Permit, deny (mac acl), Ny (4-215) – LevelOne FGL-2870 User Manual
Page 581
Access Control List Commands
4-215
4
permit, deny (MAC ACL)
This command adds a rule to a MAC ACL. The rule filters packets matching a
specified MAC source or destination address (i.e., physical layer address), or
Ethernet protocol type. Use the no form to remove a rule.
Syntax
[no] {permit | deny}
{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
[cos cos cos-bitmask] [vid vid vid-bitmask]
[ethertype protocol [protocol-bitmask]]
Note:
The default is for Ethernet II packets.
[no] {permit | deny} tagged-eth2
{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
[cos cos cos-bitmask] [vid vid vid-bitmask]
[ethertype protocol [protocol-bitmask]]
[no] {permit | deny} untagged-eth2
{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
[ethertype protocol [protocol-bitmask]]
[no] {permit | deny} tagged-802.3
{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
[cos cos cos-bitmask] [vid vid vid-bitmask]
[no] {permit | deny} untagged-802.3
{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
• tagged-eth2 – Tagged Ethernet II packets.
• untagged-eth2 – Untagged Ethernet II packets.
• tagged-802.3 – Tagged Ethernet 802.3 packets.
• untagged-802.3 – Untagged Ethernet 802.3 packets.
• any – Any MAC source or destination address.
• host – A specific MAC address.
• source – Source MAC address.
• destination – Destination MAC address range with bitmask.
• address-bitmask
25
– Bitmask for MAC address (in hexidecimal format).
• cos – Class-of-Service value (Range: 0-7)
• cos-bitmask
– Class-of-Service bitmask. (Range: 0-7)
• vid – VLAN ID. (Range: 1-4094)
• vid-bitmask
– VLAN bitmask. (Range: 1-4095)
25. For all bitmasks, “1” means care and “0” means ignore.