Deny (Mac) - Dell PowerConnect 6024F Command Line Interface Reference Manual
Command
line interface (cli) guide (.htm)
Hide thumbs
Also See for PowerConnect 6024F:
- User manual (474 pages) ,
- Getting started manual (66 pages) ,
- Getting started manual (154 pages)
Table of Contents
Advertisement
User Guidelines
When an access control entry (ACE) is added to an access control list, an implied deny-any-
any condition exists at the end of the list. If there are no matches, the packets are denied.
However, before the first ACE is added, the list permits all packets.
If vlan id is used as a classifier element then it cannot connect a policy map to a VLAN
interface.
Example
The following example configures a MAC ACE to allow traffic from MAC address
66:66:66:66:66:66 with any destination on VLAN 4.
Console (config-mac-al)# permit 66:66:66:66:66:66
00:00:00:00:00:00 any vlan 4
deny (MAC)
The deny mac-acl configuration mode command denies traffic if the conditions defined in the
permit statement are matched.
Syntax
deny [disable-port] {any | {source source- wildcard} any | {destination destination-
wildcard}}[vlan vlan-id]
•
disable-port—If the statement is deny, then the port is disabled.
•
Source MAC address can be one of the following:
–
–
•
Destination MAC address can be one of the following:
–
–
•
vlan vlan-id—The packet VLAN.
Default Configuration
This command has no default configuration.
Command Mode
Mac-ACL Configuration mode
82
ACL Commands
any—Packets received from any MAC address.
source source-wildcard—MAC address and wildcard for host from which the packet is
sent. Specify the MAC address and wildcard using hexadecimal format
(HH:HH:HH:HH:HH:HH).
any—Packets sent to any MAC address.
destination destination-wildcard—MAC address and wildcard for host to which the
packet is sent. Specify the MAC address and wildcard using hexadecimal format
(HH:HH:HH:HH:HH:HH).
Advertisement
Table of Contents
