Mac access-group – Brocade Communications Systems Brocate Ethernet Access Switch 6910 User Manual

254

Brocade 6910 Ethernet Access Switch Configuration Guide

53-1002581-01

MAC ACLs

11

Command Usage

•

New rules are added to the end of the list.

•

The ethertype option can only be used to filter Ethernet II formatted packets.

•

A detailed listing of Ethernet protocol types can be found in RFC 1060. A few of the more
common types include the following:

•

0800 - IP

•

0806 - ARP

•

8137 - IPX

Example

This rule permits packets from any source MAC address to the destination address
00-e0-29-94-34-de where the Ethernet type is 0800.

Console(config-mac-acl)#permit any host 00-e0-29-94-34-de ethertype 0800

Console(config-mac-acl)#

Related Commands

access-list mac (251)
Time Range (102)

mac access-group

This command binds a MAC ACL to a port. Use the no form to remove the port.

Syntax

mac access-group acl-name {in | out} [time-range time-range-name] [counter]

acl-name – Name of the ACL. (Maximum length: 16 characters)

in – Indicates that this list applies to ingress packets.

out – Indicates that this list applies to egress packets.

time-range-name - Name of the time range. (Range: 1-30 characters)

counter – Enables counter for ACL statistics.

Default Setting

None

Command Mode

Interface Configuration (Ethernet)

Command Usage

If an ACL is already bound to a port and you bind a different ACL to it, the switch will replace the old
binding with the new one.

Example

Console(config)#interface ethernet 1/2

Console(config-if)#mac access-group jerry in

Console(config-if)#