Users Guide
seq
Congure a lter with a specic sequence number.
Syntax
seq sequence-number {deny | permit} {any | host mac-address | mac-source-
address mac-source-address-mask} {any | host mac-address | mac-destination-
address mac-destination-address-mask} [ethertype operator] [count [byte]]
Parameters
sequence-number Enter a number as the lter sequence number. The range is from zero (0) to 65535.
deny Enter the keyword deny to drop any trac matching this lter.
permit Enter the keyword permit to forward any trac matching this lter.
any Enter the keyword any to lter all packets.
host mac-address Enter the keyword host and then enter a MAC address to lter packets with that host
address.
mac-source-
address
Enter a MAC address in nn:nn:nn:nn:nn:nn format.
The MAC ACL supports an inverse mask; therefore, a mask of ::::: allows entries
that do not match and a mask of 00:00:00:00:00:00 only allows entries that match
exactly.
mac-source-
address-mask
Specify which bits in the MAC address must be matched.
mac-destination-
address
Enter the destination MAC address and mask in nn:nn:nn:nn:nn:nn format.
mac-destination-
address-mask
Specify which bits in the MAC address must be matched.
The MAC ACL supports an inverse mask; therefore, a mask of ::::: allows entries
that do not match and a mask of 00:00:00:00:00:00 only allows entries that match
exactly.
ethertype operator (OPTIONAL) To lter based on protocol type, enter one of the following Ethertypes:
• ev2 - is the Ethernet II frame format.
• llc - is the IEEE 802.3 frame format.
• snap - is the IEEE 802.3 SNAP frame format.
count (OPTIONAL) Enter the keyword count to count packets the lter processes.
byte (OPTIONAL) Enter the keyword byte to count bytes the lter processes.
Defaults Not congured.
Command Modes CONFIGURATION-MAC ACCESS LIST-STANDARD
Supported Modes Full–Switch
Command History
Version Description
9.9(0.0) Introduced on the FN IOM.
194 Access Control Lists (ACL)