Permit (Mac) - Cisco 220 Series Smart Plus Reference Manual

ACL Commands

permit (MAC)

permit (MAC)
Cisco 220 Series Smart Plus Switches Command Line Interface Reference Guide Release 1.0.0.x
User Guidelines
The number of TCP/UDP ranges that can be defined in ACLs is limited. You can
define up to #ASIC-specific ranges for TCP and up to #ASIC-specific ranges for
UDP.
If a range of ports is used for a source port in ACE, it is not counted again if it is
also used for a source port in another ACE.
If a range of ports is used for a destination port in ACE, it is not counted again if it is
also used for a destination port in another ACE.
If a range of ports is used for a source port, it is counted again if it is also used for a
destination port.
Example
This example defines an IPv6-based ACL by the server name and enters an IPv6-
based ACE for TCP packets:
switchxxxxxx(config)# ipv6 access-list server
switchxxxxxx(config-ipv6-acl)# permit tcp 3001::2/64 any any 80
To set permit conditions for a MAC-based ACL, use the permit command in the
MAC Access-List Configuration mode.
To remove a MAC-based ACE, use the no sequence command.
Syntax
value
[sequence ] permit {any |
destination-wildcard
value
no sequence
Parameters
value
• sequence
based ACL. The acceptable range is from 1 to 2147483547. If not specified,
the switch provides a number starting from 1 in ascending order.
source
• —Source MAC address of the packet.
source source-wildcard
vlan-id
} [any | vlan ] [cos
—(Optional) Specifies the sequence number for the MAC-
destination
} {any |
cos cos-wildcard
] [ethtype
4
value
]
84