21 permit | deny(mac extended), Permit, Deny – PLANET WGSW-50040 User Manual

Page 331: Mac extended

Advertising
background image

Commands for Security Function Chapter 6 Commands for TACACS+

<sPrefixlen> is the length of the IPv6 address prefix, the valid range is 1~128.

<sIPv6Addr> is the source IPv6 address.

Command Mode:

Standard IPv6 nomenclature access list mode

Default:

No access list configured by default.

Example:

Permit packets with source address of 2001:1:2:3::1/64 while denying those with source address of

2001:1:2:3::1/48.

Switch(config)#ipv6 access-list standard ipv6Flow

Switch(Config-IPv6-Std-Nacl-ipv6Flow)# permit 2001:1:2:3::1/64

Switch(Config-IPv6-Std-Nacl-ipv6Flow)# deny 2001:1:2:3::1/48

21.21 permit | deny(mac extended)

Command:

[no]{deny|permit} {any-source-mac|{host-source-mac <host_smac> }|{ <smac>

<smac-mask> }} {any-destination-mac|{host-destination-mac <host_dmac> }|{ <dmac>

<dmac-mask> }} [cos <cos-val> [ <cos-bitmask> ]] [vlanId <vid-value> [ <vid-mask> ]]

[ethertype <protocol> [ <protocol-mask> ]]

[no]{deny|permit} {any-source-mac|{host-source-mac <host_smac> }|{ <smac>

<smac-mask> }} {any-destination-mac|{host-destination-mac <host_dmac> }|{ <dmac>

<dmac-mask> }} [untagged-eth2 [ethertype <protocol> [protocol-mask]]]

[no]{deny|permit}{any-source-mac|{host-source-mac <host_smac> }|{ <smac>

<smac-mask> }} {any-destination-mac|{host-destination-mac <host_dmac> }|{ <dmac>

<dmac-mask> }} [untagged-802-3]

[no]{deny|permit} {any-source-mac|{host-source-mac <host_smac> }|{ <smac>

<smac-mask> }} {any-destination-mac|{host-destination-mac <host_dmac> }|{ <dmac>

<dmac-mask> }} [tagged-eth2 [cos <cos-val> [ <cos-bitmask> ]] [vlanId <vid-value>

[ <vid-mask> ]] [ethertype <protocol> [ <protocol-mask> ]]]

[no]{deny|permit}{any-source-mac|{host-source-mac <host_smac> }|{ <smac>

<smac-mask> }} {any-destination-mac|{host-destination-mac <host_dmac> }|{ <dmac>

<dmac-mask> }} [tagged-802-3 [cos <cos-val> [ <cos-bitmask> ]] [vlanId <vid-value>

[ <vid-mask> ]]]

Functions:

Define an extended name MAC ACL rule, and ‘no’ command deletes this extended name IP access

Advertising
Popular Brands
Popular manuals