Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL-16597-01, July 2009)
The mac access-list is applicable to non-IPv4 and non-IPv6 traffic only.Note
Procedure
PurposeCommand or Action
Displays IP ACL configuration. If the IP ACL includes
the statistics command, then the show ip access-lists and
switch# show {ip | ipv6} access-lists
name
Step 1
show ipv6 access-list command output includes the
number of packets that have matched each rule.
Clears statistics for all IP ACLs or for a specific IP ACL.switch# clear {ip | ipv6} access-list
counters [access-list-name]
Step 2
Configuring MAC ACLs
Creating a MAC ACL
To create a MAC ACL and add rules to it, perform this task:
Procedure
PurposeCommand or Action
Enters configuration mode.switch# configure terminal
Step 1
Creates the MAC ACL and enters ACL configuration
mode.
switch# mac access-list name
Step 2
Creates a rule in the MAC ACL.switch(config-mac-acl)#
[sequence-number] {permit | deny}
source destination protocol
Step 3
The permit and deny options support many ways of
identifying traffic. For more information, see the
Cisco Nexus 5000 Series Command Reference.
(Optional)
Specifies that the switch maintains global statistics
for packets matching the rules in the ACL.
switch(config-mac-acl)# statistics
Step 4
(Optional)
Displays the MAC ACL configuration.
switch# show mac access-lists name
Step 5
(Optional)
Copies the running configuration to the startup
configuration.
switch# copy running-config
startup-config
Step 6
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01 287
Configuring MAC ACLs
Creating a MAC ACL