19
Follow these steps to configure an Ethernet frame header ACL:
Create an Ethernet frame
header ACL and enter its
view
acl number acl-number
[ name acl-name ]
[ match-order { auto |
config } ]
Required
By default, no ACL exists.
Ethernet frame header ACLs
are numbered in the range
4000 to 4999.
You can use the acl name
acl-name command to
enter the view of an existing
named Ethernet frame
header ACL.
Configure a description for
the Ethernet frame header
ACL
Optional
By default, an Ethernet
frame header ACL has no
ACL description.
Set the rule numbering step
rule [ rule-id ] { deny |
permit } [ cos vlan-pri |
dest-mac dest-addr
dest-mask | { lsap lsap-type
lsap-type-mask | type
protocol-type
protocol-type-mask } |
source-mac sour-addr
source-mask | time-range
time-range-name ] *
Required
By default
,
an Ethernet
frame header ACL does not
contain any rule.
To create or edit multiple
rules, repeat this step.
Configure or edit a rule
description
rule rule-id comment text
Optional
By default, an Ethernet
frame header ACL rule has
no rule description.
Copying an ACL
You can create an ACL by copying an existing ACL. The new ACL has the same
properties and content as the source ACL except the ACL number and name.
To copy an IPv4 or IPv6 ACL successfully, ensure that:
The destination ACL number is from the same category as the source ACL number.
To Next Page
Loading...
Need help?
General
