acl-mac-create

This command is used to create Access Control Lists (ACLs) based on MAC addresses.

Syntax   acl-mac-create

name name-string

Specifies the name of the ACL.

action permit|deny

Specifies the permission of the ACL to be either permit or deny.

src-mac mac-address

Specifies the source MAC address of the ACL. The value can be any to match all MAC addresses

src-mac-mask mac-address

Specifies the source MAC address mask.

dst-mac mac-address

Specifies the destination MAC address of the ACL. The value can be any to match all MAC addresses.

dst-mac-mask mac-address

Specifies the destination MAC address mask.

ether-type ipv4|arp|wake|rarp|vlan|ipv6|lacp|mpls-uni|mpls-multi|jumbo|dot1X|aoe|lldp|qinq|macsec|ecp|

ptp|fcoe|fcoe-init|qinq-old

Specifies the EtherType value.

vnet vnet-name

Specify the name of the vNET.

bd bridge-domain name

Specify the bridge domain name assigned to the ACL.

vlan vlan-id

Specifies the VLAN identifier, a value between 0-4095.

scope local|fabric

Specifies the scope of the ACL.

port port-number

Specifies the switch port number.

Defaults   None

Access   CLI

History   

Version 1.2.1

Command introduced.

Version 2.4.1

The parameter vnet added.

Usage   MAC access control lists (ACLs) can be used to filter network traffic. This command creates a new ACL.

Examples  This example shows how to create a fabric-wide ACL named MyMacACL allowing IPv4 traffic from the host with the MAC address e0:f8:47:14:3c:2e to any host.

CLI (network-admin@switch) > mac-acl-create name MyMacACL action permit scope fabric src e0:f8:47:14:3c:2e dst any type ipv4

north
    keyboard_arrow_up
    keyboard_arrow_down
    description
    print
    feedback
    support
    business
    rss_feed
    south