Quick Reference Guide

ManualsBrandsDell ManualsComputer equipmentForce10 S2410-01-10GE-24P

191

192

193

194

195

196

197

198

199

200

Access Control | 199

Each rule is appended to the list of configured rules for the list. Note that an implicit “deny all” MAC rule

always terminates the access list.

• Change the name of a MAC ACL. This command fails if a MAC ACL identified by the name

newname

already exists:

— mac access-list extended rename name newname

• Attach a MAC ACL identified by name to the selected interface in the ingress direction. The name

parameter must be the name of an existing MAC ACL. The optional

1-4294967295 parameter helps to

set the order in which ACLs are applied to the interface if more than one ACL is assigned.

—

mac access-group name [1-4294967295] in

Force10 (Config)#interface 1/0/2

Force10 (Interface 1/0/2)#mac access-group ml-1 in

• Remove the assignment of a MAC ACL identified by name from the selected interface:

—

no mac access-group name

• Display a MAC ACL and all of the rules that are defined for the ACL. The name parameter identifies

the MAC ACL to display:

—

show mac access-list name

Figure 13-157. Sample Output from show mac access-list Command

• Display a summary of all defined MAC access lists in the system:

— show mac access-lists

Figure 13-158. Sample Output from show mac access-lists Command

Note: You can add new deny/permit list items to an existing list, but you cannot remove previously

configured deny/permit list items. You must delete the list before recreating it as you want.

Force10 #show mac access-list ml-1

Rule Number: 1

Action......................................... permit

Source MAC Address............................. 01:80:C2:00:00:00

Assign Queue................................... 4

Rule Number: 2

Action......................................... permit

Destination MAC Address........................ 01:80:C2:00:00:FF

Assign Queue................................... 3

Redirect Interface............................. 1/0/10

Force10 #

Force10 #show mac access-lists

Current number of all ACLs: 3 Maximum number of all ACLs: 100

MAC ACL Name Rules Interface(s) Direction

------------------------------- ----- ------------------------- ---------

ml-1 2 1/0/2 inbound

Force10 (Config-mac-access-list)#permit any 01:80:c2:00:00:FF assign-queue 3 redirect 1/0/10