Protection from unauthorized access
Basic - L3P
Release
3.1
06/07
6.6
Access Control Lists (ACL)
95
6.6.4 Configuring MAC ACLs
show ip access-lists 100
ACL ID: 100
Rule Number: 1
Action......................................... deny
Match All...................................... FALSE
Protocol....................................... 255(ip)
Source IP Address.............................. 10.0.1.11
Source IP Mask................................. 0.0.0.0
Destination IP Address......................... 10.0.1.158
Destination IP Mask............................ 0.0.0.0
Rule Number: 2
Action......................................... permit
Match All...................................... TRUE
configure
interface 2/3
ip access-group 100 in
exit
Switch to the configuration mode.
Switch to the interface configuration mode for
Interface 2/3.
Attach ACL 100 to interface 2/3 for received data.
Switch to the configuration mode.
interface 3/1
ip access-group 110 in
exit
exit
Switch to the interface configuration mode for
Interface3/1.
Attach ACL 110 to interface 3/1 for received data.
Switch to the configuration mode.
Switch to the privileged EXEC mode.
show access-lists interface 2/3 in
ACL Type ACL ID Sequence Number
-------- ------------------------------- ---------------
IP 100 1
Example: MAC ACL
Filtering AppleTalk and IPX from the entire network.