acl-mac-create
This command is used to create Access Control Lists (ACLs) based on MAC addresses.
Syntax acl-mac-create
|
name name-string |
Specifies the name of the ACL. |
|
action permit|deny |
Specifies the permission of the ACL to be either permit or deny. |
|
src-mac mac-address |
The source MAC address of the ACL. The value can be any to match all MAC addresses |
|
src-mac-mask mac-address |
Specifies the source MAC address mask. |
|
dst-mac mac-address |
Specifies the destination MAC address of the ACL. The value can be any to match all MAC addresses. |
|
dst-mac-mask mac-address |
Enter the destination MAC address mask. |
|
ether-type ipv4|arp|wake|rarp|vlan|ipv6|lacp|mpls-uni|mpls-multi|jumbo|dot1X|aoe|lldp|qinq|macsec|ecp| ptp|fcoe|fcoe-init|qinq-old |
Specifies the EtherType value. |
|
vnet vnet-name |
Specify the vNET name. |
|
bd bridge-domain name |
Specify the bridge domain name assigned to the ACL. |
|
vlan vlan-id |
Specifies the VLAN identifier, a value between 0-4095. |
|
scope local|fabric |
Specifies the scope of the ACL. |
|
port port-number |
Specifies the switch port number. |
Defaults None
Access CLI
History
|
Version 1.2.1 |
Command introduced. |
|
Version 2.4.1 |
The parameter vnet added. |
Usage MAC access control lists (ACLs) can be used to filter network traffic. This command creates a new ACL.
Examples This example shows how to create a fabric-wide ACL named MyMacACL allowing IPv4 traffic from the host with the MAC address e0:f8:47:14:3c:2e to any host.
CLI (network-admin@switch) > acl-mac-create name MyMacACL action permit scope fabric src e0:f8:47:14:3c:2e dst any type ipv4