Command Line Reference Guide
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing
the traffic that you want to monitor and the ACL in which you are
creating the rule is applied to the monitored interface. For more
information, refer to the “Flow-based Monitoring” section in the Port
Monitoring chapter of the
FTOS Configuration Guide
.
Defaults Not configured.
Command Modes CONFIGURATION-MAC ACCESS LIST-EXTENDED
Command History
Version 9.0(1.3) Introduced on the S5000.
Usage
Information
When you use the log option, the CP processor logs detail the packets that match. Depending
on how many packets match the log entry and at what rate, the CP may become busy as it has
to log these packets’ details.
NOTE: When ACL logging and byte counters are configured simultaneously, byte counters
may display an incorrect value. Configure packet counters with logging instead.
Related
Commands
permit – configures a MAC address filter to pass packets.
seq – configures a MAC address filter with a specified sequence number.
mac access-list extended
Name a new or existing extended MAC access control list (extended MAC ACL).
S5000
Syntax
mac access-list extended access-list-name
Parameters
mac-list-name
Enter a text string as the MAC access list name, up to 140 characters.
Defaults none
Command Modes CONFIGURATION
Command History
Version 9.0(1.3) Introduced on the S5000.
Usage
Information
The number of entries allowed per ACL is hardware-dependent. For detailed specifications on
entries allowed per ACL, refer to your switch documentation.
Example
FTOS(conf)#mac-access-list access-list extended TestMATExt
FTOS(config-ext-macl)#remark 5 IPv4
FTOS(config-ext-macl)#seq 10 permit any any ev2 eq 800 count
bytes
FTOS(config-ext-macl)#remark 15 ARP
FTOS(config-ext-macl)#seq 20 permit any any ev2 eq 806 count
bytes
FTOS(config-ext-macl)#remark 25 IPv6
217