Configuring MAC ACLs
The mac access-list is applicable to non-IPv4 and non-IPv6 traffic only.
Note
Procedure
Step 1
Step 2
Configuring MAC ACLs
Creating a MAC ACL
To create a MAC ACL and add rules to it, perform this task:
Procedure
Step 1
Step 2
Step 3
Step 4
Step 5
Step 6
OL-16597-01
Command or Action
switch# show {ip | ipv6} access-lists
name
switch# clear {ip | ipv6} access-list
counters [access-list-name]
Command or Action
switch# configure terminal
switch# mac access-list name
switch(config-mac-acl)#
[sequence-number] {permit | deny}
source destination protocol
switch(config-mac-acl)# statistics
switch# show mac access-lists name
switch# copy running-config
startup-config
Purpose
Displays IP ACL configuration. If the IP ACL includes
the statistics command, then the show ip access-lists and
show ipv6 access-list command output includes the
number of packets that have matched each rule.
Clears statistics for all IP ACLs or for a specific IP ACL.
Purpose
Enters configuration mode.
Creates the MAC ACL and enters ACL configuration
mode.
Creates a rule in the MAC ACL.
The permit and deny options support many ways of
identifying traffic. For more information, see the
Cisco Nexus 5000 Series Command Reference.
(Optional)
Specifies that the switch maintains global statistics
for packets matching the rules in the ACL.
(Optional)
Displays the MAC ACL configuration.
(Optional)
Copies the running configuration to the startup
configuration.
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
Creating a MAC ACL
287