Service-acl input block – Dell PowerEdge VRTX User Manual

744

ACL Commands

FILE LOCATION: C:\Users\gina\Desktop\Checkout_new\CLI Folders\Dell Plasma-ARC

2+3\new_system_mifs_ARC2_latest\ACL.fm

D E L L C O N F ID E N T IA L – P R E L IM I N A RY 4 / 3 /1 4 - FO R P R O O F O N LY

• An ACL cannot be bound to a port that is already bound to an ACL,

without first removing the current ACL. Both ACLs must be mentioned at

the same time in this command.

• When the user binds ACL to an interface, TCAM resources will be

consumed. One TCAM rule for each MAC or IP ACE and two TCAM

rules for each IPv6 ACE.The TCAM consumption is always even number,

so in case of odd number of rules the consumption will be increased by 1.

Example

console(config)# mac access-list extended server-acl

console(config-mac-al)# permit 00:00:00:00:00:01

00:00:00:00:00:ff any

console(config-mac-al)# exit

console(config)# interface gi0/1

console(config-if)# service-acl input server-acl default-

action deny-any

service-acl input block

Use the service-acl input Interface Configuration mode commands to discard

packets that are classified to specific protocols. Use the no form of those

commands to disable discarding of the packets.

Syntax

service-acl input

protocol1 [protocol2 … protocol6

]

no service-acl input

Parameters

protocol—Specifies a protocol to filter. Available values are: blockcdp,

blockvtp, blockdtp, blockudld, blockpagp, blocksstp, and blockall.

Default Configuration

No protocol is defined.