Configuring a MAC ACL to Deny Network Traffic
To deny IPv4 network traffic from MAC address, 01:80:c2:00:00:0X, for the scope fabric, create the MAC ACL, deny-MAC, using the following syntax:
CLI network-admin@switch > acl-mac-create name deny-mac action deny src-mac 01:80:c2:00:00:0X ether-type ipv4 scope fabric
To review the configuration, use the acl-mac-show command:
CLI network-admin@switch > acl-mac-show name deny-mac layout vertical
name:                        deny-mac
id:                          b000015:12
action:                      deny
src-mac:                     01:80:c2:00:00:0X
dst-mac:                     00:00:00:00:00:00
dst-mac-mask:                ff:ff:ff:ff:ff:ff
ether-type:                  ipv4
vlan:                        0
scope:                       fabric
port:                        0