Brocade 6910 Ethernet Access Switch Configuration Guide (Supporting R2.2.0.0) User Manual

Brocade 6910 Ethernet Access Switch Configuration Guide

247

53-1002651-02

11

MAC ACLs

{permit | deny} untagged-802.3

{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
[time-range time-range-name]

no {permit | deny} untagged-802.3

{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}

tagged-eth2 – Tagged Ethernet II packets.

untagged-eth2 – Untagged Ethernet II packets.

tagged-802.3 – Tagged Ethernet 802.3 packets.

untagged-802.3 – Untagged Ethernet 802.3 packets.

any – Any MAC source or destination address.

host – A specific MAC address.

source – Source MAC address.

destination – Destination MAC address range with bitmask.

address-bitmask

5

– Bitmask for MAC address (in hexadecimal format).

vid – VLAN ID. (Range: 1-4093)

vid-bitmask

5

– VLAN bitmask. (Range: 1-4095)

protocol – A specific Ethernet protocol number. (Range: 600-ffff hex.)

protocol-bitmask

5

– Protocol bitmask.

(Range: 600-ffff hex.)

time-range-name - Name of the time range. (Range: 1-30 characters)

Default Setting
None

Command Mode
MAC ACL

Command Usage

•

New rules are added to the end of the list.

•

The ethertype option can only be used to filter Ethernet II formatted packets.

•

A detailed listing of Ethernet protocol types can be found in RFC 1060. A few of the more
common types include the following:

•

0800 - IP

•

0806 - ARP

•

8137 - IPX

5. For all bitmasks, “1” means relevant and “0” means ignore.