Every ACL is terminated by an implicit deny all rule, which covers any
packet not matching a preceding explicit rule.
You can set up ACLs to control traffic at Layer 2, Layer 3, or Layer 4. MAC
ACLs operate on Layer 2. IP ACLs operate on Layers 3 and 4. PowerConnect
M6220, M6348, M8024, and M8024-k switches support both IPv4 and IPv6
What Are MAC ACLs?
MAC ACLs are Layer 2 ACLs. You can configure the rules to inspect the
following fields of a packet:
Source MAC address
Source MAC mask
Destination MAC address
Destination MAC mask
Class of Service (CoS) (802.1p)
L2 ACLs can apply to one or more interfaces.
Multiple access lists can be applied to a single interface; sequence number
determines the order of execution.
You can assign packets to queues using the assign queue option.
Configuring Access Control Lists