Configuring MAC ACLs
S e n d f e e d b a c k t o n x 5 0 0 0 - d o c f e e d b a c k @ c i s c o . c o m
Creating a MAC ACL
To create a MAC ACL and add rules to it, perform this task:
Command
Step 1
switch# configure terminal
Step 2
switch# mac access-list name
Step 3
switch(config-mac-acl)# {permit | deny}
source destination protocol
Step 4
switch(config-mac-acl)# statistics
Step 5
switch(config-mac-acl)# show mac
access-lists name
Step 6
switch(config-mac-acl)# copy
running-config startup-config
The following example shows how to create a MAC ACL and add rules to it:
switch# configure terminal
switch(config)# mac access-list acl-mac-01
switch(config-mac-acl)# permit 00c0.4f00.0000 0000.00ff.ffff any
switch(config-mac-acl)# statistics
switch(config-mac-acl)# show mac access-lists acl-mac-01
switch(config-mac-acl)# copy running-config startup-config
Changing a MAC ACL
In an existing MAC ACL, you can add and remove rules. You cannot change existing rules. Instead, to
change a rule, you can remove it and recreate it with the desired changes.
If you need to add more rules between existing rules than the current sequence numbering allows, you
can use the resequence command to reassign sequence numbers. For more information, see the
"Changing Sequence Numbers in an IP ACL" section on page
To change a MAC ACL, perform this task:
Command
Step 1
switch# configure terminal
Step 2
switch(config)# mac access-list name
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
20-10
Chapter 20
Purpose
Enters configuration mode.
Creates the MAC ACL and enters ACL
configuration mode.
Creates a rule in the MAC ACL.
The permit and deny options support many ways of
identifying traffic. For more information, see the
Cisco Nexus 5000 Series Command Reference.
(Optional) Specifies that the switch maintains
global statistics for packets matching the rules in
the ACL.
(Optional) Displays the MAC ACL configuration.
(Optional) Copies the running configuration to the
startup configuration.
20-7.
Purpose
Enters configuration mode.
Enters ACL configuration mode for the ACL that
you specify by name.
Configuring ACLs
OL-16597-01