Brocade Network OS Command Reference v4.1.0 User Manual
Page 248
210
Network OS Command Reference
53-1003115-01
deny (extended ACLs)
2
•
The order of the rules in an ACL is critical. The first rule that matches the traffic stops further
processing of the frames. Rules containing specific information should be listed first, followed
by rules that contain more general information.
•
Enter no deny any to deny any rule that was added earlier.
•
Enter no deny followed by specific address parameters to remove traffic dropping for a
specific MAC address configuration.
Examples
To create a rule in a MAC extended address to drop IPv4 traffic from the source MAC address
0022.3333.4444/255.255.0.0 to the destination MAC address 0022.3333.5555/255.255.0.0
and to enable the counting of packets:
switch(conf-macl-ext)# deny 0022.3333.4444 0022.3333.5555255.255.0.0 ipv4 count
To delete a rule from a MAC extended address:
switch(conf-macl-ext)# no deny 0022.3333.4444 0022.3333.5555 ipv4
See Also
mac access-list extended, mac access-list standard, permit (extended ACLs),
permit (standard ACLs)