Permit, deny (mac acl), Permit, deny – Brocade Communications Systems Brocate Ethernet Access Switch 6910 User Manual
Page 302
252
Brocade 6910 Ethernet Access Switch Configuration Guide
53-1002581-01
MAC ACLs
11
Command Usage
•
When you create a new ACL or enter configuration mode for an existing ACL, use the permit or
deny command to add new rules to the bottom of the list.
•
To remove a rule, use the no permit or no deny command followed by the exact text of a
previously configured rule.
•
An ACL can contain up to 128 rules.
Example
Console(config)#access-list mac jerry
Console(config-mac-acl)#
Related Commands
permit, deny (252)
mac access-group (254)
show mac access-list (255)
permit, deny (MAC ACL)
This command adds a rule to a MAC ACL. The rule filters packets matching a specified MAC source
or destination address (i.e., physical layer address), or Ethernet protocol type. Use the no form to
remove a rule.
Syntax
{permit | deny}
{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
[vid vid vid-bitmask] [ethertype protocol [protocol-bitmask]] [time-range time-range-name]
no {permit | deny}
{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
[vid vid vid-bitmask] [ethertype protocol [protocol-bitmask]]
NOTE
The default is for Ethernet II packets.
{permit | deny} tagged-eth2
{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
[vid vid vid-bitmask] [ethertype protocol [protocol-bitmask]] [time-range time-range-name]
no {permit | deny} tagged-eth2
{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
[vid vid vid-bitmask] [ethertype protocol [protocol-bitmask]]
{permit | deny} untagged-eth2
{any | host source | source address-bitmask}
{any | host destination | destination address-bitmask}
[ethertype protocol [protocol-bitmask]]
[time-range time-range-name]