A
CCESS
C
ONTROL
L
IST
C
OMMANDS
3-183
• To remove a rule, use the no permit or no deny command followed
by the exact text of a previously configured rule.
• An ACL can contain up to 32 rules.
Example
Related Commands
permit, deny 3-184
mac access-group (3-185)
show mac access-list (3-187)
permit, deny (MAC ACL)
Use this command to add a rule to a MAC ACL. The rule filters by
matching a specified MAC source or destination address (i.e., physical layer
address), or Ethernet protocol type. Use the no form to remove a rule.
Syntax
{
permit
|
deny
}
{
any
|
host
source
|
source bitmask
}
{
any
|
host
destination
|
destination bitmask
}
{
any
|
ethertype
protocol
}
no
{
permit
|
deny
}
{
any
|
host
source
|
source bitmask
}
{
any
|
host
destination
|
destination bitmask
}
{
any
|
ethertype
protocol
}
• any – Any MAC source address, destination address, or Ethernet
protocol.
• source – Source MAC address.
• source
bitmask
– Binary mask for the source MAC address.
• destination – Destination MAC address.
• destination
bitmask
– Binary mask for the destination MAC address.
• protocol – A specific Ethernet protocol number. (Range: 0-65535)
Console(config)#access-list mac jerry
Console(config-mac-acl)#
To Next Page
Loading...
