Displaying layer-2 acls, Displaying layer-2, Acls – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Page 106

Advertising
background image

88

Multi-Service IronWare Security Configuration Guide

53-1003035-02

Displaying Layer-2 ACLs

2

For detailed information about ACL accounting considerations for Brocade NetIron CES and
Brocade NetIron CER devices, please refer to “ACL accounting”.

Displaying Layer-2 ACLs

Use the show access-list command to display named and numbered Layer 2 (L2) ACL tables.

To display the total number of Layer-2 and IPv4 access lists and the number of filters configured for
each list, use the show access-list count command.

Brocade(config)#show access-list count

Total 4 ACLs exist.

ACL 102, total 10 clauses

ACL 105, total 15 clauses

ACL 400, total 100 clauses

ACL 401, total 2 clauses

NOTE

Empty ACLs that are applied to interfaces are included in the total ACL count but are not displayed.

To display a L2 numbered ACL table, use the show access-list num command.

Brocade(config)# show access-list 598

L2 MAC Access List 598:

10: deny 0000.0030.0313 ffff.ffff.ffff 0000.0030.0313 ffff.ffff.ffff any etype

20: any log permit any any any etype any priority-force 4

To display a Layer-2 named ACL table use the show access-list l2_acl_name command.

Brocade(config)# show access-list example

L2 MAC Access List example:

10: deny 0000.0030.0310 ffff.ffff.ffff 0000.0030.0010 ffff.ffff.ffff any etype

ipv4-l5 log

20: deny 0000.0030.0311 ffff.ffff.ffff 0000.0030.0111 ffff.ffff.ffff any etype

arp log

30: deny 0000.0030.0312 ffff.ffff.ffff 0000.0030.0212 ffff.ffff.ffff any etype

ipv6 log

40: deny 0000.0030.0313 ffff.ffff.ffff 0000.0030.0313 ffff.ffff.ffff any etype

any log

50: permit any any any etype any priority-force 4

Syntax: show access-list { count | num | l2_acl_name }

The count parameter specifies displaying the total number of Layer-2 and IPv4 access lists and the
number of filters configured for each list. Empty ACLs that are applied to interfaces are included in
the total ACL count but are not displayed.

The num variable specifies the Layer-2 ACL table ID.

The l2_acl_name variable specifies the Layer-2 ACL name.

To display all Layer-2 named ACL tables, use the following command.

Brocade(config)# show access-list l2

L2 MAC Access List example:

Advertising
Popular Brands
Popular manuals