Allied Telesis AT-9000 Series User Manual
Page 1234
Chapter 74: ACL Commands
1206
dst_mac_address
Specifies the destination MAC address of the ingress packets.
Choose from the following options:
dst_mac_address: Specifies the destination MAC address of the
packets. The address must be entered in hexadecimal in one of
the following formats:
xx:xx:xx:xx:xx:xx or xxxx.xxxx.xxxx
any: Matches any destination MAC address.
dst_mac_mask
Specifies the destination MAC address mask. The mask must be
entered in one of the following formats:
xx:xx:xx:xx:xx:xx or xxxx.xxxx.xxxx
Assign the “x” variable a value of either “0” or “F.” Specify “0” to
indicate the parts of the MAC address the ACL is to filter. Specify
“F” for parts of the MAC address the ACL should ignore.
Mode
Global Configuration mode
Description
Use this command to create ACLs that filter packets based on source and
destination MAC addresses.
Confirmation Commands
“SHOW ACCESS-LIST” on page 1232 and “SHOW INTERFACE
ACCESS-GROUP” on page 1234
Examples
This example configures port 3 to accept packets only from three specific
devices:
awplus> enable
awplus# configure terminal
awplus(config)# access-list 4001 permit 12:a3:4b:89:10:98
00:00:00:00:00:00 any
awplus(config)# access-list 4002 permit 00:8b:2a:56:11:80
00:00:00:00:00:00 any
awplus(config)# access-list 4003 permit 76:9a:8c:b2:88:1a
00:00:00:00:00:00 any
awplus(config)# access-list 4011 deny any any
awplus(config)# interface port1.0.3
awplus(config_if)# mac access-group 4001