Cisco Nexus 5000 Series Configuration Manual page 97

Nx-os security configuration guide

Hide thumbs Also See for Nexus 5000 Series:

Cli configuration manual (660 pages)

Configuration manual (334 pages)

Command reference manual (196 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

page of 108

/ 108
Contents
Table of Contents
Bookmarks

Table of Contents

Configuring Access Control Lists

SUMMARY STEPS

1. switch# configure terminal

2. switch(config)# mac access-list name

3. switch(config-mac-acl)# [sequence-number] {permit | deny} source destination protocol

4. (Optional) switch(config-mac-acl)# no {sequence-number | {permit|deny} source destination protocol}

5. (Optional) switch(config-mac-acl)# [no] statistics

6. (Optional) switch# show mac access-lists name

7. (Optional) switch# copy running-config startup-config

DETAILED STEPS

Command or Action

Step 1

switch# configure terminal

Step 2

switch(config)# mac access-list name

Step 3

switch(config-mac-acl)# [sequence-number]

{permit | deny} source destination protocol

Step 4

switch(config-mac-acl)# no {sequence-number

| {permit|deny} source destination protocol}

Step 5

switch(config-mac-acl)# [no] statistics

Step 6

switch# show mac access-lists name

Step 7

switch# copy running-config startup-config

The following example shows how to change a MAC ACL:

switch# configure terminal

switch(config)# mac access-list acl-mac-01

switch(config-mac-acl)# 100 permit mac 00c0.4f00.00 0000.00ff.ffff any

switch(config-mac-acl)# statistics

OL-20919-01

Purpose

Enters configuration mode.

Enters ACL configuration mode for the ACL that you specify by

name.

Creates a rule in the MAC ACL. Using a sequence number allows

you to specify a position for the rule in the ACL. Without a sequence

number, the rule is added to the end of the rules.

The permit and deny commands support many ways of identifying

traffic.

(Optional)

Removes the rule that you specify from the MAC ACL.

The permit and deny commands support many ways of identifying

traffic.

(Optional)

Specifies that the switch maintains global statistics for packets

matching the rules in the ACL.

The no option stops the switch from maintaining global statistics

for the ACL.

(Optional)

Displays the MAC ACL configuration.

(Optional)

Copies the running configuration to the startup configuration.

Cisco Nexus 5000 Series NX-OS Security Configuration Guide

Configuring MAC ACLs

Table of Contents

Cisco Nexus 5000 Series Configuration Manual page 97

Related Manuals for Cisco Nexus 5000 Series

Related Products for Cisco Nexus 5000 Series

Table of Contents