Permit, Deny (Arp Acl) - Edge-Core ECS4810-12M Layer 2 Management Manual

| Access Control Lists
C 27
HAPTER
ARP ACLs
permit, deny (ARP
ACL)
This command adds a rule to an ARP ACL. The rule filters packets matching
a specified source or destination address in ARP messages. Use the no
form to remove a rule.
S
YNTAX
[no] {permit | deny}
ip {any | host source-ip | source-ip ip-address-bitmask}
mac {any | host source-ip | source-ip ip-address-bitmask} [log]
This form indicates either request or response packets.
[no] {permit | deny} request
ip {any | host source-ip | source-ip ip-address-bitmask}
mac {any | host source-mac | source-mac mac-address-bitmask}
[log]
[no] {permit | deny} response
ip {any | host source-ip | source-ip ip-address-bitmask}
{any | host destination-ip | destination-ip ip-address-bitmask}
mac {any | host source-mac | source-mac mac-address-bitmask}
[any | host destination-mac | destination-mac mac-address-
bitmask] [log]
source-ip – Source IP address.
destination-ip – Destination IP address with bitmask.
ip-address-bitmask
to match.
source-mac – Source MAC address.
destination-mac – Destination MAC address range with bitmask.
mac-address-bitmask
format).
log - Logs a packet when it matches the access control entry.
D S
EFAULT ETTING
None
C M
OMMAND ODE
ARP ACL
C U
OMMAND SAGE
New rules are added to the end of the list.
16. For all bitmasks, binary "1" means care and "0" means ignore.
– 812 –
– IPv4 number representing the address bits
16
– Bitmask for MAC address (in hexadecimal
16