Reference Guide
log (OPTIONAL, E-Series only) Enter the keyword log to log the packets.
monitor (OPTIONAL) Enter the keyword monitor when the rule is describing
the traffic that you want to monitor and the ACL in which you are
creating the rule is applied to the monitored interface. For more
information, refer to the “Flow-based Monitoring” section in the Port
Monitoring chapter of the
FTOS Configuration Guide
.
Defaults Not configured.
Command Modes CONFIGURATION-MAC ACCESS LIST-EXTENDED
Command History
Version 8.3.11.1 Introduced on the Z9000.
Version 8.1.1.0 Introduced on the E-Series ExaScale.
Version 7.6.1.0 Introduced on the S-Series.
Version 7.5.1.0 Introduced on the C-Series.
Version 7.4.1.0 Added the monitor option.
pre-Version
6.1.1.0
Introduced on the E-Series.
Usage
Information
When you use the log option, the CP processor logs detail the packets that match. Depending
on how many packets match the log entry and at what rate, the CP may become busy as it has
to log these packets’ details.
NOTE: When ACL logging and byte counters are configured simultaneously, byte counters
may display an incorrect value. Configure packet counters with logging instead.
Related
Commands
permit – configures a MAC address filter to pass packets.
seq – configures a MAC address filter with a specified sequence number.
mac access-list extended
Name a new or existing extended MAC access control list (extended MAC ACL).
C-Series, E-Series, S-Series, Z-Series, S4810
Syntax
mac access-list extended access-list-name [cpu-qos
To delete a MAC access list, use the no mac access-list extended access-
list-name
command.
Parameters
access-list-name
Enter a text string as the MAC access list name, up to 140 characters.
cpu-qos Enter the keywords cpu-qos to assign this ACL to control plane
traffic only (CoPP).
Defaults none
298