Quick Reference Guide
110 ACL Commands
www.dell.com | support.dell.com
DELL CONFIDENTIAL – PRELIMINARY 5/15/12 – FOR PROOF ONLY
•
cos
— Specifies the packets’s Class of Service (CoS). (Range: 0 - 7)
•
cos-wildcard
— Specifies wildcard bits to be applied to the CoS.
•
eth-type
— Specifies the packet’s Ethernet type in hexadecimal format. (0 - 05dd-ffff {hex})
Default Configuration
No MAC access list is defined.
Command Mode
MAC-Access List Configuration mode.
User Guidelines
• MAC BPDU packets cannot be denied.
• Each MAC address in the ACL is a ACE (Access Control Element) and can only be removed by
deleting the ACL using the
no ip access-list
Global Configuration mode command or the Web-
based interface.
Example
The following example shows how to create a MAC ACL with rules.
service-acl
The service-acl Interface (VLAN) Configuration mode command applies an ACL to the input
interface. Use the no form of this command to detach an ACL from an input interface.
Syntax
•
service-acl input
acl-name
•
no
service-acl input
•
acl-name
— Specifies the ACL to be applied to the input interface.
Default Configuration
This command has no default configuration.
Command Mode
Interface (Ethernet, Port-Channel) Configuration mode.
Console(config)# mac access-list macl-1
Console (config-mac-acl)# deny 66:66:66:66:66:66
Console(config-mac-acl)# exit
Console(config)#