Table of Contents
Advertisement
C
◆
◆
◆
E
This rule permits packets from any source MAC address to the destination
address 00-e0-29-94-34-de where the Ethernet type is 0800.
R
access-list mac (690)
Time Range (545)
This command binds a MAC ACL to a port. Use the no form to remove the
mac access-group
port.
S
D
None
C
Interface Configuration (Ethernet)
C
◆
◆
U
OMMAND
SAGE
New rules are added to the end of the list.
The ethertype option can only be used to filter Ethernet II formatted
packets.
A detailed listing of Ethernet protocol types can be found in RFC 1060.
A few of the more common types include the following:
0800 - IP
■
0806 - ARP
■
8137 - IPX
■
XAMPLE
Console(config-mac-acl)#permit any host 00-e0-29-94-34-de ethertype 0800
Console(config-mac-acl)#
C
ELATED
OMMANDS
YNTAX
mac access-group acl-name in [time-range time-range-name]
acl-name – Name of the ACL. (Maximum length: 16 characters)
in – Indicates that this list applies to ingress packets.
time-range-name - Name of the time range.
(Range: 1-30 characters)
S
EFAULT
ETTING
M
OMMAND
ODE
U
OMMAND
SAGE
Only one ACL can be bound to a port.
If an ACL is already bound to a port and you bind a different ACL to it,
the switch will replace the old binding with the new one.
– 693 –
| Access Control Lists
C
26
HAPTER
MAC ACLs
- Quick Links:
- Connecting to the Switch
- Resetting the System
Hide quick links:
Advertisement
Chapters
Table of Contents
