Manualshelf

Reference Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4810P
831832833834835836837838839840
838 | Security
www.dell.com | support.dell.com
VTY MAC-SA Filter Support
FTOS supports MAC access lists which permit or deny users based on their source MAC address. With
this approach, you can implement a security policy based on the source MAC address.
To apply a MAC ACL on a VTY line, use the same
access-class command as IP ACLs (Figure 42-272).
Figure 42-272 shows how to deny incoming connections from subnet 10.0.0.0 without displaying a login
prompt.
Figure 42-272. Example Access Class Configuration Using TACACS+ Without Prompt
FTOS(conf)#mac access-list standard sourcemac
FTOS(config-std-mac)#permit 00:00:5e:00:01:01
FTOS(config-std-mac)#deny any
FTOS(conf)#
FTOS(conf)#line vty 0 9
FTOS(config-line-vty)#access-class sourcemac
FTOS(config-line-vty)#end