Configuration examples for ethertype access lists, Feature history for ethertype access lists – Cisco ASA 5505 User Manual

Page 399

Advertising
background image

16-5

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 16 Adding an EtherType Access List

Configuration Examples for EtherType Access Lists

Configuration Examples for EtherType Access Lists

The following example shows how to configure EtherType access lists:

The following access list allows some EtherTypes through the ASA, but it denies IPX:

hostname(config)# access-list ETHER ethertype deny ipx

hostname(config)# access-list ETHER ethertype permit 0x1234

hostname(config)# access-list ETHER ethertype permit mpls-unicast

hostname(config)# access-group ETHER in interface inside

hostname(config)# access-group ETHER in interface outside

The following access list denies traffic with EtherType 0x1256, but it allows all others on both interfaces:

hostname(config)# access-list nonIP ethertype deny 1256

hostname(config)# access-list nonIP ethertype permit any

hostname(config)# access-group ETHER in interface inside

hostname(config)# access-group ETHER in interface outside

Feature History for EtherType Access Lists

Table 16-1

lists each feature change and the platform release in which it was implemented.

Table 16-1

Feature History for EtherType Access Lists

Feature Name

Releases

Feature Information

EtherType access lists

7.0(1)

EtherType access lists control traffic based upon its
EtherType.

We introduced the feature and the following command:
access-list ethertype.

Advertising
This manual is related to the following products:

ASA 5585-X, ASA 5555-X, ASA 5545-X, ASA 5525-X, ASA 5515-X, ASA 5512-X, ASA 5580, ASA 5550, ASA 5540, ASA 5520, ASA 5510, ASA 5500 Series

Popular Brands
Popular manuals