filters packets matching a specified source or destination
address in ARP messages
ARP-ACL
show arp access-list Displays the rules for configured ARP ACLs PE
To Next Page
Loading...
Need help?
General
