Cisco Catalyst 2950 Command Reference Manual page 116

deny (MAC access-list configuration)
vines-ip
xns-idp
Defaults
This command has no defaults. However, the default action for a MAC named ACL is to deny.
Command Modes MAC access-list configuration
Command History Release
12.1(6)EA2
Usage Guidelines
When an access control entry (ACE) is added to an ACL, an implied deny-any-any condition exists at
the end of the list. That is, if there are no matches, the packets are denied. However, before the first ACE
is added, the list permits all packets.
These options are not allowed:
•
•
•
Note For more information about configuring MAC extended ACLs, see the "Configuring Network Security
with ACLs" chapter in the software configuration guide for this release.
Examples This example shows how to define the MAC named extended ACL to deny NETBIOS traffic from any
source to MAC address 00c0.00a0.03fa. Traffic matching this list is denied.
Switch(config-ext-macl)# deny any host 00c0.00a0.03fa netbios
This example shows how to remove the deny condition from the named MAC extended ACL:
Switch(config-ext-macl)# no deny any host 00c0.00a0.03fa netbios
You can verify your settings by entering the show access-lists privileged EXEC command.
Related Commands Command
mac access-list extended
permit (MAC access-list configuration)
show access-lists
Catalyst 2950 and Catalyst 2955 Switch Command Reference
2-86
Select EtherType VINES IP.
Select EtherType Xerox Network Systems (XNS) protocol suite (0 to
65535), an arbitrary Ethertype in decimal, hexadecimal, or octal.
Modification
This command was introduced.
Class of service (CoS)
Ethertype number of a packet with Ethernet II or Subnetwork Access Protocol (SNAP)
encapsulation
Link Service Access Point (LSAP) number of a packet with IEEE 802.2 encapsulation
Chapter 2 Catalyst 2950 and 2955 Cisco IOS Commands
Description
Creates an ACL based on MAC addresses for non-IP
traffic.
Permits Layer 2 traffic to be forwarded if conditions are
matched.
Displays ACLs configured on a switch.
OL-10102-01