Table of Contents
Advertisement
Command Mode
Interface Configuration (Ethernet)
Command Usage
• A port can only be bound to one ACL.
• If a port is already bound to an ACL and you bind it to a different ACL, the
switch will replace the old binding with the new one.
• You must configure a mask for an ACL rule before you can bind it to a port.
Example
Console(config)#int eth 1/25
Console(config-if)#ip access-group david in
Console(config-if)#
Related Commands
show ip access-list (4-126)
show ip access-group
This command shows the ports assigned to IP ACLs.
Command Mode
Privileged Exec
Example
Console#show ip access-group
Interface ethernet 1/25
IP access-list david in
Console#
Related Commands
ip access-group (4-126)
MAC ACLs
The commands in this section configure ACLs based on hardware addresses,
packet format, and Ethernet type. To configure MAC ACLs, first create an access list
containing the required permit or deny rules, and then bind the access list to one or
more ports
Command
access-list mac
permit, deny
show mac access-list
Table 4-39 MAC ACL Commands
Function
Creates a MAC ACL and enters configuration mode
Filters packets matching a specified source and
destination address, packet format, and Ethernet type
Displays the rules for configured MAC ACLs
Access Control List Commands
Mode
GC
MAC-ACL
PE
4
Page
4-128
4-129
4-130
4-127
Hide quick links:
Advertisement
Table of Contents
