Permit (Mac) - Cisco AP775A - Nexus Converged Network Switch 5010 Command Reference Manual
Cisco nexus 5000 series command reference, release 4.1(3)n1(1) (ol-16599-01, august 2009)
Hide thumbs
Also See for AP775A - Nexus Converged Network Switch 5010:
- Configuration manual (1486 pages) ,
- Reference (886 pages) ,
- Release note (26 pages)
Table of Contents
Advertisement
permit (MAC)
S e n d c o m m e n t s t o n x 5 0 0 0 - d o c f e e d b a c k @ c i s c o . c o m
permit (MAC)
To create a MAC ACL rule that permits traffic matching its conditions, use the permit command. To
remove a rule, use the no form of this command.
Syntax Description
sequence-number
source
destination
protocol
cos cos-value
vlan vlan-id
Command Default
A newly created MAC ACL contains no rules.
If you do not specify a sequence number, the switch assigns to the rule a sequence number that is 10
greater than the last rule in the ACL.
Command Modes
MAC ACL configuration
Cisco Nexus 5000 Series Command Reference
6-72
[sequence-number] permit source destination [protocol] [cos cos-value] [vlan vlan-id]
no permit source destination [protocol] [cos cos-value] [vlan vlan-id]
no sequence-number
(Optional) Sequence number of the permit command, which causes the
switch to insert the command in that numbered position in the access list.
Sequence numbers maintain the order of rules within an ACL.
A sequence number can be any integer between 1 and 4294967295.
By default, the first rule in an ACL has a sequence number of 10.
If you do not specify a sequence number, the switch adds the rule to the end
of the ACL and assigns to it a sequence number that is 10 greater than the
sequence number of the preceding rule.
Use the resequence command to reassign sequence numbers to rules.
Source MAC addresses that the rule matches. For details about the methods
that you can use to specify this argument, see "Source and Destination" in
the "Usage Guidelines" section.
Destination MAC addresses that the rule matches. For details about the
methods that you can use to specify this argument, see "Source and
Destination" in the "Usage Guidelines" section.
( Optional) Protocol number that the rule matches. Valid protocol numbers
are 0x0 to 0xffff. For listings of valid protocol names, see "MAC Protocols"
in the "Usage Guidelines" section.
(Optional) Specifies that the rule matches only packets whose IEEE 802.1Q
header contains the Class of Service (CoS) value given in the cos-value
argument. The cos-value argument can be an integer from 0 to 7.
(Optional) Specifies that the rule matches only packets whose IEEE 802.1Q
header contains the VLAN ID given. The vlan-id argument can be an integer
from 1 to 4094.
Chapter 6
Security Commands
OL-16599-01
Advertisement
Table of Contents
