Mac Access Control List (Acl) Commands - Dell Force10 S2410-01-10GE-24P Command Reference Manual
Sftos command reference
Hide thumbs
Also See for Force10 S2410-01-10GE-24P:
- Configuration manual (306 pages) ,
- Manual (42 pages) ,
- Quick start manual (31 pages)
Table of Contents
Advertisement
MAC Access Control List (ACL) Commands
{deny|permit}
Syntax
Parameters
|
ACL Commands
384
The commands in this section are:
•
{deny|permit} on page 384
•
mac access-list extended on page 386
•
mac access-list extended rename on page 386
•
mac access-group on page 387
•
show mac access-lists on page 388
This command creates a new rule for the selected MAC access list. Each rule is appended to the list of
configured rules for the list. Note that an implicit "deny all" MAC rule always terminates the access
list.
| any} {
{deny|permit} {
srcmac
[
ethertypekey
] [
0x0600-0xFFFF
deny | permit
assign-queue
ethertypekey
redirect
The special command form {deny|permit} any any is used to match all Ethernet
Note:
Layer 2 packets, and is the equivalent of the IP access list "match every" rule.
} | any} [assign-queue
dstmac
] [redirect
unit/slot/port
] [vlan {eq
A rule may either deny or permit traffic according to the specified
classification fields. At a minimum, the source (
any)
} |
dstmac
destination (
each of which may be substituted using the keyword
match on any value in that field. The BPDU keyword may be specified for
the destination MAC value/mask pair indicating a well-known BPDU MAC
value of 01-80-c2-xx-xx-xx (hex), where 'xx' indicates a don't care. The
remaining command parameters are all optional.
assign-queue
(Optional) The
particular hardware queue for handling traffic that matches this rule. The
queue-id
allowed
value is 0-(n-1), where n is the number of user
configurable queues available for the hardware platform.
ethertypekey
(Optional) The Ethertype (
keyword or a four-digit hexadecimal value from
ethertypekey
currently supported
ibmsna
ipv4
ipv6
ipx
mplsmcast
,
,
,
,
novell
pppoe
rarp
,
,
. Each of these translates into its equivalent
Ethertype value(s).
redirect
(Optional) The
parameter redirects traffic matching this rule to
the specified egress port. The redirected packet carries the same MAC
address as it would have if it had not been redirected (the MAC address of
the next hop defined in the routing table). Basically, it looks like a mirrored
packet on the redirect port.
assign-queue
redirect
The
and
permit
rule.
queue-id_0-6
] [cos
0-4095
]
any)
|
srcmac
MAC value and mask pairs must be specified,
any
to indicate a
parameter allows specification of a
) may be specified as either a
0x0600
to
appletalk
keyword values are:
mplsucast
netbios
,
,
parameters are only valid for a
0-7
]
and
0xFFFF
. The
arp
,
,
,
- Quick Links:
- Quick Starting the Switch
Hide quick links:
Advertisement
Table of Contents
