Creating An Extended Mac Acl And Adding Rules; Modifying Mac Acl Rules - Brocade Communications Systems Converged Enhanced Ethernet 8000 Administrator's Manual

Converged enhanced ethernet

Hide thumbs Also See for Converged Enhanced Ethernet 8000:

Hardware reference manual (64 pages)

Reference manual (370 pages)

Administrator's manual (96 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

Table of Contents

3. Enter the deny command to create a rule in the MAC ACL to drop traffic with the source MAC

4. Enter the permit command to create a rule in the MAC ACL to permit traffic with the source

5. Use the seq command to create MAC ACL rules in a specific sequence.

Creating an extended MAC ACL and adding rules

NOTE

You can use the resequence command to change all the sequence numbers assigned to the rules

in a MAC ACL. For detailed information, see

page 104.

The MAC ACL name length is limited to 64 characters.

To create an extended MAC ACL and add rules, perform the following steps from privileged EXEC

mode.

1. Enter the configure terminal command to access global configuration mode.

2. Create an extended MAC ACL and enter ACL configuration mode.

3. Create a rule in the MAC ACL to permit traffic with the source MAC address and the destination

4. Use the seq command to insert the rule anywhere in the MAC ACL.

5. Enter the copy command to save the running-config file to the startup-config file.

Modifying MAC ACL rules

You cannot modify the existing rules of a MAC ACL. However, you can remove the rule and then

recreate it with the desired changes.

If you need to add more rules between existing rules than the current sequence numbering allows,

you can use the resequence command to reassign sequence numbers. For detailed information,

see

Use a sequence number to specify the rule you wish to modify. Without a sequence number, a new

rule is added to the end of the list, and the existing rule is unchanged.

Converged Enhanced Ethernet Administrator's Guide

53-1002163-02

DRAFT: BROCADE CONFIDENTIAL

address.

switch(conf-macl-std)#deny 0022.3333.4444 count

MAC address.

switch(conf-macl-std)#permit 0022.5555.3333 count

switch(conf-macl-std)#seq 100 deny 0011.2222.3333 count

switch(conf-macl-std)#seq 1000 permit 0022.1111.2222 count

switch(config)#mac access-list extended test_02

MAC address.

switch(conf-macl-ext)#permit 0022.3333.4444 0022.3333.5555

switch(conf-macl-std)#seq 5 permit 0022.3333.4444 0022.3333.5555

switch(conf-macl-std)#do copy running-config startup-config

"Reordering the sequence numbers in a MAC ACL"

ACL configuration and management

"Reordering the sequence numbers in a MAC ACL"

on page 104.

103

Table of Contents

Creating An Extended Mac Acl And Adding Rules; Modifying Mac Acl Rules - Brocade Communications Systems Converged Enhanced Ethernet 8000 Administrator's Manual

Creating an extended MAC ACL and adding rules

Modifying MAC ACL rules

Related Manuals for Brocade Communications Systems Converged Enhanced Ethernet 8000

Related Content for Brocade Communications Systems Converged Enhanced Ethernet 8000

Table of Contents