Command Line Interface
7191553-KDU 137 365 Uen D 2006-06-16
VLAN ACLs
The commands in this section configure VLAN access maps based on existing
IP or MAC ACLs. To configure VLAN ACLs, first create an access map, specify
the IP or MAC ACLs to use, set the action to drop or forward packets that match
an ACL rule, set a precedence mask to control the filter sequence, and then bind
the access map to one or more VLANs.
Table 70 VLAN ACL Commands
Command Function Mode Page
vlan access-map Creates a VLAN ACL and enters access map
configuration mode
GC 720
match Sets the match criteria for one IP ACL or one
MAC ACL
Access
Map
722
action Sets the action for a VLAN access map entry to
forward or drop matching packets
Access
Map
723
show vlan
filter access-
map
Displays information about a particular VLAN
access map or for all VLAN access maps
PE 725
access-list
mask-precedence
vlan
Changes to the mode for configuring VLAN
access control masks
GC 726
mask Sets a precedence mask for the IP ACL rules IP-
Mask
727
mask Sets a precedence mask for the MAC ACL rules MAC-
Mask
729
vlan filter Binds a VLAN access map to one or more
VLANs
GC 731
show vlan
filter
Displays information about the specified VLAN
access map or all VLAN access maps
PE 732
To Next Page
Loading...
