ACL Commands
show access-lists
show access-lists
Cisco 220 Series Smart Plus Switches Command Line Interface Reference Guide Release 1.0.0.x
source-wildcard
•
destination
•
—Destination MAC address of the packet.
destination-wildcard
•
address.
•
vlan
vlan-id
—(Optional) Specifies the VLAN ID of the packet. (Range: 1 to
4094)
cos
•
—(Optional) The CoS value of the packet. (Range: 0 to 7)
cos-wildcard
•
—(Optional) Wildcard bits to be applied to the CoS.
value
•
ethtype
—(Optional) Specifies the Ethernet type in hexadecimal
format of the packet. (Range: 1501 to 65535)
Default Configuration
No MAC-based ACE is defined.
Command Mode
MAC Access-List Configuration mode
User Guidelines
After an ACE is added to an ACL, an implicit deny any any condition exists at the
end of the list. That is, if there are no matches, the packets are denied. However,
before the first ACE is added, the list permits all packets.
Example
switchxxxxxx(config)# mac access-list extended server1
switchxxxxxx(config-mac-acl)# permit 00:00:00:00:00:01 00:00:00:00:00:ff any
To display the ACLs for a specific class defined on the switch, use the show
access-lists Privileged EXEC mode command.
Syntax
show {ip | ipv6 | mac} access-lists [
—Wildcard bits to be applied to the source MAC address.
—Wildcard bits to be applied to the destination MAC
acl-name
]
4
85