1 mac access-list extended, 2 mac access-list extended rename, 3 {deny | permit – Kontron AT8402 CLI User Manual

Page 133: Mac access-list extended - 21, Mac access-list extended rename - 21, Deny | permit} - 21, At8402 quality of service (qos) commands

Advertising
background image

AT8402

Quality of Service (QoS) Commands

Page 3 - 21

AT8402 CLI Reference Manual

3.7.1

mac access-list extended

This command creates a MAC Access Control List (ACL) identified by

<name>

,

consisting of classification fields defined for the Layer 2 header of an Ethernet frame.

The

<name>

parameter is a case-sensitive alphanumeric string from 1 to 31 characters

uniquely identifying the MAC access list.

If a MAC ACL by this name already exists, this command enters Mac-Access-List

config mode to allow updating the existing MAC ACL.

NOTE: The CLI mode changes to Mac-Access-List Config mode when you

successfully execute this command.

Format

mac access-list extended

<name>

Mode

Global Config

3.7.1.1

no mac access-list extended

This command deletes a MAC ACL identified by

<name>

from the system.

Format

no mac access-list extended

<name>

Mode

Global Config

3.7.2

mac access-list extended rename

This command changes the name of a MAC Access Control List (ACL). The

<name>

parameter is the name of an existing MAC ACL. The

<newname>

parameter is a case-

sensitive alphanumeric string from 1 to 31 characters uniquely identifying the MAC

access list.

This command fails if a MAC ACL by the name

<newname>

already exists.

Format

mac access-list extended rename

<name> <newname>

Mode

Global Config

3.7.3

{deny | permit}

This command creates a new rule for the current MAC access list. Each rule is

appended to the list of configured rules for the list.

NOTE: The 'no' form of this command is not supported, since the rules within

a MAC ACL cannot be deleted individually. Rather, the entire MAC
ACL must be deleted and re-specified.

NOTE: An implicit 'deny all' MAC rule always terminates the access list.

NOTE: Assign-queue attributes are configurable for a deny rule, but they have

no operational effect.

A rule may either deny or permit traffic according to the specified classification fields.

At a minimum, the source and destination MAC value must be specified, each of which

may be substituted using the keyword any to indicate a match on any value in that

field. The remaining command parameters are all optional, but the most frequently

used parameters appear in the same relative order as shown in the command format.

Advertising
Popular Brands
Popular manuals